summaryrefslogtreecommitdiffstats
path: root/usr/local
diff options
context:
space:
mode:
authorErmal <eri@pfsense.org>2012-06-05 19:24:16 +0000
committerErmal <eri@pfsense.org>2012-06-05 19:24:16 +0000
commit477cc2bc24b4b0a36b2bc765c1bb4d79a2eacaed (patch)
tree22a986b5712f3fd1f0b4d1ee8a66d2e939500c04 /usr/local
parent22968348b19666ec6665779f926266c88604f5ee (diff)
downloadpfsense-477cc2bc24b4b0a36b2bc765c1bb4d79a2eacaed.zip
pfsense-477cc2bc24b4b0a36b2bc765c1bb4d79a2eacaed.tar.gz
Import OpenVPN cisco style radius attributes applying policy to logged in users. Feature #2100
Diffstat (limited to 'usr/local')
-rwxr-xr-xusr/local/sbin/openvpn.attributes.sh16
1 files changed, 16 insertions, 0 deletions
diff --git a/usr/local/sbin/openvpn.attributes.sh b/usr/local/sbin/openvpn.attributes.sh
new file mode 100755
index 0000000..b88d1df
--- /dev/null
+++ b/usr/local/sbin/openvpn.attributes.sh
@@ -0,0 +1,16 @@
+#!/bin/sh
+
+echo $script_type > /tmp/script
+if [ "$script_type" = "client-connect" ]; then
+ if [ -f /tmp/$common_name ]; then
+ /bin/cat /tmp/$common_name > $1
+ /bin/rm /tmp/$common_name
+ fi
+elif [ "$script_type" = "client-disconnect" ]; then
+ command="/sbin/pfctl -a 'openvpn/$common_name' -F rules"
+ eval $command
+ /sbin/pfctl -k $ifconfig_pool_remote_ip
+ /sbin/pfctl -K $ifconfig_pool_remote_ip
+fi
+
+exit 0
OpenPOWER on IntegriCloud