Dual Stack RadSec
Joe Holden
lists at rewt.org.uk
Thu Nov 14 14:54:24 CET 2013
On 14/11/2013 13:35, Phil Mayers wrote:
> On 14/11/13 13:13, Arran Cudbard-Bell wrote:
>
>>
>> What would you expect to happen in this case?
>
> Same as with OpenSSH; a single TCP socket, listening on IPv6, gets both
> IPv4 and IPv6 connect attempts, with the v4 source appearing as a mapped
> address.
>
> Moderately useful approach, IMO, but FR would need code to recognise the
> mapped addresses, extract the v4 original and use that for client{}
> lookups and similar.
> -
Also ugly, deprecated, generally evil etc, would the ability to specify
multiple listen addresses per block (which may or may not be v4+v6) or
listen4/listen6 be doable as it seems like a much nicer solution.
More information about the Freeradius-Users
mailing list