Hi,
I am trying to use the RADIUS attribute Session-Timeout with
the captive portal, but it seems to fail. The captive portal
seems to ignore the attribute. Here is the tcpdump on lo0:
21:09:57.192049 IP (tos 0x0, ttl 64, id 28235, offset 0, flags [none], proto UDP
(17), length 156) 127.0.0.1.43369 > 127.0.0.1.1812: RADIUS, length: 128
Access Request (1), id: 0x20, Authenticator:
fc3d8b1559fb900b455e5e8a56876139
NAS IP Address Attribute (4), length: 6, Value: 192.168.73.195
NAS ID Attribute (32), length: 15, Value: pfSense.local
Username Attribute (1), length: 7, Value: nikos
Password Attribute (2), length: 18, Value: [|radius]
21:09:58.297790 IP (tos 0x0, ttl 64, id 61190, offset 0, flags [none], proto UDP
(17), length 60) 127.0.0.1.1812 > 127.0.0.1.43369: RADIUS, length: 32
Access Accept (2), id: 0x20, Authenticator:
aad3d354acb18e87157c9249478683b2
Session Timeout Attribute (27), length: 6, Value: 01:30 min
Idle Timeout Attribute (28), length: 6, Value: 01:00 min
The CP configuration is the following:
<captiveportal>
<page/>
<timeout/>
<interface>lan</interface>
<maxproc></maxproc>
<idletimeout/>
<enable/>
<auth_method>radius</auth_method>
<radacct_enable/>
<reauthenticateacct/>
<httpsname/>
<bwdefaultdn>2000</bwdefaultdn>
<bwdefaultup>100</bwdefaultup>
<certificate/>
<private-key/>
<logoutwin_enable/>
<redirurl/>
<radiusip>127.0.0.1</radiusip>
<radiusip2/>
<radiusport/>
<radiusport2/>
<radiusacctport/>
<radiuskey>tstng123</radiuskey>
<radiuskey2/>
<radiusvendor>default</radiusvendor>
</captiveportal>
Thanks for any insights on this, Nikos
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
Commercial support available - https://portal.pfsense.org
