On Thu, 30 Dec 2004, Thor Spruyt wrote:
> Dustin Doris wrote:
> > I was just able to get it working on a test box. Here is what I did.
> >
> > radiusd.conf
> >
> > under the files section, make sure you have it setup to read that file
> >
> > files {
> > ...
> > preproxy_usersfile = ${confdir}/preproxy_users
> > ...
> > }
> >
> > under the pre_proxy section, make sure you have files listed
> >
> > pre_proxy {
> > ...
> > files
> > ...
> > }
> >
> > in preproxy_users, add it in the same syntax as the example, replacing
> > User-Name with the WISPr
> >
> > DEFAULT
> > Called-Station-Id := `%{WISPr-Location-ID}`
> >
> >
> > Make sure your dictionary file is including the wispr dictionary
> >
> > $INCLUDE dictionary.wispr
> >
> >
> > my example.
> >
> >
> > rad_recv: Access-Request packet from host 127.0.0.1:2717, id=42,
> > length=67 User-Name = "[email protected]"
> > User-Password = "test"
> > WISPr-Location-ID = "333333"
> > Processing the authorize section of radiusd.conf
> > modcall: entering group authorize for request 0
> > modcall[authorize]: module "preprocess" returns ok for request 0
> > modcall[authorize]: module "chap" returns noop for request 0
> > modcall[authorize]: module "mschap" returns noop for request 0
> > rlm_realm: Looking up realm "test.com" for User-Name =
> > "[email protected]" rlm_realm: Found realm "test.com"
> > rlm_realm: Adding Stripped-User-Name = "test"
> > rlm_realm: Proxying request from user test to realm test.com
> > rlm_realm: Adding Realm = "test.com"
> > rlm_realm: Preparing to proxy authentication request to realm
> > "test.com"
> > modcall[authorize]: module "suffix" returns updated for request 0
> > rlm_eap: No EAP-Message, not doing EAP
> > modcall[authorize]: module "eap" returns noop for request 0
> > users: Matched test at 216
> > modcall[authorize]: module "files" returns ok for request 0
> > modcall: group authorize returns updated for request 0
> > Processing the pre-proxy section of radiusd.conf
> > modcall: entering group pre-proxy for request 0
> > preproxy_users: Matched DEFAULT at 18
> > radius_xlat: '333333'
> > modcall[pre-proxy]: module "files" returns ok for request 0
> > modcall: group pre-proxy returns ok for request 0
> > Sending Access-Request of id 0 to 172.20.1.249:1812
> > User-Name = "test"
> > User-Password = "test"
> > WISPr-Location-ID = "333333"
> > NAS-IP-Address = 127.0.0.1
> > Proxy-State = 0x3432
> > Called-Station-Id := "333333"
>
> I got it also to work with DEFAULT, but not with a specific realm!
>
Hmm, forgot about that. You only want to do this for certain realms? I
will try that too....
It worked! Here is what I put in preproxy_users
DEFAULT Realm == "test.com"
Called-Station-Id := `%{WISPr-Location-ID}`
Then I added test2.com realm to my proxy.conf file and sent over two
tests. One with [email protected] and one with [EMAIL PROTECTED]
test.com realm
rad_recv: Access-Request packet from host 127.0.0.1:2850, id=119,
length=67
User-Name = "[email protected]"
User-Password = "test"
WISPr-Location-ID = "333333"
Sending Access-Request of id 0 to 172.20.1.249:1812
User-Name = "test"
User-Password = "test"
WISPr-Location-ID = "333333"
NAS-IP-Address = 127.0.0.1
Proxy-State = 0x313136
Called-Station-Id := "333333"
**It added Called-Station-Id as it should!
test2.com realm
rad_recv: Access-Request packet from host 127.0.0.1:3672, id=126,
length=68
User-Name = "[EMAIL PROTECTED]"
User-Password = "test"
WISPr-Location-ID = "333333"
Sending Access-Request of id 0 to 172.20.1.249:1812
User-Name = "test"
User-Password = "test"
WISPr-Location-ID = "333333"
NAS-IP-Address = 127.0.0.1
Proxy-State = 0x313236
** Didn't add Called-Station-Id.
Looks like that should work for you.
-Dusty Doris
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
