> If I remember correctly, portslave by default tries to communicate with a
> RADIUS server using ports 1645 instead of the new standard 1812/1813.
EXELENT!!! that it the port number !
portslave still use 1645
so I put a -p 1645 to the radiusd command
and I get radius and portslave talking between
boht machines 192.168.122.254 RadServer(254 on more) and
192.168.122.253 the RadClient (253 on more)
I can see it doing "tail -f" on the logs
it was fixed this way.
But I cant still authenticate the user.Im using 3
machines for this test .
(10dialclient)<-->(253RadClient)<-->(254RadServer)
w9x Linuxrouter k2.2.16 redhat7.0
2.9.8pre
It is intend to: w9x takes 192.168.122.10 IP by example
here goes my next problem:
IF I use a VALIDuser/WRONGpassword I ged DENIED by 254RadServer
and DENIED by 253RadClient
that is ok. by the least it looks normal
<<BUT>>
IF I use a VALIDuser/VALIDpassword I ged ACCESS by 254RadServer
BUT DENIED by 253RadClient
and 254RadServer keeps saying :
"Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
--- Walking the entire request list ---"
and 253RadClient keeps saying :
Jan 1 02:19:01 myrouter pppd[550]: ul_login(lucas) called
Jan 1 02:19:10 myrouter pppd[550]: [EMAIL PROTECTED] not responding
at this moment you ask . where are the logs ? OK here is ALL
it would be hard .... but I go on.... please be patient.
I will cut in three important parts:
1 start of RADserver and RADclient(portslave)
2 a try with (valid user/ wrong pass )
3 a try with (valid user/ valid pass )
########################11111111#####################
ALL 1 start of RADserver and RADclient(portslave)
########################11111111#####################
########################11111111########
portslave 1 from inittab with "T0:23:respawn:+/usr/sbin/portslave 0"
I ask myself for what is the "+" in inittab path of portslave ??
but it is not the big problem here. so lets continue...
########################11111111########
Jan 1 02:00:39 myrouter port[S0]: portslave started on port 0 (ttyS0)
Jan 1 02:00:40 myrouter port[S0]: chat_expect("")
Jan 1 02:00:40 myrouter port[S0]: chat_expect - got it
Jan 1 02:00:40 myrouter port[S0]: chat_send(\d\dATZ)
Jan 1 02:00:42 myrouter port[S0]: chat_expect(OK\r\n)
Jan 1 02:00:42 myrouter port[S0]: chat_expect - got it
Jan 1 02:00:42 myrouter port[S0]: waiting for RING
########################11111111########
END portslave 1
########################11111111########
########################11111111###############
radiusd 1 from console debug mode
/usr/sbin/radiusd -fxxyz -p 1645
########################11111111###############
Starting - reading configuration files ...
reread_config: reading radiusd.conf
Config: including file: /etc/raddb/proxy.conf
Config: including file: /etc/raddb/clients.conf
Config: including file: /etc/raddb/snmp.conf
Config: including file: /etc/raddb/sql.conf
main: prefix = "/usr"
main: localstatedir = "/var"
main: logdir = "/var/log/radius"
main: libdir = "/usr/lib"
main: radacctdir = "/var/log/radius/radacct"
main: hostname_lookups = no
read_config_files: reading dictionary
read_config_files: reading clients
read_config_files: reading realms
read_config_files: reading naslist
main: max_request_time = 30
main: cleanup_delay = 5
main: max_requests = 1024
main: delete_blocked_requests = 0
main: port = 0
main: allow_core_dumps = no
main: log_stripped_names = yes
main: log_auth = yes
main: log_auth_badpass = yes
main: log_auth_goodpass = yes
main: pidfile = "/var/run/radiusd.pid"
main: bind_address = 192.168.122.254 IP address [192.168.122.254]
main: user = "root"
main: group = "root"
main: usercollide = no
main: lower_user = "no"
main: lower_pass = "no"
main: nospace_user = "no"
main: nospace_pass = "no"
main: proxy_requests = yes
proxy: retry_delay = 5
proxy: retry_count = 3
proxy: synchronous = no
proxy: dead_time = 120
main: debug_level = 0
read_config_files: entering modules setup
Module: Library search path is /usr/lib
Module: Loaded System
unix: cache = no
unix: passwd = "/etc/passwd"
unix: shadow = "/etc/shadow"
unix: group = "/etc/group"
unix: radwtmp = "/var/log/radius/radwtmp"
unix: usegroup = no
Module: Instantiated unix (unix)
Module: Loaded preprocess
preprocess: huntgroups = "/etc/raddb/huntgroups"
preprocess: hints = "/etc/raddb/hints"
preprocess: with_ascend_hack = no
preprocess: ascend_channels_per_line = 23
preprocess: with_ntdomain_hack = no
preprocess: with_specialix_jetstream_hack = no
preprocess: with_cisco_vsa_hack = no
Module: Instantiated preprocess (preprocess)
Module: Loaded realm
realm: format = "suffix"
realm: delimiter = "@"
Module: Instantiated realm (suffix)
Module: Loaded files
files: usersfile = "/etc/raddb/users"
files: acctusersfile = "/etc/raddb/acct_users"
files: compat = "no"
Module: Instantiated files (files)
Module: Loaded detail
detail: detailfile = "/var/log/radius/radacct/%{Client-IP-Address}/detail"
detail: detailperm = 384
detail: dirperm = 493
Module: Instantiated detail (detail)
Module: Loaded radutmp
radutmp: filename = "/var/log/radius/radutmp"
radutmp: perm = 384
radutmp: callerid = yes
Module: Instantiated radutmp (radutmp)
main: smux_password = ""
main: snmp_write_access = no
SMUX connect try 1
Can't connect to SNMP agent with SMUX: Connection refused
Initializing the thread pool...
thread: start_servers = 5
thread: max_servers = 32
thread: min_spare_servers = 3
thread: max_spare_servers = 10
thread: max_requests_per_server = 0
thread: cleanup_delay = 5
Thread 1 waiting to be assigned a request
Thread spawned new child 1. Total threads in pool: 1
Thread spawned new child 2. Total threads in pool: 2
Thread 2 waiting to be assigned a request
Thread spawned new child 3. Total threads in pool: 3
Thread 3 waiting to be assigned a request
Thread 4 waiting to be assigned a request
Thread spawned new child 4. Total threads in pool: 4
Thread spawned new child 5. Total threads in pool: 5
Listening on IP address 192.168.122.254, ports 1645/udp and 1646/udp, with
proxy on 1647/udp.
Ready to process requests.
Thread 5 waiting to be assigned a request
CHILD: exit on signal (2)
########################11111111###############
END radiusd 1
########################11111111###############
########################11111111#####################
END ALL 1 start of RADserver and RADclient(portslave)
########################11111111#####################
########################22222222#####################
ALL 2 valid user/ wrong pass
########################22222222#####################
########################22222222########
portslave 2
########################22222222########
Jan 1 02:05:42 myrouter port[S0]: chat_expect(RING)
Jan 1 02:05:42 myrouter port[S0]: chat_expect - got it
Jan 1 02:05:42 myrouter port[S0]: chat_expect("")
Jan 1 02:05:42 myrouter port[S0]: chat_expect - got it
Jan 1 02:05:42 myrouter port[S0]: chat_send(ATA)
Jan 1 02:05:42 myrouter port[S0]: chat_expect(CONNECT@)
Jan 1 02:06:02 myrouter port[S0]: chat_expect - got it
Jan 1 02:06:03 myrouter port[S0]: Connected - waiting for login
Jan 1 02:06:05 myrouter port[S0]: Detected login for AutoPPP
Jan 1 02:06:05 myrouter port[S0]: PPP frames detected - switching to PPP
mode
Jan 1 02:06:05 myrouter kernel: registered device ppp0
Jan 1 02:06:05 myrouter syslog: ul_init(/dev/ttyS0) called
Jan 1 02:06:06 myrouter pppd[544]: pppd 2.3.5 started by root, uid 0
Jan 1 02:06:06 myrouter pppd[544]: ul_ppp_established(0) called
Jan 1 02:06:06 myrouter pppd[544]: Using interface ppp0
Jan 1 02:06:06 myrouter pppd[544]: Connect: ppp0 <--> /dev/ttyS0
Jan 1 02:06:09 myrouter pppd[544]: ul_login(lucas) called
Jan 1 02:06:09 myrouter pppd[544]: authentication failed (lucas/dddddddddd)
Jan 1 02:06:09 myrouter pppd[544]: PAP login failure for lucas
Jan 1 02:06:09 myrouter pppd[544]: Fatal signal 11
Jan 1 02:06:09 myrouter pppd[544]: ul_ppp_disestablished(0) called
Jan 1 02:06:10 myrouter pppd[544]: Exit.
Jan 1 02:06:10 myrouter port[S0]: portslave started on port 0 (ttyS0)
Jan 1 02:06:10 myrouter port[S0]: chat_expect("")
Jan 1 02:06:10 myrouter port[S0]: chat_expect - got it
Jan 1 02:06:10 myrouter port[S0]: chat_send(\d\dATZ)
Jan 1 02:06:12 myrouter port[S0]: chat_expect(OK\r\n)
Jan 1 02:06:22 myrouter port[S0]: chat_expect(OK^M ): timeout (retry)
Jan 1 02:06:22 myrouter port[S0]: chat_send(ATZ)
Jan 1 02:06:22 myrouter port[S0]: chat_expect(OK\r\n)
Jan 1 02:06:22 myrouter port[S0]: chat_expect - got it
Jan 1 02:06:22 myrouter port[S0]: waiting for RING
########################22222222########
END portslave 2
########################22222222########
########################22222222###############
radiusd 2
########################22222222###############
Starting - reading configuration files ...
...
###I cuuted becose is the same init ###
...
Listening on IP address 192.168.122.254, ports 1645/udp and 1646/udp, with
proxy on 1647/udp.
Ready to process requests.
rad_recv: Access-Request packet from host 192.168.122.253:1026, id=1,
length=75
Thread 1 assigned request 0
SMUX connect try 2
Can't connect to SNMP agent with SMUX: Connection refused
--- Walking the entire request list ---
Threads: total/active/spare threads = 5/1/4
Waking up in 31 seconds...
Thread 1 handling request 0, (1 handled so far)
User-Name = "lucas"
Password = "\2677\237\331\226\332G\034F\242!1\332B1\366"
NAS-IP-Address = 0.0.0.0
NAS-Port = 0
NAS-Port-Type = Async
Framed-Protocol = PPP
Service-Type = Framed-User
modcall: entering group authorize
modcall[authorize]: module "preprocess" returns ok
modcall[authorize]: module "suffix" returns ok
users: Matched DEFAULT at 144
users: Matched DEFAULT at 163
users: Matched DEFAULT at 175
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
rad_check_password: Found Auth-Type System
auth: type "System"
modcall: entering group authenticate
modcall[authenticate]: module "unix" returns reject
modcall: group authenticate returns reject
auth: Failed to validate the user.
Login incorrect: [lucas/dddddddddd] (from nas dialup port 0)
Sending Access-Reject of id 1 to 192.168.122.253:1026
Finished request 0
Going to the next request
Thread 1 waiting to be assigned a request
CHILD: exit on signal (2)
########################22222222###############
END radiusd 2
########################22222222###############
########################22222222###############
w9x says: error 629
You have been disconect...
Click to try again...
Ha sido desconectado del equipo al que llamó.
Haga doble clic en la conexión para volver a intentarlo.
########################22222222###############
########################22222222#####################
END ALL 2 valid user/ wrong pass
########################22222222#####################
########################33333333#####################
ALL 3 valid user/ valid pass
########################33333333#####################
########################33333333########
portslave 3
########################33333333########
Jan 1 02:18:34 myrouter port[S0]: chat_expect(RING)
Jan 1 02:18:34 myrouter port[S0]: chat_expect - got it
Jan 1 02:18:34 myrouter port[S0]: chat_expect("")
Jan 1 02:18:34 myrouter port[S0]: chat_expect - got it
Jan 1 02:18:34 myrouter port[S0]: chat_send(ATA)
Jan 1 02:18:34 myrouter port[S0]: chat_expect(CONNECT@)
Jan 1 02:18:54 myrouter port[S0]: chat_expect - got it
Jan 1 02:18:55 myrouter port[S0]: Connected - waiting for login
Jan 1 02:18:57 myrouter port[S0]: Detected login for AutoPPP
Jan 1 02:18:57 myrouter port[S0]: PPP frames detected - switching to PPP
mode
Jan 1 02:18:58 myrouter syslog: ul_init(/dev/ttyS0) called
Jan 1 02:18:58 myrouter pppd[550]: pppd 2.3.5 started by root, uid 0
Jan 1 02:18:58 myrouter pppd[550]: ul_ppp_established(0) called
Jan 1 02:18:58 myrouter pppd[550]: Using interface ppp0
Jan 1 02:18:58 myrouter pppd[550]: Connect: ppp0 <--> /dev/ttyS0
Jan 1 02:19:01 myrouter pppd[550]: ul_login(lucas) called
Jan 1 02:19:10 myrouter pppd[550]: [EMAIL PROTECTED] not responding
Jan 1 02:19:28 myrouter last message repeated 6 times
Jan 1 02:19:31 myrouter pppd[550]: Radius server 192.168.122.254 not
responding
Jan 1 02:19:31 myrouter pppd[550]: user lucas logged in
Jan 1 02:19:31 myrouter pppd[550]: LCP terminated by peer
Jan 1 02:19:32 myrouter pppd[550]: Hangup (SIGHUP)
Jan 1 02:19:32 myrouter pppd[550]: Modem hangup
Jan 1 02:19:32 myrouter pppd[550]: ul_logout() called
Jan 1 02:19:41 myrouter pppd[550]: [EMAIL PROTECTED] not responding
Jan 1 02:19:59 myrouter last message repeated 6 times
Jan 1 02:20:02 myrouter pppd[550]: Radius server 192.168.122.254 not
responding
Jan 1 02:20:02 myrouter pppd[550]: Connection terminated.
Jan 1 02:20:02 myrouter pppd[550]: ul_ppp_disestablished(0) called
Jan 1 02:20:02 myrouter pppd[550]: ul_ppp_disestablished(0) called
Jan 1 02:20:03 myrouter pppd[550]: Exit.
Jan 1 02:20:03 myrouter port[S0]: portslave started on port 0 (ttyS0)
Jan 1 02:20:03 myrouter port[S0]: chat_expect("")
Jan 1 02:20:03 myrouter port[S0]: chat_expect - got it
Jan 1 02:20:03 myrouter port[S0]: chat_send(\d\dATZ)
Jan 1 02:20:05 myrouter port[S0]: chat_expect(OK\r\n)
Jan 1 02:20:05 myrouter port[S0]: chat_expect - got it
Jan 1 02:20:05 myrouter port[S0]: waiting for RING
########################33333333########
END portslave 3
########################33333333########
########################33333333###############
radiusd 3
########################33333333###############
Starting - reading configuration files ...
...
###I cuuted becose is the same init ###
...
Ready to process requests.
rad_recv: Access-Request packet from host 192.168.122.253:1026, id=2,
length=75
Thread 1 assigned request 0
SMUX connect try 2
Can't connect to SNMP agent with SMUX: Connection refused
--- Walking the entire request list ---
Threads: total/active/spare threads = 5/1/4
Waking up in 31 seconds...
Thread 1 handling request 0, (1 handled so far)
User-Name = "lucas"
Password = "f\224\247\202\205\304\021\035\2653{T%\217u"
NAS-IP-Address = 0.0.0.0
NAS-Port = 0
NAS-Port-Type = Async
Framed-Protocol = PPP
Service-Type = Framed-User
modcall: entering group authorize
modcall[authorize]: module "preprocess" returns ok
modcall[authorize]: module "suffix" returns ok
users: Matched DEFAULT at 144
users: Matched DEFAULT at 163
users: Matched DEFAULT at 175
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
rad_check_password: Found Auth-Type System
auth: type "System"
modcall: entering group authenticate
modcall[authenticate]: module "unix" returns ok
modcall: group authenticate returns ok
Login OK: [lucas/hidden] (from nas dialup port 0)
Sending Access-Accept of id 2 to 192.168.122.253:1026
Framed-IP-Address = 255.255.255.254
Framed-MTU = 576
Service-Type = Framed-User
Framed-Protocol = PPP
Framed-Compression = Van-Jacobson-TCP-IP
Finished request 0
Going to the next request
Thread 1 waiting to be assigned a request
Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
SMUX connect try 3
Can't connect to SNMP agent with SMUX: Connection refused
rl_next: returning NULL
Waking up in 31 seconds...
Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
--- Walking the entire request list ---
Threads: total/active/spare threads = 5/0/5
Waking up in 3 seconds...
--- Walking the entire request list ---
Cleaning up request 0 ID 2 with timestamp 3c09bffd
Nothing to do. Sleeping until we see a request.
Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
--- Walking the entire request list ---
Nothing to do. Sleeping until we see a request.
Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
--- Walking the entire request list ---
Nothing to do. Sleeping until we see a request.
Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
--- Walking the entire request list ---
Nothing to do. Sleeping until we see a request.
Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
--- Walking the entire request list ---
Nothing to do. Sleeping until we see a request.
Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
--- Walking the entire request list ---
Nothing to do. Sleeping until we see a request.
Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
--- Walking the entire request list ---
Nothing to do. Sleeping until we see a request.
Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
--- Walking the entire request list ---
Nothing to do. Sleeping until we see a request.
Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
--- Walking the entire request list ---
Nothing to do. Sleeping until we see a request.
Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
--- Walking the entire request list ---
Nothing to do. Sleeping until we see a request.
Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
--- Walking the entire request list ---
Nothing to do. Sleeping until we see a request.
Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
--- Walking the entire request list ---
Nothing to do. Sleeping until we see a request.
Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
--- Walking the entire request list ---
Nothing to do. Sleeping until we see a request.
Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
--- Walking the entire request list ---
Nothing to do. Sleeping until we see a request.
Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
--- Walking the entire request list ---
Nothing to do. Sleeping until we see a request.
Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
--- Walking the entire request list ---
Nothing to do. Sleeping until we see a request.
Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
--- Walking the entire request list ---
Nothing to do. Sleeping until we see a request.
Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
--- Walking the entire request list ---
Nothing to do. Sleeping until we see a request.
Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
--- Walking the entire request list ---
Nothing to do. Sleeping until we see a request.
CHILD: exit on signal (2)
########################33333333###############
END radiusd 3
########################33333333###############
w9x says: 718
host can't establish...
check password and try again...
El equipo al que está llamando no puede establecer una conexión de Acceso
telefónico a redes.
Compruebe la contraseña y vuelva a intentarlo.
########################33333333#####################
END ALL 3 valid user/ valid pass
########################33333333#####################
To here LOGS
now comes... configuration files of portslave 1 and radiusd 2
####excuse me for sending so long mail to the list ######
#### I do not know other shape to do it #################
##### 1 portslave conf /etc/portslave/pslave.conf #####
## I have not found more information to configuring ###
## this file that wich comes in itself ################
# Version: 1.17 03-Nov-1998
##is not too old for 2.9.8pre linuxrouter ? ####
conf.hostname dialup.uucp.com
#conf.ipno 192.168.42.21
conf.lockdir /var/lock
##here it were /usr/local/bin/rlogin-radius ##
##i do not why, since Im using an LPR package ##
conf.rlogin /usr/bin/rlogin-radius
##here it were /usr/local/sbin/pppd-radius too.. ##
conf.pppd /usr/sbin/pppd-radius
conf.telnet /usr/bin/telnet
conf.locallogins 1
conf.syslog
conf.facility 6
conf.stripnames 0
all.debug 1
all.authtype radius
all.authhost1 192.168.122.254
all.accthost1 192.168.122.254
all.secret dialuppass
#all.protocol rlogin
#all.host shellhost.someisp.com
all.ipno 192.168.122.253
all.netmask 255.255.255.0
all.mtu 1500
all.issue \n\
Cistron Internet Services \n\
POP Alphen aan den Rijn \n\
Welcome to terminal server %h port S%p\n
all.prompt Cistron login:
all.term vt100
all.sysutmp 1
all.syswtmp 0
all.porttype 0
all.speed 115200
all.initchat "" \d\dATZ OK\r\n-ATZ-OK\r\n
all.waitfor RING
all.answer "" ATA CONNECT@
all.aa 0
all.checktime 60
all.checkchat "" AT OK\r\n
all.flow hard
all.dcd 1
all.autoppp proxyarp modem asyncmap 0 %i: \
noipx noccp login auth require-pap refuse-chap \
mtu %t mru %t \
#here it comes ms-addr but gives ERROR ########
# ms-addr 192.168.1.1 ms-addr 192.168.1.2 \
uselib /usr/lib/libpsr.so
all.pppopt proxyarp modem asyncmap 0 %i:%j \
noipx noccp \
mtu %t mru %t netmask %m idle %I \
# ms-addr 192.168.1.1 ms-addr 192.168.1.2
uselib /usr/lib/libpsr.so
s0.tty ttyS0
s0.ipno 192.168.122.252
s0.protocol ppp
s1.tty ttyS1
s2.tty ttyS2
s3.tty ttyS3
s4.tty ttyS4
s5.tty ttyS5
s6.tty ttyS6
s7.tty ttyS7
s8.tty ttyS8
s9.tty ttyS9
s10.tty ttyS10
s11.tty ttyS11
s12.tty ttyS12
s13.tty ttyS13
s14.tty ttyS14
s15.tty ttyS15
##END 1 portslave conf /etc/portslave/pslave.conf ####
##### 2 radiusd conf /etc/raddb/radiusd.conf #####
# Stuff from autoconf
prefix = /usr
exec_prefix = ${prefix}
sysconfdir = /etc
localstatedir = /var
sbindir = ${exec_prefix}/sbin
logdir = ${localstatedir}/log/radius
libdir = ${exec_prefix}/lib
raddbdir = ${sysconfdir}/raddb
radacctdir = ${logdir}/radacct
# Location of config and logfiles.
confdir = ${raddbdir}
run_dir = ${localstatedir}/run
pidfile = ${run_dir}/radiusd.pid
user = root
group = root
max_request_time = 30
delete_blocked_requests = no
cleanup_delay = 5
max_requests = 1024
bind_address = 192.168.122.254
port = 0
checkrad = ${sbindir}/checkrad
hostname_lookups = no
allow_core_dumps = no
regular_expressions = yes
extended_expressions = yes
log_stripped_names = yes
log_auth = yes
log_auth_badpass = yes
log_auth_goodpass = yes
usercollide = no
lower_user = no
lower_pass = no
nospace_user = no
nospace_pass = no
proxy_requests = yes
$INCLUDE ${confdir}/proxy.conf
$INCLUDE ${confdir}/clients.conf
$INCLUDE ${confdir}/snmp.conf
thread pool {
start_servers = 5
max_servers = 32
min_spare_servers = 3
max_spare_servers = 10
max_requests_per_server = 0
}
modules {
pam {
pam_auth = radiusd
}
unix {
cache = no
passwd = /etc/passwd
shadow = /etc/shadow
group = /etc/group
radwtmp = ${logdir}/radwtmp
}
ldap {
server = "ldap.your.domain"
basedn = "o=My Org,c=UA"
filter = "(uid=%u)"
access_group = "cn=clients,ou=dialup,o=My Org,c=UA"
access_attr = "dialupAccess"
dictionary_mapping = ${raddbdir}/ldap.attrmap
timeout = 4
timelimit = 3
net_timeout = 1
}
realm suffix {
format = suffix
delimiter = "@"
}
realm realmslash {
format = prefix
delimiter = "/"
}
realm realmpercent {
format = suffix
delimiter = "%"
}
preprocess {
huntgroups = ${confdir}/huntgroups
hints = ${confdir}/hints
with_ascend_hack = no
ascend_channels_per_line = 23
with_ntdomain_hack = no
with_specialix_jetstream_hack = no
with_cisco_vsa_hack = no
}
files {
usersfile = ${confdir}/users
acctusersfile = ${confdir}/acct_users
compat = no
}
fastusers {
usersfile = ${confdir}/users_fast
hashsize = 1000
compat = no
hash_reload = 600
}
detail {
detailfile = ${radacctdir}/%{Client-IP-Address}/detail
detailperm = 0600
}
acct_unique {
key = "User-Name, Acct-Session-Id, NAS-IP-Address, Client-IP-Address,
NAS-Port-Id"
}
$INCLUDE ${confdir}/sql.conf
radutmp {
filename = ${logdir}/radutmp
perm = 0600
callerid = "yes"
}
radutmp sradutmp {
filename = ${logdir}/sradutmp
perm = 0644
callerid = "no"
}
attr_filter {
attrsfile = ${confdir}/attrs
}
counter {
filename = ${raddbdir}/db.counter
key = User-Name
count-attribute = Acct-Session-Time
reset = daily
counter-name = Daily-Session-Time
check-name = Max-Daily-Session
allowed-servicetype = Framed-User
cache-size = 5000
}
always fail {
rcode = fail
}
always reject {
rcode = reject
}
always ok {
rcode = ok
simulcount = 0
mpp = no
}
example {
boolean = yes
integer = 16
string = "This is an example configuration string"
ipaddr = 127.0.0.1
mysubsection {
anotherinteger = 1000
deeply nested {
string = "This is a different string"
}
}
}
}
authorize {
preprocess
# counter
# attr_filter
suffix
files
}
authenticate {
# pam
unix
}
preacct {
suffix
files
preprocess
}
accounting {
# acct_unique
detail
# counter
unix
radutmp
# sradutmp
}
session {
radutmp
}
##END 2 radiusd conf /etc/raddb/radiusd.conf #####
###and clients file have:
192.168.122.253 dialuppass
###end clients
###and naslist file have:
192.168.122.253 dialup portslave
###end naslist
I excuse me again for the long mail
If you need other info please ask me !
If you are runing the same way as my. Can you send me
your configuration files ?
thank you in advance !
----- Original Message -----
From: namor <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, November 29, 2001 12:52 PM
Subject: Re: how to Test my first freeradius install ?
([EMAIL PROTECTED] responding)
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
