From f5b5e95d5a8919499fb2074d499633b149eac2f4 Mon Sep 17 00:00:00 2001
From: Durand Fabrice <oeufdure@gmail.com>
Date: Tue, 4 Mar 2025 17:50:14 -0500
Subject: [PATCH] Removed the serveur ip as a radius client

---
 lib/pf/services/manager/radiusd_child.pm | 24 ++++++++++++------------
 lib/pfconfig/namespaces/config/Switch.pm |  4 ++--
 raddb/sites-available/dynamic-clients    |  2 --
 3 files changed, 14 insertions(+), 16 deletions(-)

diff --git a/lib/pf/services/manager/radiusd_child.pm b/lib/pf/services/manager/radiusd_child.pm
index c7d8df57473b..258c313f9e5a 100644
--- a/lib/pf/services/manager/radiusd_child.pm
+++ b/lib/pf/services/manager/radiusd_child.pm
@@ -1376,18 +1376,18 @@ EOT
     } else {
         my $file = $install_dir."/raddb/sites-enabled/packetfence-cluster";
         unlink($file);
-        my $management_ip
-        = defined( $management_network->tag('vip') )
-        ? $management_network->tag('vip')
-        : $management_network->tag('ip');
-        $tags{'config'} .= <<"EOT";
-client $management_ip {
-        require_message_authenticator = no
-        ipaddr = $management_ip
-        secret = '$local_secret'
-        shortname = pf
-}
-EOT
+	#my $management_ip
+	#= defined( $management_network->tag('vip') )
+	#? $management_network->tag('vip')
+	#: $management_network->tag('ip');
+	#$tags{'config'} .= <<"EOT";
+	#client $management_ip {
+	#require_message_authenticator = no
+	#ipaddr = $management_ip
+	#secret = '$local_secret'
+	#shortname = pf
+	#}
+	#EOT
     }
     # Ensure raddb/clients.conf.inc exists. radiusd won't start otherwise.
     $tags{'template'} = "$conf_dir/radiusd/clients.conf.inc";
diff --git a/lib/pfconfig/namespaces/config/Switch.pm b/lib/pfconfig/namespaces/config/Switch.pm
index c0e55b5b92b3..8a81012b225c 100644
--- a/lib/pfconfig/namespaces/config/Switch.pm
+++ b/lib/pfconfig/namespaces/config/Switch.pm
@@ -129,8 +129,8 @@ sub build_child {
 
     if ($self->{management_network}) {
         my @management_ips;
-        push @management_ips, $self->{management_network}->tag('vip') if(defined($self->{management_network}->tag('vip')));
-        push @management_ips, $self->{management_network}->tag('ip') if(defined($self->{management_network}->tag('ip')));
+	#push @management_ips, $self->{management_network}->tag('vip') if(defined($self->{management_network}->tag('vip')));
+	#push @management_ips, $self->{management_network}->tag('ip') if(defined($self->{management_network}->tag('ip')));
         push @management_ips, "100.64.0.1";
         foreach my $management_ip (@management_ips){
             $tmp_cfg{$management_ip} = {
diff --git a/raddb/sites-available/dynamic-clients b/raddb/sites-available/dynamic-clients
index 403a4650f325..995b3f7fe116 100755
--- a/raddb/sites-available/dynamic-clients
+++ b/raddb/sites-available/dynamic-clients
@@ -79,7 +79,6 @@ server dynamic_clients {
 	#
 	#  The only contents of the virtual server is the "authorize" section.
 	authorize {
-
 		#
 		#  Put any modules you want here.  SQL, LDAP, "exec",
 		#  Perl, etc.  The only requirements is that the
@@ -141,7 +140,6 @@ SELECT nasname FROM (\
 
             }
         }
-
     if ( &control:PacketFence-NasName != "" && &control:FreeRADIUS-Client-Shortname != "" && &control:FreeRADIUS-Client-Secret != "" && &control:FreeRADIUS-Client-NAS-Type != "" ) {
         ok
     }