Add TLS version to logs with linelog in FreeRADIUS 3.2.4
dominic.stalder at unibe.ch
dominic.stalder at unibe.ch
Tue Jan 14 13:51:50 UTC 2025
Hi Alan
Sorry for my late response, but I was not able to get back to this topic earlier:
> I think the issue is that you're proxying to an internal virtual server, and somehow the session-state isn't saved / restored correctly.
I am not sure if I get your question right, but our proxy configuration for different realms looks mostly like this (almost emtpy brackets {}):
## Phase 1: outer authentication (needed even if empty: process outer identity)
realm NULL {
}
realm LOCAL {
}
realm "ABC.ch" {
nostrip
}
realm "XYZ.ch" {
nostrip
}
This is then proxied to the virtual server proxy-inner-tunnel for phase 2. I think this is meant by "proxying to an internal virtual server" in your sense, correct?
> For now, don't do internal proxying, and it should work. I'll see if I can find time to track this down.
As stated before, this exact configuration was working with FreeRADIUS 3.0.26, but not anymore since upgrading to 3.2.4. In the meantime we are running 3.2.6 (git #a69627989). For the meantime, we just log w/o the TLS version, but I would appreciate, if you or your team could track it down?
Regards
Dominic
More information about the Freeradius-Users
mailing list