http://wiki.freeradius.org/Radclient
Ivan Kalik
Kalik Informatika ISP
Dana 14/12/2008, Padam J Singh padam.si...@inventum.cc piše:
Hello,
Are you aware of any radius client library which also implements
CoA/Packet of Disconnect?
I have checked radiusclient-ng and its earlier version - they
Norbert Wegener wrote:
Upgrading from 2.1.1 to 2.1.3 on a Suse10.2 system and restarting
radiusd with the identical configuration showed the following message:
We do not own /var/run/radiusd/radiusd.sock.
OK. I've committed a patch to the stable branch that fixes this.
Alan DeKok.
-
http://wiki.freeradius.org/Packet_of_Disconnect
On Sun, Dec 14, 2008 at 8:29 AM, Padam J Singh padam.si...@inventum.cc wrote:
Hello,
Are you aware of any radius client library which also implements
CoA/Packet of Disconnect?
I have checked radiusclient-ng and its earlier version - they do
t...@kalik.net wrote:
http://wiki.freeradius.org/Radclient
The application being developed is a NAS - I am already using the radius
client libraries to send radius requests to a radius server.
I am looking for a C library that implements the CoA/Packet of
Disconnect message parsing on the NAS.
Hi all,
im sperimenting a strange problem using freeradius.
We have a full installation on freeradius 2.1.1 using postgreSql 8.1 running
onto 2 different machines.
The auth work fine 8we have tested it for two days with a killer script that
tests in continuously) but if the proxy stops sending
Hi all,
i’m sperimenting a strange problem using freeradius.
We have a full installation on freeradius 2.1.1 using postgreSql 8.1 running
onto 2 different machines.
The auth work fine 8we have tested it for two days with a killer script that
tests in continuously) but if the proxy stops sending
Massimiliano Tarquini wrote:
We have a full installation on freeradius 2.1.1 using postgreSql 8.1 running
onto 2 different machines.
The auth work fine 8we have tested it for two days with a killer script that
tests in continuously) but if the proxy
What proxy? You haven't explained how
We are using the same freeradius as a proxy and it works fine running onto a
different machine.
The proxy auth the outer EAP-TTLS then asks to the radius to auth the inner.
It is connected at the same postgres server as the radius, but it works
fine. After a few time of inactivity (no auth
Massimiliano Tarquini wrote:
We are using the same freeradius as a proxy and it works fine running onto a
different machine.
The proxy auth the outer EAP-TTLS then asks to the radius to auth the inner.
That still isn't a very clear description of the network configuration.
There is a
It seems to be exactly what is happening.
I have noticed a new think. When the radius crash, the database
administration interface continue showing the connection to the radius.
Using netstat onto the radius server there are no connection to the database
SERVER.
Is it possible?
May be the
Massimiliano Tarquini wrote:
It seems to be exactly what is happening.
I have noticed a new think. When the radius crash, the database
administration interface continue showing the connection to the radius.
Using netstat onto the radius server there are no connection to the database
SERVER.
Hello to all, is it possible to use FreeRADIUS as AAA for EVDO and other Data
sevices in a Cellular Network?
Thanks,
Aldo Zavala
Mobile (760) 556-5050
GTalk: aldo.zav...@gmail.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Yes, By focusing mainly on attributes such as
MSISDN(Calling-Station-Id) and GGSN/NAS(Called-Station-Id) as well as
by deploying an IP assignment technique(using IPPOOL or otherwise).
If you have specific queries, would be happy to attempt to answer.
HTH
On Sun, Dec 14, 2008 at 9:08 PM, Aldo
2008/12/11 a.l.m.bu...@lboro.ac.uk:
hi,
which version of FreeRADIUS are you using?
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Release 2.1.2, but it seems a supplicant issue...
--
--
Open Kairos http://www.openkairos.com
Watch More TV
Yes, By focusing mainly on attributes such as
MSISDN(Calling-Station-Id) and GGSN/NAS(Called-Station-Id) as
well as by deploying an IP assignment technique(using IPPOOL
or otherwise).
If you have specific queries, would be happy to attempt to answer.
Do you know the GGSN session time
No..but session-timeout RADIUS attribute
On Sun, Dec 14, 2008 at 11:11 PM, Toledo, Luis Carlos
lscrls...@gmail.com wrote:
Yes, By focusing mainly on attributes such as
MSISDN(Calling-Station-Id) and GGSN/NAS(Called-Station-Id) as
well as by deploying an IP assignment technique(using IPPOOL
or
Is it use the session-timeout RADIUS attribute? Are there some other VSA to
determinate the session time or traffic amount?
No..but session-timeout RADIUS attribute
On Sun, Dec 14, 2008 at 11:11 PM, Toledo, Luis Carlos
lscrls...@gmail.com wrote:
Yes, By focusing mainly on attributes
Here are some Accounting Attributes;
Acct-Session-Time
Acct-Input-Octets
Acct-Output-Octets
Acct-Input-Packets
Acct-Output-Packets
In regard to data services capturing traffic amount(byte count) is
more pragmatic than relying on session time.
On Sun, Dec 14, 2008 at 11:26 PM, Toledo, Luis
The acct attributes are post auth... This I know.
I want to determinate to GGSN on the auth moment the session time and
traffic amount, and after this time limited and traffic limit the session
end.
I beleave there are a VSA to determante this to ggsn (session time and
traffic amount on the
Hi,
Currently I'm using:
*OpenWRT Kamikaze in AP's
*Freeradius 2.1.2
*LDAP
End users either use ttls or peap on their notebooks, as I have a LDAP
server, each use his username and a password.
Problem with this approach is that is somewhat complex for end users,
they must either install a
This is exactly what Coova does. It blocks all access to the network,
until a correct username/password combination is made. The downfall to
such a system is 1. No encryption, and 2. Any somewhat-knowing
script-kiddie can spoof a mac address and hijack someone's session.
On Sun, Dec 14, 2008 at
Hi all
the FR receive the accounting request:
rad_recv: Accounting-Request packet from host 172.26.0.8 port 1645, id=186,
length=399
User-Name = 087301
NAS-IP-Address = 0.0.0.0
Service-Type = Dialout-Framed-User
Class = 0x436c6173733d333030
Thanks Ranil Santhis and Luis Carlos Toledo for your reply,
I have read in the PDSN GUI help that the interface for AAA must be a logic
interface, then I looked in the PDSN configuration and I found two PI (logical)
interfaces, here the part of PDSN config that I think is AAA related:
[conf]
#
Alan DeKok wrote:
Padam J Singh wrote:
From the RFC 2866:
Yes, I have read the RFC's. They're even in the FreeRADIUS source
tree. They'are referenced from http://freeradius.org/rfc/, which was
built by me.
The RFC doesn't categorically say that an accounting response packet SHOULD
On Fri, Dec 12, 2008 at 5:33 PM, Diogo Teixeira diogo@gmail.com wrote:
and i done everything i it still don't work.
You do have port 1813 open on your radius right?
Kind regards
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Padam J Singh wrote:
The attributes I want to send are VSAs anyway, so I fail to see how this
violates the RFC.
It doesn't. Technically. But it's a bad idea.
Can you explain why you need to send the attributes, and what the NAS
does with them?
The standard install of FR also includes
hi,
why go backwards when you have the right wireless
technology in place? you need to look at the windows
client end of things. I'd suggest looking at automating
the setup..the best thing would be to have another
wireless SSID (eg 'setup for XYZ' - where XYZ is your current
SSID) - and have
Aldo Zavala wrote:
- Can please tell me if this is what I need to co nfigure the PDSN with the
FreeRADIUS?
Read the PDSN documentation.
- What should I start configuring in the FreeRADIUS side?
Configure the PDSN as a client.
Configure FreeRADIUS to respond with the correct
If both users are the same, it is better to configure just one user and
make checks stripping the realm.
--
Angel L. Mateo Martínez
Sección de Telemática
Área de Tecnologías de la Información _o)
y las Comunicaciones Aplicadas (ATICA) / \\
http://www.um.es/atica
Do Nguyen Ha wrote:
then FR should send accounting respond :
h323-credit-amount=customer balance at the time of authentication
h323-return-code=0(accept)/2(reject)
h323-billing-model=2
but FR send:
Sending Accounting-Response of id 192 to 172.26.0.8 port 1645
can the FR do that?
Justin A. Williams wrote:
I see that the mac address from the calling-station-id but then it will
not login with the user.
If i delete the row 26 with calling-station-id it will permit that user
to login.
Read doc/rlm_sql. This is explained.
Alan DeKok.
-
List
31 matches
Mail list logo