Time for action – filtering reply attributes returned by a home server

The following actions have to be carried out on the my-org.com FreeRADIUS server:

Edit the sites-enabled/default file located under the FreeRADIUS configuration directory and uncomment the attr_filter.post-proxy line under the post-proxy section:

#  Uncomment the following line if you want to filter
#  replies from remote proxies based on the rules defined
#  in the 'attrs' file.
attr_filter.post-proxy

Edit the attrs file under the FreeRADIUS configuration directory and add the following entry before the DEFAULT entry:

your-org.com
    Reply-Message =* ANY,
    Tunnel-Type := VLAN,
    Tunnel-Medium-Type := IEEE-802,
    Tunnel-Private-Group-Id := "100"

Restart the FreeRADIUS server in debug mode ...

Get FreeRADIUS Beginner's Guide now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

FreeRADIUS Beginner's Guide by Dirk van der Walt

Time for action – filtering reply attributes returned by a home server

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly