Re: (RADIATOR) Compiling Errors

[Mike McCauley]

Hi Tom,

looks to me like your MD5 library did not compile and install properly.

This is what I usuaully do to build MD5:

Unpack it in a work area (not in the perl tree, as some of the docs suggest)
cd MD5-1.7
perl Makefile.pl
make
make test
(as root) make install

Is that what you did?
Did you get any error messages?

Hope that helps.

Cheers.

On Mar 23,  7:08pm, Tom Williams wrote:
 Subject: (RADIATOR) Compiling Errors
 Hi,

 I am trying to compile radiator and get it going on a freebsd 2.2.5
 machine with perl5.004, I have installed the MD5 asnd run the make test
 that it came with and it works I then proceeded to do the Radiator setup

 perl Makefile.Pl
 then when I went on to do make test i get this error
 Can't locate loadable object for module MD5 in @INC (@INC contains: .
 /usr/local
 /lib/perl5/i386-freebsd/5.00404 /usr/local/lib/perl5
 /usr/local/lib/perl5/site_p
 erl/i386-freebsd /usr/local/lib/perl5/site_perl .) at Radius/Radius.pm
 line 23
 BEGIN failed--compilation aborted at Radius/Radius.pm line 23.
 BEGIN failed--compilation aborted at radpwtst line 20.

 Anyone have any ideas?

 TTYL
 Tom Williams
 Thanks



 ===
 To unsubscribe, email '[EMAIL PROTECTED]' with
 'unsubscribe radiator' in the body of the message.
-- End of excerpt from Tom Williams



-- 
Mike McCauley   [EMAIL PROTECTED]
Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW
24 Bateman St Hampton, VIC 3188 Australia   Consulting and development
Phone, Fax: +61 3 9598-0985 http://www.open.com.au

Radiator: the most portable, flexible and configurable RADIUS server 
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, 
Platypus, Freeside, external, etc etc on Unix, Win95/8, NT, Rhapsody
===
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

No Subject

[Mike McCauley]

On Mar 24,  1:00am, [EMAIL PROTECTED] wrote:
 Subject:
 hello,

 Could someone shed some light on the meaning of the following

 Duplicate request id 52 received from xxx.xxx.xxx.xxx: ignored

 I keep getting this message in my logfile every so often.
You probably have DupInterval set a bit to big for your setup.

Hope that helps.

Cheers.



 thanks.


 ===
 To unsubscribe, email '[EMAIL PROTECTED]' with
 'unsubscribe radiator' in the body of the message.
-- End of excerpt from [EMAIL PROTECTED]



-- 
Mike McCauley   [EMAIL PROTECTED]
Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW
24 Bateman St Hampton, VIC 3188 Australia   Consulting and development
Phone, Fax: +61 3 9598-0985 http://www.open.com.au

Radiator: the most portable, flexible and configurable RADIUS server 
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, 
Platypus, Freeside, external, etc etc on Unix, Win95/8, NT, Rhapsody
===
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

Re: (RADIATOR) Client DefaultRealm not working

[Mike McCauley]

Hi Stephen,
can you send the Radiatorlog file at trace level 4 showing what happens when
you try to login that user?

Cheers.

On Mar 24,  2:32pm, Stephen Ollis wrote:
 Subject: (RADIATOR) Client DefaultRealm not working
 Radiator 2.13 with most of the patches.

 Trying to migrate old ISDN hard-coded users
 across to use Radiator. Usernames/password have been
 decrypted and dumped into a flat file. I wanted to
 configure a DefaultRealm for the ISDN router so
 that I didn't have to change anything...

 I have a client entry that SHOULD trigger the use
 of a specified Realm. If I specify the full realm
 it works, else it fails.

 Without the realm, fails with no such user.

 I have a isdn.users file that has...
 --
 testPassword = "test99", Simultaneous-Use = 1
 Ascend-Maximum-Channels = 1,
 Framed-IP-Address = 202.10.2.137
 --
 and radius.cfg has ...
 --
 Client 202.10.0.33
 DefaultRealm isdn.att.net.au
 IgnoreAcctSignature
 Secret N0TLIKELY
 DupInterval 300
 /Client

 Realm isdn.att.net.au
 #
 # Strip the realm so we can auth with the bare user name
 # in the users file
 RewriteUsername s/^([^@]+).*/$1/

 AuthBy FILE
 Filename %D/isdn.users
 /AuthFile
 # Where do we write the accounting file
 AcctLogFileName %L/detail.isdn-%Y%m%d
 /Realm
 --

 --
 Stephen Ollis [EMAIL PROTECTED]   Ph: +61 2 9911 1606(BH)
 Team Leader, Server Systems - Network Engineering  +61 2 9911 1555(FAX)
 ATT EasyLink Services, Lvl 8, 15 Orion Rd, Lane Cove, NSW 2066
 Australia
 "Service to others is the rent you pay for room here on Earth" - M. Ali


 ===
 To unsubscribe, email '[EMAIL PROTECTED]' with
 'unsubscribe radiator' in the body of the message.
-- End of excerpt from Stephen Ollis



-- 
Mike McCauley   [EMAIL PROTECTED]
Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW
24 Bateman St Hampton, VIC 3188 Australia   Consulting and development
Phone, Fax: +61 3 9598-0985 http://www.open.com.au

Radiator: the most portable, flexible and configurable RADIUS server 
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, 
Platypus, Freeside, external, etc etc on Unix, Win95/8, NT, Rhapsody
===
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

Re: (RADIATOR) Compiling Errors

[Paul Thornton]

Hi,

 looks to me like your MD5 library did not compile and install properly.

This does look like it's the case. You could also use MCPAN to install the
MD5 module or others, without the need to recompile PERL all the time.

/usr/local/bin/perl -MCPAN -e shell

The first thing to do is to follow all the stuff at the start to get
CPAN working and talking to local CPAN FTP servers.

then;

cpan i /MOD_NAME/ - this will search the CPAN site for that module if
  your not sure what it is.

I.E. i /MD5/

cpan install PERL:MODULE - This is the name of the Perl Module


This will install the MD5 module or any other module that you find usefull
easily and quickly.

Paul Thornton.


===
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

Re: (RADIATOR) syncing multiple users files question...

[Arturo Pina]

-BEGIN PGP SIGNED MESSAGE-

Hi,
And what about using an NFS share?

On 22-Mar-99 Stuart Henderson wrote:
 The first method that comes to mind is setting up a cron
 job to rcp or ftp the users file on one machine or the other. 
 We're not crazy about allowing rcp or ftp into our radius 
 servers though... Is there another method anyone has found?
 
 How does rsync or scp (part of ssh) sound to you? Scp encrypts
 everything and can be configured to require preset keys, and is the more
 secure of the two, although rsync is nicer about not copying things that
 haven't changed, and only sending the updates across rather than the
 whole file.
 
 ===
 To unsubscribe, email '[EMAIL PROTECTED]' with
 'unsubscribe radiator' in the body of the message.

- ---
Arturo Pina - [EMAIL PROTECTED]
CTV Internet [http://www.ctv.es/]
+34 902 444557

-BEGIN PGP SIGNATURE-
Version: 2.6.3i
Charset: noconv

iQCVAwUBNviu4d+A5jTOp/8tAQGWfQP/YW5XrxCPB6Bu9tAE8au5gcVZM8I5PQsY
gUBzftYn/2cDgBh1lERchYJjmPR/z6vl7GplC+A8DdSzMtPwsAKXdK0rZet5luv3
Te0DXr1VDxzlqWHAry9CrGqvC4M/7vdVSuFKSRUYoQva9YQ8kAeWvWvJwdkbU3ye
MX/U4x8kfz4=
=sZ+L
-END PGP SIGNATURE-

===
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

Re: (RADIATOR) syncing multiple users files question...

[Stuart Henderson]

 And what about using an NFS share?

Just be sure to make copies and not use the file directly ;-)

(I don't think I'd do this though, I have a hard enough time getting rid
of the NFS we already have without adding more grin)

===
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) Re: Duplicate request id

[Ricardo Freire]

Hi Mike,

- I have 3 Ascend NASes, and we receive it very often too.
- I have NO DupInterval set on my client clauses, so it has the default
value.
- Should we try another value for this (say, 100 or less)?

Cheers,
Ricardo Freire

 Subject:
 hello,

 Could someone shed some light on the meaning of the following

 Duplicate request id 52 received from xxx.xxx.xxx.xxx: ignored

 I keep getting this message in my logfile every so often.
You probably have DupInterval set a bit to big for your setup.

Hope that helps.

Cheers.



===
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

Re: (RADIATOR) Re: Duplicate request id

[Mike McCauley]

Hello Ricardo,

On Mar 24,  3:23pm, Ricardo Freire wrote:
 Subject: (RADIATOR) Re: Duplicate request id
 Hi Mike,

 - I have 3 Ascend NASes, and we receive it very often too.
 - I have NO DupInterval set on my client clauses, so it has the default
 value.
 - Should we try another value for this (say, 100 or less)?
the default is 60.
You may want to try 30 or so.


Cheers.


 Cheers,
 Ricardo Freire

  Subject:
  hello,
 
  Could someone shed some light on the meaning of the following
 
  Duplicate request id 52 received from xxx.xxx.xxx.xxx: ignored
 
  I keep getting this message in my logfile every so often.
 You probably have DupInterval set a bit to big for your setup.
 
 Hope that helps.
 
 Cheers.



 ===
 To unsubscribe, email '[EMAIL PROTECTED]' with
 'unsubscribe radiator' in the body of the message.
-- End of excerpt from Ricardo Freire



-- 
Mike McCauley   [EMAIL PROTECTED]
Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW
24 Bateman St Hampton, VIC 3188 Australia   Consulting and development
Phone, Fax: +61 3 9598-0985 http://www.open.com.au

Radiator: the most portable, flexible and configurable RADIUS server 
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, 
Platypus, Freeside, external, etc etc on Unix, Win95/8, NT, Rhapsody
===
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) RewriteUsername question

[Jason J. Horton]

I am not very familiar with the way the RewriteUsername stuff works.
What I would like to do is take a username like this:
re010045
and turn it into this:
0045@re01

Basically take the first 4 characters from the beginning, move them
to the end, separating with an @ sign. This way I can hand out usernames
so I don't have to explain the concept of realms to end users.
Am I correct in assuming that if I do this, then I can use multiple
Realm statements, authenticating from different user files/sql
databases?

-Jason J. Horton [EMAIL PROTECTED]
 Senior Network  Systems Engineer
 Intercom Online Inc. 
 212.378.2202 | http://www.intercom.com


===
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

Re: (RADIATOR) RewriteUsername question

[Mike McCauley]

Hi Jason

On Mar 24,  6:31pm, Jason J. Horton wrote:
 Subject: (RADIATOR) RewriteUsername question
 I am not very familiar with the way the RewriteUsername stuff works.
 What I would like to do is take a username like this:
 re010045
 and turn it into this:
 0045@re01

 Basically take the first 4 characters from the beginning, move them
 to the end, separating with an @ sign. This way I can hand out usernames
 so I don't have to explain the concept of realms to end users.
 Am I correct in assuming that if I do this, then I can use multiple
 Realm statements, authenticating from different user files/sql
 databases?
Yes, you can do this. RewriteUsername can be set up to apply to all requests,
only the requests from a certaion Client, or only the requests handled by a
certain Realm or Handler (see radius.cfg for examples)

In your case, you will want something like this at the top level, then you can
have multiple realm clauses to match the first 4 characters (which will become
the realm name).

RewriteUsername  s/(.{4})(.*)/$2\@$1/

(BTW, you could get the same effect with something like
Handler User-Name=/^re01/
RewriteUsername s/^.{4}//
AuthBy ...
/AuthBy
/Handler
Handler User-Name=/^re02/
RewriteUsername s/^.{4}//
AuthBy ...
/AuthBy
/Handler
etc.

Hope that helps.

Cheers.



   -Jason J. Horton [EMAIL PROTECTED]
Senior Network  Systems Engineer
Intercom Online Inc.
212.378.2202 | http://www.intercom.com


 ===
 To unsubscribe, email '[EMAIL PROTECTED]' with
 'unsubscribe radiator' in the body of the message.
-- End of excerpt from Jason J. Horton



-- 
Mike McCauley   [EMAIL PROTECTED]
Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW
24 Bateman St Hampton, VIC 3188 Australia   Consulting and development
Phone, Fax: +61 3 9598-0985 http://www.open.com.au

Radiator: the most portable, flexible and configurable RADIUS server 
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, 
Platypus, Freeside, external, etc etc on Unix, Win95/8, NT, Rhapsody
===
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) LogFile and Log FILE

[Jason J. Horton]

in my config file, I have this specified:
LogFile /etc/raddb/log/logfile-%d-%m-%Y

yet, when I do this:
fernando# ls -la /etc/raddb/log/
total 24
drwxr-xr-x  2 root  wheel512 Mar 22 11:59 ./
drwxr-xr-x  3 root  wheel512 Mar 22 14:51 ../
-rw-r--r--  1 root  wheel  21850 Mar 24 18:41 logfile

I don't get the logfile  I requested... This is Radiator 2.13.1

-J


===
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

Re: (RADIATOR) LogFile and Log FILE

[Mike McCauley]

Hi Jason,

Yes, this is a known problem with 2.13.1. You can download a fix. Please see
http://www.open.com.au/radiator/downloads/patches-2.13.1/README for details.

Cheers.

On Mar 24,  6:47pm, Jason J. Horton wrote:
 Subject: (RADIATOR) LogFile and Log FILE
 in my config file, I have this specified:
 LogFile /etc/raddb/log/logfile-%d-%m-%Y

 yet, when I do this:
 fernando# ls -la /etc/raddb/log/
 total 24
 drwxr-xr-x  2 root  wheel512 Mar 22 11:59 ./
 drwxr-xr-x  3 root  wheel512 Mar 22 14:51 ../
 -rw-r--r--  1 root  wheel  21850 Mar 24 18:41 logfile

 I don't get the logfile  I requested... This is Radiator 2.13.1

   -J


 ===
 To unsubscribe, email '[EMAIL PROTECTED]' with
 'unsubscribe radiator' in the body of the message.
-- End of excerpt from Jason J. Horton



-- 
Mike McCauley   [EMAIL PROTECTED]
Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW
24 Bateman St Hampton, VIC 3188 Australia   Consulting and development
Phone, Fax: +61 3 9598-0985 http://www.open.com.au

Radiator: the most portable, flexible and configurable RADIUS server 
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, 
Platypus, Freeside, external, etc etc on Unix, Win95/8, NT, Rhapsody
===
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) Ascend vendor-specific dictionary

[Mike McCauley]

Someone recently posted to this list, or sent to me, a dictionary with the
Ascend vendor-specific attributes (in Merit format, from memory).

Foolish me, Ive lost it, and now a customer has an urgent need for it.

Can whoever it was post it again please?

Cheers.

-- 
Mike McCauley   [EMAIL PROTECTED]
Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW
24 Bateman St Hampton, VIC 3188 Australia   Consulting and development
Phone, Fax: +61 3 9598-0985 http://www.open.com.au

Radiator: the most portable, flexible and configurable RADIUS server 
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, 
Platypus, Freeside, external, etc etc on Unix, Win95/8, NT, Rhapsody
===
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) (Fwd) Problem with duplicate login using Ascend and UCP-SNMP on linux

[Mike McCauley]

Anyone else seeing similar errors with Ascend SNMP checking?

--- Forwarded mail from [EMAIL PROTECTED]

Date: Wed, 24 Mar 1999 11:34:40 -0400
From: Network Operations [EMAIL PROTECTED]
Reply-To: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: Problem with duplicate login using Ascend and UCP-SNMP on linux

Hi,

I work for Caribbean Internet Services. I was trying to deny duplicate
logins to my
network using radiator and it is not working. here is an example of my
config file


---
LogStdout
LogDir  /usr/local/etc
DbDir   /usr/local/etc
SnmpgetProg /usr/bin/snmpget
Client DEFAULT
Secret  xx
DupInterval 0
NasType AscendSNMP
SNMPCommunity   public
/Client
SessionDatabase DBM
Filename %D/online/online
/SessionDatabase DBM
Realm DEFAULT
AuthBy RODOPI
DBSourcedbi:Sybase:209.91.255.101
DBUsername  x
DBAuth  x
DefaultReply Service-Type = Framed-User, Framed-Protocol
= PPP,
Framed-Netmask = 255.255.255.255, Framed-MTU = 1500,
Ascend-Assign-IP-Pool = 0,
Ascend-Idle-Limit = 600, Ascend-Maximum-Channels = 1, Framed-Routing =
0,
Simultaneous-Use = 1
/AuthBy
---


I tried it using "Simultaneous-Use = 1" in the DefaultReply and using
"MaxSessions 1" in the realm default. I am seeing a lot of snmp errors.
For example...


---
Error in packet
Reason: (noSuchName) There is no such variable name in this MIB.
This name doesn't exist: enterprises.529.12.2.1.3.20107
---


Also since I have two radius servers, I shared a directory between them
using NFS. I hope that
is the correct way to do it. I don't know if that is a problem.

Thanks for your time and a prompt response,
Hector Lopez



---End of forwarded mail from [EMAIL PROTECTED]

-- 
Mike McCauley   [EMAIL PROTECTED]
Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW
24 Bateman St Hampton, VIC 3188 Australia   Consulting and development
Phone, Fax: +61 3 9598-0985 http://www.open.com.au

Radiator: the most portable, flexible and configurable RADIUS server 
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, 
Platypus, Freeside, external, etc etc on Unix, Win95/8, NT, Rhapsody
===
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) Time Options

[Paul Thornton]

Howdy,

I have been working hard to get radiator up and running the past couple of
days in conjuntion with a Time Watcher program and have succeeded in doing
so with little stress. Thanks to all those that have contributed to my
questions especially Mike, Tom and Remi. The radius server has passed it's
first successful test (24 hours) and is proving to be a great product and
I am extremely pleased to have purchased it.

I do have one little query though as always :)) Does the Time function
work with all Terminal Servers I.E. Livingston Port Masters?

I have been playing with the users file as you do, and have added this to
one of the test users;

-- Snipety Snip ---
wallyAuth-Type = System
 Time = "Al0600-0800", - tried with and without the comma :\
 Service-Type = Framed-User,
 Framed-Protocol = PPP,
 Framed-MTU = 1500,
 Framed-IP-Address = 203.15.24.102
-- End da snip ---

Any suggestions would be great.

Cheers,

Paul Thornton.

   ,-  __ -, DOVE AUSTRALIA SYSADMIN TEAM
  /   \___/ /__ _  _/   \
 /  _ / _  / _ \ |/ / -_) _  \   Account queries: [EMAIL PROTECTED]
/.-   \_,_/\___/___/\__/-.\  Tech Support: [EMAIL PROTECTED]
   A U S T R A L I A Sales queries:  [EMAIL PROTECTED]
   http://dove.net.auAdmin queries:  [EMAIL PROTECTED]



===
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

Re: (RADIATOR) Simultaneous-Use!!!

[Stephen Roderick]

On Thu, 25 Mar 1999, Mike McCauley wrote:

 OK, due to popular demand I have added a new parameter to AuthBy.
 
 DefaultSimultaneousUse specifies a sim-use limit that will apply if there is no
 user-specific Simultaneous-Use check item.
 
 Would the interested people like to download a new AuthGeneric.pm from
 http://www.open.com.au/radiator/downloads/patches-2.13.1 and let me know how it
 goes. You will need to remove the MaxSessions parameter from your config too.

What does

 # Check the DefaultSimultaneousUse if we did not get a per-user
 # one. Warning, dont do it if we were called by a Handler

the "Warning" mean?

Steve

---
Steve Roderick  ProAxis Communications, Inc.
[EMAIL PROTECTED]   Internet Access Provider
(541) 757-0248


===
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.