Re: (RADIATOR) HOW-TO ??

Wed, 27 Oct 1999 23:56:38 -0700 

No joy Hugh...
Our setup is basic... can you see the problem ?

I test ring in from the office with a proper setup in the normal users
file, and it does not act on the rejectusers, and continues to
authenticate on the normal users file.


----------------------------------
Trace 3

DbDir                           /usr/local/raddb/

LogFile                         /var/log/radius/%Y%mradiator.log

AuthPort 1645

AcctPort 1646

include /usr/local/raddb/clients

# You will probably want to change this to suit your site.
<Realm DEFAULT>
        AuthByPolicy ContinueWhileAccept
        <AuthBy FILE>
                AcceptIfMissing
                Filename        /usr/local/raddb/rejectusers
                Nocache
        </AuthBy>
        <AuthBy FILE>
                Filename        /usr/local/raddb/users
                Nocache
        </AuthBy>
        AcctLogFileName         /var/log/radius/%Y%mdetail.log
        PasswordLogFileName     /var/log/radius/%Y%mpassword.log
</Realm>

----------------------------------



On Wed, 27 Oct 1999 08:40:05 +1000, Hugh Irvine wrote:

>
>Hello Gary -
>
>On Tue, 26 Oct 1999, Gary wrote:
>> Is there some way to put users in the user file which only has a
>> Caller-Id as a check item ... No username, no password etc....
>> 
>> Basically we want to trap certain numbers, assign them to a
>> non-connected partition, give them 10 minute timers (or even just ten
>> seconds) and basically just cost them money for their telephone calls &
>> never provide any type of service to them.
>> 
>
>Yes, you could do this with chained AuthBy's:
>
># Configure an AuthBy FILE to reject calling-station-id's
>
><Handler ....>
>       AuthByPolicy ContinueWhileAccept
>       <AuthBy FILE>
>               AcceptIfMissing
>               Filename %D/reject-calling-station-id
>       </AuthBy>
>       <AuthBy ....>
>               ....
>       </AuthBy>
>       ....
></Handler>
>
>And then in the file "reject-calling-station-id":
>
># Users file to reject calling-station-id's
>
>DEFAULT        Calling-Station-Id = 12345..., Auth-Type = Reject
>
>DEFAULT        Calling-Station-Id = 7890..., Auth-Type = Reject
>
>....
>
>
>Of course, instead of Auth-Type = Reject, you could return anything you like
>including an IP address from a locked-in pool such as you describe.
>
>hth
>
>Hugh
>
>
>--
>Radiator: the most portable, flexible and configurable RADIUS server
>anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
>Platypus, Freeside, TACACS+, PAM, external, etc etc on Unix, Win95/8,
>NT, Rhapsody
>

-------------------------------
Ausmail 
Your virtual home on the net.
Email, News & Home pages.
-------------------------------
Coming soon !!


-------------------------------
Ausmail 
Your virtual home on the net.
Email, News & Home pages.
-------------------------------
Coming soon !!


===
Archive at http://www.thesite.com.au/~radiator/
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

Reply via email to