Dear all, at the moment we are facing a small issue since our OCSP responders are behind a traffic manager. As explained in the eap.conf file, the freeradius' HTTP requests sent to the responder does not contain the "Host:" information and therefore the traffic manager can't handle it properly (unless we use for it a separate vIP, making the host field unnecessary). Is there any plan in the next releases to include this information in the HTTP requests ? Kind Regards, Francesco Beltramini ________________________________________________________________________ This e-mail has been scanned for all known viruses by European Medicines Agency. ________________________________________________________________________
On Wed, Jul 31, 2013 at 09:46:20AM +0000, Beltramini Francesco wrote:
As explained in the eap.conf file, the freeradius' HTTP requests sent to the responder does not contain the "Host:" information and therefore the traffic manager can't handle it properly (unless we use for it a separate vIP, making the host field unnecessary).
Is there any plan in the next releases to include this information in the HTTP requests ?
The OSCP request is made by the openssl library, so that needs fixing rather than FreeRADIUS. The API does not provide a way to pass the Host: header data through. You could do it by hacking the openssl library I guess. Matthew -- Matthew Newton, Ph.D. <mcn4@le.ac.uk> Systems Specialist, Infrastructure Services, I.T. Services, University of Leicester, Leicester LE1 7RH, United Kingdom For IT help contact helpdesk extn. 2253, <ithelp@le.ac.uk>
participants (2)
-
Beltramini Francesco -
Matthew Newton