How to compile freeradius with sqlcounter module on debian/ubuntu
hi, I'm trying to compile freeradius with sqlcounter module on my ubuntu dapper with no success. Actually I can compile it but at the end I have no rlm_sqlcounter-x.x.so in my /usr/lib/freeradius directory. This is how I proceeded: * apt-get source freeradius * apt-get build-dep freeradius * I added --with-experimental-modules in debian/rules file * dpkg-buildpackage -rfakeroot -uc -us Is this way correct? freeradius version in dapper is 1.0.5-2 many thanks Gabriele - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: How to compile freeradius with sqlcounter module on debian/ubuntu
Gabriele Vidali wrote: hi, I'm trying to compile freeradius with sqlcounter module on my ubuntu dapper with no success. Actually I can compile it but at the end I have no rlm_sqlcounter-x.x.so in my /usr/lib/freeradius directory. This is how I proceeded: * apt-get source freeradius * apt-get build-dep freeradius * I added --with-experimental-modules in debian/rules file * dpkg-buildpackage -rfakeroot -uc -us Is this way correct? freeradius version in dapper is 1.0.5-2 many thanks Gabriele Well I did something a bit different to get the rlm_policy module as a part of my deb package. I patched configure to allow it to accept a list of modules which I added into debian/rules configure invocation http://apt-repo.ttec.com - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: How to compile freeradius with sqlcounter module on debian/ubuntu
Gabriele Vidali wrote: I'm trying to compile freeradius with sqlcounter module on my ubuntu dapper with no success. You could try to build a Debian package from the latest release: $ wget ftp://ftp.freeradius.org/pub/radius/freeradius-1.1.0.tar.gz $ tar zxf freeradius-1.1.0.tar.gz $ cd freeradius-1.1.0 $ fakeroot dpkg-buildpackage -b -uc $ sudo dpkg -i ../freeradius_1.1.0-0_i386.deb It should work out of the box, with no file editing. The package will contain the sqlcounter module, too. -- Nicolas Baradakis - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
mschap and users file
Right now I'm only using mschap and the users file to authenticate a user, but I'm getting: modcall: entering group Auth-Type for request 7 rlm_mschap: No User-Password configured. Cannot create LM-Password. rlm_mschap: No User-Password configured. Cannot create NT-Password. rlm_mschap: Told to do MS-CHAPv2 for wifi with NT-Password rlm_mschap: FAILED: No NT/LM-Password. Cannot perform authentication. rlm_mschap: FAILED: MS-CHAP2-Response is incorrect although on my users file I have: wifi Crypt-Password == BcFvDSx8ydTSk wifi lmPassword == 02D093CE93078E8FAAD3B435B51404EE wifi ntPassword == CAF13C4F321B608B27FD75D2549BA53C can't I have my users file only with encrypted passwords? thanks -- **_** * *André Ventura Lemos** **Software Engineer** **Critical Software, SA** **MSN:**[EMAIL PROTECTED] **GSM:****+351916401042** **TLF:****+351239989100** DISCLAIMER: This message may contain confidential information or privileged material and is intended only for the individual(s) named. If you are not a named addressee and mistakenly received this message you should not copy or otherwise disseminate it: please delete this e-mail from your system and notify the sender immediately. E-mail transmissions are not guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete or contain viruses. Therefore, the sender does not accept liability for any errors or omissions in the contents of this message that arise as a result of e-mail transmissions. Please request a hard copy version if verification is required. Critical Software. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Ippool and NAS
Title: Ippool and NAS
Hi Freeradius users.
I have compiled and installed the 1.1.0 version of Freeradius and made the basic configurations and everything works fine.
Now I have 5 NAS boxes that is accessing the radius server the problem is that I want each NAS to use a set if ipadresses.
So for NAS(1) the radius should return ippool(1) and so on.
I have looked at the FAQ and have been searching in the mail archive for several hours and have only seen people asking about allocating ipadresses for specific user(s) or group(s) but not for a NAS.
Could anyone please help me to get me started on this.
Best Regards
/Daniel Johansson
Below is my NAS boxes in clients.conf
# Client for RTP-RFTN, GGSN 1
client 192.168.9.1 {
secret = xxx
shortname = RTP-RFTN
}
# Client for S99, GGSN 249
client 192.168.15.249 {
secret = xxx
shortname = S99 GGSN 249
}
# Client for S98, GGSN 254
client 192.168.13.254 {
secret = xxx
shortname = S98 GGSN 254
}
# Client for GLANA, GGSN 250
client 192.168.11.250 {
secret = xxx
shortname = GLANA GGSN 250
}
# Client for Telia GLANA, GGSN 249
client 192.168.11.249 {
secret = xxx
shortname = GLANA GGSN 249
}
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Simple Question about LDAP
Whee can i define that freeradius should look at the ldap database for user accounts and not at the users list? Greetings Armin - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Ippool and NAS
Hello,
where you radius server and users config file ?
- Original Message -
From: Johansson, Daniel [EMAIL PROTECTED]
To: freeradius-users@lists.freeradius.org
Subject: Ippool and NAS
Date: Thu, 19 Jan 2006 15:18:59 +0100
Hi Freeradius users.
I have compiled and installed the 1.1.0 version of Freeradius and made
the basic configurations and everything works fine.
Now I have 5 NAS boxes that is accessing the radius server the problem
is that I want each NAS to use a set if ipadresses.
So for NAS(1) the radius should return ippool(1) and so on.
I have looked at the FAQ and have been searching in the mail archive for
several hours and have only seen people asking about allocating
ipadresses for specific user(s) or group(s) but not for a NAS.
Could anyone please help me to get me started on this.
Best Regards
/Daniel Johansson
Below is my NAS boxes in clients.conf
# Client for RTP-RFTN, GGSN 1
client 192.168.9.1 {
secret = xxx
shortname = RTP-RFTN
}
# Client for S99, GGSN 249
client 192.168.15.249 {
secret = xxx
shortname = S99 GGSN 249
}
# Client for S98, GGSN 254
client 192.168.13.254 {
secret = xxx
shortname = S98 GGSN 254
}
# Client for GLANA, GGSN 250
client 192.168.11.250 {
secret = xxx
shortname = GLANA GGSN 250
}
# Client for Telia GLANA, GGSN 249
client 192.168.11.249 {
secret = xxx
shortname = GLANA GGSN 249
}
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
+-+-+-+ BEGIN PGP SIGNATURE +-+-+-+
Version: GnuPG v1.4.2 (GNU/Linux)
.-. .-._
: : : : :_;
.-' : .--. : `-. .-. .--. ,-.,-.
' .; :' '_.'' .; :: :' .; ; : ,. :
`.__.'`.__.'`.__.':_;`.__,_;:_;:_;
Kai Ozgur Geek
Network Engineer
PGP ID: B1B63B6E
+-+-+-+ END PGP SIGNATURE +-+-+-+
--
___
Check out the latest SMS services @ http://www.linuxmail.org
This allows you to send and receive SMS through your mailbox.
Powered by Outblaze
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: Simple Question about LDAP
Hi, you can adjust the LDAP section in radiusd.conf file to your LDAP server ( it's a directory rather than a database ;) ). When you have configured the connection between freeradius and LDAP, add ldap to autentication section and test it with radtest if you get an Access-Accept for an user from LDAP. Regards, Edvin Seferovic -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] g] On Behalf Of Armin Krämer Sent: Donnerstag, 19. Jänner 2006 15:50 To: 'FreeRadius users mailing list' Subject: Simple Question about LDAP Whee can i define that freeradius should look at the ldap database for user accounts and not at the users list? Greetings Armin - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Simple Question about LDAP
Am Donnerstag, 19. Januar 2006 15:49 schrieb Armin Krämer: Whee can i define that freeradius should look at the ldap database for user accounts and not at the users list? Greetings Armin Read rlm_ldap in the doc directory. -- Dr. Michael Schwartzkopff MultiNET Services GmbH Bretonischer Ring 7 85630 Grasbrunn Tel: (+49 89) 456 911 - 0 Fax: (+49 89) 456 911 - 21 mob: (+49 174) 343 28 75 PGP Fingerprint: F919 3919 FF12 ED5A 2801 DEA6 AA77 57A4 EDD8 979B Skype: misch42 pgpEO4bfk6KLO.pgp Description: PGP signature - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Question about dialup-admin
I've downloaded dialup-admin. I've changed few values from the admin.conf file, such as mysql username and password, and path to the different directories. I also created the badusers table in the radius in the mysql. I opened a web browser and I can see the accounting is working ok, but I can´t see any bad users. I've already enabled the log auth in the radiusd.conf (log_auth = yes), so now I´ve got some entriesin the /var/log/radius/radius.log. I've been reading the README file, and it says that the bin/log_badloginsit will constantly check the radiusd.log file. But it seems that this doesn't happen. I hope someone knows how I can resolve this problem, or another solution so I can get the badusers. Thanks. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Windows PPTP and Cisco VPN Concentrator
Hello, I'm trying to implement one pptp vpn between one windows xp and one vpn concentrator. I've no problems with the Cisco vpn client but I get this error when I try the windows software: In the software: The PPP link control protocol was terminated. In the vpn concentrator: User [] disconnected. Cannot resolve an IP address for remote peer. In debug mode, freeradius gives this output:; auth: type MS-CHAP Processing the authenticate section of radiusd.conf modcall: entering group Auth-Type for request 0 rlm_mschap: Told to do MS-CHAPv2 for toze3 with NT-Password rlm_mschap: adding MS-CHAPv2 MPPE keys modcall[authenticate]: module mschap returns ok for request 0 modcall: group Auth-Type returns ok for request 0 Sending Access-Accept of id 38 to AA.BB.CC.DD:1033 MS-CHAP2-Success = 0x02533d33463435453134384442343443393036364636304541413941313436 4630463137343639 MS-MPPE-Recv-Key = 0x7bece896d285fa327b97e150aa13cc9d MS-MPPE-Send-Key = 0x91606621ce8a086e8a961d21bf250787 MS-MPPE-Encryption-Policy = 0x0002 MS-MPPE-Encryption-Types = 0x0004 Finished request 0 Can someone help me with this? I've search google for some time now and I still can't solve this. Regards, Antonio - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: mschap and users file
=?ISO-8859-1?Q?Andr=E9_Lemos?= [EMAIL PROTECTED] wrote: Right now I'm only using mschap and the users file to authenticate a user, but I'm getting: ... Read the REST of the debug log. It will show you that the entries you added to the users file aren't being matched. although on my users file I have: wifi Crypt-Password == BcFvDSx8ydTSk wifi lmPassword == 02D093CE93078E8FAAD3B435B51404EE wifi ntPassword == CAF13C4F321B608B27FD75D2549BA53C There is no lmPassword attribute, or ntPassword attribute in FreeRADIUS. Even if there was, you're using ==, which the man users page says is a comparison. Since there is no lmPassword in the packet, the comparison will always fail, and that entry will never be matched. Again, debugging mode tells you that these entries are not being matched. That's why you should read ALL of the debug logs, not just thelast little bit. can't I have my users file only with encrypted passwords? Yes, but you have to use the correct attribute names, and use := wifi NT-Password := 0xCAF13C4F321B608B27FD75D2549BA53C That will work. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Ippool and NAS
Johansson, Daniel [EMAIL PROTECTED] wrote: Now I have 5 NAS boxes that is accessing the radius server the problem is that I want each NAS to use a set if ipadresses. So for NAS(1) the radius should return ippool(1) and so on. That can be done. I have looked at the FAQ and have been searching in the mail archive for several hours and have only seen people asking about allocating ipadresses for specific user(s) or group(s) but not for a NAS. It's not in the FAQ or default config because it's a rare configuration. Instead, the documentation describes the pieces necessary to solve the problem, but not every specific solution. In your case, you want entries in the users to match the NAS Client-IP-Address, and to set the Pool-Name attribute. The sample configuration in radiusd.conf works, except it's keyed off of Unix group, and not Clinet-IP-Address. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: mschap and users file
André Lemos wrote: Right now I'm only using mschap and the users file to authenticate a user, but I'm getting: modcall: entering group Auth-Type for request 7 rlm_mschap: No User-Password configured. Cannot create LM-Password. rlm_mschap: No User-Password configured. Cannot create NT-Password. rlm_mschap: Told to do MS-CHAPv2 for wifi with NT-Password rlm_mschap: FAILED: No NT/LM-Password. Cannot perform authentication. rlm_mschap: FAILED: MS-CHAP2-Response is incorrect although on my users file I have: wifi Crypt-Password == BcFvDSx8ydTSk wifi lmPassword == 02D093CE93078E8FAAD3B435B51404EE wifi ntPassword == CAF13C4F321B608B27FD75D2549BA53C can't I have my users file only with encrypted passwords? Wrong syntax. You want: wifiCrypt-Password := blah, NT-Password := foo Note that the := operator is used to set, and all the configure items are on the same line. thanks - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Ippool and NAS
Johansson, Daniel wrote:
Hi Freeradius users.
I have compiled and installed the 1.1.0 version of Freeradius and made
the basic configurations and everything works fine.
Now I have 5 NAS boxes that is accessing the radius server the problem
is that I want each NAS to use a set if ipadresses.
So for NAS(1) the radius should return ippool(1) and so on.
In the users file:
DEFAULT NAS-IP-Address == 10.1.2.3, Pool-Name := pool1
Or possibly if you have more stuff in the users file:
DEFAULT NAS-IP-Address == 10.1.2.3, Pool-Name := pool1
Fall-Through = yes
...the in radiusd.conf:
modules {
ippool pool1 {
# config here
}
ippool pool2 {
# config here
}
}
authorize {
# blah
}
authenticate {
# blah
}
post-auth {
pool1
pool2
}
accounting {
# blah, then
pool1
pool2
}
HTH
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
how to set crypted password in 'users' file?
Hi all, I'm able to make clear text password work by adding entry in 'users' file: mqiuAuth-Type := Local, User-Password == clear-text However, cut and past the crypted password from /etc/shadow to the entry failed: mqiuAuth-Type := Local, User-Password == $1$CWOjXm2v$dzjrc385t1iQXMN0 Change above Auth-Type to pam or unix does not work. My question is how to set an crypted password in 'users' file? In addition, how to set different passwords for the same user in different hosts? something like: [EMAIL PROTECTED]/24Auth-Type := Local, User-Password == pass1 [EMAIL PROTECTED]/24Auth-Type := Local, User-Password == pass2 ... [EMAIL PROTECTED]/24Auth-Type := Local, User-Password == passN I have freeradius-1.0.4-1.FC4.1 installed. Thanks a lot, Min - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: CIsco Pix and FreeRadius....
Read the comments in radiusd.conf. [EMAIL PROTECTED] 1/18/2006 10:49:23 am Done that fixed the issueNow I want to use ldap with freeradius is that possible? Tripp Sills Senior Network Engineer - Information Technology [EMAIL PROTECTED] Direct Mail Express 2441 Bellevue Avenue Extension Daytona Beach, FL Office # (386) 271 - 3288 Cell# (386) 566 - 4053 Fax# (386) 271 - 3289 The information in this Internet e-mail, including attachments, is confidential and may be legally privileged. It is intended solely for the addressee. Access by any other person to this Internet e-mail is not authorized. If you are not the intended recipient, please delete this Internet e-mail and notify me by return e-mail or at (386) 271-3288. Any unauthorized disclosure of the parties to this e-mail, and any unauthorized disclosure, dissemination, distribution, copying, or any action taken or omitted to be taken in reliance on this email, including attachments, is prohibited and may be unlawful. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Alan DeKok Sent: Wednesday, January 18, 2006 11:22 AM To: FreeRadius users mailing list Subject: Re: CIsco Pix and FreeRadius Sills, Tripp [EMAIL PROTECTED] wrote: I am not altering the users file all I have in it is : I was using the same username and password for both. Below is my users file. Perhaps I was unclear. *YOU* should read the users file and compare it's entries to what's in the debug log. If you don't understand what you configured or how it works, then you're never going to solve the problem. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Problem translating users file to Postgre DB
Hello, I tried to port my users file to PostgreSQL today, but I am having a great deal of confusing trouble trying to get it to work. I am using the postgresql.conf file that came with Freeradius 1.1.0 and am having no trouble getting Freeradius to connect to Postgre. My problem comes when trying to authenticate to my firewall. First, I will explain the working files-only configuration: : huntgroups : switches NAS-IP-Address == 10.20.10.x switches NAS-IP-Address == 10.20.10.x switches NAS-IP-Address == 10.20.10.x switches NAS-IP-Address == 127.0.0.1 firewall NAS-IP-Address == 10.20.10.x firewall NAS-IP-Address == 10.20.10.x : users : DEFAULT Auth-Type = System Fall-Through = 1 admin Auth-Type := Kerberos, Huntgroup-Name == switches Service-Type == Administrative-User admin Auth-Type := Kerberos, Huntgroup-Name == firewall NS-Admin-Privilege = All-VSYS-Root-Admin When I do this with files only, it works great. I then tried to get the database setup to work. I left the huntgroups file alone and commented out the 2 'admin' entries in users. Now, this is my setup in the database that is not working: :: radgroupcheck :: id | groupname | attribute| op |value +-+++- 1 | switches | Huntgroup-Name | == | switches 2 | firewall | Huntgroup-Name | == | firewall 5 | firewall | Auth-Type | := | Kerberos 6 | switches | Auth-Type | := | Kerberos : radgroupreply : id | groupname | attribute | op |value +-+++- 2 | firewall | NS-Admin-Privilege | = | All-VSYS-Root-Admin 1 | switches | Service-Type | = | Administrative-User ::: usergroup ::: id | username | groupname +--+- 1 | admin | switches 2 | admin | firewall In this setup, I can authenticate with 'admin' using my Kerberos password for the 'switches' huntgroup, but I cannot authenticate to 'firewall'. Also, when I do radtest for an IP in the switches huntgroup, I get a reply of both 'Service-Type' and 'NS-Admin-Privilege', when I assumed that this would give me one or the other since they are in different groups. When running radiusd with the '-X' flag and trying to authenticate to firewall, I get the error: rlm_sql (sql): No matching entry in the database for request from user [admin] This shouldn't be the case since the user 'admin' is part of both groups. I am at a loss at this point what could be the problem. If anyone has any insight, I would greatly appreciate it. Thanks in advance. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: how to set crypted password in 'users' file?
Min Qiu [EMAIL PROTECTED] wrote: However, cut and past the crypted password from /etc/shadow to the entry failed: mqiuAuth-Type := Local, User-Password == $1$CWOjXm2v$dzjrc385t1iQXMN0 UseL Crypt-Password := $1$CWOjXm... Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
1.0.5 PEAP issue with Edirectory
Hi, Enviornment: FreeRadius version: 1.0.5 OS: Red Hat Linux ES3 Directory: Edirectory Auth-Type: EAP PEAP (EAP-MD5 worked though) I built FreeRadius 1.0.5 with (--with-edir). While sending EAP-PEAP request, the freeradius crashed. gdb backtrace indicated a problem in libssl. I was using openssl 0.9.7a. Tried with other versions of openssl with following results. . 0.9.6a 0.9.8a -- did not compile . 0.9.6i - did not link However, i had a CVS snapshot of 12/19/05. using that, both EAP-MD5 and EAP-PEAP worked. For some reason i will have to use 1.0.5. I was wondering if anybody has success with 1.0.5/Edirectory/PEAP. If yes, which openssl i should use. I can provide logs or stack trace if needed. Thanks Anup - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
file detail
Hi I run radiusd and the service up without errors, however i try to see file detail and it not appear. /usr/local/var/log/radius/radacct/ users are authenticating, but file detail is not create.Why ?? where is the problem? Thanks Alvaro - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: file detail
=?ISO-8859-1?Q?Alvaro_Qui=F1ones?= [EMAIL PROTECTED] wrote: I run radiusd and the service up without errors, however i try to see file detail and it not appear. /usr/local/var/log/radius/radacct/ users are authenticating, but file detail is not create.Why ?? where is the problem? Is your NAS sending accounting packets? The server can only log to detail if it is sent data to log. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: LEAP
Hi , Please use the latest version of FreeRADIUS (1.1.0). This includes the the eDirectory integration and you should be able to set up LEAP authentication with it. Please refer to the following links which contain documentation on eDirectory integration with FreeRADIUS. http://www.novell.com/documentation/edir_radius/index.html -Sayantan. rad_recv: Access- Request packet from host 172.31.1.79:1645, id=5, length=131 User- Name = testrad Framed- MTU = 1400 Called- Station- Id = 0015.f947.8560 Calling- Station- Id = 0012.f0e3.7896 Service- Type = Login- User Message- Authenticator = 0xa00609077f82a3396080dcdcc8019804 EAP- Message = 0x0201000c0174657374726164 NAS- Port- Type = Wireless- 802.11 NAS- Port = 466 NAS- IP- Address = 172.31.1.79 NAS- Identifier = TESTAP modcall: entering group authorize for request 1 modcall[authorize]: module preprocess returns ok for request 1 rlm_realm: No '@' in User- Name = testrad, looking up realm NULL rlm_realm: No such realm NULL modcall[authorize]: module suffix returns noop for request 1 users: Matched DEFAULT at 152 modcall[authorize]: module files returns ok for request 1 modcall[authorize]: module chap returns noop for request 1 rlm_ldap: - authorize rlm_ldap: performing user authorization for testrad radius_xlat: '(uid=testrad)' radius_xlat: 'o=Village' ldap_get_conn: Got Id: 0 rlm_ldap: performing search in o=Village, with filter (uid=testrad) rlm_ldap: checking if remote access for testrad is allowed by dialupAccess rlm_ldap: looking for check items in directory... rlm_ldap: looking for reply items in directory... rlm_ldap: user testrad authorized to use remote access ldap_release_conn: Release Id: 0 modcall[authorize]: module ldap returns ok for request 1 modcall: group authorize returns ok for request 1 rad_check_password: Found Auth- Type LDAP auth: type LDAP modcall: entering group Auth- Type for request 1 rlm_ldap: - authenticate rlm_ldap: Attribute User- Password is required for authentication. modcall[authenticate]: module ldap returns invalid for request 1 modcall: group Auth- Type returns invalid for request 1 auth: Failed to validate the user. Login incorrect: [testrad/no User- Password attribute] (from client testap port 466 cli 0012.f0e3.7896) Delaying request 1 for 1 seconds Finished request 1 Going to the next request --- Walking the entire request list --- Waking up in 1 seconds... --- Walking the entire request list --- Waking up in 1 seconds... --- Walking the entire request list --- Sending Access- Reject of id 5 to 172.31.1.79:1645 Waking up in 4 seconds... I can authenticate using a small utility called NTRadPing Test Utility from my desktop directly connecting to Freeradius. any thoughts? Thank you, John Peebles Village of Hoffman Estates IS Specialist (847) 882- 9100 x2500 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Question about Session start
Dear All, I have implemented freeradius in Redhat box. And I have some questions about it. It have searched the web but still can't find a clue or i just missed it :(. Also my questions are: 1. How do we start the session? I have send the request to the server and got access_accepted. And as I know the session is start after we send the accounting_request and get response from the server. The problem is how to do that using command prompt? My Nas is Suse box. I use this command to send acct_request echo User-Name= Anna| radclient 10.1.0.76 acct -x testing123 Is that right? or is there any place I can refer to use the radclient command? 2. Do I need to write external script to run the command? Because I want to use the session time out but seems still not working.(because I don't know how to start the session) 3. Where should I put the acc_type. Is it in server side or nas side? I really hope someone can help me (please...) Thanks a lot in advance Best Regards, Santy __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Debian + Exec-Program = Zombie process
Alan DeKok wrote: George Chelidze [EMAIL PROTECTED] wrote: Zombies add up even when I recompile without --without-threads option. That sounds like a serious problem. Looking at the source, I don't see why, though. If I understood things correctly, if I compile radius without threads support reap_children() won't be called and zombies will add up? No. See radiusd.c, look for waitpid(). That code reaps the zombies when there are no threads. I have checked the source, waitpid() is really there but I don't understand why zombies add up when 1.0.1 is compiled without threads. I found a solution (compiled 1.0.1 with --with-threads option) and it works for me, but I'd like to help freeradius team (if I can) to find the reason why it's broken (at least in my environment) in newer versions. Can I make some tests to narrow down the problem, or some other actions. Best Regards, George - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
