automated response
I will be out of the office from December 11th thru the 13th. If you need immediate assistance please contact [EMAIL PROTECTED] Thank you, - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Choosing The best replication system.
Sarkis Gabriel wrote: At the moment i have 4 pops around the country and all are feeding from a satellite links, as the company is growing it is becoming very hard to maintain and we are looking to have a central MySQL DB in the UK which feeds the slave machines with the updated info. I'd suggest to have two distinct mechanisms for authorization (using a read-only database) and accounting (using a write-only database). The authorization database could be replicated on each RADIUS server host using MySQL replication. (because FreeRADIUS will do only read-only requests on the local slave) The accounting data could be saved in text files on the local disk using rlm_sql_log. The data can be pushed later in the central accounting database using radsqlrelay. One thing I must mention there is a lot of LAG on satellite connection looking at approx 650ms and because of BW cost we do rely on proxies which makes BW usage during the day very expensive, so i would like to be able to replicate maybe once a night lets say at midnight being less busy and cheaper. You could try to use radsqlrelay in one-shot mode. (see the manpage) Just run radsqlrelay in a daily cron job to push all the accounting data at a fixed hour. -- Nicolas Baradakis - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
route_by_callerid
Dear I have a cisco2600,voice enabled, with freeradius, for accounting. some of my customers,always dial a same International number . let me know how cisco accepts CALLED-STATION-ID that was sended by radius server. thanks a lot Best Pezhman Have a burning question? Go to www.Answers.yahoo.com and get answers from real people who know. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Assertion failed in listen.c, line 621
Hello, I did a set follow-fork-mode child in gdb now but then, there's no assertion failed! The radiusd child process keeps running now but no one can authenticate: [EMAIL PROTECTED] tmp]# cat /usr/local/var/log/radius/radius.log Sat Dec 9 15:47:02 2006 : Info: FreeRADIUS Version 2.0.0-pre0, for host x86_64-unknown-linux-gnu, built on Dec 3 2006 at 21:00:48 Sat Dec 9 15:47:02 2006 : Info: Starting - reading configuration files ... Sat Dec 9 15:47:03 2006 : Info: rlm_sql (sql): Driver rlm_sql_oracle (module rlm_sql_oracle) loaded and linked Sat Dec 9 15:47:03 2006 : Info: rlm_sql (sql): Attempting to connect to [EMAIL PROTECTED]:/(DESCRIPTION=(ADDRESS=(PROTOCOL=TCP)(HOST=10.10.10.1)(PORT=1521))(CONNECT_DATA=(SID=DB_R))) Sat Dec 9 15:47:03 2006 : Info: rlm_sql (sql_postgresql): Driver rlm_sql_postgresql (module rlm_sql_postgresql) loaded and linked Sat Dec 9 15:47:03 2006 : Info: rlm_sql (sql_postgresql): Attempting to connect to [EMAIL PROTECTED]:/DB_R Sat Dec 9 15:47:04 2006 : Info: Ready to process requests. Sat Dec 9 15:47:52 2006 : Error: Discarding duplicate request from client NAS-1 port 5 - ID: 57 due to unfinished request 0 Sat Dec 9 15:47:58 2006 : Error: Discarding duplicate request from client NAS-1 port 5 - ID: 57 due to unfinished request 0 Sat Dec 9 15:48:04 2006 : Error: Discarding duplicate request from client NAS-1 port 5 - ID: 57 due to unfinished request 0 Sat Dec 9 15:48:16 2006 : Error: TIMEOUT for request 0 in module server core, component server core Sat Dec 9 15:48:23 2006 : Error: Discarding duplicate request from client NAS-1 port 5 - ID: 58 due to unfinished request 3 Sat Dec 9 15:48:29 2006 : Error: Discarding duplicate request from client NAS-1 port 5 - ID: 58 due to unfinished request 3 Sat Dec 9 15:48:35 2006 : Error: Discarding duplicate request from client NAS-1 port 5 - ID: 58 due to unfinished request 3 Sat Dec 9 15:48:40 2006 : Error: TIMEOUT for request 1 in module server core, component server core Sat Dec 9 15:48:46 2006 : Error: TIMEOUT for request 2 in module server core, component server core Sat Dec 9 15:48:47 2006 : Error: TIMEOUT for request 3 in module server core, component server core Sat Dec 9 15:49:19 2006 : Error: Discarding duplicate request from client NAS-1 port 5 - ID: 59 due to unfinished request 22 So: Running radiusd alone, without gdb, generates Assertion failed in listen.c, line 621; Running radiusd inside gdb generates no error, but does not works (as shown in the logs); Running radiusd -X alone or inside gdb works without any problems. What might it be? ps. Regarding the previous post, the Assertion failed occurs only when the first packet is received. Thanks you! On 12/6/06, Alan DeKok [EMAIL PROTECTED] wrote: Guilherme Franco wrote: I'm not HUPing the server in any way, never. Ok.. GDB output: Starting program: /usr/local/sbin/radiusd [Thread debugging using libthread_db enabled] [New Thread 182896328384 (LWP 31483)] Detaching after fork from child process 31486. Program exited normally. sigh You've just printed out the GDB information from the server process that starts the daemon... which exits normally. Please send the gdb information from the core file. i.e. the program that is failing. Wed Dec 6 20:33:09 2006 : Info: Ready to process requests. Wed Dec 6 20:33:09 2006 : Error: Assertion failed in listen.c, line 621 Immediately? Without ever receiving packets? That's very weird... Alan DeKok. -- http://deployingradius.com - The web site of the book http://deployingradius.com/blog/ - The blog - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
HELP
HELP PLEASE hello i need help, if somebody can help me please do it =) i got a freeradius server with mysql, both having comunication, i have an access point cisco which one is working with freeradius server excellent, the authentication is throught the radcheck table in radius database , im using PEAP/MS-CHAV2 and for example i have a laptop with wireless and i enter a username and a password that i already have in the radcheck table and the conexion with freeradius is always sucessful, im running dhcp3 and when radius accept the user, dhcp3 send a ip to the client, everything is fine but i have a problem, i need to create two dynamic ip pools, one for users of a group A and one for users of the group B the problem is that i dont have any idea how can i use the radcheck table for auth the users and in the same time use dhcp3 to recognize those users and assing the ip from the ip pool A or B depending if the user belongs to the group A or B how can i work with mysql and dhcp3???help me please eduardo I.S.C Tomas Eduardo Lotina Ramosthe Love is the base of the world, and its only hope..Ya tienes la ultima versión de Messenger: Windows Live Messenger en Prodigy/MSN (V.8) Haz clic aquí - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
HELP
HELP PLEASE hello i need help, if somebody can help me please do it =) i got a freeradius server with mysql, both having comunication, i have an access point cisco which one is working with freeradius server excellent, the authentication is throught the radcheck table in radius database , im using PEAP/MS-CHAV2 and for example i have a laptop with wireless and i enter a username and a password that i already have in the radcheck table and the conexion with freeradius is always sucessful, im running dhcp3 and when radius accept the user, dhcp3 send a ip to the client, everything is fine but i have a problem, i need to create two dynamic ip pools, one for users of a group A and one for users of the group B the problem is that i dont have any idea how can i use the radcheck table for auth the users and in the same time use dhcp3 to recognize those users and assing the ip from the ip pool A or B depending if the user belongs to the group A or B how can i work with mysql and dhcp3???help me please eduardo I.S.C Tomas Eduardo Lotina Ramosthe Love is the base of the world, and its only hope..Crea tu Space y compartelo con quién tu quieras Haz clic aquí Windows Live Spaces en Prodigy/MSN - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: HELP
insert into radgroupcheck table: id,groupname,attribute,op,value [leave blank],group1,Pool-Name,==,pool1 This will mean that any user that is part of group1, will have Pool-Name set to group1 (which will make IP assignment work properly). radcheck will be just fine authenticating users on its own. Hope this helps, Jan On 09/12/06, Tomas Eduardo Lotina Ramos [EMAIL PROTECTED] wrote: HELP PLEASE hello i need help, if somebody can help me please do it =) i got a freeradius server with mysql, both having comunication, i have an access point cisco which one is working with freeradius server excellent, the authentication is throught the radcheck table in radius database , im using PEAP/MS-CHAV2 and for example i have a laptop with wireless and i enter a username and a password that i already have in the radcheck table and the conexion with freeradius is always sucessful, im running dhcp3 and when radius accept the user, dhcp3 send a ip to the client, everything is fine but i have a problem, i need to create two dynamic ip pools, one for users of a group A and one for users of the group B the problem is that i dont have any idea how can i use the radcheck table for auth the users and in the same time use dhcp3 to recognize those users and assing the ip from the ip pool A or B depending if the user belongs to the group A or B how can i work with mysql and dhcp3??? help me please eduardo I.S.C Tomas Eduardo Lotina Ramosthe Love is the base of the world, and its only hope.. -- Ya tienes la ultima versión de Messenger: Windows Live Messenger en Prodigy/MSN (V.8) Haz clic aquí http://g.msn.com/8HMAESMX/2734??PS=47575 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
FREERADIUS + MYSQL +DHCP3
HELP PLEASE hello i need help, if somebody can help me please do it =) ihave a freeradius server v1.1.3 with mysql 5.0.22 runningin ubuntu drapper , both having comunication, i have an access point cisco which one is working with freeradius server excellent, the authentication is throught the radcheck table in radius database , im using PEAP/MS-CHAV2 and for example i have a laptop with wireless and i enter a username and a password that i already have in the radcheck table and the conexion with freeradius is always sucessful, im running dhcp3 and when radius accept the user, dhcp3 send a ip to the client, everything is fine but i have a problem, i need to create two dynamic ip pools, one for users of a group A and one for users of the group B the problem is that i dont have any idea how can i use the radcheck table for auth the users and in the same time use dhcp3 to recognize those users and assing the ip from the ip pool A or B depending if the user belongs to the group A or B howcan workmysql and dhcp3 togetherhelp me please eduardo Lo mejor en entretenimiento, visita: Prodigy/MSN Haz clic aquí - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Freeradius and biometric devices
Alan, I was thinking to have the reader on the client side and send the password and the biometric data to the freeradius on the server, which in turn checks and upon the outcome the user is authenticated or not. I do not know which attribute should i use for the biometric data. Regards Kenneth --- Alan DeKok [EMAIL PROTECTED] wrote: Kenneth Penza wrote: I am trying to setup a biometric authentication using freeradius, first the user gives his/her password and then uses fingerprint information. On positive matches the user is authenticated. Can it be implemented? Is there literature that I need to have a look at? Almost anything can be implemented. The question is how does the fingerprint information get to the RADIUS server? And what does the RADIUS server do with it? Alan DeKok. -- http://deployingradius.com - The web site of the book http://deployingradius.com/blog/ - The blog - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html Do you Yahoo!? Everyone is raving about the all-new Yahoo! Mail beta. http://new.mail.yahoo.com - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Choosing The best replication system.
Thanks for the information below, just couple of questions need to clarify. If we say Point A is the Master Server, Point B and Point C are Slaves, does All Authorisation as in prepaid and account info which are stored on the Master will they replicate in real time to Point B C? Also if Point B uploads the accounting info at the end of the working day to the master Server will Mysql replicate down to point C? Thanks again Sarky -- Original Message --- From: Nicolas Baradakis [EMAIL PROTECTED] To: FreeRadius users mailing list freeradius-users@lists.freeradius.org Sent: Sat, 9 Dec 2006 14:42:41 +0100 Subject: Re: Choosing The best replication system. Sarkis Gabriel wrote: At the moment i have 4 pops around the country and all are feeding from a satellite links, as the company is growing it is becoming very hard to maintain and we are looking to have a central MySQL DB in the UK which feeds the slave machines with the updated info. I'd suggest to have two distinct mechanisms for authorization (using a read-only database) and accounting (using a write-only database). The authorization database could be replicated on each RADIUS server host using MySQL replication. (because FreeRADIUS will do only read-only requests on the local slave) The accounting data could be saved in text files on the local disk using rlm_sql_log. The data can be pushed later in the central accounting database using radsqlrelay. One thing I must mention there is a lot of LAG on satellite connection looking at approx 650ms and because of BW cost we do rely on proxies which makes BW usage during the day very expensive, so i would like to be able to replicate maybe once a night lets say at midnight being less busy and cheaper. You could try to use radsqlrelay in one-shot mode. (see the manpage) Just run radsqlrelay in a daily cron job to push all the accounting data at a fixed hour. -- Nicolas Baradakis - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html --- End of Original Message --- - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
