summaryrefslogtreecommitdiffstats
path: root/raddb/mods-config/attr_filter/access_reject
diff options
context:
space:
mode:
Diffstat (limited to 'raddb/mods-config/attr_filter/access_reject')
-rw-r--r--raddb/mods-config/attr_filter/access_reject18
1 files changed, 18 insertions, 0 deletions
diff --git a/raddb/mods-config/attr_filter/access_reject b/raddb/mods-config/attr_filter/access_reject
new file mode 100644
index 0000000..47f167b
--- /dev/null
+++ b/raddb/mods-config/attr_filter/access_reject
@@ -0,0 +1,18 @@
+#
+# Configuration file for the rlm_attr_filter module.
+# Please see rlm_attr_filter(5) manpage for more information.
+#
+# $Id$
+#
+# This configuration file is used to remove almost all of the attributes
+# From an Access-Reject message. The RFCs say that an Access-Reject
+# packet can contain only a few attributes. We enforce that here.
+#
+DEFAULT
+ EAP-Message =* ANY,
+ State =* ANY,
+ Message-Authenticator =* ANY,
+ Error-Cause =* ANY,
+ Reply-Message =* ANY,
+ MS-CHAP-Error =* ANY,
+ Proxy-State =* ANY
generated by cgit v1.2.3 (git 2.39.1) at 2024-05-19 20:23:32 +0000