Re: NAS list with MySQL
[EMAIL PROTECTED] wrote: Hi with 1.1.x i believe you still need a single entry in clients.conf - a fake entry - eg 127.0.0.2 or it barfs. 2.0.0 doesnt have this issue alan - Thanks i managed to sort that out Can u tell me about stability in freeradius 2.0.0. I am preparing a project for servers wchich will have to serve more than few milion entries (users) and i am concercn using lastests versions Pawel Cieplinski - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: NAS list with MySQL
Hi, Can u tell me about stability in freeradius 2.0.0. I am preparing a project for servers wchich will have to serve more than few milion entries (users) and i am concercn using lastests versions personally I would go for 2.0.0 - its been in beta for a long long time, it handles the packets better, it has far better scalability and its does have the quirks that live in the 1.1.x branch alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: dialup-admin sql table creation error
rgreiner wrote: I was making some tests with the freeradius 2 install, and found that the creation schema for the badusers table for dialupadmin (in the /dialup_admin/sql/mysql folder) has 2 problems: [...] Fixed in CVS. Thanks for the report. -- Nicolas Baradakis - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: NAS list with MySQL
Pawel Cieplinski wrote: Can u tell me about stability in freeradius 2.0.0. I am preparing a project for servers wchich will have to serve more than few milion entries (users) and i am concercn using lastests versions A number of very large sites have been using pre-releases of 2.0.0 for a long time. The final release has been out for almost 2 weeks, and I haven't heard of a single major problem. Just a few minor issues. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Unknown syslog chosen but no facility spedified
hi,
i'm installing freeradius-2.0.0 and seeing the following when i try to start
radiusd:
Starting RADIUS server: radiusd: Error: Unknown syslog chosen but no facility
spedified
relevant lines from radiusd.conf:
logdir = ${localstatedir}/log/radius
log_destination = syslog
log {
syslog_facility = daemon
file = ${logdir}/radius.log
stripped_names = no
auth = yes
auth_badpass = no
auth_goodpass = no
}
i claim that logging to syslog worked fine under 2.0.0-pre2, using the following
radiusd.conf lines:
logdir = ${localstatedir}/log/radius
log_file = ${logdir}/radius.log
log_destination = syslog
log {
syslog_facility = daemon
}
log_stripped_names = no
log_auth = yes
log_auth_badpass = no
log_auth_goodpass = no
insights?
--sk
stuart kendrick
fhcrc
P.S. spedified == specified
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
MySQL
Hi, I downloaded the latest version 2.0.0. Installed and tested ok. I want to integrate with MySQL. However when I follow the procedure on the howto to create the radius db on mysql I run into a problem. The howto says to enter the following commands mysql -uroot -p CREATE DATABASE radius; GRANT ALL ON radius.* TO [EMAIL PROTECTED] IDENTIFIED BY radpass; exit This works fine and I can see the newly created db and user. However then it tells me to run mysql.sql cd /usr/share/doc/packages/freeradius/doc/examples/ mysql -uroot -p radius mysql.sql I have looked everywhere on my system for this file but it is not present. I checked the tar for 2.0.0 and still no joy I downloaded and checked the tar for 1.1.7 and its in the doc/example folder. Is there a new way of updating the radius db in MySQL or where can I get the mysql.sql script for ver 2.0.0 Thanks Anthony - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: MySQL
Hi Anthony, In message [EMAIL PROTECTED], Anthony McGarry [EMAIL PROTECTED] writes I downloaded the latest version 2.0.0. Installed and tested ok. I want to integrate with MySQL. However when I follow the procedure on the howto to create the radius db on mysql I run into a problem. The HOWTO that you're using is out of date. The SQL files are in raddb/sql/mysql - you need schema.sql. The other two files are optional - use them if you need the features the tables are for. Best wishes, David -- David Wood [EMAIL PROTECTED] - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Administering with MySQL DB
Hi All, thanks for the assistance from everyone on this. My prob was not even knowing which nas table field you were meant to put the IP address of the device in due to the naming standard. I've installed daloradius, which was very quick and easy to install on a system already configured for mysql, apache and php and I can add nas entries via the GUI and now see the correct formatting for adding others via SQL commands if I should need to. cheers Andy.- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
MySQL accounting issue
Hi List, ok next issue I have :P I have attempted to configure freeradius to write accounting data to MySQL, however currently its not working. No data is being written to MySQL and the Radius client is complaining its not recieving a reply for accounting requests. I subsituted the detail setting in the accounting config section of radiusd.conf for sql and modifyied the sql.conf as seemed necessary. As soon as I switch this back to detail my Radius client starts recieving replies from freeradius once again :S I can see from the MySQL log that radiusd is successfully establishing a connection to MySQL at startup: 080120 19:14:49 61 Connect[EMAIL PROTECTED] on radius 62 Connect [EMAIL PROTECTED] on radius 63 Connect [EMAIL PROTECTED] on radius 64 Connect [EMAIL PROTECTED] on radius 65 Connect [EMAIL PROTECTED] on radius 65 Query SELECT * FROM nas But after that there is no activity in the MySQL log :S And I have no errors logged from MySQL or radiusd, nor can I see any errors when running radiusd -Xf anyone any ideas what more I can do to identify the issue?? thanks Andy.- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: MySQL
Hi,I saw this version and check the tables.sql, it has a few tables to create. You can get more tables by tables.sql from version 1.x.x, I dont know why this new version comes with less table. Maybe only to update. I dont know.But I create the tables with later version and update with a new version, caution: dont run with tables.sql, just make by hand. Because there are bugs in the sql file. You need to alter somethings, I dont remember what is, but I know that has somethings like: default value to ID field auto_increment, this dont cause error, but its not right. The table usergroup has changed to radusergroup, and other things, sorry, I dont remember and cant see now because I am traveling.Hi,I downloaded the latest version 2.0.0. Installed and tested ok. I want to integrate with MySQL.However when I follow the procedure on the howto to create the radius db on mysql I run into a problem.The howto says to enter the following commandsmysql -uroot -p CREATE DATABASE radius; GRANT ALL ON radius.* TO [EMAIL PROTECTED] IDENTIFIED BY radpass; exitThis works fine and I can see the newly created db and user.However then it tells me to run mysql.sqlcd /usr/share/doc/packages/freeradius/doc/examples/mysql -uroot -p radius mysql.sqlI have looked everywhere on my system for this file but it is not present. I checked the tar for 2.0.0 and still no joyI downloaded and checked the tar for 1.1.7 and its in the doc/example folder.Is there a new way of updating the radius db in MySQL or where can I get the mysql.sql script for ver 2.0.0ThanksAnthony - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- Acelerador POP Acelere a sua conexo discada em at 19 x. Use o Acelerador POP. grtis, pegue j o seu. http://www.pop.com.br/acelerador - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: freeradius authenticate over ldap database [SEC=UNCLASSIFIED]
UNCLASSIFIED From: [EMAIL PROTECTED] g [mailto:[EMAIL PROTECTED] adius.org] On Behalf Of Renato Gregio de Souza Filho Sent: Saturday, 19 January 2008 03:53 To: freeradius-users@lists.freeradius.org Subject: freeradius authenticate over ldap database I'm trying to install and configure my freeradius at rhel 5 to authenticate in ldapdatabase. i read the rml_ldap and configure then according i understand. I start my server with no problem, but i'm not sure if its working good or bad. I create a test user at ldap database with username and passowrd are teste and try to test it from radtest, but it won't work. The password at ldap database are crypt. [EMAIL PROTECTED] raddb]# radtest teste teste localhost:1812 testing123 Usage: radtest user passwd radius-server[:port] nas-port-number secret [ppphint] [nasname] [EMAIL PROTECTED] raddb]# When i start my radiusd, they start without problens. What i need to do to put it working fine over ldap database? [EMAIL PROTECTED] raddb]# radiusd -X Starting - reading configuration files ... reread_config: reading radiusd.conf Config: including file: /etc/raddb/proxy.conf Config: including file: /etc/raddb/clients.conf Config: including file: /etc/raddb/snmp.conf Config: including file: /etc/raddb/eap.conf main: prefix = /usr main: localstatedir = /var main: logdir = /var/log/radius main: libdir = /usr/lib64 main: radacctdir = /var/log/radius/radacct main: hostname_lookups = no main: snmp = no main: max_request_time = 30 main: cleanup_delay = 5 main: max_requests = 1024 main: delete_blocked_requests = 0 main: port = 0 main: allow_core_dumps = no main: log_stripped_names = no main: log_file = /var/log/radius/radius.log main: log_auth = no main: log_auth_badpass = no main: log_auth_goodpass = no main: pidfile = /var/run/radiusd/radiusd.pid main: user = radiusd main: group = radiusd main: usercollide = no main: lower_user = no main: lower_pass = no main: nospace_user = no main: nospace_pass = no main: checkrad = /usr/sbin/checkrad main: proxy_requests = yes proxy: retry_delay = 5 proxy: retry_count = 3 proxy: synchronous = no proxy: default_fallback = yes proxy: dead_time = 120 proxy: post_proxy_authorize = no proxy: wake_all_if_all_dead = no security: max_attributes = 200 security: reject_delay = 1 security: status_server = no main: debug_level = 0 read_config_files: reading dictionary read_config_files: reading naslist Using deprecated naslist file. Support for this will go away soon. read_config_files: reading clients read_config_files: reading realms radiusd: entering modules setup Module: Library search path is /usr/lib64 Module: Loaded exec exec: wait = yes exec: program = (null) exec: input_pairs = request exec: output_pairs = (null) exec: packet_type = (null) rlm_exec: Wait=yes but no output defined. Did you mean output=none? Module: Instantiated exec (exec) Module: Loaded expr Module: Instantiated expr (expr) Module: Loaded PAP pap: encryption_scheme = crypt Module: Instantiated pap (pap) Module: Loaded CHAP Module: Instantiated chap (chap) Module: Loaded MS-CHAP mschap: use_mppe = yes mschap: require_encryption = no mschap: require_strong = no mschap: with_ntdomain_hack = no mschap: passwd = (null) mschap: ntlm_auth = (null) Module: Instantiated mschap (mschap) Module: Loaded System unix: cache = no unix: passwd = (null) unix: shadow = /etc/shadow unix: group = (null) unix: radwtmp = /var/log/radius/radwtmp unix: usegroup = no unix: cache_reload = 600 Module: Instantiated unix (unix) Module: Loaded eap eap: default_eap_type = md5 eap: timer_expire = 60 eap: ignore_unknown_eap_types = no eap: cisco_accounting_username_bug = no rlm_eap: Loaded and initialized type md5 rlm_eap: Loaded and initialized type leap gtc: challenge = Password: gtc: auth_type = PAP rlm_eap: Loaded and initialized type gtc mschapv2: with_ntdomain_hack = no rlm_eap: Loaded and initialized type mschapv2 Module: Instantiated eap (eap) Module: Loaded preprocess preprocess: huntgroups = /etc/raddb/huntgroups preprocess: hints = /etc/raddb/hints preprocess: with_ascend_hack = no preprocess: ascend_channels_per_line = 23 preprocess: with_ntdomain_hack = no preprocess: with_specialix_jetstream_hack = no preprocess: with_cisco_vsa_hack = no preprocess: with_alvarion_vsa_hack = no Module: Instantiated preprocess (preprocess) Module: Loaded realm realm: format = suffix realm: delimiter = @ realm: ignore_default = no realm: ignore_null = no Module: Instantiated realm (suffix) Module: Loaded files files: usersfile = /etc/raddb/users files: acctusersfile = /etc/raddb/acct_users files: preproxy_usersfile = /etc/raddb/preproxy_users files: compat = no Module: Instantiated files (files) Module: Loaded LDAP ldap: server = localhost ldap: port = 389 ldap: net_timeout = 1 ldap: timeout = 4 ldap: timelimit = 3 ldap: identity = cn=admin,dc=radius,dc=com,dc=br ldap: tls_mode = no
