Set up /dev/null (no auth) proxy server on NULL realm
Seiichirou Hiraoka
seiichirou.hiraoka at gmail.com
Wed Dec 7 09:57:53 CET 2016
Hello alan,
Thank you very much!
By doing the following, I was able to do what I wanted.
1) edit sites-available/default
authorize {
if ( &User-Name !~ /@/ ) {
reject
}
elsif ( &User-Name =~ /@subdomain\.domain\.com/ ) {
ok
}
elsif ( &User-Name =~ /@*\.domain\.com/ ) {
reject
}
2) edit proxy.conf
. Remove following realms
realm "~^(.+\.)?domain\.com$" {
authhost = 127.0.0.1:1645
accthost = 127.0.0.1:1646
secret = dummy
}
realm NULL {
authhost = 127.0.0.1:1645
accthost = 127.0.0.1:1646
secret = dummy
}
. Two realms remain
realm "~^subdomain\.domain\.com$" {
authhost = LOCAL
accthost = LOCAL
}
realm DEFAULT {
pool = server
nostrip
}
Best regards!
2016-12-06 18:32 GMT+09:00 Alan Buxey <A.L.M.Buxey at lboro.ac.uk>:
> I told you exactly what to do in my first reply (simple bit of unlang in the
> authorize section)
>
>
>
> alan
More information about the Freeradius-Users
mailing list