Issue with dynamic home server and duplicate server ipaddr on 3.2.8
Alan DeKok
alan.dekok at inkbridge.io
Tue Mar 17 04:42:18 UTC 2026
On Mar 16, 2026, at 4:29 PM, James Wood via Freeradius-Users <freeradius-users at lists.freeradius.org> wrote:
> ...
> However, this failed to add via radmin, because the "ipaddr" is the same as
> a previously defined dynamic home server, and the authentication fails as
> it doesn't proxy the request.
The existing scripts are set up to tie one domain to one home server. As you've seen, they need updating to work with more complex situations.
> It's like we need a way to set servers and then map multiple realms to the
> same server (as traditionally done in proxy.conf)?
>
> How can we best solve this issue? Is there another method for doing this
> besides the one above?
Off of the top of my head, you'll have to define home servers by IP address, and not domain name. i.e. do the IP address lookup in the shell script, and then write out home server name / ipaddr which the actual IPv4 address.
Then separately, have a mapping of realms to IP addresses. That mapping can go into a database, for example.
Alan DeKok.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: Message signed with OpenPGP
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20260317/20a874b2/attachment.sig>
More information about the Freeradius-Users
mailing list