Time for action – filtering reply attributes returned by a home server
The following actions have to be carried out on the my-org.com
FreeRADIUS server:
- Edit the
sites-enabled/default
file located under the FreeRADIUS configuration directory and uncomment theattr_filter.post-proxy
line under thepost-proxy
section:# Uncomment the following line if you want to filter # replies from remote proxies based on the rules defined # in the 'attrs' file. attr_filter.post-proxy
- Edit the
attrs
file under the FreeRADIUS configuration directory and add the following entry before theDEFAULT
entry:your-org.com Reply-Message =* ANY, Tunnel-Type := VLAN, Tunnel-Medium-Type := IEEE-802, Tunnel-Private-Group-Id := "100"
- Restart the FreeRADIUS server in debug mode ...
Get FreeRADIUS Beginner's Guide now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.