server packetfence-tunnel {

authorize {	
        suffix
        eap {
                ok = return
        }
        files
        expiration
        logintime
}

authenticate {
        Auth-Type MS-CHAP {
                mschap
        }
        eap
}

session {
        radutmp
}

post-auth {
        exec
        Post-Auth-Type REJECT {
                attr_filter.access_reject
        }
        perl
}

pre-proxy {
}

post-proxy {
        eap
}
} # packetfence-tunnel server block
