Proxying inner requests from EAP-TTLS

Alan DeKok aland at
Mon Jun 7 23:28:49 CEST 2010

Martin Merkel wrote:
> Hi,
> I'm currently working on a test setup for a study thesis. The goal is to
> use wired 802.1X and EAP-TTLS with a local AAA server which proxies the
> tunneled requests to the appropriate home servers. My problem right now
> is that I can't get freeradius to proxy the inner requests. The TTLS
> tunnel is successfully established and the inner request is sent to the
> virtual server. Freeradius recognizes that the inner request should be
> proxied but it says that it can't create a new socket. So my question
> is: Can requests in virtual servers be proxied at all or is there
> another way to do it?

  It should work.

> The version of freeradius is 2.1.9.

  Hmm... that error was reported in older versions of the server, but it
*should* work in 2.1.9.

  Ugh on quick inspection, no, it doesn't.

> If I read the code correctly, the problem should originate in listen.c
> in function
>   rad_listen_t *proxy_new_listener(fr_ipaddr_t *ipaddr, int exists)


> I hope that I included all the neccessary information.


  See the 'v2.1.x' branch on for a fix.

  Alan DeKok.

More information about the Freeradius-Users mailing list