...
- rewrite supplement attribute
- rewrite modify vendor attribute
- rewrite whitelist
- autodetect status-server capability
Milestone 2: DNS (radsecprox 1.9,
...
March 2020)
- internal dns resolver for dynamic discovery
- delayed dns resolving
- dns updates after startup
- specify source address/port per server
- Specify OpenSSL options (Ciphers, Protocol-Version) in tls config
Milestone 3: load-balancing and pooling (radsecproxy 2.0, Mid 2020)
...
- handle multiple client/server certificates, dynamic certificate assignment (subject to openssl support, we might also consider other ssl libraries such as wolfSSL)
- log contents of attributes
- granular logging config
- use tcp/tls connections bidirectionally (send requests in both directions)
-
RFC 6929: Remote Authentication Dial-In User Service (RADIUS) Protocol Extensions
-
RFC 7930: Larger Packets for RADIUS over TCP
- Specify OpenSSL options (Ciphers, Protocol-Version) in tls config