Client derived CoA/DM home servers
Arran Cudbard-Bell
a.cudbardb at freeradius.org
Fri Jan 2 19:13:30 CET 2015
In v3.0.x CoA/DM home servers may now be specified as part of a client definition.
Previously a coa home_server could be associated with a client using the coa_server
config pair to specify the name of a coa home_server or pool.
This functionality is extended, so that if coa_server is specified as a config
section a new coa home_server is created, and inherits pairs from the client
definition.
For example:
client localhost {
coa_server {
port = 1700
zombie_period = 50
coa {
irt = 10
}
}
ipaddr = 127.0.0.1
secret = testing123
}
would add a home_server with the ipaddr 127.0.0.1 and the secret testing123 on port 1700,
If no port is specified 3799 is used.
An empty coa_server section may also be used if no values need to be altered.
client localhost {
coa_server {
}
ipaddr = 127.0.0.1
secret = testing123
}
and values from the client definition can be overridden.
client localhost {
coa_server {
secret = 123testing
}
ipaddr = 127.0.0.1
secret = testing123
}
The coa_server section isn't restricted to clients.conf and should work fine with rlm_ldap
and rlm_couchbase too.
If there's demand for it a global knob can be added so that coa home_server definitions are
added automatically for all clients.
Client derived home_servers will conflict with home_servers defined in proxy.conf if two
share the same type/port/ipaddr, but they won't conflict on name as they're unnamed.
This also means they can't be referenced in pools.
Arran Cudbard-Bell <a.cudbardb at freeradius.org>
FreeRADIUS development team
FD31 3077 42EC 7FCD 32FE 5EE2 56CF 27F9 30A8 CAA2
More information about the Freeradius-Users
mailing list