Hi all,
I've asked Mike if he minds me making a short announcement on the
list. He says fine so here goes...
(I believe Mike has put a reference to it in the Radiator FAQ too.)
I've written a radius packet analyser and recently released in under
the GPL. We've very quickly adopted it as our primary diagnosis
tool on our radius servers. Here is a snippet from the README.
Hope you find it useful,
Paul Rhodes
====
Radstock is primarily a sysadmins tool to diagnose problems with
radius server configurations. It was written because I always found
snoop/tcpdump to be a poor alternative, and trying to use these on
heavily loaded, complex radius servers proved to be a nightmare.
It provides the ability to fully decode each packet. Here is some
sample output.
unix# radstock
Request (20) - 192.168.10.113:1645 -> 10.44.1.1:1645 (L119)
NAS-IP-Address Len 6 192.168.1.12
NAS-Port-Id Len 6 24
NAS-Port-Type Len 6 Async
User-Name Len 30 "bill"
Called-Station-Id Len 8 "900005"
Calling-Station-Id Len 12 "2012345678"
CHAP-Password Len 19 "******Q***i*"**-*"
Service-Type Len 6 Framed-User
Framed-Protocol Len 6 PPP
Request (b6) - 10.44.1.1:58594 -> 10.44.7.9:1645 (L135)
User-Name Len 30 "bill"
CHAP-Password Len 19 "******Q***i*"**-*"
NAS-IP-Address Len 6 192.168.1.12
NAS-Port-Id Len 6 24
Service-Type Len 6 Framed-User
Framed-Protocol Len 6 PPP
Called-Station-Id Len 8 "900005"
Calling-Station-Id Len 12 "2012345678"
NAS-Port-Type Len 6 Async
Accept (b6) - 10.44.1.1:58594 <- 10.44.7.9:1645 (L59)
Service-Type Len 6 Framed-User
Framed-Protocol Len 6 PPP
Framed-IP-Address Len 6 255.255.255.254
Ascend-Idle-Limit Len 6 1200
Accept (20) - 192.168.10.113:1645 <- 10.44.1.1:58595 (L44)
Service-Type Len 6 Framed-User
Framed-Protocol Len 6 PPP
Framed-IP-Address Len 6 255.255.255.254
Ascend-Idle-Limit Len 6 1200
However, the key feature of radstock is its ability to filter the
packets shown based on any attribute. It will also listen out for
responses to matched packets and display these as well. An example
filter would be (all on one line):
radstock -e "(user-name = paul or user-name = bob) and
exists nas-port-id"
You can also get radstock to read filters from a file or stdin. For
further details on how to write a radius filter, see the manual page.
For those of you who are interested as to the name - here's a
clue. This program was written to replace a program called radsnoop.
COMPILING
To compile radstock you need the following
o libpcap (if you don't have this, try http://www.tcpdump.org)
o flex or lex
o bison/yacc
Once you have these, the following three commands should do just about
all you need.
./configure
make
Please note: It installs it's own dictionary in /usr/local/etc/raddb.
Please be aware of this before running the make install section.
make install
It has been successfully compiled on Linux and Solaris
platforms. Whether it works on them is a completely different story(!)
===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
