Project

General

Profile

Actions

Feature #13843

open

Add ability to properly configure RADIUS captive portal user quotas of 4096MB or more

Added by Reid Linnemann almost 2 years ago. Updated about 1 month ago.

Status:
New
Priority:
Normal
Category:
Captive Portal
Target version:
Start date:
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
25.01
Release Notes:
Default

Description

The current vendor attribute pfSense-Max-Total-Octets used for setting a user's traffic quota is a 32 bit unsigned integer that overflows for quotas in excess of (2^32 - 1) bytes. Resolving this limitation will require defining a new vendor specific attribute that either:

  • Is of type string
  • Has a resolution less granular than octets
  • Provides an additional high word(s) to extend the existing attribute

The FreeRADIUS plugin must be modified to utilize this new attribute when setting total traffic quotas for the user as appropriate, either by direct selection or intuiting from the size of the input value.

The net/pear-Auth_RADIUS port will need to be patched further to decode the new attribute and place it in the returned attributes list.

The captive portal radius auth code will need to be altered to properly use the new attribute if it exists in a response, and populate the user's captive portal database entry with the appropriate 'traffic_quota' value.

Documentation in the captive portal and FreeRADIUS UIs should be modified to make note of the new attribute and how it is to be used so that users with RADIUS services on other hosts may be able to properly configure user records.


Related issues

Related to Regression #13823: RADIUS attribute pfSense-Max-Total-Octets is not parsed correctlyRejectedReid Linnemann

Actions
Actions

Also available in: Atom PDF