Re: Server Crashes
Eric Geier wrote: The server keeps crashing, sometimes within 10 minutes or sometimes after weeks. I'm using the supervise command to start/run it and here's what I get after it crashes. Please help. Is there a setting I should tweak or check? I'm running 1.1.8 and yes I should upgrade, but could you please still help. Run the server under valgrind. Maybe that will help. The version 1.1.x series hasn't been actively developed in 5 years. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: help with DHCP server functionality
Thanks Fajar, that did help me get past this hurdle. Pressing forward with the
dhcp side...
Thanks,
Duane
Sent from my iPad by Verizon Wireless
On Nov 1, 2012, at 4:59 PM, Fajar A. Nugraha l...@fajar.net wrote:
On Fri, Nov 2, 2012 at 3:19 AM, Duane Cox duane...@gmail.com wrote:
List:
Hello. I have been working on this for a few days and have turned here
for help.
The server is listening on port 67 and when a DHCP packet comes in the
server processes it, but in debug mode it give an error No Pool-Name
defined.
I have done some reading and I have added the following to the users
file (for testing purposes).
DEFAULT Pool-Name := main_pool
Fall-Through = Yes
This doesn't seem to define the Pool-Name nor do I see where the server
is processing any sql queries to determine the Pool-Name either.
Am I mistaken? I thought that I could get a DHCP packet to be
received/processed by the server and hand out a response.
My policy.conf has this:
#
# Assign compatibility data to request for sqlippool
dhcp_sqlippool.post-auth {
# Do some minor hacks to the request so that it looks
# like a RADIUS request to the SQL IP Pool module.
update control {
Pool-Name = DHCP-default
}
update request {
#
... and my sites-available/dhcp has additional instructions:
#
# * Create sqlippool table, if you haven't done so already.
# * Import the schema (see sql/mysql/ipool.sql).
# * Populate the records. At minimum each row must have
# Framed-IP-Address and Pool-Name = 'DHCP-default' (or whatever
# you set 'Pool-Name' to on policy.conf).
# * If you want to use static IP allocation, create a row on
# radippol table with 'callingstationid' set to client's MAC
# address (e.g. '00:16:3E:02:15:6B') and expiry time far in the
# future (e.g. '3000-01-01 00:00:00').
#
Try updating your policy.conf and follow that instruction.
If that works for you, I'll probably send a git pull request to update
instructions in the included config files.
--
Fajar
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
simultaneous-Use is not worrking
Hi there,
i am turning out you due to issue with simultaneous-Use. I
readed mailing list but did not find any appropriate
answer.
My configuration:
.../raddb/site-avalible/default: session {mysql}
.../raddb/sql/mysql/dialup.conf: uncomment
simul_count_query..
In radcheck I have put user with cleartext password and
also add line for this user with simultaneous-Use :=1.
When I try to call with simultaneous-Use :=1 call is
rejacted if I put simultaneous-Use :=2 all calls goes
through from this account.
NAS is sending start/stop packet and If call is in progress
there is a NULL value in acc stop time raw.
Accounting and authorization is uncomment:)
my config:
[root@localhost sites-available]# radiusd -X
FreeRADIUS Version 2.1.12, for host
x86_64-unknown-linux-gnu, built on Nov 8 2011 at 15:23:48
Copyright (C) 1999-2009 The FreeRADIUS server project and
contributors.
There is NO warranty; not even for MERCHANTABILITY or
FITNESS FOR A
PARTICULAR PURPOSE.
You may redistribute copies of FreeRADIUS under the terms
of the
GNU General Public License v2.
Starting - reading configuration files ...
including configuration file
/usr/local/etc/raddb/radiusd.conf
including configuration file
/usr/local/etc/raddb/proxy.conf
including configuration file
/usr/local/etc/raddb/clients.conf
including files in directory /usr/local/etc/raddb/modules/
including configuration file
/usr/local/etc/raddb/modules/policy
including configuration file
/usr/local/etc/raddb/modules/realm
including configuration file
/usr/local/etc/raddb/modules/acct_unique
including configuration file
/usr/local/etc/raddb/modules/krb5
including configuration file
/usr/local/etc/raddb/modules/files
including configuration file
/usr/local/etc/raddb/modules/mac2ip
including configuration file
/usr/local/etc/raddb/modules/detail
including configuration file
/usr/local/etc/raddb/modules/inner-eap
including configuration file
/usr/local/etc/raddb/modules/sqlcounter_expire_on_login
including configuration file
/usr/local/etc/raddb/modules/linelog
including configuration file
/usr/local/etc/raddb/modules/detail.example.com
including configuration file
/usr/local/etc/raddb/modules/counter
including configuration file
/usr/local/etc/raddb/modules/ippool
including configuration file
/usr/local/etc/raddb/modules/echo
including configuration file
/usr/local/etc/raddb/modules/smsotp
including configuration file
/usr/local/etc/raddb/modules/unix
including configuration file
/usr/local/etc/raddb/modules/mschap
including configuration file
/usr/local/etc/raddb/modules/perl
including configuration file
/usr/local/etc/raddb/modules/detail.log
including configuration file
/usr/local/etc/raddb/modules/replicate
including configuration file
/usr/local/etc/raddb/modules/always
including configuration file
/usr/local/etc/raddb/modules/wimax
including configuration file
/usr/local/etc/raddb/modules/mac2vlan
including configuration file
/usr/local/etc/raddb/modules/attr_filter
including configuration file
/usr/local/etc/raddb/modules/opendirectory
including configuration file
/usr/local/etc/raddb/modules/soh
including configuration file
/usr/local/etc/raddb/modules/sql_log
including configuration file
/usr/local/etc/raddb/modules/etc_group
including configuration file
/usr/local/etc/raddb/modules/preprocess
including configuration file
/usr/local/etc/raddb/modules/redis
including configuration file
/usr/local/etc/raddb/modules/logintime
including configuration file
/usr/local/etc/raddb/modules/pap
including configuration file
/usr/local/etc/raddb/modules/expiration
including configuration file
/usr/local/etc/raddb/modules/rediswho
including configuration file
/usr/local/etc/raddb/modules/smbpasswd
including configuration file
/usr/local/etc/raddb/modules/chap
including configuration file
/usr/local/etc/raddb/modules/dynamic_clients
including configuration file
/usr/local/etc/raddb/modules/radutmp
including configuration file
/usr/local/etc/raddb/modules/ldap
including configuration file
/usr/local/etc/raddb/modules/cui
including configuration file
/usr/local/etc/raddb/modules/exec
including configuration file
/usr/local/etc/raddb/modules/passwd
including configuration file
/usr/local/etc/raddb/modules/attr_rewrite
including configuration file
/usr/local/etc/raddb/modules/ntlm_auth
including configuration file
/usr/local/etc/raddb/modules/expr
including configuration file
/usr/local/etc/raddb/modules/digest
including configuration file
/usr/local/etc/raddb/modules/otp
including configuration file
/usr/local/etc/raddb/modules/sradutmp
including configuration file
/usr/local/etc/raddb/modules/checkval
including configuration file
/usr/local/etc/raddb/modules/pam
including configuration file /usr/local/etc/raddb/eap.conf
including configuration file /usr/local/etc/raddb/sql.conf
including configuration file
/usr/local/etc/raddb/sql/mysql/dialup.conf
including configuration file
/usr/local/etc/raddb/policy.conf
including files in directory
Re: simultaneous-Use is not worrking
Miha wrote: i am turning out you due to issue with simultaneous-Use. I readed mailing list but did not find any appropriate answer. ... my config: [root@localhost sites-available]# radiusd -X FreeRADIUS Version 2.1.12, for host ... Ready to process requests. The reason to post the debug output is to show what happens when the server receives a packet. You didn't show that. So the debug output is useless, and we can't help you. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: simultaneous-Use is not worrking
HI Alan,
log with simultaneous-Use := 1:
rad_recv: Accounting-Request packet from host
xxx.xxx.xxx.xxx port 40165, id=56, length=327
Acct-Status-Type = Start
Acct-Session-Id = 21613e25-697e-4d90-a741-586503d4abcb
User-Name = 018108753.enterprise
Freeswitch-Src = 018108753.enterprise
Freeswitch-CLID = 018108753.enterprise
Freeswitch-Dst = 031681796
Freeswitch-Dialplan = XML
Framed-IP-Address = 84.41.126.2
Freeswitch-Context = enterprise.fs2.softnet.si
Freeswitch-Ani = 018108753.enterprise
Freeswitch-Source = mod_sofia
Freeswitch-Callstartdate =
2012-11-03T21:07:03.383945+0100
NAS-Port = 0
Acct-Delay-Time = 0
NAS-IP-Address = xxx.xxx.xxx.xxx
# Executing section preacct from file
/usr/local/etc/raddb/sites-enabled/default
+- entering group preacct {...}
++[preprocess] returns ok
[acct_unique] Hashing 'NAS-Port = 0,Client-IP-Address =
xxx.xxx.xxx.xxx,NAS-IP-Address =
xxx.xxx.xxx.xxx,Acct-Session-Id =
21613e25-697e-4d90-a741-586503d4abcb,User-Name =
018108753.enterprise'
[acct_unique] Acct-Unique-Session-ID = ccb7c871be618e52.
++[acct_unique] returns ok
[suffix] No '@' in User-Name = 018108753.enterprise,
looking up realm NULL
[suffix] No such realm NULL
++[suffix] returns noop
++[files] returns noop
# Executing section accounting from file
/usr/local/etc/raddb/sites-enabled/default
+- entering group accounting {...}
[detail]expand: %{Packet-Src-IP-Address} -
xxx.xxx.xxx.xxx
[detail]expand:
/usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d
-
/usr/local/var/log/radius/radacct/.../detail-20121103
[detail]
/usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d
expands to
/usr/local/var/log/radius/radacct/.../detail-20121103
[detail]expand: %t - Sat Nov 3 21:01:26 2012
++[detail] returns ok
++[unix] returns ok
[radutmp] expand: /usr/local/var/log/radius/radutmp -
/usr/local/var/log/radius/radutmp
[radutmp] expand: %{User-Name} - 018108753.enterprise
++[radutmp] returns ok
[sql] expand: %{User-Name} - 018108753.enterprise
[sql] sql_set_user escaped user -- '018108753.enterprise'
[sql] expand: %{Acct-Delay-Time} - 0
[sql] expand:INSERT INTO radacct
(acctsessionid,acctuniqueid, username,
realm,nasipaddress, nasportid,
nasporttype, acctstarttime,
acctstoptime, acctsessiontime,
acctauthentic,connectinfo_start,
connectinfo_stop, acctinputoctets,
acctoutputoctets, calledstationid,
callingstationid, acctterminatecause,
servicetype, framedprotocol,
framedipaddress, acctstartdelay,
acctstopdelay,xascendsessionsvrkey) VALUES
('%{Acct-Session-Id}',
'%{Acct-Unique-Session-Id}',
'%{Freeswitch-Src}', '%{Realm}',
'%{NAS-IP-Address}', '%{NAS-Port}',
'%{NAS-Port-Type}', '%S', NULL,
'0', '%{Acct-Authentic}', '%{Connect-Info}',
'', '0', '0',
'%{Called-Station-Id}',
'%{Calling-Station-Id}', '',
'%{Service-Type}', '%{Framed-Protocol}',
'%{Framed-IP-Address}',
rlm_sql (sql): Reserving sql socket id: 4
rlm_sql (sql): Released sql socket id: 4
++[sql] returns ok
++[exec] returns noop
[attr_filter.accounting_response] expand: %{User-Name} -
018108753.enterprise
attr_filter: Matched entry DEFAULT at line 12
++[attr_filter.accounting_response] returns updated
Sending Accounting-Response of id 56 to xxx.xxx.xxx.xxx
port 40165
Finished request 0.
Cleaning up request 0 ID 56 with timestamp +2994
Going to the next request
Ready to process requests.
rad_recv: Access-Request packet from host xxx.xxx.xxx.xxx
port 43949, id=57, length=193
User-Name = 018108753.enterprise
User-Password = xxx
h323-conf-id =
h323-conf-id=21613e25-697e-4d90-a741-586503d4abcb
h323-prompt-id = h323-prompt-id=031681796
NAS-Port-Type = Async
NAS-Port-Id = ISDN 3/0:D:14
User-Name = 1
NAS-Port = 0
NAS-IP-Address = ...
# Executing section authorize from file
/usr/local/etc/raddb/sites-enabled/default
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
++[digest] returns noop
[suffix] No '@' in User-Name = 018108753.enterprise,
looking up realm NULL
[suffix] No such realm NULL
++[suffix] returns noop
[eap] No EAP-Message, not doing EAP
++[eap] returns noop
++[files] returns noop
[sql] expand: %{User-Name} - 018108753.enterprise
[sql] sql_set_user escaped user -- '018108753.enterprise'
rlm_sql (sql): Reserving sql socket id: 3
[sql] expand: SELECT id, username, attribute, value, op
FROM radcheck WHERE username =
'%{SQL-User-Name
