Re: Server not responding to requests
Yoho, Cindy wrote: rlm_realm: Looking up realm umpublishing.org for User-Name = [EMAIL PROTECTED] rlm_realm: No such realm umpublishing.org yet this is the realm defined in smb.conf, Uh... the server doesn't read smb.conf. and it also works fine when I have this line in the /usr/local/etc/raddb/users file: [EMAIL PROTECTED]Auth-Type := ntlm_auth Is there somewhere else that the realm needs to be defined for this to work? You can define umpublishing.org as a LOCAL realm. See proxy.conf. You will also have to ensure it uses ntlm_auth for authentication. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Server not responding to requests
Bonjour, je suis actuellement en congés pour 3 semaines. Je suis de retour le 1er septembre 2008. En cas d'urgence, vous pouvez contacter Monsieur Tixier au 03 80 24 44 27 ou la maintenance informatique au 03 80 24 45 84. Cordialement. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: RE: Server not responding to requests
I found the problem, I was getting a DHCP address, which I did not want to do. The eth0 icon on the tray showed the correct static address, which was the same as in my /etc/hosts (and DNS), but the actual ifconfig eth0 showed the DHCP address. I corrected this, and now I am one step further. :-) In debug output I see rlm_realm: Looking up realm umpublishing.org for User-Name = [EMAIL PROTECTED] rlm_realm: No such realm umpublishing.org yet this is the realm defined in smb.conf, and it also works fine when I have this line in the /usr/local/etc/raddb/users file: [EMAIL PROTECTED]Auth-Type := ntlm_auth Is there somewhere else that the realm needs to be defined for this to work? Regards, Cindy -Original Message- From: Yoho, Cindy Sent: Wednesday, August 06, 2008 12:48 PM To: 'FreeRadius users mailing list' Subject: RE: Server not responding to requests Alan, iptables -L -n output shows Chain INPUT (policy ACCEPT) target prot opt sourcedestination Chain OUTPUT (policy ACCEPT) target prot opt sourcedestination Chain FORWARD (policy ACCEPT) target prot opt sourcedestination tcpdump shows nothing when I am trying to connect. However, ifconfig shows eth0 has the wrong IP address. It looks like it grabbed a DHCP address from my Windows DHCP server. When I look at eth0 connection properties on the task bar it shows 172.16.3.4. In /etc/hosts, under System Administration Network Configuration, and on my DNS server, it is 172.16.1.15. How do I stop it from using the wrong address? I see in docs there is a file called /var/lib/dhclient/eth0-leases which contains the bad config info. Orion, client file is correct, for the 172.16.1.15 address, anyway. :-\ Greg, server is not multihomed, but multi-ip addresses do appear to be the problem. Hi, Hi All, I have freeradius 1.1.7 running on RHEL 5. radtest works with a local user setup, and also with authentication via Active Directory. However, anything outside the radius server host does not get a reply. I have configured a Multitech MA820 and also tried ntradping, and both get the same results - Could not receive a response from server is the message when I use ntradping, and Server did not respond in a timely manner is the response when I try to connect from the Multitech. Is there some setting I need to check to make sure external access is enabled? iptables? your host is firewalled and therefore FR doesnt see the packet at all? tcpdump -eqntl -i eth0 port 1812 (if eth0 is your NIC) then do some stuff. do you see anything? iptables -L -n are there entries? if so, ensure there are 1812/1813/1814 UDP entries too! alan -- Message: 2 Date: Tue, 5 Aug 2008 19:17:40 +0200 From: orion [EMAIL PROTECTED] Subject: Re: Server not responding to requests To: FreeRadius users mailing list freeradius-users@lists.freeradius.org Message-ID: [EMAIL PROTECTED] Content-Type: text/plain; charset=ISO-8859-1 take a look at client file. there you can specify which clients ( IP addresses ) are allowed . add the public ip of your outside clients/nas. 2008/8/5 Yoho, Cindy [EMAIL PROTECTED]: Hi All, I have freeradius 1.1.7 running on RHEL 5. radtest works with a local user setup, and also with authentication via Active Directory. However, anything outside the radius server host does not get a reply. I have configured a Multitech MA820 and also tried ntradping, and both get the same results - Could not receive a response from server is the message when I use ntradping, and Server did not respond in a timely manner is the response when I try to connect from the Multitech. Is there some setting I need to check to make sure external access is enabled? Thanks in advance ~ Cindy Yoho Systems Engineer United Methodist Publishing House Nashville, TN - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: Server not responding to requests
Alan, iptables -L -n output shows Chain INPUT (policy ACCEPT) target prot opt sourcedestination Chain OUTPUT (policy ACCEPT) target prot opt sourcedestination Chain FORWARD (policy ACCEPT) target prot opt sourcedestination tcpdump shows nothing when I am trying to connect. However, ifconfig shows eth0 has the wrong IP address. It looks like it grabbed a DHCP address from my Windows DHCP server. When I look at eth0 connection properties on the task bar it shows 172.16.3.4. In /etc/hosts, under System Administration Network Configuration, and on my DNS server, it is 172.16.1.15. How do I stop it from using the wrong address? I see in docs there is a file called /var/lib/dhclient/eth0-leases which contains the bad config info. Orion, client file is correct, for the 172.16.1.15 address, anyway. :-\ Greg, server is not multihomed, but multi-ip addresses do appear to be the problem. Hi, Hi All, I have freeradius 1.1.7 running on RHEL 5. radtest works with a local user setup, and also with authentication via Active Directory. However, anything outside the radius server host does not get a reply. I have configured a Multitech MA820 and also tried ntradping, and both get the same results - Could not receive a response from server is the message when I use ntradping, and Server did not respond in a timely manner is the response when I try to connect from the Multitech. Is there some setting I need to check to make sure external access is enabled? iptables? your host is firewalled and therefore FR doesnt see the packet at all? tcpdump -eqntl -i eth0 port 1812 (if eth0 is your NIC) then do some stuff. do you see anything? iptables -L -n are there entries? if so, ensure there are 1812/1813/1814 UDP entries too! alan -- Message: 2 Date: Tue, 5 Aug 2008 19:17:40 +0200 From: orion [EMAIL PROTECTED] Subject: Re: Server not responding to requests To: FreeRadius users mailing list freeradius-users@lists.freeradius.org Message-ID: [EMAIL PROTECTED] Content-Type: text/plain; charset=ISO-8859-1 take a look at client file. there you can specify which clients ( IP addresses ) are allowed . add the public ip of your outside clients/nas. 2008/8/5 Yoho, Cindy [EMAIL PROTECTED]: Hi All, I have freeradius 1.1.7 running on RHEL 5. radtest works with a local user setup, and also with authentication via Active Directory. However, anything outside the radius server host does not get a reply. I have configured a Multitech MA820 and also tried ntradping, and both get the same results - Could not receive a response from server is the message when I use ntradping, and Server did not respond in a timely manner is the response when I try to connect from the Multitech. Is there some setting I need to check to make sure external access is enabled? Thanks in advance ~ Cindy Yoho Systems Engineer United Methodist Publishing House Nashville, TN - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Server not responding to requests
Hi All, I have freeradius 1.1.7 running on RHEL 5. radtest works with a local user setup, and also with authentication via Active Directory. However, anything outside the radius server host does not get a reply. I have configured a Multitech MA820 and also tried ntradping, and both get the same results - Could not receive a response from server is the message when I use ntradping, and Server did not respond in a timely manner is the response when I try to connect from the Multitech. Is there some setting I need to check to make sure external access is enabled? Thanks in advance ~ Cindy Yoho Systems Engineer United Methodist Publishing House Nashville, TN - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Server not responding to requests
Hi, Hi All, I have freeradius 1.1.7 running on RHEL 5. radtest works with a local user setup, and also with authentication via Active Directory. However, anything outside the radius server host does not get a reply. I have configured a Multitech MA820 and also tried ntradping, and both get the same results - Could not receive a response from server is the message when I use ntradping, and Server did not respond in a timely manner is the response when I try to connect from the Multitech. Is there some setting I need to check to make sure external access is enabled? iptables? your host is firewalled and therefore FR doesnt see the packet at all? tcpdump -eqntl -i eth0 port 1812 (if eth0 is your NIC) then do some stuff. do you see anything? iptables -L -n are there entries? if so, ensure there are 1812/1813/1814 UDP entries too! alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Server not responding to requests
take a look at client file. there you can specify which clients ( IP addresses ) are allowed . add the public ip of your outside clients/nas. 2008/8/5 Yoho, Cindy [EMAIL PROTECTED]: Hi All, I have freeradius 1.1.7 running on RHEL 5. radtest works with a local user setup, and also with authentication via Active Directory. However, anything outside the radius server host does not get a reply. I have configured a Multitech MA820 and also tried ntradping, and both get the same results - Could not receive a response from server is the message when I use ntradping, and Server did not respond in a timely manner is the response when I try to connect from the Multitech. Is there some setting I need to check to make sure external access is enabled? Thanks in advance ~ Cindy Yoho Systems Engineer United Methodist Publishing House Nashville, TN - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Server not responding to requests
On Tue, 2008-08-05 at 18:17 +0100, [EMAIL PROTECTED] wrote: your host is firewalled and therefore FR doesnt see the packet at all? Also, if the server host is multihomed, then the response packet may be coming from a different source IP than the original request was sent to, in which case the client may ignore it. The fix for this is to have the radius server listen on a single IP, which will cause that IP to be used as the source and avoid this problem. tcpdump is your friend here too. --Greg - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html