Bug #11569: ACLs generated from RADIUS reply attributes have incorrect syntax - pfSense - pfSense bugtracker

Actions

Copy link

Bug #11569

closed

ACLs generated from RADIUS reply attributes have incorrect syntax

Added by Dmitry Bashkarev over 3 years ago. Updated over 3 years ago.

Status:

Resolved

Priority:

Very Low

Assignee:

Renato Botelho

Category:

OpenVPN

Target version:

2.5.1

Start date:

02/27/2021

Due date:

% Done:

Estimated time:

Plus Target Version:

Release Notes:

Default

Affected Version:

2.5.0

Affected Architecture:

Description

FreeRADIUS ACLs:

Cisco-AVPair = "ip:inacl#1=permit tcp 192.168.1.2 0.0.0.0 any",
Cisco-AVPair += "ip:inacl#2=permit tcp 192.168.1.1 0.0.0.0 10.10.128.151 0.0.0.0 eq 80",

Created OpenVPN rules:

pass in quick on ovpns1 inet proto tcp from 192.168.1.2/32to any  
pass in quick on ovpns1 inet proto tcp from 192.168.1.1/32to 10.10.128.151/32port = 80

Expected OpenVPN rules:

pass in quick on ovpns1 inet proto tcp from 192.168.1.2/32 to any
pass in quick on ovpns1 inet proto tcp from 192.168.1.1/32 to 10.10.128.151/32 port = 80

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense

Custom queries

Bug #11569

ACLs generated from RADIUS reply attributes have incorrect syntax

Updated by Dmitry Bashkarev over 3 years ago

Updated by Jim Pingle over 3 years ago

Updated by Renato Botelho over 3 years ago

Updated by Jim Pingle over 3 years ago

Updated by Renato Botelho over 3 years ago

Updated by Jim Pingle over 3 years ago

Updated by Viktor Gurov over 3 years ago