Re: (RADIATOR) To connect MSSQL 7.0 database from a UNIX solaris through FreeTDS
Hello Lakmin - On Fri, 10 Dec 1999, S.K.D. Lakmin Premnath wrote: %_Hi Hugh, Sorry for previous mail in HTML format. I have attached this in text file. pls read and help me. to connect solaris to MSSQL server. thanks You mention freetds - are we talking about the same thing? ftp://freetds.internetcds.com/pub/freetds_dbd/freetds_dbd.snapshot.tgz Note that in the directory called "t" there is a module called "TestCommon.pm" that must be edited to refer to your local database for the tests to succeed. Also note that you must install the DBI module first (this is the most recent on CPAN): http://www.perl.com/CPAN-local/modules/by-module/DBI/DBI-1.13.tar.gz Have you installed DBI as shown above? I also don't understand what you mean in your message about installing freetds. Normally for both packages (DBI first) you would do the following (in the corresponding distribution directory): perl Makefile.PL make make test make install The "make install" must be done as root, as it will update the perl libraries. hth Hugh -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, etc etc on Unix, Win95/8, NT, Rhapsody === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Log SQL problem
Hi all, Well I am back once again. In my never ending quest to tweak things I have run into another problem. I was setting up my installation of radiator to use log SQL. However I can only get it to log to SQL when I am running radiator in the foreground and not as a demon. (NT service) I am using the same config file and everything remains the same. The only thing I change is how it runs. Has anyone seen this before, or offer any assistance? It works great when I am running it in the foreground, but I need the high availability that the NT service allows. Any help is appreciated, Thanks If you any questions please contact me at: Personal Address [EMAIL PROTECTED] Opinions are mine and do not necessarily reflect those of wyoming.com === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) PostgreSQL
Hi, Does any one use PostgreSQL with Radiator? Can you share your experience? Is it a good choice? Is it fast enough for the job? Regards Clement === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Problems with Radiator and Tigris...
Hi everyone,
I am having trouble when using my Tigris NAS and the Radiator RADIUS server.
The problem is (I believe) with the Tigris, but I'm wondering if there are
any suggestions based on my RADIUS config to see if I could be doing
something wrong here.
(Anyone with experience using the Tigris and Radiator can jump in here)
My radius.cfg:
# radius.cfg
#
AuthPort 1812
AcctPort 1813
Foreground
LogStdout
LogDir D:\radiator
DbDir D:\radiator
#LogFile %L/%Y%m%d.log
#Trace 5
#DictionaryFile C:\radiator\dictionary.acc
Log SQL
# Adjust DBSource, DBUsername, DBAuth to suit your DB
DBSourcedbi:mysql:database=wap_stats;host=127.0.0.1
DBUsername wap_radius
DBAuth password
Table nrd_radius_log
Trace 1
/Log
Client x.y.z.15
Secret secret
NasType Tigris
SNMPCommunity public
FramedGroupBaseAddress x.y.z.100
DupInterval 2
/Client
Realm DEFAULT
AuthByPolicy ContinueAlways
AuthBy SQL_MSISDN
# Authby Accounting version - needs special mods for use with WAP
Gateway 'Fetch MSISDN' function
# Adjust DBSource, DBUsername, DBAuth to suit your DB
DBSourcedbi:mysql:database=wap_stats;host=127.0.0.1
DBUsername wap_radius
DBAuth password
# empty authselect should mean no authentication done by this auth
entry
# and we get an ignore
AuthSelect
# This is the hostname and port of the MSISDN
# database to where we send details of
# accountig starts and stops
MSISDNDatabase localhost:
# CountryCode will be prepended to Calling-Station-Id
# to generate MSISDN
CountryCode 61
# If this is set, any leading 0 or 9 will be stripped
# from the Calling-Station-Id before the CountryCode
# is prepended to form the MSISDN
StripLeading09
FramedGroup 0;
# Log all the different fields that the Tigris is sending in the
Accounting packet
AccountingTable nrd_radius_accounting
AcctColumnDef USERNAME,User-Name
AcctColumnDef TIME_STAMP,Timestamp,integer
AcctColumnDef ACCTSTATUSTYPE,Acct-Status-Type
AcctColumnDef ACCTDELAYTIME,Acct-Delay-Time,integer
AcctColumnDef ACCTINPUTOCTETS,Acct-Input-Octets,integer
AcctColumnDef ACCTOUTPUTOCTETS,Acct-Output-Octets,integer
AcctColumnDef ACCTINPUTPACKETS,Acct-Input-Packets,integer
AcctColumnDef ACCTOUTPUTPACKETS,Acct-Output-Packets,integer
AcctColumnDef ACCTSESSIONID,Acct-Session-Id
AcctColumnDef ACCTSESSIONTIME,Acct-Session-Time,integer
AcctColumnDef ACCTTERMINATECAUSE,Acct-Terminate-Cause
AcctColumnDef ACCREASONCODE,Acc-Reason-Code
AcctColumnDef NASIDENTIFIER,NAS-Identifier
AcctColumnDef NASIPADDRESS,NAS-IP-Address
AcctColumnDef NASPORT,NAS-Port,integer
AcctColumnDef NASPORTTYPE,NAS-Port-Type
AcctColumnDef FRAMEDPROTOCOL,Framed-Protocol
AcctColumnDef FRAMEDIPADDRESS,Framed-IP-Address
AcctColumnDef CALLEDSTATIONID,Called-Station-Id
AcctColumnDef CALLINGSTATIONID,Calling-Station-Id
AcctColumnDef SERVICETYPE,Service-Type
AcctColumnDef CONNECTINFO,Connect-Info
AcctColumnDef ACCCONNECTRXSPEED,Acc-Connect-Rx-Speed
AcctColumnDef ACCCONNECTTXSPEED,Acc-Connect-Tx-Speed
AcctColumnDef ACCINPUTERRORS,Acc-Input-Errors,integer
AcctColumnDef ACCOUTPUTERRORS,Acc-Output-Errors,integer
AcctColumnDef ACCMODEMMODULATIONTYPE,Acc-Modem_Modulation_Type
AcctColumnDef ACCMODEMERRORPROTOCOL,Acc-Modem_Error_Protocol
AcctColumnDef ACCDIALPORTINDEX,Acc-Dial-Port-Index,integer
AcctColumnDef ACCTAUTHENTIC,Acct-Authentic
AcctColumnDef ACCSERVICEPROFILE,Acc-Service-Profile
/AuthBy
AuthBy SQL_MSISDN
# Authby for authentication
# Adjust DBSource, DBUsername, DBAuth to suit your DB
DBSourcedbi:mysql:database=users;host=127.0.0.1
DBUsername wap_radius
DBAuth password
AuthSelect select user_id from users where msisdn=+%{MSISDN} and
acct_status="ACTIVE"
# This is the hostname and port of the MSISDN
# database to where we send details of
# accountig starts and stops
MSISDNDatabase localhost:
# CountryCode will be prepended to Calling-Station-Id
# to generate MSISDN
CountryCode 61
# If this is set, any leading 0 or 9 will be stripped
# from the Calling-Station-Id before the CountryCode
# is prepended to form the MSISDN
StripLeading09
FramedGroup 0;
NoDefaultIfFound
# no accounting
(RADIATOR) Ascend MAX 4000's and RADIATOR Config Files...
Hello, I've recently purchased RADIATOR and I think most of the system (standard analog dial-up users) is working. However, I also have a few dozen Pipeline 85 router customers who are configured as small office LAN's with 255.255.255.248 subnets. All of them are currently working on AAC (Ascends Access Control RADIUS) but we would like to convert to RADIATOR ASAP (AAC has many bugs!). I've performed some fairly detailed troubleshooting but have not come up with the answer as of yet. I've included the config file and the trace if anyone cares to view. I'm wondering is anyone else out there has the same system configuration and would be willing to share their config file. I think the issue has something to do with the reply items being sent back to the NAS servers (Ascend MAX 4000's). Anyone else have any advice? The config file: Realm sp AuthBy GROUP AuthByPolicy ContinueWhileAccept AuthBy SQL DBSourcedbi:ODBC:remacc DBUsername admin DBAuth pword AuthSelect select PASSWORD, \ CALLED_STATION_ID, \ EXPIRATION, \ FRAMED_IP_ADDRESS, \ FRAMED_IP_NETMASK, \ FRAMED_PROTOCOL, \ FRAMED_ROUTE, \ FRAMED_ROUTING, \ ASCEND_IDLE_LIMIT, \ ASCEND_ASSIGN_IP_POOL, \ SERVICE_TYPE \ from AUTHENTICATION \ where USER_NAME='%U' AuthColumnDef 0,Password, check AuthColumnDef 1,Called_Station_Id, check AuthColumnDef 2,Expiration, check AuthColumnDef 3,Framed_IP_Address, reply AuthColumnDef 4,Framed_IP_Netmask, reply AuthColumnDef 5,Framed_Protocol, reply AuthColumnDef 6,Framed_Route, reply AuthColumnDef 7,Framed_Routing, reply AuthColumnDef 8,Ascend_Idle_Limit, reply AuthColumnDef 9,Ascend_Assign_IP_Pool, reply AuthColumnDef 10, Service_Type, reply AccountingTable ACCOUNTING1 AcctColumnDef User_Name, User-Name AcctColumnDef NAS_IP_Address, NAS-IP-Address AcctColumnDef NAS_Port, NAS-Port AcctColumnDef NAS_Port_Type, NAS-Port-Type AcctColumnDef Billing_Id, Billing-Id AcctColumnDef Acct_Status_Type, Acct-Status-Type AcctColumnDef Acct_Delay_Time, Acct-Delay-Time AcctColumnDef Acct_Session_Id, Acct-Session-Id AcctColumnDef Acct_Authentic, Acct-Authentic AcctColumnDef Acct_Session_Time, Acct-Session-Time AcctColumnDef Acct_Input_Octets, Acct-Input-Octets AcctColumnDef Acct_Output_Octets, Acct-Output-Octets AcctColumnDef Acct_Input_Packets, Acct-Input-Packets AcctColumnDef Acct_Output_Packets, Acct-Output-Packets AcctColumnDef Ascend_Disconnect_Cause, Ascend-Disconnect-Cause,integer, '%s' AcctColumnDef Ascend_Connect_Progress, Ascend-Connect-Progress,integer, '%s' AcctColumnDef Ascend_Xmit_Rate, Ascend-Xmit-Rate AcctColumnDef Ascend_Data_Rate, Ascend-Data-Rate AcctColumnDef Ascend_PreSession_Time, Ascend-PreSession-Time AcctColumnDef Ascend_Pre_Input_Octets, Ascend-Pre-Input-Octets AcctColumnDef Ascend_Pre_Output_Octets, Ascend-Pre-Output-Octets AcctColumnDef Ascend_Pre_Input_Packets, Ascend-Pre-Input-Packets AcctColumnDef Ascend_Pre_Output_Packets, Ascend-Pre-Output-Packets AcctColumnDef Ascend_First_Dest, Ascend-First-Dest AcctColumnDef Ascend_Multilink_ID, Ascend-Multilink-ID AcctColumnDef Ascend_Num_In_Multilink, Ascend-Num-In-Multilink AcctColumnDef Acct_Multi_Session_Id, Acct-Multi-Session-Id AcctColumnDef Ascend_Modem_PortNo, Ascend-Modem-PortNo AcctColumnDef Ascend_Modem_SlotNo, Ascend-Modem-SlotNo AcctColumnDef Calling_Station_Id, Calling-Station-Id AcctColumnDef Called_Station_Id, Called-Station-Id AcctColumnDef Framed_IP_Address, Framed-IP-Address
Re: (RADIATOR) Problems with Radiator and Tigris...
Hello Tony -
On Fri, 10 Dec 1999, Tony Frank (EPA) wrote:
I am having trouble when using my Tigris NAS and the Radiator RADIUS server.
The problem is (I believe) with the Tigris, but I'm wondering if there are
any suggestions based on my RADIUS config to see if I could be doing
something wrong here.
(Anyone with experience using the Tigris and Radiator can jump in here)
My radius.cfg:
# radius.cfg
#
AuthPort 1812
AcctPort 1813
Foreground
LogStdout
LogDirD:\radiator
DbDir D:\radiator
#LogFile %L/%Y%m%d.log
#Trace 5
#DictionaryFile C:\radiator\dictionary.acc
Log SQL
# Adjust DBSource, DBUsername, DBAuth to suit your DB
DBSourcedbi:mysql:database=wap_stats;host=127.0.0.1
DBUsername wap_radius
DBAuth password
Table nrd_radius_log
Trace 1
/Log
Client x.y.z.15
Secret secret
NasType Tigris
SNMPCommunity public
FramedGroupBaseAddress x.y.z.100
DupInterval 2
/Client
Realm DEFAULT
AuthByPolicy ContinueAlways
AuthBy SQL_MSISDN
# Authby Accounting version - needs special mods for use with WAP
Gateway 'Fetch MSISDN' function
# Adjust DBSource, DBUsername, DBAuth to suit your DB
DBSourcedbi:mysql:database=wap_stats;host=127.0.0.1
DBUsername wap_radius
DBAuth password
# empty authselect should mean no authentication done by this auth
entry
# and we get an ignore
AuthSelect
# This is the hostname and port of the MSISDN
# database to where we send details of
# accountig starts and stops
MSISDNDatabase localhost:
# CountryCode will be prepended to Calling-Station-Id
# to generate MSISDN
CountryCode 61
# If this is set, any leading 0 or 9 will be stripped
# from the Calling-Station-Id before the CountryCode
# is prepended to form the MSISDN
StripLeading09
FramedGroup 0;
# Log all the different fields that the Tigris is sending in the
Accounting packet
AccountingTable nrd_radius_accounting
AcctColumnDef USERNAME,User-Name
AcctColumnDef TIME_STAMP,Timestamp,integer
AcctColumnDef ACCTSTATUSTYPE,Acct-Status-Type
AcctColumnDef ACCTDELAYTIME,Acct-Delay-Time,integer
AcctColumnDef ACCTINPUTOCTETS,Acct-Input-Octets,integer
AcctColumnDef ACCTOUTPUTOCTETS,Acct-Output-Octets,integer
AcctColumnDef ACCTINPUTPACKETS,Acct-Input-Packets,integer
AcctColumnDef ACCTOUTPUTPACKETS,Acct-Output-Packets,integer
AcctColumnDef ACCTSESSIONID,Acct-Session-Id
AcctColumnDef ACCTSESSIONTIME,Acct-Session-Time,integer
AcctColumnDef ACCTTERMINATECAUSE,Acct-Terminate-Cause
AcctColumnDef ACCREASONCODE,Acc-Reason-Code
AcctColumnDef NASIDENTIFIER,NAS-Identifier
AcctColumnDef NASIPADDRESS,NAS-IP-Address
AcctColumnDef NASPORT,NAS-Port,integer
AcctColumnDef NASPORTTYPE,NAS-Port-Type
AcctColumnDef FRAMEDPROTOCOL,Framed-Protocol
AcctColumnDef FRAMEDIPADDRESS,Framed-IP-Address
AcctColumnDef CALLEDSTATIONID,Called-Station-Id
AcctColumnDef CALLINGSTATIONID,Calling-Station-Id
AcctColumnDef SERVICETYPE,Service-Type
AcctColumnDef CONNECTINFO,Connect-Info
AcctColumnDef ACCCONNECTRXSPEED,Acc-Connect-Rx-Speed
AcctColumnDef ACCCONNECTTXSPEED,Acc-Connect-Tx-Speed
AcctColumnDef ACCINPUTERRORS,Acc-Input-Errors,integer
AcctColumnDef ACCOUTPUTERRORS,Acc-Output-Errors,integer
AcctColumnDef ACCMODEMMODULATIONTYPE,Acc-Modem_Modulation_Type
AcctColumnDef ACCMODEMERRORPROTOCOL,Acc-Modem_Error_Protocol
AcctColumnDef ACCDIALPORTINDEX,Acc-Dial-Port-Index,integer
AcctColumnDef ACCTAUTHENTIC,Acct-Authentic
AcctColumnDef ACCSERVICEPROFILE,Acc-Service-Profile
/AuthBy
AuthBy SQL_MSISDN
# Authby for authentication
# Adjust DBSource, DBUsername, DBAuth to suit your DB
DBSourcedbi:mysql:database=users;host=127.0.0.1
DBUsername wap_radius
DBAuth password
AuthSelect select user_id from users where msisdn=+%{MSISDN} and
acct_status="ACTIVE"
# This is the hostname and port of the MSISDN
# database to where we send details of
# accountig starts and stops
MSISDNDatabase localhost:
# CountryCode will be prepended to Calling-Station-Id
# to generate MSISDN
CountryCode 61
# If this is set, any leading 0 or 9 will be stripped
# from the Calling-Station-Id before the CountryCode
# is prepended to form the MSISDN
StripLeading09
FramedGroup 0;
NoDefaultIfFound
# no
(RADIATOR) Excluding PASS password fields in the password log file
Hello All, Is there a simple way to to this via an option in the radiator config file? Regards, Pete. == _/ Pete Black mailto:[EMAIL PROTECTED] _/ Dot Communications Pty Ltd http://www.dot.net.au/world == === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Problems with Radiator and Tigris...
On Fri, 10 Dec 1999 00:13:35 +1100, Tony Frank (EPA) wrote: Hi everyone, I am having trouble when using my Tigris NAS and the Radiator RADIUS server. The problem is (I believe) with the Tigris, but I'm wondering if there are any suggestions based on my RADIUS config to see if I could be doing something wrong here. (Anyone with experience using the Tigris and Radiator can jump in here) My radius.cfg: snipped And the 'defuser' file contains the following: DEFAULT Framed-Protocol = PPP, Framed-IP-Netmask = 255.255.255.0, Framed-Routing = None, Framed-MTU = 1500, Service-Type = Framed-User The issue is that what I am trying to achieve is RADIUS authentication, with no username and password required. In my situation, we have only GSM mobile incoming calls, and we are very happy to use the existing user authentication performed by the mobile network (ie, your number is unique to you, and if you lose it you are going to have your SIM etc cancelled anyway) fine, doesn't only apply to gsm either ! As such, we want to setup the PPP sessions etc with as little requirements as possible. Essentially, if the person's number (Calling-Station-ID) appears in the user database and is active, we want to let them setup a session and give them an IP address without the user needing to go through any additional authentication stages. From my brief research, it seems that this is not an overly common way to do things, and as such it is very difficult to find any information on other people's attempts etc. In order to do this, we are presently trying to use the Tigris VPSM functionality, which generates an Access-Request similar to the following when it detects an incoming call: Attributes: User-Name = "called number" User-Password = "calling number encrypted with secret" NAS-Port = 71 NAS-Port-Type = ISDN Acc-Request-Type = Ring-Indication Called-Station-Id = "x" Calling-Station-Id = "0414576342" NAS-IP-Address = 10.28.30.15 we had this problem, when changing over from Ascend to Tigris solution is multiple Defaults and verification based on calling-station-id. problem is thou, you end up with a heap of funny user names (whatever they have set) and passwords lying around. the problem is actually on the tigris, not radius if you want to use not use the VPSM setting. I did have this as a feedback item with the erricsson, obviously it hasn't been dealt with :-( Gary --- Ausmail Your virtual home on the net. Email, News Home pages. --- Coming soon !! === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
RE: (RADIATOR) Problems with Radiator and Tigris...
Hi Gary, The 'Ring-Indication' request type (when using the Tigris' VPSM auth mode) suits my purposes ideally - Radiator picks it up, and uses my defined SQL query to check the database. This works just great. What doesn't appear to work, is having the Tigris accept the call (it actually appears not to be creating any dial ports as a result of the radius response) The problem (as I see it) is a lack of documentation available on how to make use of the functionality with anything other than the VPSM software supplied by ACC (now Ericsson). So far the support for the Tigris has been excellent, allowing me to get everything else up and running very quickly, however it seems that there is somewhat limited knowledge of this particular feature, so I might be stuck with going through the VPSMd source to see what it does... Anyway, I'll post my results if I get it going... -Original Message- From: Gary [SMTP:[EMAIL PROTECTED]] Sent: Friday, December 10, 1999 11:05 AM To: [EMAIL PROTECTED]; Tony Frank (EPA) Subject: Re: (RADIATOR) Problems with Radiator and Tigris... On Fri, 10 Dec 1999 00:13:35 +1100, Tony Frank (EPA) wrote: cut Attributes: User-Name = "called number" User-Password = "calling number encrypted with secret" NAS-Port = 71 NAS-Port-Type = ISDN Acc-Request-Type = Ring-Indication Called-Station-Id = "x" Calling-Station-Id = "0414576342" NAS-IP-Address = 10.28.30.15 we had this problem, when changing over from Ascend to Tigris solution is multiple Defaults and verification based on calling-station-id. problem is thou, you end up with a heap of funny user names (whatever they have set) and passwords lying around. the problem is actually on the tigris, not radius if you want to use not use the VPSM setting. I did have this as a feedback item with the erricsson, obviously it hasn't been dealt with :-( Gary --- Ausmail Your virtual home on the net. Email, News Home pages. --- Coming soon !! === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Re: PostgreSQL
Does any one use PostgreSQL with Radiator? Can you share your experience? Is it a good choice? Is it fast enough for the job? Yup, we use PostgeSQL, on a separate box to the radius server. We insert the radius start packets into the database and do updates for the stop packets (using an index of course). There's currently 1.1 million rows in the radius table: the table data is 160 Mb and there's another 110 Mb in the indices. It's plenty quick enough on our PII/350 with 256 Mb. No problems whatsoever with the radiator inserts/updates, and doing a query to show all the login sessions for random user for a random week (1/4/99 - 7/4/99) just took 0.67 seconds elapsed. Cheers, Chris, OnTheNet === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
