(RADIATOR) different client types
Hello, how to send different default attributes (with AddToReply) to different Client Types? This should be done only for one Realm, but without using the "NasType" command (to prevent radiator to contact the Clients via SNMP). Kind Regards, Gerald Faerber === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Accounting from USR equipment...
Hello Roy, i got here my list of VENDORATTR 429, i hope this will be of help to you. VENDORATTR 429 Last-Number-Dialed-Out 0x0066 string VENDORATTR 429 Last-Number-Dialed-In-DNIS 0x00E8 string VENDORATTR 429 Last-Callers-Number-ANI 0x00E9 string VENDORATTR 429 Channel 0xBF38 integer VENDORATTR 429 Event-Id0xBFBE integer VENDORATTR 429 Event-Date-Time 0xBF2F date VENDORATTR 429 Call-Start-Date-Time0xBFF7 date VENDORATTR 429 Call-End-Date-Time 0xBFF6 date VENDORATTR 429 Default-DTE-Data-Rate 0x005E integer VENDORATTR 429 Initial-Rx-Link-Data-Rate 0xBF2D integer VENDORATTR 429 Final-Rx-Link-Data-Rate 0xBF2C integer VENDORATTR 429 Initial-Tx-Link-Data-Rate 0x006A integer VENDORATTR 429 Final-Tx-Link-Data-Rate 0x006B integer VENDORATTR 429 Chassis-Temperature 0xBF31 integer VENDORATTR 429 Chassis-Temp-Threshold 0xBE84 integer VENDORATTR 429 Actual-Voltage 0xBF32 integer VENDORATTR 429 Expected-Voltage0xBF33 integer VENDORATTR 429 Power-Supply-Number 0xBF34 integer VENDORATTR 429 Card-Type 0xBE85 integer VENDORATTR 429 Chassis-Slot0xBF39 integer VENDORATTR 429 Sync-Async-Mode 0x0067 integer VENDORATTR 429 Originate-Answer-Mode 0x0068 integer VENDORATTR 429 Modulation-Type 0x006C integer VENDORATTR 429 Connect-Term-Reason 0x009B integer VENDORATTR 429 Failure-to-Connect-Reason 0x0069 integer VENDORATTR 429 Equalization-Type 0x006F integer VENDORATTR 429 Fallback-Enabled0x0070 integer VENDORATTR 429 Connect-Time-Limit 0xBFE7 integer VENDORATTR 429 Number-of-Rings-Limit 0xBFE6 integer VENDORATTR 429 DTE-Data-Idle-Timout0x0048 integer VENDORATTR 429 Characters-Sent 0x0071 integer VENDORATTR 429 Characters-Received 0x0072 integer VENDORATTR 429 Blocks-Sent 0x0075 integer VENDORATTR 429 Blocks-Received 0x0076 integer VENDORATTR 429 Blocks-Resent 0x0077 integer VENDORATTR 429 Retrains-Requested 0x0078 integer VENDORATTR 429 Retrains-Granted0x0079 integer VENDORATTR 429 Line-Reversals 0x007A integer VENDORATTR 429 Number-Of-Characters-Lost 0x007B integer VENDORATTR 429 Number-of-Blers 0x007D integer VENDORATTR 429 Number-of-Link-Timeouts 0x007E integer VENDORATTR 429 Number-of-Fallbacks 0x007F integer VENDORATTR 429 Number-of-Upshifts 0x0080 integer VENDORATTR 429 Number-of-Link-NAKs 0x0081 integer VENDORATTR 429 DTR-False-Timeout 0x00BE integer VENDORATTR 429 Fallback-Limit 0x00BF integer VENDORATTR 429 Block-Error-Count-Limit 0x00C0 integer VENDORATTR 429 DTR-True-Timeout0x00DA integer VENDORATTR 429 Security-Login-Limit0xBEDE integer VENDORATTR 429 Security-Resp-Limit 0xBEFA integer VENDORATTR 429 DTE-Ring-No-Answer-Limit0xBF17 integer VENDORATTR 429 Back-Channel-Data-Rate 0x007C integer VENDORATTR 429 Simplified-MNP-Levels 0x0099 integer VENDORATTR 429 Simplified-V42bis-Usage 0x00C7 integer VENDORATTR 429 Mbi_Ct_PRI_Card_Slot0x0184 integer VENDORATTR 429 Mbi_Ct_TDM_Time_Slot0x0185 integer VENDORATTR 429 Mbi_Ct_PRI_Card_Span_Line 0x0186 integer VENDORATTR 429 Mbi_Ct_BChannel_Used0x0187 integer VENDORATTR 429 Physical-State 0xBE77 integer VENDORATTR 429 Packet-Bus-Session 0xBF14 integer VENDORATTR 429 Server-Time 0xF000 date VENDORATTR 429 Channel-Connected-To0xBE5D integer VENDORATTR 429 Slot-Connected-To 0xBE5E integer VENDORATTR 429 Device-Connected-To 0xBE5F integer VENDORATTR 429 NFAS-ID 0xBE60 integer VENDORATTR 429 Q931-Call-Reference-Value 0xBE61 integer VENDORATTR 429 Call-Event-Code 0xBE62 integer VENDORATTR 429 DS0 0xBE63 integer VENDORATTR 429 DS0s0xBE64 string VENDORATTR 429 Gateway-IP-Address 0xBE66 ipaddr VENDORATTR 429 PW_USR_IFilter_IP 0x9000 string VENDORATTR 429 PW_USR_IFilter_IPX 0x9001 string VENDORATTR 429 PW_USR_OFilt
Re: (RADIATOR) radacct.cgi
On Mon, 18 Oct 99 22:24:51 +1000, Gary wrote: >Ok, I'm the first to admit that I am not a programmer ! > >We run a fairly basic setup with flat files and no sql etc... > >I finally got around to getting radwho.cgi & radacct.cgi working today >and once I overcame my many oversites & got both working except >radacct.cgi will not display any session-id 's and thus we cant examine >individual sessions. > >Have I overlooked something ?? > >Gary Gee, times are bad when you answer your own questions :-) Mike, you might like to note that Acct-Session-Id on a Tigris also includes a "." in it (several actually). Gary --- Ausmail Your virtual home on the net. Email, News & Home pages. --- Coming soon !! === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) yet another CLI problem
Hi All, i could have sworn Mike gave me a hint on this way way back but somehow i can't find it anywhere on the archive. i'm thinking of setting up another SQL table which will hold the _phone_numbers_ NOT allowed to have access to our network. can i use a "select" statement inside the handler clause? or is there a better way of dealing with this setup? anyone? thanks in advance. -- .._.,+=~`^"-.,,.-"^'~=+,.__.,+=~`^"-.,,.-"^'~=+,.__.,+=~`^"-,, darwin a. bawasanta [EMAIL PROTECTED] pgp-id: 0x367CADAC SKYinternet incorporated philippineshttp://www.skyinet.net mobile: +63 917.322.6299pager: ec# 963589marsma|ow@IRC .._.,+=~`^"-.,,.-"^'~=+,.__.,+=~`^"-.,,.-"^'~=+,.__.,+=~`^"-,, "Thousands of geniuses live and die undiscovered either by themselves or by others." - Mark Twain === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Accounting from USR equipment...
We are receiving the following vendor attribute from one of our wholesalers... Mon Oct 18 21:10:15 1999: ERR: Attribute number 12 (vendor 429) is not defined i n your dictionary Does anyone have any USR gear's documentation handy that lists this vendor attrbiute? It's not in the dictionary.usr file. -- Roy Hooper ([EMAIL PROTECTED]) Sr. Systems Administrator Network Operations Cyberus Online Inc. -- An eisa.com company www.cyberus.com www.eisa.com === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Different logfiles for different groups?
Hello Dawn - On Tue, 19 Oct 1999, Dawn Lovell wrote: > Now that our previous configuration errors have been corrected (Thank > you, Hugh!), I have another one. :-) We have a (unix) group of userids > for which we would like the accounting information written to a separate > detail file. The machine on which we're trying this is running 2.14.1 > on Solaris 7. > > Can "Group=" be used in a Handler definition? Is there a better way to do > this? Our current configuration (which doesn't work :-) is shown below. > No, this won't work as the Handler is looking for an attribute in the incoming Access-Request packet. And I've forwarded some mail to Mike to let him know about this configuration crashing Radiator. It shouldn't! > AuthPort 1812 > AcctPort 1813 > LogDir /var/adm/radacct > DbDir /etc/raddb > SnmpgetProg /usr/local/bin/snmpget > > Filename%D/online > > ... > < > Secret > DupInterval 300 > > ... > < > Identifier System > Filename /etc/shadow > DefaultSimultaneousUse 1 > > > > # The filename defaults to %D/users > > AcctLogFileName %L/trial/detail > > > > # The filename defaults to %D/users > > AcctLogFileName %L/%N/detail > > > We were hoping that this would cause users in the "trial" group to be > logged to one file and everyone else to be logged normally. With this > configuration, radpwtst (radpwtst -auth_port 1812 -acct_port 1813 -secret > -user testuser -password ) gives the following > errors. I think I need to know a little bit more about what is in your "users" file, shown above, as well as what form your usernames are and what makes them part of the trial group other than the UNIX group file? ie - do they dial into a different phone number? do they have a username of the form [EMAIL PROTECTED]? In other words, how can we distinguish who they are by the contents of the incoming packet. Otherwise, we will have to use a PreClientHook or a PreHandlerHook to massage the packet prior to passing it to the relevant Handler (which is going to be messy if we have to check the UNIX group file). Hopefully we can come up with something a little more elegant. Of course, you could always do something completely different like: # Configure accounting to an SQL database or whatever # Do accounting by UNIX group, etc. during post-processing AccountingTable ... AcctColumnDef ... ... cheers Hugh -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, etc etc on Unix, Win95/8, NT, Rhapsody === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Different logfiles for different groups?
Now that our previous configuration errors have been corrected (Thank you, Hugh!), I have another one. :-) We have a (unix) group of userids for which we would like the accounting information written to a separate detail file. The machine on which we're trying this is running 2.14.1 on Solaris 7. Can "Group=" be used in a Handler definition? Is there a better way to do this? Our current configuration (which doesn't work :-) is shown below. AuthPort 1812 AcctPort 1813 LogDir /var/adm/radacct DbDir /etc/raddb SnmpgetProg /usr/local/bin/snmpget Filename%D/online ... Secret DupInterval 300 ... Identifier System Filename /etc/shadow DefaultSimultaneousUse 1 # The filename defaults to %D/users AcctLogFileName %L/trial/detail # The filename defaults to %D/users AcctLogFileName %L/%N/detail We were hoping that this would cause users in the "trial" group to be logged to one file and everyone else to be logged normally. With this configuration, radpwtst (radpwtst -auth_port 1812 -acct_port 1813 -secret -user testuser -password ) gives the following errors. sending Access-Request... Can't call method "userIsInGroup" on an undefined value at /usr/local/lib/perl5/site_perl/5.005/Radius/AuthGeneric.pm line 542. No reply sending Accounting-Request Start... No reply sending Accounting-Request Stop... No reply Radiusd is running, but dies when we run radpwtst. The entire trace 4 debug output is as follows. on Oct 18 14:58:21 1999: DEBUG: Reading password file /etc/shadow Mon Oct 18 14:58:54 1999: DEBUG: Reading group file /etc/group Mon Oct 18 14:58:54 1999: DEBUG: Reading users file /etc/raddb/users Mon Oct 18 14:58:54 1999: DEBUG: Reading users file /etc/raddb/users Mon Oct 18 14:58:55 1999: INFO: Server started Mon Oct 18 14:59:21 1999: DEBUG: Packet dump: *** Received from 127.0.0.1 port 33054 Code: Access-Request Identifier: 21 Authentic: 1234567890123456 Attributes: User-Name = "testuser" Service-Type = Framed-User NAS-IP-Address = 203.63.154.1 NAS-Port = 1234 NAS-Port-Type = Async User-Password = "" Mon Oct 18 14:59:21 1999: DEBUG: Check if Handler Group=trial should be used to handle this request Dawn Lovell [EMAIL PROTECTED] === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Sort in radacct.cgi
Hi everybody, Today i put radacct.cgi to work here. It's ok! But i miss a "simple" feature: In the "All Users" mode (show_user_summaries), i want to sort the result as a like. The list is sorted by username. I want to sort it by Acct-Session-Time, Out-Octets, etc, for example. I've made some little changes in the code to put caller-id in the show_user mode. But, i can't put this sort feature to work. Any advices? Thanks!! Amilcar. MS Internet Campo Grande, MS, Brazil. === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Radiator locking up
On Mon, 18 Oct 1999, Barry W Anderson wrote: .. > What are you AuthBy'ing? nscd on Solaris may be your problem is you are > using the password file. > > Have seen another Radius server on Solaris behave similarly due to nscd hangs. We're doing an AuthBy a customized authentication module which we developed ourselves. Although even when I commented this area out in the radiusd.cfg it still locks up occasionally. - Orlando Andico <[EMAIL PROTECTED]> +63 (2) 937-2293 Mosaic Communications, Inc.+63 (912) 800-8262 Any sufficiently perverted technology is indistinguishable from Perl. === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Radiator locking up
On Mon, Oct 18, 1999 at 03:50:17PM +0800, Orlando Andico wrote: > > Hello, > > We've recently moved our Radiator installation from Linux to Solaris. Now > I notice that the Radiator process has a tendency to lock up (i.e. refuse > to answer queries) after it has been running for some time (varies, but > around 10-12 hours). I am unfamiliar with the Perl debugger so I can't > figure out where it's locking up. Besides I'm disinclined to go debugging > on our production server. > > I think it's load-related because an identical configuration that's not > under load doesn't lock up in the same manner. I think that for a quick > fix I'd have the Radiator process re-exec itself every hour or so (similar > to Michael O'Reilly's PerlRadius). Is this safe? I want to put this in the > main loop. Advice? What are you AuthBy'ing? nscd on Solaris may be your problem is you are using the password file. Have seen another Radius server on Solaris behave similarly due to nscd hangs. HTH, Barry -- Shori Pty Ltd / Barry W Anderson \ / / Senior Consultant \\\' , / // [EMAIL PROTECTED]\\\//, _/ //, \_-//' / //<, http://www.shori.com\ /// > \\\`__/_ 42 Munich Drive /,)-^>> _\` \\\ Keilor Downs, Victoria(/ \\ / \\\ Australia 3038 // //\\\ --((`-((`- === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) radacct.cgi
Ok, I'm the first to admit that I am not a programmer ! We run a fairly basic setup with flat files and no sql etc... I finally got around to getting radwho.cgi & radacct.cgi working today and once I overcame my many oversites & got both working except radacct.cgi will not display any session-id 's and thus we cant examine individual sessions. Have I overlooked something ?? Gary --- Ausmail Your virtual home on the net. Email, News & Home pages. --- Coming soon !! === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Radiator hangs
After a short perusal of the archives, I've found the following message (and one follow-up) which seems to describe exactly the problem I'm having: http://www.thesite.com.au/~radiator/199909/msg00101.html Same symptoms, same hanging radiusd process. I'm sure it's not the hardware - we're not using x86 hardware but a Sun Enterprise 250 (Solaris 2.7), 2GB RAM, 9GB disk. Any help/suggestions would be appreciated. Watching this radiusd process and restarting it whenever it hangs (to avoid a torrent of abuse from dialup clients) is getting old really fast. - Orlando Andico <[EMAIL PROTECTED]> +63 (2) 937-2293 Mosaic Communications, Inc.+63 (912) 800-8262 Any sufficiently perverted technology is indistinguishable from Perl. === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) broken Radiator on FreeBSD 3.3
On Mon, 18 Oct 1999, Hugh Irvine wrote: .. > I think you should rebuild Perl, MD5 and Radiator all from scratch so you have > a known starting point. It could be that there are two sets of malloc/free > calls that are doing different things. I did all this.. in any case it's irrelevant as I've moved the installation to Solaris 2.7 SPARC. I think the problem was related to flaky pthreads on FreeBSD-3.3-SMP causing the MySQL installation to be unreliable. Talk about flaky threads.. after twenty minutes to an hour, the mysqld process would quickly take up all of the available CPU (100%) on one processor, but top(1) showed an idle time of 50% -- proving to all and sundry that FreeBSD threads are not SMP aware. Anyway.. I always thought FreeBSD was "better" than Linux. Guess I know better now.. - Orlando Andico <[EMAIL PROTECTED]> +63 (2) 937-2293 Mosaic Communications, Inc.+63 (912) 800-8262 Any sufficiently perverted technology is indistinguishable from Perl. === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) broken Radiator on FreeBSD 3.3
Hello Orlando - On Fri, 15 Oct 1999, Orlando Andico wrote: > Hello, > > I've just transferred a production Radiator 2.13.1 setup from Red Hat > Linux 5.2 to FreeBSD 3.3 and ran into a pile of trouble. Note that this > setup worked perfectly on Linux and Solaris. > > Problem: I get lots of free() called recursively warnings (when I use a > Perl 5.005_03 I built myself, and the FreeBSD libc malloc). After a lot of > this, the radiusd crashes. If I use a home-built Perl with the Perl > builtin malloc (which I think is Doug Lea's malloc) I don't get the > warnings, just a sudden crash. I also tried using the Perl which comes > with the 3.3 distribution, same problem. I think you should rebuild Perl, MD5 and Radiator all from scratch so you have a known starting point. It could be that there are two sets of malloc/free calls that are doing different things. hth Hugh -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, etc etc on Unix, Win95/8, NT, Rhapsody === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Radiator locking up
Hello, We've recently moved our Radiator installation from Linux to Solaris. Now I notice that the Radiator process has a tendency to lock up (i.e. refuse to answer queries) after it has been running for some time (varies, but around 10-12 hours). I am unfamiliar with the Perl debugger so I can't figure out where it's locking up. Besides I'm disinclined to go debugging on our production server. I think it's load-related because an identical configuration that's not under load doesn't lock up in the same manner. I think that for a quick fix I'd have the Radiator process re-exec itself every hour or so (similar to Michael O'Reilly's PerlRadius). Is this safe? I want to put this in the main loop. Advice? - Orlando Andico <[EMAIL PROTECTED]> +63 (2) 937-2293 Mosaic Communications, Inc.+63 (912) 800-8262 Any sufficiently perverted technology is indistinguishable from Perl. === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.