Set up /dev/null (no auth) proxy server on NULL realm

A.L.M.Buxey at A.L.M.Buxey at
Mon Dec 5 11:00:50 CET 2016


> I use freeradius 3.0.4 on CentOS 7.2 (RPM)
> And I want to set up /dev/null (without  auth) proxy server on NULL realm.
> Now, I set up my proxy.conf as follow.
> -----
> realm NULL {
>         authhost        =
>         accthost        =
>         secret          = dummy
> }
> -----
> No service exist in, 1646.

oh dear.

> When user try to auth without realm (NULL realm),
> all authentication going to fail.

not'll be worse that that.

> I have some question.
> 1) Is my setting correct ?
> 2) Is there a way to set the timeout? (I want to set timeout to 0)
> 3) Any other advice?

what you will get is a server trying to proxy a request off to localhost port 1645/1646..which wont
respond...will get marked as dead.... you'll get huge backups of failures and intransit proxy requests
reattempted etc and leading to a final failure of your otherwise okay system.

if you want to just fail anyone trying to login with no realm, then simply
use unlang to reject them!  eg, in authorise section of your server

if (%{User-Name} !~ /@/ ) {


More information about the Freeradius-Users mailing list