Editing FreeRADIUS Proxy - Filter Radius Attributes
Jump to navigation
Jump to search
The edit can be undone. Please check the comparison below to verify that this is what you want to do, and then publish the changes below to finish undoing the edit.
Latest revision | Your text | ||
Line 4: | Line 4: | ||
<source> | <source> | ||
#centos 5.x (must specify freeradius2 | #centos 5.x (must specify freeradius2 otherwrite 1.1.x will be installed) | ||
yum install freeradius2 freeradius2-utils | yum install freeradius2 freeradius2-utils | ||
Line 34: | Line 34: | ||
* Vendor Name: '''rarforge.com''' (we'll use that for the realm) | * Vendor Name: '''rarforge.com''' (we'll use that for the realm) | ||
* Allowed Framed-IP-Address: '''10.0.0.x''' and '''192.168.5.x''' | * Allowed Framed-IP-Address: '''10.0.0.x''' and '''192.168.5.x''' | ||
* Allowed Framed-Netmask: | * Allowed Framed-Netmask: 255.255.255.255 | ||
* Allowed Framed-Route: '''NONE''' | * Allowed Framed-Route: '''NONE''' | ||
* Framed-Filter-ID: '''NONE''' -- login will fail if access-list doesn't exist. | * Framed-Filter-ID: '''NONE''' -- login will fail if access-list doesn't exist. | ||
===/etc/raddb/clients.conf=== | ===/etc/raddb/clients.conf=== | ||
Line 76: | Line 75: | ||
===/etc/raddb/attrs=== | ===/etc/raddb/attrs=== | ||
* This is where we remove/disallow radius attributes from the vendor sent to the client | * This is where we remove/disallow radius attributes from the vendor sent to the client | ||
* make sure to keep a close eye on your comments in the config. Remove them if you have parsing errors. | * make sure to keep a close eye on your comments in the config. Remove them if you have parsing errors. Last rule must not end with a comma. | ||
<source> | <source> |