/etc/freeradius/3.0/sites-available/proxy-inner-tunnel is in freeradius-config 3.0.16+dfsg-1ubuntu3.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 | # -*- text -*-
######################################################################
#
# This is a virtual server that handles *only* inner tunnel
# requests for EAP-TTLS and PEAP types.
#
# $Id: 938d954592d3824e4d51e3315d0f7e0b5cfde824 $
#
######################################################################
server proxy-inner-tunnel {
#
# This example is very simple. All inner tunnel requests get
# proxied to another RADIUS server.
#
authorize {
#
# Do other things here, as necessary.
#
# e.g. run the "realms" module, to decide how to proxy
# the inner tunnel request.
#
update control {
# You should update this to be one of your realms.
&Proxy-To-Realm := "example.com"
}
}
authenticate {
#
# This is necessary so that the inner tunnel EAP-MSCHAPv2
# method can be called. That method takes care of turning
# EAP-MSCHAPv2 into plain MS-CHAPv2, if necessary.
eap
}
post-proxy {
#
# This is necessary for LEAP, or if you set:
#
# proxy_tunneled_request_as_eap = no
#
eap
}
}
|