Project

General

Profile

Feature #2573

Captive Portal support of RADIUS POD (Packet of Disconnect)

Added by Dim Hatz almost 8 years ago. Updated over 3 years ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
Captive Portal
Target version:
-
Start date:
08/02/2012
Due date:
% Done:

0%

Estimated time:

Description

AFAIK pfsense CP NAS doesn't support RADIUS POD, a feature that is supported by most NAS like Cisco and Mikrotik, and most Radius managers.

For more on POD check http://wiki.freeradius.org/Disconnect-Messages

Disconnect Messages

A Disconnect Message (sometimes known as Packet of Disconnect) is and unsolicited RADIUS Disconnect-Request packet (A special type of Change-of-Authorization packet) sent to a NAS in order to terminate a user session and discard all associated session context. The Disconnect-Request packet is sent to UDP port 3799 (Although many NAS use port 1700 instead), and is intended to be used in situations where the AAA server wants to disconnect the user after the session has been accepted by the RADIUS Access-Accept packet.

Instead pfsense's CP offers an option to re-authenticate users every minute, which probably doesn't scale too well.

History

#1 Updated by Muhammed Ismail over 3 years ago

POD is useful when replacing Expiration date in Pfsense user manager.
The Option " re-authenticate users every minute" is useful in counting octets for the client.
but i could not get 2 attributes to be working which i guess depends on POD.
WISPr-Session-Terminate-Time and WISPr-Session-Terminate-End-Of-Day

I wonder if there is a compatible attribute to accomplish this!
or POD must be enabled?

Also available in: Atom PDF