Name
Proxy-State
Synopsis
Attribute Number |
33 |
Length |
3 or more octets |
Value |
STRING |
Allowed in |
All |
Prohibited in |
None |
Presence in Packet |
Not required |
Maximum Iterations |
Unlimited |
This attribute is used when a RADIUS server acts as a proxy and needs to save information about an outstanding request, such as IP addresses, domain names, or other unique integer identifiers. There are a couple of rules to use this attribute, as specified by the RFC:
If the
Proxy-State
attribute is found in anAccess-Request
packet, the information must be included unmodified in the response to the packet, whether the packet is accepted, challenged, or rejected.Since multiple instances of this attribute are allowed inside a packet, the order in which they are presented is relevant. When the values of the
State
attribute are copied, they must be copied in the order in which they were included in the original packet.
It should be noted that some RADIUS client equipment does not follow
the RFC specification for the Proxy-State
attribute, and this can
result in the mangling of any data
included in the AVP.
Get RADIUS now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.