Re: reset sql counter every 30 minute
You can use Session-Timeout attribute in your radreply sql table like: +-+---+-++-+---+ | id | UserName | Attribute | op | Value | +-+---+-++-+---+ | | 257 | test | Session-Timeout | := | 1800| +-+---+-++-+---+ Regards Bishal On Thu, Jan 27, 2011 at 1:34 PM, piston pisto...@yahoo.com wrote: Hi Is that possible to reset the sql counter every 30 minute? Basically, i need to get user free access of 20 minutes, after 20 minutes NAS will logout the user. And the user is allow to login again after 30 minute. Thanks - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Deleting stale session automatically with unlang
Hello Eddie,
Thanks for the help at last deleting the space from sql: Update section did
the tricks.
Thank you all for help.
Thank you
On Sat, Jan 15, 2011 at 1:00 PM, Eddie Stassen estas...@gmail.com wrote:
I should not give that error according to the source. It definitely
works in the latest version. Perhaps its the space between 'sql:' and
'UPDATE' that is preventing the parser from recognising it as a
non-select query. Try removing it?
On Sat, Jan 15, 2011 at 4:02 AM, Bishal Pun bishal...@gmail.com wrote:
Hello Edi,
Enclosing sql statement inside empty if gives same error:
if(User-Name){
if(%{sql: UPDATE radacct set
AcctStopTime=ADDDATE(AcctStartTime,INTERVAL AcctSessionTime SECOND),
AcctTerminateCause='Clear-Stale Session' WHERE UserName='%{User-Name}'
and
CallingStationId='%{Calling-Station-Id}' and AcctStopTime is NULL}){
}
}
Sat Jan 15 07:43:33 2011 : Auth: Login OK: [test] (from client nagios
port
0)
Sat Jan 15 07:44:47 2011 : Error: rlm_sql_mysql: MYSQL Error: No Fields
Sat Jan 15 07:44:47 2011 : Error: rlm_sql_mysql: MYSQL error:
Sat Jan 15 07:44:47 2011 : Info: rlm_sql_mysql: Starting connect to MySQL
server for #3
Sat Jan 15 07:44:47 2011 : Error: rlm_sql (sql): failed after re-connect
On Fri, Jan 14, 2011 at 6:19 PM, Eddie Stassen estas...@gmail.com
wrote:
On Fri, Jan 14, 2011 at 1:57 PM, Johan Meiring
jmeir...@pcservices.co.za wrote:
On 2011/01/14 12:50 PM, Bishal Pun wrote:
Alan,
While running that command in mysql it clear the session of user.
But
with
radius unlang it is giving error in radius log.
I might be wrong, but as far as I know rlm_mysql expects something to
come
back from the query.
Can't think of a solution though unless rlm_mysql will allow somehting
like
%{sql: SELECT 1; UPDATE radacct set
AcctStopTime=ADDDATE(AcctStartTime,INTERVAL
AcctSessionTime SECOND), AcctTerminateCause='Clear-Stale Session'
WHERE
UserName='%{User-Name}' and CallingStationId='%{Calling-Station-Id}'
and
AcctStopTime is null}
--
Enclosing the UPDATE in an empty 'if' works:
if (%{sql: UPDATE ...}) {
}
That prevents the rlm_sql_mysql module from looking for returned fields.
Eddie
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Deleting stale session automatically with unlang
Alan,
While running that command in mysql it clear the session of user. But with
radius unlang it is giving error in radius log.
Thanks
On Fri, Jan 14, 2011 at 3:41 PM, Alan DeKok al...@deployingradius.comwrote:
Bishal Pun wrote:
if(User-Name){
%{sql: UPDATE radacct set AcctStopTime=ADDDATE(AcctStartTime,INTERVAL
AcctSessionTime SECOND), AcctTerminateCause='Clear-Stale Session' WHERE
UserName='%{User-Name}' and CallingStationId='%{Calling-Station-Id}' and
AcctStopTime is null}
}
That should work, barring SQL issues.
but it doesn't help me, giving me error like
Wed Jan 12 15:16:14 2011 : Error: rlm_sql_mysql: MYSQL Error: No Fields
That's a MySQL issue.
any help?
Can you run the command from the mysql client? i.e. without RADIUS
being involved?
Alan DeKok.
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Deleting stale session automatically with unlang
Hello Edi,
Enclosing sql statement inside empty if gives same error:
if(User-Name){
if(%{sql: UPDATE radacct set
AcctStopTime=ADDDATE(AcctStartTime,INTERVAL AcctSessionTime SECOND),
AcctTerminateCause='Clear-Stale Session' WHERE UserName='%{User-Name}' and
CallingStationId='%{Calling-Station-Id}' and AcctStopTime is NULL}){
}
}
Sat Jan 15 07:43:33 2011 : Auth: Login OK: [test] (from client nagios port
0)
Sat Jan 15 07:44:47 2011 : Error: rlm_sql_mysql: MYSQL Error: No Fields
Sat Jan 15 07:44:47 2011 : Error: rlm_sql_mysql: MYSQL error:
Sat Jan 15 07:44:47 2011 : Info: rlm_sql_mysql: Starting connect to MySQL
server for #3
Sat Jan 15 07:44:47 2011 : Error: rlm_sql (sql): failed after re-connect
On Fri, Jan 14, 2011 at 6:19 PM, Eddie Stassen estas...@gmail.com wrote:
On Fri, Jan 14, 2011 at 1:57 PM, Johan Meiring
jmeir...@pcservices.co.za wrote:
On 2011/01/14 12:50 PM, Bishal Pun wrote:
Alan,
While running that command in mysql it clear the session of user. But
with
radius unlang it is giving error in radius log.
I might be wrong, but as far as I know rlm_mysql expects something to
come
back from the query.
Can't think of a solution though unless rlm_mysql will allow somehting
like
%{sql: SELECT 1; UPDATE radacct set
AcctStopTime=ADDDATE(AcctStartTime,INTERVAL
AcctSessionTime SECOND), AcctTerminateCause='Clear-Stale Session' WHERE
UserName='%{User-Name}' and CallingStationId='%{Calling-Station-Id}' and
AcctStopTime is null}
--
Enclosing the UPDATE in an empty 'if' works:
if (%{sql: UPDATE ...}) {
}
That prevents the rlm_sql_mysql module from looking for returned fields.
Eddie
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Deleting stale session automatically with unlang
+Hi ,
I am using freeradius 2.1.6 + mysql + LDAP for AAA in freebsd server. What
I want to do is, when my AP reboots or due to power failure clients login is
still seen there as online but the client is not able to do login. SO is it
possible to clear the stale session with unlang if the authentication
request come from same calling station id? I tried to do in
/etc/freeradius/sites-enable/default authorize section
if(User-Name){
%{sql: UPDATE radacct set AcctStopTime=ADDDATE(AcctStartTime,INTERVAL
AcctSessionTime SECOND), AcctTerminateCause='Clear-Stale Session' WHERE
UserName='%{User-Name}' and CallingStationId='%{Calling-Station-Id}' and
AcctStopTime is null}
}
but it doesn't help me, giving me error like
Wed Jan 12 15:16:14 2011 : Error: rlm_sql_mysql: MYSQL Error: No Fields
Wed Jan 12 15:16:14 2011 : Error: rlm_sql_mysql: MYSQL error:
Wed Jan 12 15:16:14 2011 : Info: rlm_sql_mysql: Starting connect to MySQL
server for #4
Wed Jan 12 15:16:14 2011 : Error: rlm_sql (sql): failed after re-connect
any help?
thank you
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Acct-Interim-Interval not working
Hello all, I am using freeradius 2.1.6 on FreeBSD 7.2 and using rp-pppoe server 3.10 on gentoo linux. During live session it is not updating acct-input/ouput-octets. Earlier with mpd pppoe server on freebsd it was working fine accounting input and output octets were updating every 5mins as configured in mpd server but now I have migrated my pppoe server to rp-pppoe and it's not updating account values. I have set in radgroupreply table as: 34 | Unlimited Premium | Acct-Interim-Interval | := | 300 | 35 | Unlimited Premium | Acct-Status-Type | := | Interim-Update I want to create mrtg graph of users online but due to this problem I am not able to. Any help? - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Max-All-Session counter module problem
Hi,
I am posting the debug of another user who has same problem:
rad_recv: Access-Request packet from host 202.79.xx.XX port 65050,
id=12, length=189
NAS-Identifier = pppoe-bhw.
Acct-Session-Id = 1633129-mpd-pppoe-70
NAS-Port = 70
NAS-Port-Type = Ethernet
Service-Type = Framed-User
Framed-Protocol = PPP
Calling-Station-Id = 0016768aaa28
Called-Station-Id = WIFITEST
NAS-Port-Id = rl0
Vendor-12341-Attr-12 = 0x6d70642d7070706f652d3730
Tunnel-Medium-Type:0 = IEEE-802
Tunnel-Client-Endpoint:0 = 00:16:76:8a:aa:28
User-Name = sneha
User-Password = 123
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] No '@' in User-Name = sneha, looking up realm NULL
[suffix] No such realm NULL
++[suffix] returns noop
[sql] expand: %{User-Name} - sneha
[sql] sql_set_user escaped user -- 'sneha'
rlm_sql (sql): Reserving sql socket id: 1
[sql] expand: SELECT id, username, attribute, value, op FROM
radcheck WHERE username = '%{SQL-User-Name}' ORDER
BY id - SELECT id, username, attribute, value, op FROM
radcheck WHERE username = 'sneha' ORDER BY id
[sql] User found in radcheck table
[sql] expand: SELECT id, username, attribute, value, op FROM
radreply WHERE username = '%{SQL-User-Name}' ORDER
BY id - SELECT id, username, attribute, value, op FROM
radreply WHERE username = 'sneha' ORDER BY id
[sql] expand: SELECT groupname FROM radusergroup
WHERE username = '%{SQL-User-Name}' ORDER BY priority -
SELECT groupname FROM radusergroup WHERE username =
'sneha' ORDER BY priority
[sql] expand: SELECT id, groupname, attribute, Value,
op FROM radgroupcheck WHERE groupname =
'%{Sql-Group}' ORDER BY id - SELECT id, groupname,
attribute, Value, op FROM radgroupcheck
WHERE groupname = 'Prepaid Hours' ORDER BY id
[sql] User found in group Prepaid Hours
[sql] expand: SELECT id, groupname, attribute, value,
op FROM radgroupreply WHERE groupname =
'%{Sql-Group}' ORDER BY id - SELECT id, groupname,
attribute, value, op FROM radgroupreply
WHERE groupname = 'Prepaid Hours' ORDER BY id
rlm_sql (sql): Released sql socket id: 1
++[sql] returns ok
[ldap] performing user authorization for sneha
[ldap] WARNING: Deprecated conditional expansion :-. See man unlang
for details
[ldap] expand: (cn=%{Stripped-User-Name:-%{User-Name}}) - (cn=sneha)
[ldap] expand: ou=users,ou=radius,dc=resunganet,dc=com,dc=np -
ou=users,ou=radius,dc=resunganet,dc=com,dc=np
rlm_ldap: ldap_get_conn: Checking Id: 0
rlm_ldap: ldap_get_conn: Got Id: 0
rlm_ldap: performing search in
ou=users,ou=radius,dc=resunganet,dc=com,dc=np, with filter (cn=sneha)
[ldap] checking if remote access for sneha is allowed by dialupAccess
[ldap] Added User-Password = {SSHA}zG7/cgoBWWNIVo7WtLMria1ui7GJAztI in
check items
[ldap] looking for check items in directory...
[ldap] looking for reply items in directory...
[ldap] user sneha authorized to use remote access
rlm_ldap: ldap_release_conn: Release Id: 0
++[ldap] returns ok
rlm_sqlcounter: Entering module authorize code
sqlcounter_expand: 'SELECT SUM(AcctSessionTime) FROM radacct WHERE
UserName='%{User-Name}''
[noresetcounter]expand: SELECT SUM(AcctSessionTime) FROM radacct
WHERE UserName='%{User-Name}' - SELECT SUM(AcctSessionTime) FROM
radacct WHERE UserName='sneha'
sqlcounter_expand: '%{sql:SELECT SUM(AcctSessionTime) FROM radacct
WHERE UserName='sneha'}'
[noresetcounter] sql_xlat
[noresetcounter]expand: %{User-Name} - sneha
[noresetcounter] sql_set_user escaped user -- 'sneha'
[noresetcounter]expand: SELECT SUM(AcctSessionTime) FROM radacct
WHERE UserName='sneha' - SELECT SUM(AcctSessionTime) FROM radacct WHERE
UserName='sneha'
rlm_sql (sql): Reserving sql socket id: 0
[noresetcounter] sql_xlat finished
rlm_sql (sql): Released sql socket id: 0
[noresetcounter]expand: %{sql:SELECT SUM(AcctSessionTime) FROM
radacct WHERE UserName='sneha'} - 90001
rlm_sqlcounter: (Check item - counter) is less than zero
rlm_sqlcounter: Rejected user sneha, check_item=9, counter=90001
++[noresetcounter] returns reject
Invalid user (rlm_sqlcounter: Maximum never usage time reached): [sneha]
(from client pppoe-bhw port 70 cli 0016768aaa28)
Using Post-Auth-Type Reject
+- entering group REJECT {...}
===
check_item shows 9 whereas I have updated the radcheck
Max-All-Session Value by 18 but still Reject with Maximum never
usage time reached?
radcheck table output of user sneha:
2901 | sneha| Max-All-Session| := | 18 |
Thank you
Bishal
I am using Freeradius 2.1.6 with LDAP
Max-All-Session counter module problem[SOLVED]
Hello all,
Problem is solved. Actually it was due to radgroupcheck table. There I have
inserted Max-All-Session as 9. I deleted it and now the user can log in.
Thank you
Bishal
Hi,
I am posting the debug of another user who has same problem:
rad_recv: Access-Request packet from host 202.79.xx.XX port 65050,
id=12, length=189
NAS-Identifier = pppoe-bhw.
Acct-Session-Id = 1633129-mpd-pppoe-70
NAS-Port = 70
NAS-Port-Type = Ethernet
Service-Type = Framed-User
Framed-Protocol = PPP
Calling-Station-Id = 0016768aaa28
Called-Station-Id = WIFITEST
NAS-Port-Id = rl0
Vendor-12341-Attr-12 = 0x6d70642d7070706f652d3730
Tunnel-Medium-Type:0 = IEEE-802
Tunnel-Client-Endpoint:0 = 00:16:76:8a:aa:28
User-Name = sneha
User-Password = 123
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] No '@' in User-Name = sneha, looking up realm NULL
[suffix] No such realm NULL
++[suffix] returns noop
[sql] expand: %{User-Name} - sneha
[sql] sql_set_user escaped user -- 'sneha'
rlm_sql (sql): Reserving sql socket id: 1
[sql] expand: SELECT id, username, attribute, value, op FROM
radcheck WHERE username = '%{SQL-User-Name}' ORDER
BY id - SELECT id, username, attribute, value, op FROM
radcheck WHERE username = 'sneha' ORDER BY id
[sql] User found in radcheck table
[sql] expand: SELECT id, username, attribute, value, op FROM
radreply WHERE username = '%{SQL-User-Name}' ORDER
BY id - SELECT id, username, attribute, value, op FROM
radreply WHERE username = 'sneha' ORDER BY id
[sql] expand: SELECT groupname FROM radusergroup WHERE username =
'%{SQL-User-Name}' ORDER BY priority -
SELECT groupname FROM radusergroup WHERE username =
'sneha' ORDER BY priority
[sql] expand: SELECT id, groupname, attribute, Value,
op FROM radgroupcheck WHERE groupname =
'%{Sql-Group}' ORDER BY id - SELECT id, groupname,
attribute, Value, op FROM radgroupcheck WHERE groupname = 'Prepaid
Hours' ORDER BY id
[sql] User found in group Prepaid Hours
[sql] expand: SELECT id, groupname, attribute, value,
op FROM radgroupreply WHERE groupname =
'%{Sql-Group}' ORDER BY id - SELECT id, groupname,
attribute, value, op FROM radgroupreply WHERE groupname = 'Prepaid
Hours' ORDER BY id
rlm_sql (sql): Released sql socket id: 1
++[sql] returns ok
[ldap] performing user authorization for sneha
[ldap] WARNING: Deprecated conditional expansion :-. See man unlang
for details
[ldap] expand: (cn=%{Stripped-User-Name:-%{User-Name}}) - (cn=sneha)
[ldap] expand: ou=users,ou=radius,dc=resunganet,dc=com,dc=np -
ou=users,ou=radius,dc=resunganet,dc=com,dc=np
rlm_ldap: ldap_get_conn: Checking Id: 0
rlm_ldap: ldap_get_conn: Got Id: 0
rlm_ldap: performing search in
ou=users,ou=radius,dc=resunganet,dc=com,dc=np, with filter (cn=sneha)
[ldap] checking if remote access for sneha is allowed by dialupAccess
[ldap] Added User-Password = {SSHA}zG7/cgoBWWNIVo7WtLMria1ui7GJAztI in
check items
[ldap] looking for check items in directory...
[ldap] looking for reply items in directory...
[ldap] user sneha authorized to use remote access
rlm_ldap: ldap_release_conn: Release Id: 0
++[ldap] returns ok
rlm_sqlcounter: Entering module authorize code
sqlcounter_expand: 'SELECT SUM(AcctSessionTime) FROM radacct WHERE
UserName='%{User-Name}''
[noresetcounter]expand: SELECT SUM(AcctSessionTime) FROM radacct
WHERE UserName='%{User-Name}' - SELECT SUM(AcctSessionTime) FROM
radacct WHERE UserName='sneha'
sqlcounter_expand: '%{sql:SELECT SUM(AcctSessionTime) FROM radacct
WHERE UserName='sneha'}'
[noresetcounter] sql_xlat
[noresetcounter]expand: %{User-Name} - sneha
[noresetcounter] sql_set_user escaped user -- 'sneha'
[noresetcounter]expand: SELECT SUM(AcctSessionTime) FROM radacct
WHERE UserName='sneha' - SELECT SUM(AcctSessionTime) FROM radacct WHERE
UserName='sneha'
rlm_sql (sql): Reserving sql socket id: 0
[noresetcounter] sql_xlat finished
rlm_sql (sql): Released sql socket id: 0
[noresetcounter]expand: %{sql:SELECT SUM(AcctSessionTime) FROM
radacct WHERE UserName='sneha'} - 90001
rlm_sqlcounter: (Check item - counter) is less than zero
rlm_sqlcounter: Rejected user sneha, check_item=9, counter=90001
++[noresetcounter] returns reject
Invalid user (rlm_sqlcounter: Maximum never usage time reached): [sneha]
(from client pppoe-bhw port 70 cli 0016768aaa28)
Using Post-Auth-Type Reject
+- entering group REJECT {...}
===
check_item shows 9 whereas I have updated the radcheck
Max-All-Session Value by 18 but still Reject with Maximum never
usage time reached?
radcheck table output of user sneha:
2901 | sneha| Max-All-Session| := | 18
Re: Insert billiplan code in radacct table during authenticaiton
Hi Liran, I have developed my own php based online viewing gui interface. Bishal On 10/27/2008, liran tal [EMAIL PROTECTED] wrote: On Sun, Oct 26, 2008 at 4:12 AM, Bishal [EMAIL PROTECTED] wrote: Following is my radcheck table format: --+--+-+--+ | id | UserName | Attribute| op | Value| CrDate | creator | Usemac | activated | activeDate | status | rate | Type | BillingPlan | TimeToFinish | +--+--+--++--+-+-++---+-++--+--+-+--+ | 1272 | bishal | User-Password| == | testpass| 2006-07-28 18:42:58 | bishal | 0 | 0 | 2007-07-22 20:49:17 | 0 | 0 | | 001 |0 | | 1273 | Hary | User-Password | == | lamp | 2007-08-28 20:443:58 | bishal | 0| 0 | 2007-08-28 20:443:58 | 0 |0 | | 002 |0| = Yickes! Why would anyone torture radcheck table like that? :-) I'm curious to know which management application you are using if it's ok for you to let us know. Regards, Liran. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Insert billiplan code in radacct table during authenticaiton
Thanks Ivan, by extending my query in mysql it worked. Thanks Bishal On 10/26/2008, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: Following is my radcheck table format: --+--+-+--+ | id | UserName | Attribute| op | Value| CrDate | creator | Usemac | activated | activeDate | status | rate | Type | BillingPlan | TimeToFinish | +--+--+--++--+-+-++---+-++--+--+-+--+ | 1272 | bishal | User-Password| == | testpass| 2006-07-28 18:42:58 | bishal | 0 | 0 | 2007-07-22 20:49:17 | 0 | 0 | | 001 |0 | | 1273 | Hary | User-Password | == | lamp | 2007-08-28 20:443:58 | bishal | 0| 0 | 2007-08-28 20:443:58 | 0 |0 | | 002 |0| = My scenario is I have two office and each office using same NAS to connect to internet. Office A users: Office B Users bishal Hary stephe Mic john test My question is if Office A support staff want to view the online users then he should not be able to view office B users online. In the same way office B staff should not be able to view Office A users online. I know if I use different NAs then it's possbile. is it possible by using same NAS with the help of mysql? This is absolutely nothing to do with freeradius. It's user management. Your appication that handles that is suposed to do these things. Simplest way is to extend the query: Let's not. Use sql query to view online users with billing plan: SELECT radacct.*,radcheck.Billingplan FROM radacct,radcheck WHERE radacct.AcctStopTime IS NULL (or =0 for older schema) AND radacct.UserName=radcheck.UserName AND radcheck.Attribute='Billingplan' add AND radcheck.BillingPlan='001' for users from officeA and '002' for users from officeB. Your application will have to know who is the user using it (ie. they will have to log into it). Ivan Kalik Kalik Informatika ISP - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Insert billiplan code in radacct table during authenticaiton
Following is my radcheck table format: --+--+-+--+ | id | UserName | Attribute| op | Value| CrDate | creator | Usemac | activated | activeDate | status | rate | Type | BillingPlan | TimeToFinish | +--+--+--++--+-+-++---+-++--+--+-+--+ | 1272 | bishal | User-Password| == | testpass| 2006-07-28 18:42:58 | bishal | 0 | 0 | 2007-07-22 20:49:17 | 0 | 0 | | 001 |0 | | 1273 | Hary | User-Password | == | lamp | 2007-08-28 20:443:58 | bishal | 0| 0 | 2007-08-28 20:443:58 | 0 |0 | | 002 |0| = My scenario is I have two office and each office using same NAS to connect to internet. Office A users: Office B Users bishal Hary stephe Mic john test My question is if Office A support staff want to view the online users then he should not be able to view office B users online. In the same way office B staff should not be able to view Office A users online. I know if I use different NAs then it's possbile. is it possible by using same NAS with the help of mysql? Thank you Bishal On 10/25/2008, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: I am using freeradius for AAA of my cable users. Now what I want to do is, insert billiplan code 001 into radacct table during authentication so that I can view online users according to billingplan code. There will be Billingplan field in radcheck table and when users tries to login the script will check the radcheck table and update that billingplan code into radacct table. Let's not. Use sql query to view online users with billing plan: SELECT radacct.*,radcheck.Billingplan FROM radacct,radcheck WHERE radacct.AcctStopTime IS NULL (or =0 for older schema) AND radacct.UserName=radcheck.UserName AND radcheck.Attribute='Billingplan' Ivan Kalik Kalik Informatika ISP - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Insert billiplan code in radacct table during authenticaiton
Hi all, I am using freeradius for AAA of my cable users. Now what I want to do is, insert billiplan code 001 into radacct table during authentication so that I can view online users according to billingplan code. There will be Billingplan field in radcheck table and when users tries to login the script will check the radcheck table and update that billingplan code into radacct table. Is it possible with rlm_perl module? Thank you Bishal - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: help need with mysql statement in freeradius
Hi all,
After many trial and errors my perl modules is working great. Thanks
IVan, Alan and all of who helped me a lot. Well I am not programmer but
search in google and you guys helped me a lot.
One thing is I am not able to log my custom message of perl modules in
radius.log. Is it possible to show the custom log message in radius.log
sub authorize{
if ( $mac == 1 $RAD_CHECK{'Calling-Station-Id'} eq ){
my $sql2 = $dbh-prepare(INSERT INTO radcheck
(id,username,attribute,op,value)
VALUES('','$RAD_REQUEST{'User-Name'}','Calling
-Station-Id','+=','$RAD_REQUEST{'Calling-Station-Id'}'));
$rowcount = $sql2-execute();
#or die Cannot execute SQL Statement: $DBI::errstr\n;
$RAD_REPLY{'Reply-Message'} = Mac Address Successfully
updated in database $RAD_REQUEST{'Calling-Station-Id'};
return RLM_MODULE_OK;
# Do some logging.
radiusd::radlog(1,rlm_perl:: NEW MAC updated in database.);
}
request (ie. mobile). Same applies to $sql3. Also I would use == instead
of += as the operator there.
I am using += operator because it helps me to store multiple CID in
database and also after using this operator it logs the correct
information in radius.log like why user are being reject. Before I was
using == but it only gives Login incorrect.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: help need with mysql statement in freeradius
I am getting core dumped while running that script.
rlm_perl: perl_embed:: module = /usr/local/etc/raddb/mac_check.pl , func
= authorize exit status= Undefined subroutine main::authorize called
Segmentation fault (core dumped)
##Script part
use vars qw(%RAD_REQUEST %RAD_REPLY %RAD_CHECK);
$username = $RAD_REQUEST{'User-Name'};
$callerid = $RAD_REQUEST{'Calling-Station-Id'};
Is this the right process of getting value from the request ? How can I
bypass perl function Authorization, authentication, accounting so that
only MAC assignment process will be done by this script?
Thanks
On 5/15/2008, Ivan Kalik [EMAIL PROTECTED] wrote:
PS. You should run your script in authorize.
Ivan Kalik
Kalik Informatika ISP
Dana 15/5/2008, Bishal [EMAIL PROTECTED] pi¹e:
Hello Ivan,
I came up with this scripts but looks like it;s not working. In
radiusd.conf
perl{
modules = /usr/local/etc/raddb/mac_check.pl
}
Instantiate {
exec
expr
dailycounter
noresetcounter
perl
}
radius debug shows perl modules loaded. But my script is not working. How
can I assign variables username and callingStationid in my script during
authentication process. rlm_perl doc show %RAD_REQUEST{'User-name'}
but it's not helping?
#!/usr/bin/perl
# Check for MAC Authentication is enable or not
#$username = $ARGV[4];
#$username = %RAD_REQUEST{'User-Name'};
#$callerid = %RAD_REQUEST{'Calling-Station-Id'};
use DBI;
$database = radius;
$user = freeradius;
$password = blaba2r;
$option = localhost;
$dsn = DBI:mysql:$database;
$dsn = DBI:mysql:database=$database;$option;
$dbh = DBI-connect($dsn, $user, $password);
my $sql = $dbh-prepare( SELECT Usemac FROM radcheck WHERE
UserName='$RAD_REQUEST{'User-Name'}' AND Attribute='Expiration'
);
my $sql2 = $dbh-prepare( SELECT Value FROM radcheck WHERE
Attribute='Calling-Station-Id' AND UserName='tori' );
my $sql3 = $dbh-prepare( INSERT INTO radcheck
(id,UserName,Attribute,op,Value)
VALUES('','$RAD_REQUEST{'User-Name'}','Calling-Statio
n-Id','+=','$RAD_REQUEST{'Calling-Station-Id'}' );
$rowcount = $sql-execute
or die Cannot execute SQL statement: $DBI::errstr\n;
my @row;
while ( @row = $sql-fetchrow_array() ) {
$mac = $row[0];
chomp($mac);
}
# Check if MAC authentication is enabled or not if enabled then insert
the mac
if ($mac == 1 ){
$rowcount = $sql3-execute
or die Cannot execute SQL Statement: $DBI::errstr\n;
}else {
exit;
}
$sql-finish;
$dbh-disconnect()
or warn Disconnection failed: $DBI::errstr\n;
On 5/14/2008, Bishal [EMAIL PROTECTED] wrote:
Any sample scripts IVAN?
On 5/14/2008, Ivan Kalik [EMAIL PROTECTED] wrote:
I am using sql for AAA.
I have news for you - you are not. You are using it to store attributes.
Can u give me some exaples how can I do that
withl Rlm_perl modules.?
Do Google: mysql perl tutorial. If it's not MySQL, replace that with the
name of your sql server.
Ivan Kalik
Kalik Informatika ISP
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users..html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: help need with mysql statement in freeradius
returns reject for request 0
modcall: leaving group authorize (returns reject) for request 0
Invalid user: [mobile] (from client pppoe-test port 12 cli 001a4daf4ead)
In radiusd.conf
perl {
module = /usr/local/etc/raddb/mac_check.pl
# List of functions in the module to call.
# Comment out and change if you want to use other
# function names than the defaults.
#
#func_authenticate = authenticate
func_authorize = authorize
#func_preacct = preacct
#func_accounting = accounting
#func_checksimul = checksimul
#func_pre_proxy = pre_proxy
#func_post_proxy = post_proxy
#func_post_auth = post_auth
#func_xlat = xlat
#func_detach = detach
#func_start_accounting = accounting_start
#func_stop_accounting = accounting_stop
}
authorize {
checkval
dailycounter
monthlycounter
noresetcounter
perl
}
=
sniplet of mac_check.pl
==
#!/usr/bin/perl
use vars qw(%RAD_REQUEST %RAD_REPLY %RAD_CHECK);
$username = $RAD_REQUEST{'User-Name'};
$callerid = $RAD_REQUEST{'Calling-Station-Id'};
use DBI;
$database = radius;
$user = freeradius;
$password = blabar2;
$option = localhost;
$dsn = DBI:mysql:$database;
$dsn = DBI:mysql:database=$database;$option;
$dbh = DBI-connect($dsn, $user, $password);
my $sql = $dbh-prepare( SELECT Usemac FROM radcheck WHERE
UserName='$username' AND Attribute='Expiration' );
my $sql2 = $dbh-prepare( SELECT Value FROM radcheck WHERE
Attribute='Calling-Station-Id' AND UserName='tori' );
my $sql3 = $dbh-prepare( INSERT INTO radcheck
(id,UserName,Attribute,op,Value)
VALUES('','$username','Calling-Station-Id','+=','$cal
lerid' );
$rowcount = $sql-execute
or die Cannot execute SQL statement: $DBI::errstr\n;
my @row;
while ( @row = $sql-fetchrow_array() ) {
$mac = $row[0];
chomp($mac);
}
sub authorize {
# Auto assign MAC on first login if MAC is enabled
if ($mac == 1 ){
$rowcount = $sql3-execute
or die Cannot execute SQL Statement: $DBI::errstr\n;
return RLM_MODULE_OK;
}else {
# Log MAC Auth not enabled in radius log
$RAD_REPLY{'Reply-Message'} = MAC Auth not Enabled;
return RLM_MODULE_OK;
}
}
$sql-finish;
$dbh-disconnect()
or warn Disconnection failed: $DBI::errstr\n;
=
Any suggestion?
Thank you
On 5/15/2008, Ivan Kalik [EMAIL PROTECTED] wrote:
PS. You should run your script in authorize.
Ivan Kalik
Kalik Informatika ISP
Dana 15/5/2008, Bishal [EMAIL PROTECTED] pi¹e:
Hello Ivan,
I came up with this scripts but looks like it;s not working. In
radiusd.conf
perl{
modules = /usr/local/etc/raddb/mac_check.pl
}
Instantiate {
exec
expr
dailycounter
noresetcounter
perl
}
radius debug shows perl modules loaded. But my script is not working. How
can I assign variables username and callingStationid in my script during
authentication process. rlm_perl doc show %RAD_REQUEST{'User-name'}
but it's not helping?
#!/usr/bin/perl
# Check for MAC Authentication is enable or not
#$username = $ARGV[4];
#$username = %RAD_REQUEST{'User-Name'};
#$callerid = %RAD_REQUEST{'Calling-Station-Id'};
use DBI;
$database = radius;
$user = freeradius;
$password = blaba2r;
$option = localhost;
$dsn = DBI:mysql:$database;
$dsn = DBI:mysql:database=$database;$option;
$dbh = DBI-connect($dsn, $user, $password);
my $sql = $dbh-prepare( SELECT Usemac FROM radcheck WHERE
UserName='$RAD_REQUEST{'User-Name'}' AND Attribute='Expiration'
);
my $sql2 = $dbh-prepare( SELECT Value FROM radcheck WHERE
Attribute='Calling-Station-Id' AND UserName='tori' );
my $sql3 = $dbh-prepare( INSERT INTO radcheck
(id,UserName,Attribute,op,Value)
VALUES('','$RAD_REQUEST{'User-Name'}','Calling-Statio
n-Id','+=','$RAD_REQUEST{'Calling-Station-Id'}' );
$rowcount = $sql-execute
or die Cannot execute SQL statement: $DBI::errstr\n;
my @row;
while ( @row = $sql-fetchrow_array() ) {
$mac = $row[0];
chomp($mac);
}
# Check if MAC authentication is enabled or not if enabled then insert
the mac
if ($mac == 1 ){
$rowcount = $sql3-execute
or die Cannot execute SQL Statement: $DBI::errstr\n;
}else {
exit;
}
$sql-finish;
$dbh-disconnect()
or warn Disconnection failed: $DBI::errstr\n;
On 5/14/2008, Bishal [EMAIL PROTECTED] wrote:
Any sample scripts IVAN?
On 5/14/2008, Ivan Kalik [EMAIL PROTECTED] wrote:
I am using sql for AAA.
I have news for you - you are not. You are using
Re: help need with mysql statement in freeradius
Hi Ivan, I am using sql for AAA. Can u give me some exaples how can I do that withl Rlm_perl modules.? Thanks On 5/14/2008, Ivan Kalik [EMAIL PROTECTED] wrote: http://wiki.freeradius.org/Rlm_perl Ivan Kalik kalik Informatika ISP Dana 14/5/2008, Bishal [EMAIL PROTECTED] pi¹e: Hi all, I am trying to do MAC insertion during post authentication section with the help of freeradius. Like during authentication section it will check in mysql database for MAC use option. If MAC use= 1 then if the user is login for the first time then grab the mac address from the login process and insert into database. If mac use is not enable i.e. MAC use=0 then go through normal process. Is is possible how can I do that? Thanks in advance - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: help need with mysql statement in freeradius
Any sample scripts IVAN? On 5/14/2008, Ivan Kalik [EMAIL PROTECTED] wrote: I am using sql for AAA. I have news for you - you are not. You are using it to store attributes. Can u give me some exaples how can I do that withl Rlm_perl modules.? Do Google: mysql perl tutorial. If it's not MySQL, replace that with the name of your sql server. Ivan Kalik Kalik Informatika ISP - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: help need with mysql statement in freeradius
Hello Ivan,
I came up with this scripts but looks like it;s not working. In
radiusd.conf
perl{
modules = /usr/local/etc/raddb/mac_check.pl
}
Instantiate {
exec
expr
dailycounter
noresetcounter
perl
}
radius debug shows perl modules loaded. But my script is not working. How
can I assign variables username and callingStationid in my script during
authentication process. rlm_perl doc show %RAD_REQUEST{'User-name'}
but it's not helping?
#!/usr/bin/perl
# Check for MAC Authentication is enable or not
#$username = $ARGV[4];
#$username = %RAD_REQUEST{'User-Name'};
#$callerid = %RAD_REQUEST{'Calling-Station-Id'};
use DBI;
$database = radius;
$user = freeradius;
$password = blaba2r;
$option = localhost;
$dsn = DBI:mysql:$database;
$dsn = DBI:mysql:database=$database;$option;
$dbh = DBI-connect($dsn, $user, $password);
my $sql = $dbh-prepare( SELECT Usemac FROM radcheck WHERE
UserName='$RAD_REQUEST{'User-Name'}' AND Attribute='Expiration'
);
my $sql2 = $dbh-prepare( SELECT Value FROM radcheck WHERE
Attribute='Calling-Station-Id' AND UserName='tori' );
my $sql3 = $dbh-prepare( INSERT INTO radcheck
(id,UserName,Attribute,op,Value)
VALUES('','$RAD_REQUEST{'User-Name'}','Calling-Statio
n-Id','+=','$RAD_REQUEST{'Calling-Station-Id'}' );
$rowcount = $sql-execute
or die Cannot execute SQL statement: $DBI::errstr\n;
my @row;
while ( @row = $sql-fetchrow_array() ) {
$mac = $row[0];
chomp($mac);
}
# Check if MAC authentication is enabled or not if enabled then insert
the mac
if ($mac == 1 ){
$rowcount = $sql3-execute
or die Cannot execute SQL Statement: $DBI::errstr\n;
}else {
exit;
}
$sql-finish;
$dbh-disconnect()
or warn Disconnection failed: $DBI::errstr\n;
On 5/14/2008, Bishal [EMAIL PROTECTED] wrote:
Any sample scripts IVAN?
On 5/14/2008, Ivan Kalik [EMAIL PROTECTED] wrote:
I am using sql for AAA.
I have news for you - you are not. You are using it to store attributes.
Can u give me some exaples how can I do that
withl Rlm_perl modules.?
Do Google: mysql perl tutorial. If it's not MySQL, replace that with the
name of your sql server.
Ivan Kalik
Kalik Informatika ISP
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
help need with mysql statement in freeradius
Hi all, I am trying to do MAC insertion during post authentication section with the help of freeradius. Like during authentication section it will check in mysql database for MAC use option. If MAC use= 1 then if the user is login for the first time then grab the mac address from the login process and insert into database. If mac use is not enable i.e. MAC use=0 then go through normal process. Is is possible how can I do that? Thanks in advance - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: freeradius authentication LAN users
Use PPPoE for AAA. Regards Bisal On 8/10/2007, ram [EMAIL PROTECTED] wrote: On 8/8/07, satish patel [EMAIL PROTECTED] wrote: Dear all I am on ISP and i want to configure billing gateway means user authentuicate that gateway and surffing net so is these type of any opensource package is available and radius for billing Rgds satish patel Look at IPtables and ip accounting ram $ cat ~/satish/url.txt http://www.linuxbug.org _ -- 5, 50, 500, 5000. Store N number of mails in your inbox. Click here.http://in.rd.yahoo.com/tagline_mail_4/*http://help.yahoo.com/l/in/yahoo/mail/yahoomail/tools/tools-08.html/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
LDAP errror in dialup admin page
I am trying to use freeradius 1.1.7 in Freebsd 6.2 with openldap 2.3.37 for authentication and mysql for accounting. While creating new user I get following error in dialup admin page: Warning: file(/usr/local/etc/raddb/ldap.attrmap) [function.file]: failed to open stream: Permission denied in /usr/local/www/apache22/data/dialupadmin/lib/ldap/attrmap.php3 on line 4 Warning: Invalid argument supplied for foreach() in /usr/local/www/apache22/data/dialupadmin/lib/ldap/attrmap.php3 on line 5 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: LDAP errror in dialup admin page
Apache is running as www and it can open and read file. But still I am getting the same error. On 7/29/2007, Kostas Kalevras [EMAIL PROTECTED] wrote: O/H Bishal ÎγÏαÏε: I am trying to use freeradius 1.1.7 in Freebsd 6.2 with openldap 2.3.37 for authentication and mysql for accounting. While creating new user I get following error in dialup admin page: Warning: file(/usr/local/etc/raddb/ldap.attrmap) [function.file]: failed to open stream: Permission denied in /usr/local/www/apache22/data/dialupadmin/lib/ldap/attrmap.php3 on line 4 I think the problem is exactly what is written. Check the persmissions to the /usr/local/etc/raddb/ldap.attrmap file. Especially check that the apache process (usually runs as nobody) can open the file. Warning: Invalid argument supplied for foreach() in /usr/local/www/apache22/data/dialupadmin/lib/ldap/attrmap.php3 on line 5 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- Kostas Kalevras - Network Operations Center National Technical University of Athens http://kkalev.wordpress.com - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Rejected Calling Station id and radius reply message
Hello I am using freeradius 1.1.3 in freebsd 6 with mysql database. My problem is if I enable the calling-station-id in freeradius radcheck table the rejected message is shown as below in radius log Fri Mar 16 16:56:58 2007 : Info: rlm_sql (sql): No matching entry in the database for request from user [test] Fri Mar 16 16:56:58 2007 : Auth: Login incorrect (rlm_chap: Clear text password not available): [test] (from client pppoe2 port 568 cli 0:7:95:10:73:9e) The rejected message should be calling station id not allowed. Why I am not getting the valid rejected reason. Same happens for Expired accounts too. radius.log for Expiration accounts show: Fri Mar 16 16:56:38 2007 : Auth: Login incorrect: [test2] (from client pppoe2 port 566 cli 0:7:95:10:73:9e) I have seetup radcheck table as follows: ++++--+--+ | id | UserName | Attribute | Value| Op | ++++--+--+ | 1 | test | User-Password | wilma| == | | 2 | test | Expiration | 10 Feb 2007 | := | | 2 | test | Calling-Station-Id | 0:c0:26:8b:2a:e7 | == | ++++--+--+ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Question about rlm_sqlcounter
Hi list, Is it possible to reset the monthly counter from the date of account active/created to the end of the month (30days). Like: user abc renewed his account 25hrs on 15 Dec 2006 and it will expire on 14th Jan 2007. Is it possible to make counter reset on 15th Jan 2007? - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Reset sql counter
Is it possible to reset the sql counter manually or by any scripts in freeradius? - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Two sql queries in counter module
Hello all
Is it possible to make two queries in sql counter module? like
sqlcounter noresetcounter {
driver = rlm_sqlcounter
counter-name = Max-All-Session-Time
check-name = Max-All-Session
sqlmod-inst = sql
key = User-Name
reset = never
query1=SELECT activedate from radacct where
username='%{%k}'
query = SELECT SUM(AcctSessionTime) FROM
radacct WHERE UserName='%{%k}' AND ActiveDate='$query1'
}
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Sql counter
Has anyone made a sql counter module for rechargeable account? - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
sqlcounter
Hello all How can I make sqlcounter module for rechargeable account in my freeradius server with mysql backened. Bsal - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
sqlcounter for rechargeable account
Hi all, Can anybody guide me how to make sql counter for rechargeable account. like user test01 subscribe for total of 25hours and after finishing 25hours if he wants to recharge his account again to 25hrs. Bisal - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
freeradius stop automatically
After upgrading freeradius 1.0.5 to version 1.1.2 on Freebsd 6 my radius server stop automatically with the following error essage. Wed Jul 26 01:30:08 2006 : Error: Discarding duplicate request from client pppoe-bhw:61882 - ID: 137 due to unfinished request 61 Wed Jul 26 01:30:08 2006 : Error: WARNING: Unresponsive child (id 135672320) for request 31 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Error while running log_badlogins scripts
Hello,
I have installed Freeradius 1.1.2 in FreeBSD 6.0. Everything is running
well except log_badlogins script. When I run log_badlogins scripts it
gives me the error
ERROR: Date::Manip unable to determine TimeZone.
at /usr/local/lib/perl5/site_perl/5.8.7/Date/Manip.pm line 3635
Date::Manip::Date_TimeZone called at
/usr/local/lib/perl5/site_perl/5.8.7/Date/Manip.pm line 676
Date::Manip::Date_Init() called at
/usr/local/lib/perl5/site_perl/5.8.7/Date/Manip.pm line 1446
Date::Manip::ParseDate('Tue Jul 25 16:15:44 2006') called at
./log_badlogins line 150
I have re-installed the perl modules Date::Manip.pm too but didn't work.
Looks like log_badlogins script is unable to parse the Unix date format.
Can anyone correct the script for freebsd use.
Thank you
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
radzap not working
Hello all, I have installed freeradius 1.0.5 in freebsd 6. I am authenticating pppoe users to my remote freeradius server. I tried to delete the stale session from radutmp file with radzap coammand but it doesnot work; radwho shows the following login information: #radwho Login Name What TTY When From Location test testaccount PPP S11 Sun 14:58 192.168.0 192.168.0.100 #radzap -u test 192.168.0.5:S11 secret PPPOE and freeradius are running in different freebsd server. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Re: how to disconnect user after quota given to him finishes ?
You can use daily limit with Session Timeout. On 2/16/2006, Rupesh Amatya [EMAIL PROTECTED] wrote: Dear all, The user gets logged out exactly after the time set in Session Time Out. But I am trying to create package like 4hours per day, 2 hours perday. If I put 4hours in Session time and after using 3 hours , if he disconnects and then reconnects, he can again use 4 hours. Is there a way that he can no more log in after he uses 4 hours/day ? Thanking you all, Rupesh Amatya Original Message == From: Lewis Bergman [EMAIL PROTECTED] == Date: Wed, 15 Feb 2006 08:38:33 -0600 Dear all, I am using Freeradius(with mysql as database for users ) with Mikrotik as NAS. This for PPPOE users. I used Dialup Admin to manage freeradius. There is default package of 4hours/day but the users do not get disconnect after 4 hours. It just shows Out of Quota. What needs to be done to automatically disconnect user after the daily quota is finished ? ** There a few session attrbutes you could use for this. Session-Timeout is the first one that springs to mind. I don't know if the client will pay attention to it though. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Password chaning and usage viewing interface for client
Hello all Is their any web interface for clients, so that they can change their password and view their account usage status.? - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Mikrotik router Tx/Rx attribute and freeradius
Is it possible to limit the data transfer rate with freeradius and mikrotik. If possbile then where should I specify what attribute. For example I want to authenticate the users with freeradius + mysql and mikrotik router and limit the Tx/Rx rate to 64Kbps/32Kbps. How can I do that? - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: dialup-admin problem
Mine too is FreeBSD 6.0 with Apache2.2.0 and php5.1 Dialup admin works
fine only one dialup menu option i.e Statistics when I click on it,
gives the error as follows;
Warning: mktime() expects parameter 1 to be long, string given in
/usr/home/httpd/baayu.com/dialbaayu/lib/functions.php3 on line 83
Warning: mktime() expects parameter 1 to be long, string given in
/usr/home/httpd/baayu.com/dialbaayu/lib/functions.php3 on line 83
==
On 1/24/2006, Scott Miller [EMAIL PROTECTED] wrote:
I've found that my problem might be with Apache 2 and PHP 5 - does anyone
else have dialup-admin running properly on Apache 2 and PHP 5? I'd hate to
think I'd have to downgrade.
Thanks,
Scott
- Original Message -
From: Scott Miller [EMAIL PROTECTED]
To: FreeRadius users mailing list freeradius-users@lists.freeradius.org
Sent: Monday, January 23, 2006 1:03 PM
Subject: dialup-admin problem
I've installed freeradius 1.1.0, went through all the tests and everything
(the tests) seems to be working fine there. My platform is:
Fedora Core 4
Sendmail 8.13.4
Apache 2.0.54
MySQL 4.1.16
PHP 5.0.5-2.1
Freeradius 1.1.0
I've also followed the instructions for the dialup-admin, and have run
into a problem. When I view servername.com/dialup-admin, I can see the
first page just fine, but when I click on any link on the left, the right
side just turns white - nothing displays. The home link brings me back
to the A web based administration interface for the freeradius radius
server page, but no other links seem to bring anyting up.
Here's what I did:
1. Copied the directory dialup-admin to the /user/local/ directory
2. In /var/www/html I created a simlink /user/local/dialup-admin/htdocs
named dialup-admin
ln -s /usr/local/dialup-admin/htdocs /var/www/html/dialup-admin
3. Edited httpd.conf to the following
# Scott Added for freeradius dialup-admin
#LoadModule php4_module libexec/libphp4.so
#AddModule mod_php4.c
AddType application/x-httpd-php .php
AddType application/x-httpd-php .php3
I had to comment out the fist two lines, because httpd kept failing and
producing the error: Apache 1.3 configuration directives found please read
/usr/share/doc/httpd-2.0.54/migration.html
4. I did not do: [1.3.2.2] Creating a more secure web interface. -
wanting to make it work first, then will start securing it.
5. Created the 4 additional MySQL Databases according to the instructions
and all look fine.
6. I then went through the general configuraiton options. I commented
out all LDAP options, and fixed the following:
Start admin.conf
general_prefered_lang: en
general_prefered_lang_name: English
general_charset: iso-8859-1
#general_decode_normal_attributes: yes
general_base_dir: /usr/local/dialup-admin
general_radiusd_base_dir: /usr/local/radiusd
general_use_session: no
general_most_recent_fl: 30
#general_strip_realms : yes
general_realm_delimiter: @
general_realm_format: suffix
general_show_user_password: yes
general_raddb_dir: %{general_radiusd_base_dir}/etc/raddb
general_ldap_attrmap: %{general_raddb_dir}/ldap.attrmap
#general_clients_conf: %{general_raddb_dir}/clients.conf
general_clients_conf: /usr/local/etc/raddb/clients.conf
general_sql_attrmap: %{general_base_dir}/conf/sql.attrmap
general_accounting_attrs_file: %{general_base_dir}/conf/accounting.attrs
general_extra_ldap_attrmap: %{general_base_dir}/conf/extra.ldap-attrmap
general_lib_type: sql
general_user_edit_attrs_file: %{general_base_dir}/conf/user_edit.attrs
general_sql_attrs_file: %{general_base_dir}/conf/sql.attrs
general_default_file: %{general_base_dir}/conf/default.vals
#general_ld_library_path: /usr/local/snmpd/lib
general_finger_type: snmp
general_nas_type: cisco
general_snmpfinger_bin: %{general_base_dir}/bin/snmpfinger
general_radclient_bin: %{general_radiusd_base_dir}/bin/radclient
general_test_account_login: test
general_test_account_password: testpass
general_radius_server: localhost
general_radius_server_port: 1812
general_radius_server_auth_proto: pap
general_radius_server_secret: commented-out
general_auth_request_file: %{general_base_dir}/conf/auth.request
general_encryption_method: crypt
general_accounting_info_order: desc
general_stats_use_totacct: no
general_restrict_badusers_access: no
INCLUDE: %{general_base_dir}/conf/naslist.conf
INCLUDE: %{general_base_dir}/conf/captions.conf
#ldap_server: ldap.%{general_domain}
#ldap_write_server: master.%{general_domain}
#ldap_base: dc=company,dc=com
#ldap_binddn: cn=Directory Manager
#ldap_bindpw: XXX
#ldap_default_new_entry_suffix: ou=dialup,ou=guests,%{ldap_base}
#ldap_default_dn: uid=default-dialup,%{ldap_base}
#ldap_regular_profile_attr: dialupregularprofile
#ldap_use_http_credentials: yes
#ldap_directory_manager: cn=Directory Manager
#ldap_map_to_directory_manager:
Freeradius 1.1.0 crash on FreeBSD 6
Dear all, I have installed Freeradius 1.1.0 in FreeBSD with Mysql 5.0.17. Authenticaiton an authorization works fine. But when I enable the Max-Daily-Session module it crashes with segmentation fault. and radiusd.core file is created. Below is the dumped file of radiusd.core file: == bw-proj# gdb /usr/local/sbin/radiusd radiusd.core GNU gdb 6.1.1 [FreeBSD] Copyright 2004 Free Software Foundation, Inc. GDB is free software, covered by the GNU General Public License, and you are welcome to change it and/or distribute copies of it under certain conditions. Type show copying to see the conditions. There is absolutely no warranty for GDB. Type show warranty for details. This GDB was configured as i386-marcel-freebsd...(no debugging symbols found)... Core was generated by `radiusd'. Program terminated with signal 11, Segmentation fault. Reading symbols from /lib/libcrypt.so.3...(no debugging symbols found)...done. Loaded symbols for /lib/libcrypt.so.3 Reading symbols from /usr/local/lib/libradius-1.1.0.so...done. Loaded symbols for /usr/local/lib/libradius-1.1.0.so Reading symbols from /usr/local/lib/libltdl.so.4...done. Loaded symbols for /usr/local/lib/libltdl.so.4 Reading symbols from /usr/lib/libssl.so.4...done. Loaded symbols for /usr/lib/libssl.so.4 Reading symbols from /lib/libcrypto.so.4...done. Loaded symbols for /lib/libcrypto.so.4 Reading symbols from /usr/lib/libpthread.so.2...done. Loaded symbols for /usr/lib/libpthread.so.2 Reading symbols from /lib/libc.so.6...done. Loaded symbols for /lib/libc.so.6 Reading symbols from /usr/local/lib/rlm_exec-1.1.0.so...done. Loaded symbols for /usr/local/lib/rlm_exec-1.1.0.so Reading symbols from /usr/local/lib/rlm_expr-1.1.0.so...done. Loaded symbols for /usr/local/lib/rlm_expr-1.1.0.so Reading symbols from /libexec/ld-elf.so.1...done. Loaded symbols for /libexec/ld-elf.so.1 #0 0x280ba250 in lt_dlsym (handle=0x811a800, symbol=0xbfbfd8f0 rlm_counter) at ltdl.c:3330 3330 lensym = LT_STRLEN (symbol) + LT_STRLEN (handle-loader-sym_prefix) [New LWP 100191] (gdb) bt #0 0x280ba250 in lt_dlsym (handle=0x811a800, symbol=0xbfbfd8f0 rlm_counter) at ltdl.c:3330 #1 0x080544e7 in find_module_instance () #2 0x08054a64 in setup_modules () #3 0x0804c79e in main () = - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Freeradius 1.1.0 crash on FreeBSD 6
Ok I followed the step in bug #98 and compiled with ./configure --disable-shared Now when I tried to run the radiusd -X it shows /libexec/ld-elf.so.1: Shared object libperl.so not found, required by radiusd while searching the libperl.so it was located in /usr/local/lib/perl5/5.8.7/mach/CORE/libperl.so so I linked it with command # ln -s /usr/local/lib/perl5/5.8.7/mach/CORE/libperl.so /libexec/ld-elf.so.1 but it still shows same error ? On 1/22/2006, Nicolas Baradakis [EMAIL PROTECTED] wrote: [EMAIL PROTECTED] wrote: #0 0x280ba250 in lt_dlsym (handle=0x811a800, symbol=0xbfbfd8f0 rlm_counter) at ltdl.c:3330 3330 lensym = LT_STRLEN (symbol) + LT_STRLEN (handle-loader-sym_prefix) [New LWP 100191] (gdb) bt #0 0x280ba250 in lt_dlsym (handle=0x811a800, symbol=0xbfbfd8f0 rlm_counter) at ltdl.c:3330 #1 0x080544e7 in find_module_instance () #2 0x08054a64 in setup_modules () #3 0x0804c79e in main () It's bug #98. http://bugs.freeradius.org/show_bug.cgi?id=98 -- Nicolas Baradakis - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Error with dialup admin
Hello all I have installed freeradius 1.1.0 in freebsd 6.0. While clicking on statistic menu of dialup page I got this error. Warning: mktime() expects parameter 1 to be long, string given in /usr/home/httpd/baayu.com.np/baayucom/dialbaayu/lib/functions.php3 on line 83 Warning: mktime() expects parameter 1 to be long, string given in /usr/home/httpd/baayu.com.np/baayucom/dialbaayu/lib/functions.php3 on line 83 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
