On Fri, 31 Aug 2001 14:45, Andrew Melnikov wrote:
> I think that my problem is related to checkrad/checkrad.pl. The script uses
> portslave-dependent things. Now it doesn't work as expected because
> portslave is significally changed. So checkrad.pl definitely needs
> patching.
I've just got the latest checkrad.pl.in and other files from the FreeRADIUS
CVS and run ./configure. The resulting checkrad.pl seems to correctly return
1 if the specified user is logged in on the specified port and return 0 if
the user isn't logged in (or is logged in on another port).
I have "ctlportslave -f" being run as the finger daemon with nothing special.
The machine I used for testing is running version 2001-07-13, and I don't
recall making any changes to ctlportslave in that time (and my changelog
doesn't reflect any change of note).
> So, I wrote a patch to fix this two problems month ago. But
Please send me your patch!
> Today I wanted to continue tracking this problem but found that now finger
> doesn't show portslave users at all. It shows only users locally logged in.
> So my patch have already become obsolete.
You can't use regular finger, you must use ctlportslave as your finger
daemon. The utmp file (referenced as the sole data source by the regular
finger program) has the device names. The checkrad script needs to know the
NAS port ID which can be determined from the utmp file in conjunction with
the Portslave config file. So only ctlportslave (or some program of
equivalent functionality) will do.
> I think we should found a better solution than parsing output of finger or
> some other program like w/who/radwho. Or at least we should make everything
> working. Currently checkrad.pl supports ancient version of portslave.
I don't think so. I think that the ctlportslave as finger daemon solution is
working well, it's clean, easy to expand, and there is no need for anything
different.
> I say "we" because I post this message to both freeradius and portslave
> mail lists.
Sure, well if the FreeRADIUS people have suggestions for how I can change
Portslave to make it work better with FreeRADIUS then I'll be happy to make
changes!
I could make ctlportslave have a command line option to implement the
protocol of another NAS if there is one that is popular enough and has good
enough output to be considered THE standard.
Also writing an snmp module for Portslave is quite possible too...
--
http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark
http://www.coker.com.au/postal/ Postal SMTP/POP benchmark
http://www.coker.com.au/projects.html Projects I am working on
http://www.coker.com.au/~russell/ My home page
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
