Matthew Krenzer <[EMAIL PROTECTED]> wrote: > We are running freeradius here to proxy radius requests to several > different people. Unfortunately, some of the realms have very > different requirements pertaining to retry_delay retry_count and > dead_time. > > From what I can see, freeradius does not support setting these > attributes on a per-realm bases. Can anyone confirm this?
It doesn't. > Also, how much work would it take to make the attributes apply on > a per-realm bases (we might be willing to do all the work)? Not much. Add a few entries to the 'realms' data structure, and update src/main/mainconfig.c to set them, if it finds them in the configuration files. The make src/main/proxy.c prefere those values over the ones in the main server configuration. ~100 lines of code, tops. > Another approach to this that we tried in the past was to use > 'synchronous' mode, but this seemed kind of quirky at the time (I > think freeradius was at version 0.1 at the time). Uh, yeah. > At the time I think someone was even thinking of removing this > feature from the product. Is anyone using synchronous mode? How is > it working for you? Is it currently expected to work 'right'? I think it works, but I don't regularly use it. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
