RE:(solved by myself and lots of hours. it was an stupid thing, as my) how to Test my first freeradius install ? OK fixed ! BUT other problem: (long logs) ([email protected] responding)

Linux!audimed Mon, 03 Dec 2001 15:38:25 -0800

the error is in portslave conf.
open big your EYES !
D O   N O T     D O    I T  (SAME IP) in pslave.conf
> all.authhost1 192.168.122.254
> all.accthost1 192.168.122.254
becose i do not have 2 radius servers i put the same on both.
damn moment when I do it. It was a week sice it.


----- Original Message -----
From: Linux!audimed <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Sunday, December 02, 2001 3:12 AM
Subject: RE: how to Test my first freeradius install ? OK fixed ! BUT other
problem: (long logs) ([EMAIL PROTECTED] responding)


> > If I remember correctly, portslave by default tries to communicate with
a
> > RADIUS server using ports 1645 instead of the new standard 1812/1813.
> EXELENT!!! that it the port number !
> portslave still use 1645
> so I put a -p 1645 to the radiusd command
> and I get radius and portslave talking between
> boht machines 192.168.122.254 RadServer(254 on more) and
> 192.168.122.253 the RadClient (253 on more)
> I can see it doing "tail -f" on the logs
> it was fixed this way.
> But I cant still authenticate the user.Im using 3
> machines for this test .
>
> (10dialclient)<-->(253RadClient)<-->(254RadServer)
>     w9x       Linuxrouter k2.2.16   redhat7.0
>                  2.9.8pre
>
> It is intend to: w9x takes 192.168.122.10 IP by example
> here goes my next problem:
> IF I use a VALIDuser/WRONGpassword I ged DENIED by 254RadServer
>           and DENIED by 253RadClient
> that is ok. by the least it looks normal
>
> <<BUT>>
> IF I use a VALIDuser/VALIDpassword I ged ACCESS by 254RadServer
>     BUT DENIED by 253RadClient
>
> and 254RadServer keeps saying :
> "Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
> --- Walking the entire request list ---"
> and 253RadClient keeps saying :
> Jan  1 02:19:01 myrouter pppd[550]: ul_login(lucas) called
> Jan  1 02:19:10 myrouter pppd[550]: [EMAIL PROTECTED] not responding
>
> at this moment you ask . where are the logs ? OK here is ALL
> it would be hard .... but I go on.... please be patient.
> I will cut in three important parts:
> 1 start of RADserver and RADclient(portslave)
> 2 a try with (valid user/ wrong pass )
> 3 a try with (valid user/ valid pass )
>
> ########################11111111#####################
> ALL 1 start of RADserver and RADclient(portslave)
> ########################11111111#####################
> ########################11111111########
> portslave 1 from inittab with "T0:23:respawn:+/usr/sbin/portslave 0"
> I ask myself for what is the "+" in inittab path of portslave ??
> but it is not the big problem here. so lets continue...
> ########################11111111########
> Jan  1 02:00:39 myrouter port[S0]: portslave started on port 0 (ttyS0)
> Jan  1 02:00:40 myrouter port[S0]: chat_expect("")
> Jan  1 02:00:40 myrouter port[S0]: chat_expect - got it
> Jan  1 02:00:40 myrouter port[S0]: chat_send(\d\dATZ)
> Jan  1 02:00:42 myrouter port[S0]: chat_expect(OK\r\n)
> Jan  1 02:00:42 myrouter port[S0]: chat_expect - got it
> Jan  1 02:00:42 myrouter port[S0]: waiting for RING
> ########################11111111########
> END portslave 1
> ########################11111111########
> ########################11111111###############
> radiusd 1 from console debug mode
> /usr/sbin/radiusd -fxxyz -p 1645
> ########################11111111###############
> Starting - reading configuration files ...
> reread_config:  reading radiusd.conf
> Config:   including file: /etc/raddb/proxy.conf
> Config:   including file: /etc/raddb/clients.conf
> Config:   including file: /etc/raddb/snmp.conf
> Config:   including file: /etc/raddb/sql.conf
>  main: prefix = "/usr"
>  main: localstatedir = "/var"
>  main: logdir = "/var/log/radius"
>  main: libdir = "/usr/lib"
>  main: radacctdir = "/var/log/radius/radacct"
>  main: hostname_lookups = no
> read_config_files:  reading dictionary
> read_config_files:  reading clients
> read_config_files:  reading realms
> read_config_files:  reading naslist
>  main: max_request_time = 30
>  main: cleanup_delay = 5
>  main: max_requests = 1024
>  main: delete_blocked_requests = 0
>  main: port = 0
>  main: allow_core_dumps = no
>  main: log_stripped_names = yes
>  main: log_auth = yes
>  main: log_auth_badpass = yes
>  main: log_auth_goodpass = yes
>  main: pidfile = "/var/run/radiusd.pid"
>  main: bind_address = 192.168.122.254 IP address [192.168.122.254]
>  main: user = "root"
>  main: group = "root"
>  main: usercollide = no
>  main: lower_user = "no"
>  main: lower_pass = "no"
>  main: nospace_user = "no"
>  main: nospace_pass = "no"
>  main: proxy_requests = yes
>  proxy: retry_delay = 5
>  proxy: retry_count = 3
>  proxy: synchronous = no
>  proxy: dead_time = 120
>  main: debug_level = 0
> read_config_files:  entering modules setup
> Module: Library search path is /usr/lib
> Module: Loaded System
>  unix: cache = no
>  unix: passwd = "/etc/passwd"
>  unix: shadow = "/etc/shadow"
>  unix: group = "/etc/group"
>  unix: radwtmp = "/var/log/radius/radwtmp"
>  unix: usegroup = no
> Module: Instantiated unix (unix)
> Module: Loaded preprocess
>  preprocess: huntgroups = "/etc/raddb/huntgroups"
>  preprocess: hints = "/etc/raddb/hints"
>  preprocess: with_ascend_hack = no
>  preprocess: ascend_channels_per_line = 23
>  preprocess: with_ntdomain_hack = no
>  preprocess: with_specialix_jetstream_hack = no
>  preprocess: with_cisco_vsa_hack = no
> Module: Instantiated preprocess (preprocess)
> Module: Loaded realm
>  realm: format = "suffix"
>  realm: delimiter = "@"
> Module: Instantiated realm (suffix)
> Module: Loaded files
>  files: usersfile = "/etc/raddb/users"
>  files: acctusersfile = "/etc/raddb/acct_users"
>  files: compat = "no"
> Module: Instantiated files (files)
> Module: Loaded detail
>  detail: detailfile =
"/var/log/radius/radacct/%{Client-IP-Address}/detail"
>  detail: detailperm = 384
>  detail: dirperm = 493
> Module: Instantiated detail (detail)
> Module: Loaded radutmp
>  radutmp: filename = "/var/log/radius/radutmp"
>  radutmp: perm = 384
>  radutmp: callerid = yes
> Module: Instantiated radutmp (radutmp)
>  main: smux_password = ""
>  main: snmp_write_access = no
> SMUX connect try 1
> Can't connect to SNMP agent with SMUX: Connection refused
> Initializing the thread pool...
>  thread: start_servers = 5
>  thread: max_servers = 32
>  thread: min_spare_servers = 3
>  thread: max_spare_servers = 10
>  thread: max_requests_per_server = 0
>  thread: cleanup_delay = 5
> Thread 1 waiting to be assigned a request
> Thread spawned new child 1. Total threads in pool: 1
> Thread spawned new child 2. Total threads in pool: 2
> Thread 2 waiting to be assigned a request
> Thread spawned new child 3. Total threads in pool: 3
> Thread 3 waiting to be assigned a request
> Thread 4 waiting to be assigned a request
> Thread spawned new child 4. Total threads in pool: 4
> Thread spawned new child 5. Total threads in pool: 5
> Listening on IP address 192.168.122.254, ports 1645/udp and 1646/udp, with
> proxy on 1647/udp.
> Ready to process requests.
> Thread 5 waiting to be assigned a request
> CHILD: exit on signal (2)
> ########################11111111###############
> END radiusd 1
> ########################11111111###############
> ########################11111111#####################
> END ALL 1 start of RADserver and RADclient(portslave)
> ########################11111111#####################
>
> ########################22222222#####################
> ALL 2 valid user/ wrong pass
> ########################22222222#####################
> ########################22222222########
> portslave 2
> ########################22222222########
> Jan  1 02:05:42 myrouter port[S0]: chat_expect(RING)
> Jan  1 02:05:42 myrouter port[S0]: chat_expect - got it
> Jan  1 02:05:42 myrouter port[S0]: chat_expect("")
> Jan  1 02:05:42 myrouter port[S0]: chat_expect - got it
> Jan  1 02:05:42 myrouter port[S0]: chat_send(ATA)
> Jan  1 02:05:42 myrouter port[S0]: chat_expect(CONNECT@)
> Jan  1 02:06:02 myrouter port[S0]: chat_expect - got it
> Jan  1 02:06:03 myrouter port[S0]: Connected - waiting for login
> Jan  1 02:06:05 myrouter port[S0]: Detected login for AutoPPP
> Jan  1 02:06:05 myrouter port[S0]: PPP frames detected - switching to PPP
> mode
> Jan  1 02:06:05 myrouter kernel: registered device ppp0
> Jan  1 02:06:05 myrouter syslog: ul_init(/dev/ttyS0) called
> Jan  1 02:06:06 myrouter pppd[544]: pppd 2.3.5 started by root, uid 0
> Jan  1 02:06:06 myrouter pppd[544]: ul_ppp_established(0) called
> Jan  1 02:06:06 myrouter pppd[544]: Using interface ppp0
> Jan  1 02:06:06 myrouter pppd[544]: Connect: ppp0 <--> /dev/ttyS0
> Jan  1 02:06:09 myrouter pppd[544]: ul_login(lucas) called
> Jan  1 02:06:09 myrouter pppd[544]: authentication failed
(lucas/dddddddddd)
> Jan  1 02:06:09 myrouter pppd[544]: PAP login failure for lucas
> Jan  1 02:06:09 myrouter pppd[544]: Fatal signal 11
> Jan  1 02:06:09 myrouter pppd[544]: ul_ppp_disestablished(0) called
> Jan  1 02:06:10 myrouter pppd[544]: Exit.
> Jan  1 02:06:10 myrouter port[S0]: portslave started on port 0 (ttyS0)
> Jan  1 02:06:10 myrouter port[S0]: chat_expect("")
> Jan  1 02:06:10 myrouter port[S0]: chat_expect - got it
> Jan  1 02:06:10 myrouter port[S0]: chat_send(\d\dATZ)
> Jan  1 02:06:12 myrouter port[S0]: chat_expect(OK\r\n)
> Jan  1 02:06:22 myrouter port[S0]: chat_expect(OK^M ): timeout (retry)
> Jan  1 02:06:22 myrouter port[S0]: chat_send(ATZ)
> Jan  1 02:06:22 myrouter port[S0]: chat_expect(OK\r\n)
> Jan  1 02:06:22 myrouter port[S0]: chat_expect - got it
> Jan  1 02:06:22 myrouter port[S0]: waiting for RING
> ########################22222222########
> END portslave 2
> ########################22222222########
> ########################22222222###############
> radiusd 2
> ########################22222222###############
> Starting - reading configuration files ...
> ...
> ###I cuuted becose is the same init ###
> ...
> Listening on IP address 192.168.122.254, ports 1645/udp and 1646/udp, with
> proxy on 1647/udp.
> Ready to process requests.
> rad_recv: Access-Request packet from host 192.168.122.253:1026, id=1,
> length=75
> Thread 1 assigned request 0
> SMUX connect try 2
> Can't connect to SNMP agent with SMUX: Connection refused
> --- Walking the entire request list ---
> Threads: total/active/spare threads = 5/1/4
> Waking up in 31 seconds...
> Thread 1 handling request 0, (1 handled so far)
>  User-Name = "lucas"
>  Password = "\2677\237\331\226\332G\034F\242!1\332B1\366"
>  NAS-IP-Address = 0.0.0.0
>  NAS-Port = 0
>  NAS-Port-Type = Async
>  Framed-Protocol = PPP
>  Service-Type = Framed-User
> modcall: entering group authorize
>   modcall[authorize]: module "preprocess" returns ok
>   modcall[authorize]: module "suffix" returns ok
>     users: Matched DEFAULT at 144
>     users: Matched DEFAULT at 163
>     users: Matched DEFAULT at 175
>   modcall[authorize]: module "files" returns ok
> modcall: group authorize returns ok
>   rad_check_password:  Found Auth-Type System
> auth: type "System"
> modcall: entering group authenticate
>   modcall[authenticate]: module "unix" returns reject
> modcall: group authenticate returns reject
> auth: Failed to validate the user.
> Login incorrect: [lucas/dddddddddd] (from nas dialup port 0)
> Sending Access-Reject of id 1 to 192.168.122.253:1026
> Finished request 0
> Going to the next request
> Thread 1 waiting to be assigned a request
> CHILD: exit on signal (2)
> ########################22222222###############
> END radiusd 2
> ########################22222222###############
> ########################22222222###############
> w9x says: error 629
> You have been disconect...
> Click to try again...
> Ha sido desconectado del equipo al que llam�.
> Haga doble clic en la conexi�n para volver a intentarlo.
> ########################22222222###############
> ########################22222222#####################
> END ALL 2 valid user/ wrong pass
> ########################22222222#####################
>
> ########################33333333#####################
> ALL 3 valid user/ valid pass
> ########################33333333#####################
> ########################33333333########
> portslave 3
> ########################33333333########
> Jan  1 02:18:34 myrouter port[S0]: chat_expect(RING)
> Jan  1 02:18:34 myrouter port[S0]: chat_expect - got it
> Jan  1 02:18:34 myrouter port[S0]: chat_expect("")
> Jan  1 02:18:34 myrouter port[S0]: chat_expect - got it
> Jan  1 02:18:34 myrouter port[S0]: chat_send(ATA)
> Jan  1 02:18:34 myrouter port[S0]: chat_expect(CONNECT@)
> Jan  1 02:18:54 myrouter port[S0]: chat_expect - got it
> Jan  1 02:18:55 myrouter port[S0]: Connected - waiting for login
> Jan  1 02:18:57 myrouter port[S0]: Detected login for AutoPPP
> Jan  1 02:18:57 myrouter port[S0]: PPP frames detected - switching to PPP
> mode
> Jan  1 02:18:58 myrouter syslog: ul_init(/dev/ttyS0) called
> Jan  1 02:18:58 myrouter pppd[550]: pppd 2.3.5 started by root, uid 0
> Jan  1 02:18:58 myrouter pppd[550]: ul_ppp_established(0) called
> Jan  1 02:18:58 myrouter pppd[550]: Using interface ppp0
> Jan  1 02:18:58 myrouter pppd[550]: Connect: ppp0 <--> /dev/ttyS0
> Jan  1 02:19:01 myrouter pppd[550]: ul_login(lucas) called
> Jan  1 02:19:10 myrouter pppd[550]: [EMAIL PROTECTED] not responding
> Jan  1 02:19:28 myrouter last message repeated 6 times
> Jan  1 02:19:31 myrouter pppd[550]: Radius server 192.168.122.254 not
> responding
> Jan  1 02:19:31 myrouter pppd[550]: user lucas logged in
> Jan  1 02:19:31 myrouter pppd[550]: LCP terminated by peer
> Jan  1 02:19:32 myrouter pppd[550]: Hangup (SIGHUP)
> Jan  1 02:19:32 myrouter pppd[550]: Modem hangup
> Jan  1 02:19:32 myrouter pppd[550]: ul_logout() called
> Jan  1 02:19:41 myrouter pppd[550]: [EMAIL PROTECTED] not responding
> Jan  1 02:19:59 myrouter last message repeated 6 times
> Jan  1 02:20:02 myrouter pppd[550]: Radius server 192.168.122.254 not
> responding
> Jan  1 02:20:02 myrouter pppd[550]: Connection terminated.
> Jan  1 02:20:02 myrouter pppd[550]: ul_ppp_disestablished(0) called
> Jan  1 02:20:02 myrouter pppd[550]: ul_ppp_disestablished(0) called
> Jan  1 02:20:03 myrouter pppd[550]: Exit.
> Jan  1 02:20:03 myrouter port[S0]: portslave started on port 0 (ttyS0)
> Jan  1 02:20:03 myrouter port[S0]: chat_expect("")
> Jan  1 02:20:03 myrouter port[S0]: chat_expect - got it
> Jan  1 02:20:03 myrouter port[S0]: chat_send(\d\dATZ)
> Jan  1 02:20:05 myrouter port[S0]: chat_expect(OK\r\n)
> Jan  1 02:20:05 myrouter port[S0]: chat_expect - got it
> Jan  1 02:20:05 myrouter port[S0]: waiting for RING
> ########################33333333########
> END portslave 3
> ########################33333333########
> ########################33333333###############
> radiusd 3
> ########################33333333###############
> Starting - reading configuration files ...
> ...
> ###I cuuted becose is the same init ###
> ...
> Ready to process requests.
> rad_recv: Access-Request packet from host 192.168.122.253:1026, id=2,
> length=75
> Thread 1 assigned request 0
> SMUX connect try 2
> Can't connect to SNMP agent with SMUX: Connection refused
> --- Walking the entire request list ---
> Threads: total/active/spare threads = 5/1/4
> Waking up in 31 seconds...
> Thread 1 handling request 0, (1 handled so far)
>  User-Name = "lucas"
>  Password = "f\224\247\202\205\304\021\035\2653{T%\217u"
>  NAS-IP-Address = 0.0.0.0
>  NAS-Port = 0
>  NAS-Port-Type = Async
>  Framed-Protocol = PPP
>  Service-Type = Framed-User
> modcall: entering group authorize
>   modcall[authorize]: module "preprocess" returns ok
>   modcall[authorize]: module "suffix" returns ok
>     users: Matched DEFAULT at 144
>     users: Matched DEFAULT at 163
>     users: Matched DEFAULT at 175
>   modcall[authorize]: module "files" returns ok
> modcall: group authorize returns ok
>   rad_check_password:  Found Auth-Type System
> auth: type "System"
> modcall: entering group authenticate
>   modcall[authenticate]: module "unix" returns ok
> modcall: group authenticate returns ok
> Login OK: [lucas/hidden] (from nas dialup port 0)
> Sending Access-Accept of id 2 to 192.168.122.253:1026
>  Framed-IP-Address = 255.255.255.254
>  Framed-MTU = 576
>  Service-Type = Framed-User
>  Framed-Protocol = PPP
>  Framed-Compression = Van-Jacobson-TCP-IP
> Finished request 0
> Going to the next request
> Thread 1 waiting to be assigned a request
> Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
> SMUX connect try 3
> Can't connect to SNMP agent with SMUX: Connection refused
> rl_next:  returning NULL
> Waking up in 31 seconds...
> Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
> --- Walking the entire request list ---
> Threads: total/active/spare threads = 5/0/5
> Waking up in 3 seconds...
> --- Walking the entire request list ---
> Cleaning up request 0 ID 2 with timestamp 3c09bffd
> Nothing to do.  Sleeping until we see a request.
> Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
> --- Walking the entire request list ---
> Nothing to do.  Sleeping until we see a request.
> Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
> --- Walking the entire request list ---
> Nothing to do.  Sleeping until we see a request.
> Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
> --- Walking the entire request list ---
> Nothing to do.  Sleeping until we see a request.
> Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
> --- Walking the entire request list ---
> Nothing to do.  Sleeping until we see a request.
> Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
> --- Walking the entire request list ---
> Nothing to do.  Sleeping until we see a request.
> Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
> --- Walking the entire request list ---
> Nothing to do.  Sleeping until we see a request.
> Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
> --- Walking the entire request list ---
> Nothing to do.  Sleeping until we see a request.
> Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
> --- Walking the entire request list ---
> Nothing to do.  Sleeping until we see a request.
> Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
> --- Walking the entire request list ---
> Nothing to do.  Sleeping until we see a request.
> Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
> --- Walking the entire request list ---
> Nothing to do.  Sleeping until we see a request.
> Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
> --- Walking the entire request list ---
> Nothing to do.  Sleeping until we see a request.
> Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
> --- Walking the entire request list ---
> Nothing to do.  Sleeping until we see a request.
> Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
> --- Walking the entire request list ---
> Nothing to do.  Sleeping until we see a request.
> Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
> --- Walking the entire request list ---
> Nothing to do.  Sleeping until we see a request.
> Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
> --- Walking the entire request list ---
> Nothing to do.  Sleeping until we see a request.
> Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
> --- Walking the entire request list ---
> Nothing to do.  Sleeping until we see a request.
> Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
> --- Walking the entire request list ---
> Nothing to do.  Sleeping until we see a request.
> Malformed RADIUS packet from host 192.168.122.253: Invalid attribute 0
> --- Walking the entire request list ---
> Nothing to do.  Sleeping until we see a request.
> CHILD: exit on signal (2)
> ########################33333333###############
> END radiusd 3
> ########################33333333###############
> w9x says: 718
> host can't establish...
> check password and try again...
> El equipo al que est� llamando no puede establecer una conexi�n de Acceso
> telef�nico a redes.
> Compruebe la contrase�a y vuelva a intentarlo.
> ########################33333333#####################
> END ALL 3  valid user/ valid pass
> ########################33333333#####################
> To here LOGS
> now comes... configuration files of portslave 1 and radiusd 2
> ####excuse me for sending so long mail to the list ######
> #### I do not know other shape to do it #################
>
> ##### 1 portslave conf /etc/portslave/pslave.conf #####
> ## I have not found more information to configuring ###
> ## this file that wich comes in itself ################
> # Version: 1.17  03-Nov-1998
> ##is not too old for 2.9.8pre linuxrouter ? ####
> conf.hostname dialup.uucp.com
> #conf.ipno 192.168.42.21
> conf.lockdir /var/lock
> ##here it were /usr/local/bin/rlogin-radius   ##
> ##i do not why, since Im using an LPR package ##
> conf.rlogin /usr/bin/rlogin-radius
> ##here it were /usr/local/sbin/pppd-radius   too.. ##
> conf.pppd /usr/sbin/pppd-radius
> conf.telnet /usr/bin/telnet
> conf.locallogins 1
> conf.syslog
> conf.facility 6
> conf.stripnames 0
> all.debug 1
> all.authtype    radius
> all.authhost1 192.168.122.254
> all.accthost1 192.168.122.254
> all.secret dialuppass
> #all.protocol rlogin
> #all.host shellhost.someisp.com
> all.ipno 192.168.122.253
> all.netmask 255.255.255.0
> all.mtu  1500
> all.issue \n\
>         Cistron Internet Services \n\
>          POP Alphen aan den Rijn \n\
>      Welcome to terminal server %h port S%p\n
> all.prompt Cistron login:
> all.term vt100
> all.sysutmp 1
> all.syswtmp 0
> all.porttype 0
> all.speed 115200
> all.initchat "" \d\dATZ OK\r\n-ATZ-OK\r\n
> all.waitfor RING
> all.answer "" ATA CONNECT@
> all.aa  0
> all.checktime 60
> all.checkchat "" AT OK\r\n
> all.flow hard
> all.dcd  1
> all.autoppp proxyarp modem asyncmap 0 %i: \
>   noipx noccp login auth require-pap refuse-chap \
>   mtu %t mru %t \
> #here it comes ms-addr but gives ERROR ########
> #  ms-addr 192.168.1.1 ms-addr 192.168.1.2 \
>   uselib /usr/lib/libpsr.so
> all.pppopt proxyarp modem asyncmap 0 %i:%j \
>   noipx noccp \
>   mtu %t mru %t netmask %m idle %I \
> #  ms-addr 192.168.1.1 ms-addr 192.168.1.2
>   uselib /usr/lib/libpsr.so
> s0.tty  ttyS0
> s0.ipno  192.168.122.252
> s0.protocol ppp
> s1.tty  ttyS1
> s2.tty  ttyS2
> s3.tty  ttyS3
> s4.tty  ttyS4
> s5.tty  ttyS5
> s6.tty  ttyS6
> s7.tty  ttyS7
> s8.tty  ttyS8
> s9.tty  ttyS9
> s10.tty  ttyS10
> s11.tty  ttyS11
> s12.tty  ttyS12
> s13.tty  ttyS13
> s14.tty  ttyS14
> s15.tty  ttyS15
> ##END 1  portslave conf /etc/portslave/pslave.conf ####
> ##### 2 radiusd conf /etc/raddb/radiusd.conf #####
> # Stuff from autoconf
> prefix = /usr
> exec_prefix = ${prefix}
> sysconfdir = /etc
> localstatedir = /var
> sbindir = ${exec_prefix}/sbin
> logdir = ${localstatedir}/log/radius
> libdir = ${exec_prefix}/lib
> raddbdir = ${sysconfdir}/raddb
> radacctdir = ${logdir}/radacct
> #  Location of config and logfiles.
> confdir = ${raddbdir}
> run_dir = ${localstatedir}/run
> pidfile = ${run_dir}/radiusd.pid
> user = root
> group = root
> max_request_time = 30
> delete_blocked_requests = no
> cleanup_delay = 5
> max_requests = 1024
> bind_address = 192.168.122.254
> port = 0
> checkrad = ${sbindir}/checkrad
> hostname_lookups = no
> allow_core_dumps = no
> regular_expressions = yes
> extended_expressions = yes
> log_stripped_names = yes
> log_auth = yes
> log_auth_badpass = yes
> log_auth_goodpass = yes
> usercollide = no
> lower_user = no
> lower_pass = no
> nospace_user = no
> nospace_pass = no
> proxy_requests  = yes
> $INCLUDE  ${confdir}/proxy.conf
> $INCLUDE  ${confdir}/clients.conf
> $INCLUDE  ${confdir}/snmp.conf
> thread pool {
>  start_servers = 5
>  max_servers = 32
>  min_spare_servers = 3
>  max_spare_servers = 10
>  max_requests_per_server = 0
> }
> modules {
>  pam {
>   pam_auth = radiusd
>  }
>  unix {
>   cache = no
>   passwd = /etc/passwd
>   shadow = /etc/shadow
>   group = /etc/group
>   radwtmp = ${logdir}/radwtmp
>  }
>  ldap {
>   server = "ldap.your.domain"
>   basedn = "o=My Org,c=UA"
>   filter = "(uid=%u)"
>   access_group = "cn=clients,ou=dialup,o=My Org,c=UA"
>   access_attr = "dialupAccess"
>   dictionary_mapping = ${raddbdir}/ldap.attrmap
>   timeout = 4
>   timelimit = 3
>   net_timeout = 1
>  }
>  realm suffix {
>   format = suffix
>   delimiter = "@"
>  }
>  realm realmslash {
>   format = prefix
>   delimiter = "/"
>  }
>
>  realm realmpercent {
>   format = suffix
>   delimiter = "%"
>  }
>  preprocess {
>   huntgroups = ${confdir}/huntgroups
>   hints = ${confdir}/hints
>   with_ascend_hack = no
>   ascend_channels_per_line = 23
>   with_ntdomain_hack = no
>   with_specialix_jetstream_hack = no
>   with_cisco_vsa_hack = no
>  }
>
>  files {
>   usersfile = ${confdir}/users
>   acctusersfile = ${confdir}/acct_users
>   compat = no
>  }
>  fastusers {
>   usersfile = ${confdir}/users_fast
>   hashsize = 1000
>   compat = no
>   hash_reload = 600
>  }
>
>  detail {
>   detailfile = ${radacctdir}/%{Client-IP-Address}/detail
>   detailperm = 0600
>  }
>  acct_unique {
>   key = "User-Name, Acct-Session-Id, NAS-IP-Address, Client-IP-Address,
> NAS-Port-Id"
>  }
>  $INCLUDE  ${confdir}/sql.conf
>
>
>  radutmp {
>   filename = ${logdir}/radutmp
>   perm = 0600
>   callerid = "yes"
>  }
>  radutmp sradutmp {
>   filename = ${logdir}/sradutmp
>   perm = 0644
>   callerid = "no"
>  }
>  attr_filter {
>   attrsfile = ${confdir}/attrs
>  }
>  counter {
>   filename = ${raddbdir}/db.counter
>   key = User-Name
>   count-attribute = Acct-Session-Time
>   reset = daily
>   counter-name = Daily-Session-Time
>   check-name = Max-Daily-Session
>   allowed-servicetype = Framed-User
>   cache-size = 5000
>  }
>  always fail {
>   rcode = fail
>  }
>  always reject {
>   rcode = reject
>  }
>  always ok {
>   rcode = ok
>   simulcount = 0
>   mpp = no
>  }
>  example {
>   boolean = yes
>   integer = 16
>   string = "This is an example configuration string"
>   ipaddr = 127.0.0.1
>   mysubsection {
>    anotherinteger = 1000
>    deeply nested {
>     string = "This is a different string"
>    }
>   }
>  }
>
> }
> authorize {
>  preprocess
> # counter
> # attr_filter
>  suffix
>  files
> }
> authenticate {
> # pam
>  unix
> }
> preacct {
>  suffix
>  files
>  preprocess
> }
> accounting {
> # acct_unique
>  detail
> # counter
>  unix
>  radutmp
> # sradutmp
> }
> session {
>  radutmp
> }
>
> ##END 2 radiusd conf /etc/raddb/radiusd.conf #####
>
> ###and clients file have:
> 192.168.122.253  dialuppass
> ###end clients
> ###and naslist file have:
> 192.168.122.253  dialup  portslave
> ###end naslist
>
> I excuse me again for the long mail
> If you need other info please ask me !
> If you are runing the same way as my. Can you send me
> your configuration files ?
>
> thank you in advance !
>
> ----- Original Message -----
> From: namor <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Sent: Thursday, November 29, 2001 12:52 PM
> Subject: Re: how to Test my first freeradius install ?
> ([EMAIL PROTECTED] responding)
>
>
>
> -
> List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
>


- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

RE:(solved by myself and lots of hours. it was an stupid thing, as my) how to Test my first freeradius install ? OK fixed ! BUT other problem: (long logs) ([email protected] responding)

Reply via email to