so i've read through the O'Reilly _Radius_ book, the FAQ for FreeRADIUS, and browsed the list's archive, but i still i have a relatively basic question that just needs some clarification.
Accounting-Start packets are sent by the client ( which could be either the NAS or the end-user in the case of wireless auth, which is what i'm doing ).
No, it will be the NAS, it will not be the end-user.
if a NAS hasn't implemented the full AAA architecture ( i.e. only supports RADIUS for authentication but not for accounting ), then the only way to get the Accounting-Request packet is to hae the end-user send it ( which is, IMHO, an unreliable method ), correct?
No. The Radius Server will only accept AAA from known 'clients'. This will be the device or process that talks to the Radius server ( either a NAS, AP, or other ). It will *not* be the end-user.
If the NAS/AP doesn't send it, you don't get it.
is there some kind of way around this, like faking an Accounting-Start in the radgroupreply table ( in MySQL )?
Yes. Look at the 'radzap' program. It functions by sending a spoofed 'Stop' packet to the server.
-Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless! \ Director, Engineering | @ @ | \ http://www.starnetwx.net \ (847) 963-0116 oOo---(_)---oOo--\------------------------------------------------------ \ Wholesale Internet Services - http://www.megapop.net
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
