thanx john:
yes i can run many instances of radclient. But i want on instance of
radclient, that can send parallel requests to radius server.
On Wed, Feb 13, 2013 at 12:56 PM, Johan Meiring
jmeir...@pcservices.co.zawrote:
On 2013/02/12 04:45 PM, Alan DeKok wrote:
I tried to use Rad Client
On 2013/02/12 04:45 PM, Alan DeKok wrote:
I tried to use Rad Client to send requests in Parallel, but i wasn't
succeed. Could you please help me out to send parallel requests to proxy
server???
Am I missing something, or can you not simply run more than once instance of
radclient on more
On 13.02.2013 09:03, Muhammad Nadeem wrote:
thanx john:
yes i can run many instances of radclient. But i want on instance of
radclient, that can send parallel requests to radius server.
simply use
echo User-Name=001AAD3F8165,
NAS-IP-Address=10.192.100.4|radclient -p 100 -c 1
On Wed, Feb 13, 2013 at 4:33 PM, Muhammad Nadeem mnadeem8...@gmail.com wrote:
for load testing. But when i use this with -p (to send requests in
parallel), it only send one packet. here is the command out put
[root@billing ~]# echo User-Name=001AAD3F8165,
NAS-IP-Address=10.192.100.4|radclient
I used -c 1, and omit -p,, result was the same . 1 users were
authenticated in 23 seconds :) . So i think no difference of using -p and
-c together ?? M I right??
On Wed, Feb 13, 2013 at 1:32 PM, Muhammad Nadeem mnadeem8...@gmail.comwrote:
will it send 1 parallel requests to
Hello,
I've just completed the configuration of a 2.1.10 free radius server on CentOS
6.2 and want to upgrade to FR 2.2.x to remove the vulnerability. Does anyone
have a guide or any advice on what I need to do and back up in order to ensure
that I don't lose any of my site specific settings.
On Wed, Feb 13, 2013 at 1:42 AM, Muhammad Nadeem mnadeem8...@gmail.com wrote:
Could you
please help me out to send parallel requests to proxy server???
Try radclient (see -p): http://linux.die.net/man/1/radclient
Alternatively, try radperf: http://networkradius.com/radperf.html
--
Fajar
-
will it send 1 parallel requests to free radius server
why not simply use -c 1, instead of -p 100 -c 1. What will be the
difference???
Thanks
On Wed, Feb 13, 2013 at 1:16 PM, Olivier Beytrison oliv...@heliosnet.orgwrote:
On 13.02.2013 09:03, Muhammad Nadeem wrote:
thanx john:
Hi,
We are trying to bring up MACsec with Cisco and FR, and we are stuck because of
Radius unable to send EAP-Key-Name AVP. Below is what is expected as per RFC4072
RFC4072 says A home Diameter server receiving a
Diameter-EAP-Request with a Key-Name AVP with non-empty data MUST
silently
On 02/13/2013 07:23 AM, Бен Томпсон wrote:
One thing I still don't understand though is how best to use ippool
for DHCP. I don't understand where and how I should call the module
during a DHCP transaction. For example I can call it during
DHCP-Discover, but it seems that if I call it again
On 02/13/2013 09:59 AM, Srinu Bandari wrote:
Hi,
We are trying to bring up MACsec with Cisco and FR, and we are stuck
because of Radius unable to send EAP-Key-Name AVP.
That's not supported in FreeRADIUS, I believe. It's been a while since I
looked at it, but the whole extended EAP key
On 13.02.2013 09:38, Muhammad Nadeem wrote:
I used -c 1, and omit -p,, result was the same . 1 users were
authenticated in 23 seconds :) . So i think no difference of using -p
and -c together ?? M I right??
Well yeah -p works only with a file (-f)
so, feed your request multiple
First, check that centos doesn't have the security issue backported
For upgrade, backup your current configuration directory eg
cp -R /etc/raddb /etc/raddb.backup
Then install the new version
2.1.10 and 2.2.0 are config compatible apart from one single option which isn't
set by default (check
Athanx Fajar
Actually Rad perf is not available on website. And i also used -p with
radclient. But it didnot sent requests in parallel.
On Wed, Feb 13, 2013 at 1:30 PM, Fajar A. Nugraha l...@fajar.net wrote:
On Wed, Feb 13, 2013 at 1:42 AM, Muhammad Nadeem mnadeem8...@gmail.com
wrote:
Could
ok, I followed your process. i make a file with User-Name and
NAS-IP-Address attribute. and issue the following command
radclient -c 10 -p 1000 -f radrequest.txt 192.168.0.112 auth testing123
But i only receive 10 access-accept packets. So what does it mean?? If
upper command issues 1000 requests
On 02/12/2013 09:52 PM, Shawky Skaff wrote:
Hi Guys,
Could I please get a response to this?
Have you considered the possibility that no-one knows?
dialupadmin is largely abandonware; it's been removed from the GIT repo
in master as no-one maintains it, or wants to. So, expertise on it is
On 13.02.2013 11:45, Muhammad Nadeem wrote:
ok, I followed your process. i make a file with User-Name and
NAS-IP-Address attribute. and issue the following command
radclient -c 10 -p 1000 -f radrequest.txt 192.168.0.112 auth testing123
But i only receive 10 access-accept packets. So what does
Qasim,
Your problem is with your MySQL Database. It is too slow to process the
queries it is receiving.
You've already been told, on this list (multiple times), fix your Database
or hire a DBA who can.
On Wed, Feb 13, 2013 at 10:59 AM, QASIM RAO qasim2...@hotmail.com wrote:
Hi,
i am using
Hi All,
First of all, I would like to say that the website is very very useful.
I have be able to setup pam_radius_auth with Kerberos, just by following the
instructions on the website.
Now to my question, does anybody know how to setup radius to it can map user to
a local user. For example,
Бен Томпсон wrote:
One thing I still don't understand though is how best to use ippool
for DHCP.
As Phil said, don't. Use the SQL IP pool module.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Srinu Bandari wrote:
We are trying to bring up MACsec with Cisco and FR, and we are stuck
because of Radius unable to send EAP-Key-Name AVP. Below is what is
expected as per RFC4072
Which, as you'll note, is a Diameter spec. FreeRADIUS doesn't
implement Diameter.
If you can get us a spec
ahmed.sa...@stfc.ac.uk wrote:
First of all, I would like to say that the website is very very useful.
Thanks.
I have be able to setup pam_radius_auth with Kerberos, just by following
the instructions on the website.
Documentation is good. Following the documentation is great.
Now to
Hi Guys,
Could I please get a response to this?
Have you considered the possibility that no-one knows?
dialupadmin is largely abandonware; it's been removed from the GIT repo in
master as no-one maintains it, or wants to. So, expertise on it is minimal,
and interest in it even less so.
On 02/13/2013 04:03 AM, Jamie Lee wrote:
Hello,
I’ve just completed the configuration of a 2.1.10 free radius server on
CentOS 6.2 and want to upgrade to FR 2.2.x to remove the vulnerability.
Does anyone have a guide or any advice on what I need to do and back up
in order to ensure that I don’t
thanks a lot olivier... This stuff really worked for me.. cheers
On Wed, Feb 13, 2013 at 4:05 PM, Olivier Beytrison oliv...@heliosnet.orgwrote:
On 13.02.2013 11:45, Muhammad Nadeem wrote:
ok, I followed your process. i make a file with User-Name and
NAS-IP-Address attribute. and issue the
On 13.02.2013 15:46, Hocine M wrote:
Hi,
Some user who are proxied (eduroam) are acconted with username =
anonymous@realm
I don't want to have anonymous user in my database, do i have to reject
anonymous users in post-proxy section or there is something to do to
force user to use inner
Hi Alan,
Thanks for the quick reply.
So, pam module can't be used.
How can I set it up in Radius using rlm_password?
Regards,
Ahmed Sajid.
-Original Message-
From: freeradius-users-bounces+ahmed.sajid=stfc.ac...@lists.freeradius.org
-detail-20130213 :_
Wed Feb 13 14:03:47 2013
Packet-Type = Access-Request
NAS-Port-Id = AP86/1
Calling-Station-Id = 94-39-E5-B7-CB-51
Called-Station-Id = 00-0B-0E-D2-CD-40:eduroam
Service-Type = Framed-User
EAP-Message
On 13/02/13 14:46, Hocine M wrote:
Hi,
Some user who are proxied (eduroam) are acconted with username =
anonymous@realm
Yes
I don't want to have anonymous user in my database, do i have to reject
anonymous users in post-proxy section or there is something to do to
force user to use inner
Hi,
I have used Proxy functionality of freeradius for load balancing and
failover. But this decrease the performance a lot. (with direct requests i
can authenticate 450 users/sec, but with proxy , only 26 users/sec).
you've asked the same question before. the answer is to look at
Hi,
Some user who are proxied (eduroam) are acconted with username =
anonymous@realm
I don't want to have anonymous user in my database, do i have to reject
anonymous users in post-proxy section or there is something to do to force
user to use inner identity?
anonymous outer
user in my database, do i have to reject
anonymous users in post-proxy section or there is something to do to force user
to use inner identity?
here are files :
pre-proxy-detail-20130213 :
Wed Feb 13 14:03:47 2013
Packet-Type = Access-Request
NAS-Port-Id = AP86/1
Calling-Station
commit 397006810d88cf22f203e43130ea6a326d728eba
Author: Arran Cudbard-Bell a.cudba...@freeradius.org
Date: Tue Feb 12 19:48:00 2013 -0500
Use xlat for generating the OTP challenge reply-message
Remove otp specific bin2hex hex2bin functions and use FR ones
Fix formatting
Le 13/02/2013 17:09, a.l.m.bu...@lboro.ac.uk a écrit :
Hi,
Some user who are proxied (eduroam) are acconted with username =
anonymous@realm
I don't want to have anonymous user in my database, do i have to reject
anonymous users in post-proxy section or there is something to do
thanks alan..
so you mean that i am not configuring things in a good way. that's why the
proxy has become a bottle neck ???
On Wed, Feb 13, 2013 at 9:04 PM, a.l.m.bu...@lboro.ac.uk wrote:
Hi,
I have used Proxy functionality of freeradius for load balancing and
failover. But this
Alan,
EAP key identifier must be sent as a part of Access-Accept message in EAP
Key-Name AVP (Radius Attribute Type 102).
This what Cisco Documentation states:
The switch has no visibility into the details of the EAP session between the
supplicant and the authentication server, so it cannot
36 matches
Mail list logo
