add proxy.conf as a helpful hint

alandekok · alandekok · commit 7281df29ce54 · 2026-02-10T19:50:40.000-05:00
which contains pointers to the real docs, and examples of how
the old proxy.conf has moved to the new configuration.
diff --git a/raddb/all.mk b/raddb/all.mk
@@ -2,7 +2,7 @@
 #  The list of files to install.
 #
 LOCAL_FILES :=		clients.conf dictionary \
-			radiusd.conf trigger.conf panic.gdb
+			radiusd.conf trigger.conf panic.gdb proxy.conf
 
 DEFAULT_SITES :=	default inner-tunnel proxy
 LOCAL_SITES :=		$(addprefix raddb/sites-enabled/,$(DEFAULT_SITES))
diff --git a/raddb/proxy.conf b/raddb/proxy.conf
@@ -0,0 +1,62 @@
+#
+#  = Proxy Configuration
+#
+#  The `proxy.conf` file is not used in version 4.  The functionality
+#  in the old proxy.conf has moved.
+#
+#  For detailed information on upgrading, see:
+#  doc/antora/modules/howto/pages/upgrade/index.adoc
+#
+#  == home_server sections
+#
+#  The `home_server` definitions are now just RADIUS modules.
+#
+#  See `mods-available/radius`.  You can create a module for each home
+#  server.  The configuration is very similar.
+#
+#  You can also send packets to dynamic home servers, without updating
+#  the configuration or adding new modules!.  See the
+#  `%proxy.sendto.ipaddr()` function in `mods-enabled/radius`.
+#
+# == home_server_pool sections
+#
+#  The `home_server_pool` sections are now just virtual modules.
+#
+#  See the `load-balance`, `redundant`, and `redundant-load-balance`
+#  keywords.  Since a `home_server` is now just a RADIUS module, there
+#  is no need to have a separate configuration for load-balanced pools
+#  of home servers!
+#
+#  The `load-balance` and `redundant-load-balance` keywords now also
+#  take an optional parameter which can be used to do keyed load
+#  balancing.
+#
+#  The `instantiate` section is also gone from v4.  Instead, you can
+#  just create a "virtual" module, by putting a `load-balance`
+#  section as a file directly in the `mods-enabled/` directory.
+#
+#  i.e. instead of using this in `proxy.conf`:
+#
+#	home_server_pool foo {
+#		type = load-balance
+#
+#		home_server = radius1
+#		home_server = radius2
+#		home_server = radius3
+#
+#	}
+#
+#  You can instead use this in `mods-enabled/foo`:
+#
+#	load-balance foo {
+#		radius1
+#		radius2
+#		radius3
+#	}
+#
+# == Realms
+#
+#  There is "realm" configuration section.  The `realms` module has also been removed.
+#
+#  @todo - this should really be addressed before a v4 release.
+#
diff --git a/redhat/freeradius.spec b/redhat/freeradius.spec
@@ -1088,6 +1088,7 @@ fi
 %config(noreplace) %{_sysconfdir}/raddb/panic.gdb
 %config(noreplace) %{_sysconfdir}/raddb/radiusd.conf
 %config(noreplace) %{_sysconfdir}/raddb/trigger.conf
+%config(noreplace) %{_sysconfdir}/raddb/proxy.conf
 %config(noreplace) %{_sysconfdir}/raddb/users
 
 %config(noreplace) %{_sysconfdir}/raddb/certs

Original file line number	Diff line number	Diff line change
`@@ -2,7 +2,7 @@`
`2`	`2`	`# The list of files to install.`
`3`	`3`	`#`
`4`	`4`	`LOCAL_FILES := clients.conf dictionary \`
`5`		`- radiusd.conf trigger.conf panic.gdb`
	`5`	`+ radiusd.conf trigger.conf panic.gdb proxy.conf`
`6`	`6`
`7`	`7`	`DEFAULT_SITES := default inner-tunnel proxy`
`8`	`8`	`LOCAL_SITES := $(addprefix raddb/sites-enabled/,$(DEFAULT_SITES))`