Post-proxy and rlm_perl
Julien Leloup
jujuleloup at gmail.com
Thu Mar 20 10:27:59 CET 2008
Hi,
I have to use FreeRadius v2.0.1 in a proxy configuration for translating
attributes between two vendor specific equipements (Alcatel-Lucent and
Redback).
In a first phase (pre-proxy so), I use the preproxy_user file to add
attributes to the proxied requests and attr_filter to block others.
In a second phase (post-proxy phase I assume), when the reply comes from
the home FreeRadius, I have to go through the same kind of process (add
attributes which values are taken from a database), but I can't find a
equivalent of preproxy_user file to the post-proxy phase.
I think that using a perl script with rlm_perl will do this work in the
post-proxy function, but when I try to manipulate attributes from the
home server response, I can't find them in the %RAD_REQUEST, %RAD_REPLY
hashes, and I can see this kind of logs :
rlm_perl: Added pair Attribute1 = Value1
...
with the attributes I need from the home server, but after the execution
of my code in post-proxy function.
I found in the wiki that %RAD_PROXY or %RAD_PROXY_REPLY could be my
solution, but when I'm trying to use them, I got an error during the
launching of radiusd.
Does anyone know how I can get the attributes coming in the
Access-Accept from my server, and put new attributes in the
Access-Accept send to the original client ? Find a way to make this in
rlm_perl could be a solution but if there is an other solution, directly
in a FreRadius mechanism I missed during my research, I will use it
instead :)
Regards,
Julien Leloup
Axione
130/132 Boulevard Camélinat
92240 MALAKOFF
FRANCE
More information about the Freeradius-Users
mailing list