problem with radclient

Fajar A. Nugraha list at fajar.net
Thu Oct 18 08:27:58 CEST 2012


On Thu, Oct 18, 2012 at 1:18 PM, Vladimir Grujić
<Vladimir.Grujic at oriontelekom.rs> wrote:
> The scenario is that radius is behind load balancer which advertizes it's public ip address and forward packets to another ip address on radius (which has different ip) . Advertized public ip address on radius is binded to lo:0 interface. Hence the need for udpfromto. This is a setup to have HA cluster of radius servers and only one advertized ip for the NAS.

So ... what does that have to do with radclient, again?

If I understand you correctly, you only need proxy. You can add/remove
attributes in the packets you send to the remote radius, and in the
packets you return back to the NAS. And you should be able to generate
COA packet from the server (with unlang) instead of manually using
radclient.

Yes, radclient could probably be improved. I'm just saying that you
might not need it at all.

-- 
Fajar


More information about the Freeradius-Devel mailing list