Re: Freeradius for Voip
On Fri, 12 Mar 2004 10:52:56 +0800 ROY [EMAIL PROTECTED] wrote: I think I've ran into this too.. The problem was with text timezone not being recognized by Postgres. Here's what I've done: Thank you. I will try it and get back to you if it doesn't work! :) -- Costin Manda [EMAIL PROTECTED] - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Using IPPOOLS with FreeRadius +MYSQL
Hi All,
I have a FreeRadius + Mysql up and running fine under Mandrake Linux 9.1.
Questions here
How
can I assign pool of IP addresses to one Wireless AP
in MYSQL ?
I
read following reply in past but cant make out what U need to add in
MYSQL tables
# Example:
# radiusd.conf: ippool students { [...] }
# users file :
DEFAULT Group == students,
# Pool-Name := students
So, all you have to do is define several ippools
and assign
correct pool to each group.
ippool students {
range-start = 192.168.31.1
range-stop = 192.168.31.254
netmask =
255.255.255.0
session-db = ${raddbdir}/db.ippool
ip-index
= ${raddbdir}/db.ipindex
override = yes
} in radiusd.conf
Then add group details in mysql DB
or files
# users file : DEFAULT Group == students, Pool-Name
:= students
Regards,
Sagar
�
So, what do I do now?
Ok, I give up! I have no idea what I am doing. I need some yahoo/MSN messenger help because right now I am lost completely. My yahoo ID is interpointman2 and my MSN id is [EMAIL PROTECTED] I am trying to use freeradius for the following things: 0) make freeradius authorise the use of VoIP for test purposes. A simple account authorisation to work with this Cisco AS5350 VoIP Gateway. I should call, enter the account number, then be able to call internationally. 1) take RADIUS requests from the Cisco VoIP gateway and relay them to a billing software with its own radius server on a Windows computer (a software that works) 2) log everything that passes through it so that I can gain additional info about what is going on 3) make freeradius authorize and account access (do its own billing) I started working with the instructions and configurations in the /src/billing directory from the freeradius source directory. I followed exactly the instructions in the README, I fixed all errors that occured. And now, what is going on is that freeradius works, gets some messages from Cisco and logs them in a StartVoip and StopVoip postgresql tables. So, what do I do now? Where do I enter a username to be authorised? Where do I put the ammount of money available for that user? How do I get more information from the Cisco to put in the databases? Please help! I am working with : Freeradius 0.9.3 PostgreSQL 7.4.2 Perl 5.9.0 Thanks, Costin - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Help AvPair put to sql (Closed)
Hi All:
I have the same problem. Also I've updated to yesterday snapshot and I'm
still have the same problem.
Any new suggestion?
TIA
Eduardo Egue
- Original Message -
From: Daniil I. Pimonenko [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Thursday, March 11, 2004 5:23 PM
Subject: RE: Help AvPair put to sql (Closed)
Update Freeradius to daily snapshot and All ok. Sorry.
Hi all!
I cant insert the Av-Pair value to sql.
My NAS send me:
Cisco-AVPair = xpgk-src-codec=g729 T38fax
Cisco-AVPair = xpgk-dst-codec=g729 T38fax
Cisco-AVPair = h323-remote-id=304
In dictionary.cisco I insert same string:
ATTRIBUTE h323-remote-id 260 string
Cisco
In mssql.conf:
accounting_stop_query =exec av_runtimestorecall
@Service='%{h323-remote-id}', @timestart='%{h323-setup-time}'
And in MSsql profiler I see:
exec av_runtimestorecall @Service='',
@av_timestart='17:40:09.000 MSK Thu
Mar 11 2004'
What wrong? Help please!
WBR, Daniil I Pimonenko
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: testing radius server
run it radiusd -X On Thu, 11 Mar 2004 [EMAIL PROTECTED] wrote: -- Hi all I did read the faq to test my freeradius. radtest bob bob localhost 0 testing123 but I got an error, access deny I don't know what is the problem CAn you tell me how to check it? I installed it by freebsd port and run and doesn't get any error Thank you - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: Using IPPOOLS with FreeRadius +MYSQL
I think the correct way to do this would be to add the entry in
the radcheck table.
insert into radcheck (UserName,Attribute,op,Value)
values ('username','Pool-Name',':=','pool_name');
I'm not sure about this, maybe someone could second it.
Bart
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Sent: vrijdag 12 maart 2004 11:04
To: [EMAIL PROTECTED]
Subject: Using IPPOOLS with FreeRadius +MYSQL
Hi All,
I have a FreeRadius + Mysql up and running fine under Mandrake Linux 9.1.
Questions here
How can I assign pool of IP addresses to one Wireless AP in
MYSQL ?
I read following reply in past but can't make out what U need
to add in MYSQL tables ...
snip
Regards,
Sagar
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Behavior for rlm_ldap module
On Fri, 12 Mar 2004, Pierluigi Frullani wrote:
Hi all.
Reading through the C code of rlm_ldap I've noticed that the behavior for
this module, when it got a nosuchobject or a ambiguous reply is to not
reject the request, but pass it over for some other modules, either in
authorize then in authenticate.
This could be ok when you have a distributed ldap with different databses,
but could result in some false positive when using a replicated net of
ldap that have the same informations.
While I do have this latest configuration I've tried to figure out how I
could get an reject if the modules fail with this two options, and I made
a patch to rlm_ldap.c to have a configuration option for achieve this
behavior.
So, my patch add the : not_found_should_reject (boolean type yes/no)
keyword in ldap section of radiusd.conf, with a default value of no, so
the normal behavior is keeped, and if setted to yes, will make the module
to return a reject when it fails as described.
Could this patch be included in CVS, and so in next distribution ?
I 'd prefer a more general approach. As previously described by Alan
configurable failover could be extended so that something like this can be
possible:
authorize{
eap
chap
files
ldap {
notfound = reject
}
}
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 210 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Connecting the dots
Jamie Thain [EMAIL PROTECTED] wrote: Problem. I don't understand how 'authentication' gets passed through radiusd.conf and onto SQL config. It doesn't. We tried a cart-blanc upgrade to 0.93 but the 0.4 configs did not work, it complained about SQL not being an authentication type. Delete sql from the authentication section, remove all references to Auth-Type SQL, and the server should now figure it out on its own. The SQL authentication duplicated existing functionality, and was thus removed. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: Connecting the dots
Alan, Thanks for the help. How does the Cisco authenticate then to my SQL server. This is the part I am missing? regards:jamie Jamie Thain CEO - Sbi (Direct: (441) 278 6007Email: [EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Alan DeKok Sent: Friday, March 12, 2004 10:45 AM To: [EMAIL PROTECTED] Subject: Re: Connecting the dots Jamie Thain [EMAIL PROTECTED] wrote: Problem. I don't understand how 'authentication' gets passed through radiusd.conf and onto SQL config. It doesn't. We tried a cart-blanc upgrade to 0.93 but the 0.4 configs did not work, it complained about SQL not being an authentication type. Delete sql from the authentication section, remove all references to Auth-Type SQL, and the server should now figure it out on its own. The SQL authentication duplicated existing functionality, and was thus removed. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
simple question:
Ok, i have freeradius and postgreSQL to authorise and authenticate users for VoIP usage with a Cisco gateway. I have only one question: where do I put the account codes that let the people use the system and where do I put the money they have?! - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Instructions for using Freeradius with Active-Directory
After I posted yesterday that I had Free Radius authenticating to AD
successfully but I was interested in finding out how to do the
authentication via group membership I recieved a number of requests for
information on how I set up the basic Ldap authentication against
Active-Drectory.
Let me make it clear that I am VERY new to Freeradius and I make no
guarantees about this working for you and it is VERY likely that what I have
done is incorrect in some way. If I am I hope that those who are more
knowledgable will correct me. I cannot also make any claim that I
discovered this, all this information was found from searching the web and
this list and I hope that maybe I can compile any further suggestions and
information into a basic HOWTO or FAQ for others.
After saying that here a copy of the ldap section of my radiusd.conf. I
added some comments in an attempt to clarify what I did, I did not include
the rest since I have been playing with settings in the group areas and I
don't think it will work.
ldap {
#This is the name of your AD server
server = DC.domain.com
#This is the account/password and the container for it you
create in AD so free radius can login
#For example I created an account named free radius using
the password of password in my users
#container in a domain named domain1.root.domain.com
identity =
CN=freeradius,CN=Users,DC=domain1,DC=root,DC=domain,DC=com
password = password
#This is the base dn for the ldap search to occur from, so
using my example from above if my
#domain was domain1.root.domain.com I would use
DC=domain1,DC=root,DC=domain,DC=com
basedn = DC=domain1,DC=root,DC=domain,DC=com
#This is the search filter (I think...) and I had to find
what Active Directory called the user id.
#The default here did not seem to work for me, so I changed
it to the item below and it works
filter = (sAMAccountName=%u)
ldap_debug = 0x0028
# set this to 'yes' to use TLS encrypted connections
# to the LDAP database by using the StartTLS extended
# operation.
# The StartTLS operation is supposed to be used with normal
# ldap connections instead of using ldaps (port 689)
connections
start_tls = no
Thank you all!
Darren
**
The information and any files contained in this e-mail message are property of
WestPoint Stevens Inc., its subsidiaries or affiliates, and are intended only for use
of the individual or entity named above. If the reader of this message is not the
intended recipient, or the employee or agent responsible to deliver it to the intended
recipient, you hereby are notified that use, dissemination, distribution or copying of
this information is strictly prohibited. If you have received this communication in
error, please immediately notify us by return e-mail and destroy the original message.
Thank you.
**
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
freeradius-0.9.3 on openbsd/sparc64 and fastusers module
I've used freeradius since 0.5 on Solaris and 0.7.1 on openbsd/i386. I've now compiled 0.9.3 on openbsd/sparc64 (Netra T1) and I am getting an error from the rlm_fastusers module. My logfile shows Fri Mar 12 11:29:04 2004 : Error: no memory If I disable the fastusers module, radiusd loads up fine. I haven't tried 0.9.3 on openbsd/i386 - but this problem does not occur on my Solaris 8 system. Here's the full startup: [EMAIL PROTECTED] ~: /usr/local/sbin/radiusd -sfxxyz -l stdout Starting - reading configuration files ... reread_config: reading radiusd.conf Config: including file: /usr/local/etc/raddb/proxy.conf Config: including file: /usr/local/etc/raddb/clients.conf Config: including file: /usr/local/etc/raddb/snmp.conf Config: including file: /usr/local/etc/raddb/sql.conf main: prefix = /usr/local main: localstatedir = /usr/local/var main: logdir = /usr/local/var/log/radius main: libdir = /usr/local/lib main: radacctdir = /usr/local/var/log/radius/radacct main: hostname_lookups = no main: max_request_time = 30 main: cleanup_delay = 5 main: max_requests = 1024 main: delete_blocked_requests = 0 main: port = 0 main: allow_core_dumps = no main: log_stripped_names = no main: log_file = /usr/local/var/log/radius/radius.log main: log_auth = no main: log_auth_badpass = no main: log_auth_goodpass = no main: pidfile = /usr/local/var/run/radiusd/radiusd.pid main: bind_address = 216.191.240.2 IP address [216.191.240.2] main: roup = (null) main: usercollide = no main: lower_user = no main: lower_pass = no main: nospace_user = no main: nospace_pass = no main: checkrad = /usr/local/sbin/checkrad main: proxy_requests = yes proxy: retry_delay = 5 proxy: retry_count = 3 proxy: synchronous = no proxy: default_fallback = yes proxy: dead_time = 120 proxy: post_proxy_authorize = yes proxy: wake_all_if_all_dead = no security: max_attributes = 200 security: reject_delay = 1 security: status_server = no main: debug_level = 0 read_config_files: reading dictionary read_config_files: reading naslist read_config_files: reading clients read_config_files: reading realms radiusd: entering modules setup Module: Library search path is /usr/local/lib Module: Loaded expr Module: Instantiated expr (expr) Module: Loaded PAP pap: encryption_scheme = crypt Module: Instantiated pap (pap) Module: Loaded System unix: cache = no unix: passwd = (null) unix: shadow = (null) unix: group = (null) unix: radwtmp = /usr/local/var/log/radius/radwtmp unix: usegroup = no unix: cache_reload = 600 Module: Instantiated unix (unix) Module: Loaded preprocess preprocess: huntgroups = /usr/local/etc/raddb/huntgroups preprocess: hints = /usr/local/etc/raddb/hints preprocess: with_ascend_hack = no preprocess: ascend_channels_per_line = 23 preprocess: with_ntdomain_hack = no preprocess: with_specialix_jetstream_hack = no preprocess: with_cisco_vsa_hack = no Module: Instantiated preprocess (preprocess) Module: Loaded CHAP Module: Instantiated chap (chap) Module: Loaded realm realm: format = suffix realm: delimiter = @ Module: Instantiated realm (suffix) Module: Loaded fastusers fastusers: usersfile = /usr/local/etc/raddb/users_fast fastusers: acctusersfile = /usr/local/etc/raddb/acct_users fastusers: hashsize = 100 fastusers: stats = yes fastusers: compat = no fastusers: hash_reload = 600 no memory -- Andre Dalle [EMAIL PROTECTED] Shogun of Sorrow - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Accounting-Response sent on failure
Hi Alan, Your last response appears to contradict another answer you gave me last September. Here's that one, with more explanation of what's going on. Alan DeKok wrote: Dave Mason wrote: I have a Freeradius server (v0.8.1) where I may configure multiple accounting methods in radiusd.conf. These could be any of the ones supplied with Freeradius, like detail, radutmp, etc, or a new one that I wrote. My new one may succeed or fail in writing the accounting record. Currently, I return RLM_MODULE_FAIL if it fails and RLM_MODULE_OK if it succeeds. The problem is, if I run another method like detail first and it succeeds, then I run mine and it fails, the accounting group returns failure and no Accounting-Response is sent. Is that the correct behavior? That depends on what you mean by correct. It's the way it currently works... Since then, I've come to understand that this behavior was not correct. I think RFC 2866 says that if any one method succeeds, you have to send Accounting-Response. If not, should my accounting method return RLM_MODULE_NOOP or some other code in the failure case? I looked at rlm_detail..c and it returns RLM_MODULE_FAIL in its failure cases. I thought we should send Accounting-Response if any succeed, so the remaining Accounting-Requests will be sent. I think that's a good idea. The accounting modules can generally return NOOP, which is better in some cases. However, the SQL modules should return *something* useful when the database is down. This will allow configurable fail-over for SQL back-ends. Alan DeKok. With that, I changed my accounting module to return RLM_NOOP if it fails, so that other methods like detail can still trigger Accounting-Response. However, I now see that Accounting-Response always happens, even if no other method is configured except for acct_unique. This is probably because acct_unique always returns ok. Alan DeKok wrote: Dave Mason wrote: My module returns RLM_OK if it works and RLM_NOOP if not. Why? That's what RLM_MODULE_FAIL is for. RFC 2866 says that if an accounting record cannot be stored, no response should be sent. I find that if I have only two accounting modules turned on, acct_unique and my module, and my module returns noop because of a failure, Freeradius still sends an Accounting-Response. So make your module return FAIL. It appears that acct_unique always returns OK. Maybe that's the problem? No. Should acct_unique return noop? Only if it does nothing. FYI, my module needs to return noop on a failure, rather than RLM_FAILURE, so that other modules like detail still run even if mine fails. Then why are you wondering why FreeRADIUS responds with an Accounting-Response? You told it everything was OK. If you want detail to run even if your module fails, list detail before your module in the accounting section. Alan DeKok. Looks I misspoke in that last FYI. I do have detail before my module in radiusd.conf. As I mentioned, it runs fine even if mine does not, but if mine returns failure, then no response is sent, which violates the RFC. After all that, I guess my question is how to prevent the failure of one method from stopping Accounting-Response if others succeed, while at the same time, allowing the failure of a method to prevent Accounting-Response if no others succeed. Dave - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: accounting to mysql database
This is a good suggestion.
The MySQL schema should be changed, so that raddb is by default InnoDB.
This is exactly the reason I have been using PostgreSQL for the last 6
or so years.
Rather than using a different database for archived records just put
the archived
data into different tables. The SQL accounting system I built for
Cistron Radius
creates its tables as required automaticaly every month. I use a version
of xlat that
I wrote myself to define table and log names based on the timestamp of
the event.
I archive ancient detail tables, but keep summary tables for up to
three years,
because our customers want to check how their usage patterns change {I
have no
idea why, but when I changed it to a year I got lots of complaints}.
This method works very well for my current system because no table holds
more
than one months data. When I move to FreeRadius in the near future I
will have
to come up with an inovative way to handle this problem. I have been
helping
the development team with the PostgreSQL driver while ensuring none of my
entries break the MySQL driver.
The main issue I come across with tables that span no more than one
month, is
that if a user is online past the end of the month, their time is
accounted in the
next month. I need to come up with a way to split the records that
overlap the
end of a month {or year} that does not damage the integrity of the
record. I have
been considering a termination code of Split or somthing like it
indicating the
record Continues into the next table, but I havn't yet decided how to
indicate
that a record is a Continuation from a previous table.
It might be a good idea to have this type of functionality included with
FreeRadius in some way. I am interested in other peoples opinions on
this matter
and would like to hear your ideas.
Guy
Jeff Warnica wrote:
Not really a FreeRADIUS question, but anyway:
For complex queries and/or queries with large result sets MySQL, using
MyISAM tables, will produce a temporary table to fulfill the request. To
ensure that it gets a consistent (temporary) table, MySQL locks the
entire (real) table during this process, preventing writes. Reads can
happen, but (I think) any reads that are complex enough to cause a
temporary table will also queue up.
InnoDB table types do not suffer from this limitation.
Even if you can change table types it may be worth while to EXPLAIN some
of your SELECT queries, and read the MySQL docs on general query
optimizations. With about 5 minutes of effort, I managed to optimize
someone else's queries from ~20s to ~5s. Still locks the table, but for
significantly less time.
On Thu, 2004-03-11 at 16:31, Mike Sturdee wrote:
What might be causing this, or what could I do to resolve this?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: accounting to mysql database
How about this scenario:
(say it is March 1, SQL and col names from memory...)
The 'live' table keeps up to two months (and a few hours) of data
(January, February, March 1)
Some time on March 1 you rotate out January
CREATE TABLE jan_04 LIKE.
INSERT INTO jan_04 SELECT * FROM radacct WHERE
acctStartTime = 2004-02-01
UPDATE jan_04 SET acctStopTime = 2004-01-31 23:59:58,
acctSessionTime = acctSessionTime - 1 WHERE
acctStopTime = 2004-01-31 23:59:59
UPDATE jan_04 SET acctStopTime = 2004-01-31 23:59:59 WHERE
acctStopTime 2004-01-31 23:59:59
UPDATE jan_04 SET acctSessionTime =
UNIX_TIMESTAMP(TIMEDIFF(acctStopTime, acctStartTime) WHERE
acctStopTime = 2004-01-31 23:59:59
DELETE FROM radacct WHERE acctStartTime = 2004-02-01
UPDATE radacct SET acctStarTime = 2004-02-01 00:00:00 WHERE
acctStartTime 2004-02-01 00:00:00
UPDATE radacct SET acctSessionTime =
UNIX_TIMESTAMP(TIMEDIFF(acctStopTime, acctStartTime) WHERE
acctStarTime = 2004-02-01 00:00:00
You don't have to wait a month to do this, but that would pretty much
guarantee that all of the to-be-rotated sessions have been closed.
Any sessions that you see that end exactly at 23:59:59 on the last day
of the month are ones that are have continuation into the next month.
And yes, I recognize that this is the same as some y2k issues: 9/9/99,
12/31/99 meaning 'never' or 'infinite'.. But your only out a second.
On Fri, 2004-03-12 at 13:37, Guy Fraser wrote:
The main issue I come across with tables that span no more than one
month, is
that if a user is online past the end of the month, their time is
accounted in the
next month. I need to come up with a way to split the records that
overlap the
end of a month {or year} that does not damage the integrity of the
record. I have
been considering a termination code of Split or somthing like it
indicating the
record Continues into the next table, but I havn't yet decided how to
indicate
that a record is a Continuation from a previous table.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Accounting-Response sent on failure
Dave Mason [EMAIL PROTECTED] wrote: Your last response appears to contradict another answer you gave me last September. Here's that one, with more explanation of what's going on. Hmm... the easiest way to solve that would be to move the acct_unique module out of accounting, and into preacct. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: Connecting the dots
Alan, My problem is that I have to rewrite the SQL code to go fetch the right databases. I understand the authenticate means something different. I have to swap out a live ISP environment, so I don't have a go with the flow way of doing it. I need a little understanding to do this. Cisco Authenticate -- calls -- What code to fetch from SQL Cisco Authorize -- calls -- What code to fetch from SQL. There are the terms, authorize and authenticate in both radiusd.conf, and sql.conf. I do appreciate the help, I am not too thick, I just need to know what to do. After I need to be able to have AVPairs answered back to set speed and things, and there is a custom database, (billing software) that I need to do this with. All the best, -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Alan DeKok Sent: Friday, March 12, 2004 12:13 PM To: [EMAIL PROTECTED] Subject: Re: Connecting the dots Jamie Thain [EMAIL PROTECTED] wrote: Thanks for the help. How does the Cisco authenticate then to my SQL server. This is the part I am missing? It doesn't. That's the point. Even in 0.4, it didn't authenticate to the SQL server. Q: Do you really want all of your users to have accounts where they can access the SQL database? A: No, so you don't authenticate to the SQL server. You store passwords in SQL, and the server figures out what to do from there. To put it another way, your question is based on the wrong assumptions, so the question itself is wrong. Throw away your assumptions. My original answer stands. Please READ it, and BELIEVE it. The server will figure out what to do on its own. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Connecting the dots
Jamie Thain [EMAIL PROTECTED] wrote: My problem is that I have to rewrite the SQL code to go fetch the right databases. I don't see why. After I need to be able to have AVPairs answered back to set speed and things, and there is a custom database, (billing software) that I need to do this with. The server does this. It does this no differently than 0.4. I do appreciate the help, I am not too thick, I just need to know what to do. I already told you. Did you not read my messages? Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: case-insensitivity in regexp's for User-Name
Paul Dekkers [EMAIL PROTECTED] wrote: I was wondering: is it possible to make this match case-insensitive, other than using: DEFAULT User-Name =~ [EMAIL PROTECTED], Proxy-To-Realm := proxy-server It's a little difficult... you can hack the source code, but that's not a good choice. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: Connecting the dots
Alan, My problem is that I have to rewrite the SQL code to go fetch the right databases. I don't see why. Because the guy who wrote it originally wrote it wrong. I need more functionality. I looked back at what you wrote, I know what you said to do, no problem. However, because of my billing system I need to build a few more pieces than the average guy. I need to map services numbers in AV pairs, and have Freeradius perform that query for me. It would be really helpful if I knew what the server was doing so I could know when to do it. Regards:jamie - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: freeradius-0.9.3 on openbsd/sparc64 and fastusers module
OK, I will use the rlm_dbm module instead. ps. Freeradius is the best radius server I've used in 5 years, free or otherwise. On Fri, Mar 12, 2004 at 02:10:51PM -0500, Alan DeKok wrote: Andre Dalle [EMAIL PROTECTED] wrote: I've used freeradius since 0.5 on Solaris and 0.7.1 on openbsd/i386. I've now compiled 0.9.3 on openbsd/sparc64 (Netra T1) and I am getting an error from the rlm_fastusers module. My logfile shows Fri Mar 12 11:29:04 2004 : Error: no memory I don't know if the fastusers module is used by anyone any more. If I disable the fastusers module, radiusd loads up fine. If you don't need it, just delete it. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- Andre Dalle [EMAIL PROTECTED] Shogun of Sorrow - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Using dialup_admin with freeradius
Michael, Look at the Dialup Admin documentation on how to enable .php3 extension on your web server. Friday, March 12, 2004, 5:10:08 PM, michaelrflora escreveu: mnn Hello, I am a newbie with freeradius. I am trying to use mnn the dialup_admin interface but cannot get it to work with any mnn browser. IE does not recognlze the buttons (just gives php mnn code). Opera recognizes the buttons on the same machine but just mnn gives blank white frames (no text or fields). I assume this is mnn something to do with PHP but I cannot diagnose the problem. mnn Anyone had a similar problem? Is there a fix? mnn Regards, mnn Michael Flora mnn InfinET LLC mnn [EMAIL PROTECTED] mnn You know my method. It is founded upon the observance of mnn trifles. -- Sherlock Holmes in The Boscombe Valley Mystery. mnn __ mnn Introducing the New Netscape Internet Service. mnn Only $9.95 a month -- Sign up today at mnn http://isp.netscape.com/register mnn Netscape. Just the Net You Need. mnn New! Netscape Toolbar for Internet Explorer mnn Search from anywhere on the Web and block those annoying pop-ups. mnn Download now at mnn http://channels.netscape.com/ns/search/install.jsp mnn - mnn List info/subscribe/unsubscribe? See mnn http://www.freeradius.org/list/users.html -- Humberto Diógenes Administração de Redes -- Internet é Diginet http://www.digi.com.br -- Esta mensagem foi verificada pelo sistema de antivírus e acredita-se estar livre de perigo. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: testing radius server
Thank you for your help I run it and it gave me. Listening on IP address *, ports 1812/udp and 1813/udp, with proxy on 1814/udp. Ready to process requests. But how can I test it? I added it in the file client localhost testing123 and I don't know how to do it Thank you again run it radiusd -X On Thu, 11 Mar 2004 [EMAIL PROTECTED] wrote: -- Hi all I did read the faq to test my freeradius. radtest bob bob localhost 0 testing123 but I got an error, access deny I don't know what is the problem CAn you tell me how to check it? I installed it by freebsd port and run and doesn't get any error Thank you - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
