Quoting t...@kalik.net:
Using rlm_perl, if a request is received and I want to accept the
login without performing any normal auth (in authorize()), what would
I need to return?
Auth-Type Accept.
Thanks Ivan. I eventually figured out by trial and error that the
following needs to be
as your suggestion the Post-Auth-Type REJECT. but i dont know where to put it
so put it at the end of the radiusd.conf
the radiusd.conf
$INCLUDE sites-enabled/
Post-Auth-Type REJECT {
h323-return-code := h323-return-code=2
}
but it doesnt work :(
Hi,
I am using freeradius 2.1.3 and i try to enable Wimax support.
I built the wimax module and i placed it at the post-auth section of
sites-enabled/default file.
I use EAP-TTLS with mschap2.
At the Access-Accept packet from Freeradius to the ASN-GW i use i can't
see any WIMAX VSA's.
There
Dimitris Theofilatos wrote:
[wimax] MIP-RK =
0xf65a926b20cd57553c06a7a4880bf8aa08eaf40a6426edb4653d4d5e8f7eed3ff9ad4b9fedf9c30d0ea99fef7ae9bfe60afcbe73e56cf41b43d74427ce7f7196
[wimax] MIP-SPI = 6f74f1eb
[wimax] WARNING: WiMAX-MN-NAI was not found in the request or in the reply.
[wimax]
postauth_query = INSERT INTO ${postauth_table} \
(username, pass, reply, rejectreason, authdate) \
VALUES ( \
'%{User-Name}', \
'%{%{User-Password}:-%{Chap-Password}}', \
Hello All;
I just installed freeradius on fedora 10. freeradius version is
freeradius-2.1.1-2.fc10.i386 i also installed radius mysql packages. After
basic set up I configured radius with mysql. All thing are working fine but
i am not able to resolve sqlcounter issue. I have defined counters in
The NAS has
to implement session disconnection after the requisite time/byte limit.
What NAS are you using?
Padam
pushpraj nimbalkar wrote:
Hello All;
I just installed freeradius on fedora 10. freeradius version is
"freeradius-2.1.1-2.fc10.i386" i also installed radius mysql packages.
Hello,
i'm trying to compile Freeradius 2.1.3 under Cygwin.
I used './configure --without-rlm_perl' and './configure --without-rlm_perl
--without-snmp --enable-static' which compile successfully.
I'm using a fresh cygwin installation and 'make install' works great.
But when i start 'radiusd
Thanks for reply,
I am using linksys WRT54GL router with DD-WRT and Chillispot.
SQLCounter works only when radacct tables contains accounting
information of logging user.
On Fri, Dec 19, 2008 at 5:08 PM, Padam J Singh padam.si...@inventum.cc wrote:
The NAS has to implement session
Hi folks.
Looking a tad at the counters and how they get incremented I see the
following:
Sending Access-Accept of id 20 to 127.0.0.1 port 32772
FreeRADIUS-Total-Access-Requests = 0
FreeRADIUS-Total-Access-Accepts = 36
FreeRADIUS-Total-Access-Rejects = 0
Hi,
I am trying to parse accounting logs of cablelabs format. Some of the
attributes are octet strings which in itself contain
detailed information that is printed as a octet string by freeradius.
e.g.:
CableLabs-Event-Message = 0x484153482830783833326632306329
pushpraj nimbalkar wrote:
Thanks for reply,
I am using linksys WRT54GL router with DD-WRT and Chillispot.
SQLCounter works only when radacct tables contains accounting
information of logging user.
Please also post the reply sent back to the NAS - run the radius server
in debug
I am using linksys WRT54GL router with DD-WRT and Chillispot.
SQLCounter works only when radacct tables contains accounting
information of logging user.
It should still limit to 30 minutes if user has no record. Post the debug
of the request for a user that has no radacct entries.
Ivan Kalik
Sir,
when user first connects following reply sent to nas
Sending Access-Accept of id 0 to 192.168.2.5 port 2051
Idle-Timeout := 600
Acct-Interim-Interval := 60
and when same user connects 2nd time following reply is sent
Sending Access-Accept of id 0 to 192.168.2.5 port 2051
/radacct/192.168.2.5/detail-20081219
[detail] /var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d
expands to /var/log/radius/radacct/192.168.2.5/detail-20081219
[detail]expand: %t - Fri Dec 19 18:31:48 2008
++[detail] returns ok
++[unix] returns ok
[radutmp] expand: /var/log
Of course, I'm silly enough to expect others know what versions I'm running
.. *doh*
This is with FreeRADIUS 2.1.1 compiled from source.
//anders
2008/12/19 Anders Holm anders.h...@sysadmin.ie
Hi folks.
Looking a tad at the counters and how they get incremented I see the
following:
I downloaded the last stable version
(alandekok-freeradius-server-9434abb910292e431b635235bdf591dc99d02f9c.tar.gz)
but i get the same log from freeradius.
Dimitris Theofilatos wrote:
[wimax] MIP-RK =
Post the whould debug.
Ivan Kalik
Kalik Informatika ISP
Dana 19/12/2008, Dimitris Theofilatos t...@intracom.gr piše:
I downloaded the last stable version
(alandekok-freeradius-server-9434abb910292e431b635235bdf591dc99d02f9c.tar.gz)
but i get the same log from freeradius.
Dimitris Theofilatos
sqlcounter_expand: 'SELECT SUM(AcctSessionTime) FROM radacct WHERE
UserName='%{User-Name}''
[noresetcounter] expand: SELECT SUM(AcctSessionTime) FROM radacct
WHERE UserName='%{User-Name}' - SELECT SUM(AcctSessionTime) FROM
radacct WHERE UserName='jose'
sqlcounter_expand: '%{sql:SELECT
The log from radiusd is
wimax] MIP-RK =
0x70947b29de553a16618e930768649d847bd67afca0963afff8c772f8c225affcb92bb92a99bc7d6d424e956a4f1a2a6da7b2391b10b022af1bea29962406b856
[wimax] MIP-SPI = a7203fb8
[wimax] WARNING: WiMAX-MN-NAI was not found in the request or in the reply.
[wimax] WARNING: We
Post the whole debug - from the request to the response.
Ivan Kalik
Kalik Informatika ISP
Dana 19/12/2008, Dimitris Theofilatos t...@intracom.gr piše:
The log from radiusd is
wimax] MIP-RK =
Dimitris Theofilatos wrote:
I downloaded the last stable version
(alandekok-freeradius-server-9434abb910292e431b635235bdf591dc99d02f9c.tar.gz)
That's not the stable branch. That's the main branch.
Anyways... it looks like github doesn't support downloading the tar
file of the stable
Hi Folks,
Trying to look at the problem in another way.
I am inclined to think that I may have to write a module to parse the
octet string and populate the attributes into the AVP list. Assuming that
this is feasible, I would like to parse before the logging happens (via the
detail module).
To
I am inclined to think that I may have to write a module to parse the
octet string and populate the attributes into the AVP list. Assuming that
this is feasible, I would like to parse before the logging happens (via the
detail module).
Run perl before detail. Put new attributes on the $RAD_REPLY
The \'s were in the example file, I just left them.
Turns out that it was my comment in the middle of the SQL as you mentioned.
Weee.. Thanks, removing the comment fixed it.
I guess I just figured a comment was a comment regardless of where it was or
on what line, did not know it would be a
In a nutshell here is what I need to do, the long story is after the short
version if you are interested.
Short version##
I want to restrict dialup users or a group of dialup users living within my
MySQL tables to certain clients or list of clients.
So when a user who is only
Todd R. wrote:
Weee.. Thanks, removing the comment fixed it.
Good.
I guess I just figured a comment was a comment regardless of where it was or
on what line, did not know it would be a problem.
It was in the middle of a string:
hello = ...
# stuff
...
That
Can someone explain to me why it always seems that the word DEFAULT is
before many lines or rules etc. within all the FR configs?
Since I am trying to learn as much as possible about FR, I just thought I
would ask this question I am sure most of you will consider a really stupid
question :)
Doh!, that's true.. The \ on the previous line continued the string rather
than making it a new line..
Thanks! I knew that ;) He he..
Regards,
Todd R.
-Original Message-
From:
freeradius-users-bounces+tjrlist=lightwavetech@lists.freeradius.org
Joachim Altenhein wrote:
i'm trying to compile Freeradius 2.1.3 under Cygwin.
I haven't tried to do that in years...
I used './configure --without-rlm_perl' and './configure --without-rlm_perl
--without-snmp --enable-static' which compile successfully.
I'm using a fresh cygwin
You would use the Calling-Station-ID or Called-Station-ID checks in
the groupcheck table.
On Fri, Dec 19, 2008 at 9:48 AM, Todd R. tjrl...@lightwavetech.com wrote:
In a nutshell here is what I need to do, the long story is after the short
version if you are interested.
Short
Hello Alan an members of the list,
We are using freeradius and we have the following situation
authenticating in wireless access
A single user have records on radcheck of Password and
Calling-Station-Id but when this user try to logging the server
response :
Fri Dec 19 13:24:41 2008 : Info:
Hi Todd,
I am using FR MySQL and have the following in my radgroupcheck table to
limit my dialup customers from connecting to my dsl aggregators. I have
created different Groups (dialup dsl for simplicity). In the dialup group
I have rule that reads:
ID: xxx
GroupName: dialup
Attribute:
Hmm, but RAD_REPLY is the list that goes back, no?
I have perl before detail.
-a
On Fri, Dec 19, 2008 at 12:17 PM, t...@kalik.net wrote:
I am inclined to think that I may have to write a module to parse the
octet string and populate the attributes into the AVP list. Assuming that
this is
I am out of the office until 05.01.2009.
In urgent cases contact HSS via eMail ad...@ews.biotronik.de, or via
telephone -4616.
Note: This is an automated response to your message Re: Restricting
dialup users to certain client definitions only sent on 12/19/08 19:26:08.
This is the only
Hi all,
does anybody know where can I find the libradiusclient 64-bit ?
I am using CentOs 64 bits and after googling around I couldn't find it.
thanks
J Santos
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Jeff List,
Thanks, this seems fairly simple so I gave a whirl.. For the last two hours
or so :( No joy..
Of course, it's entirely possible I totally missed your point.
Here is what I tried:
I have a user called user who is assigned to the dialusers-t user group
in the radusergroup table.
I
Just a clarification on my earlier response. I mentioned that I put the rule
in radcheck when in fact I was putting it in radgroupcheck.
Thing is, when I put it in radcheck it works. When I put the same rule in
radgroupcheck, it fails.
Example:
radcheck Table: (This works and properly rejects
Yes, sorry $RAD_REQUEST. Accounting request is logged in detail.
Ivan Kalik
Kalik Informatika ISP
Dana 19/12/2008, al pat alps@gmail.com piše:
Hmm, but RAD_REPLY is the list that goes back, no?
I have perl before detail.
-a
On Fri, Dec 19, 2008 at 12:17 PM, t...@kalik.net wrote:
I am
Although in radcheck this user has the following information:
+-+--+++---+
| id | UserName | Attribute | op | Value |
|
+-+--+++---+
| 116 | jvidal | User-Password
Can't post now but, yes I do see the groups table being queried
--Original Message--
From: t...@kalik.net
Sender: freeradius-users-bounces+tjrlist=lightwavetech@lists.freeradius.org
To: FreeRadius users mailing list
ReplyTo: FreeRadius users mailing list
Subject: RE: Restricting dialup
On Fri, Dec 19, 2008 at 8:28 PM, t...@kalik.net wrote:
sqlcounter_expand: 'SELECT SUM(AcctSessionTime) FROM radacct WHERE
UserName='%{User-Name}''
[noresetcounter] expand: SELECT SUM(AcctSessionTime) FROM radacct
WHERE UserName='%{User-Name}' - SELECT SUM(AcctSessionTime) FROM
radacct
42 matches
Mail list logo
