Re: (RADIATOR) Minor bug in RPM %post
Not really a bug. Since with the K15 it would be executed before the S90 and therefore it would attempt to execute a stop before a start. So in fact, it's still safe to coexist. Regards, Neil On Thursday, December 5, 2002, at 05:41 PM, Gustav Foseid wrote: Hi all, There seems to be a small bug in the %post script in the RPM for Radiator 3.4.1. The following: # Add startup script for i in 0 1 2 3 4 5 6 do ln -sf ../init.d/radiator $rcbase/rc$i.d/K15radiator done for i in 2 3 4 5 do ln -sf ../init.d/radiator $rcbase/rc$i.d/S90radiator done Should be replaced with: /sbin/chkconfig --add radiator That might be more RedHat specific, but at least I would recommend to have either S90 links or K15 links not both. -- Gustav Foseid, Initio IT-løsninger AS http://www.initio.no/ === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Cisco VPN 3000 User, Group and Filter Management
Hello Petr, It's already in the standard dictionary that I submitted in the past. They're Altiga VSAs since the VPN3000 is/was Altiga. If you see anything missing, please mail back. Regards, Neil D. Quiogue On Thursday, November 7, 2002, at 08:40 PM, Petr Zimak wrote: Hi We have a Cisco VPN 3000 Concentrator. I would like to manage the groups, users and filters/rules from Radiator. Does anybody have a dictionary file showing the definition of the corresponding attributes? Thank in advance, Petr === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) RE: Upgrade Procedure
Some additional tips which have been discussed before: When upgrading from major versions (2.x to 3.x), it is best to do some testing by installing it in a 'lab' system. Especially if the revisions differ in the way they do things. We had an issue before that affected the assignment of IP addresses (DYNADDRESS) due to the way our configuration file was written and it was good that we tested it before. Read the revision history as per my note before. And to answer your question, yes you can install on the same directory as long as you're sure that the new system has been tested according to your requirements. Regards, Neil On Thursday, November 7, 2002, at 02:20 AM, Mohammed AbdusSami wrote: Can I install in same directory where old version is installed. Regards, AbdusSami -Original Message- From: Hugh Irvine [mailto:hugh;open.com.au] Sent: Thursday, October 31, 2002 12:39 PM To: Mohammed AbdusSami Cc: [EMAIL PROTECTED] Subject: Re: Upgrade Procedure Hello AbdusSami - Simply download and install the new version. perl Makefile.PL make make test make install regards Hugh On Wednesday, October 30, 2002, at 05:05 PM, Mohammed AbdusSami wrote: Dear All, Can anybody send the procedure to upgrade radiator on a machine which already running with old version(2.8 or 3.1) Regards, AbdusSami NB: I am travelling this week, so there may be delays in our correspondence. -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X. - Nets: internetwork inventory and management - graphical, extensible, flexible with hardware, software, platform and database independence. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Adding a new NAS box what dictory file to use
Normally the standard dictionary is enough. If not, what we usually do is add missing entries (noted from the logfile) to the standard dictionary from the other dictionaries. Regards, Neil D. Quiogue On Monday, November 4, 2002, at 03:56 PM, mhobbs wrote: I've just beening running Portmaster3 using the standard dictionary file. I've now added a Acsend Max 4000 to my network What do I need to do with the dictionary file ? Do I just use the dictionary.ascend file now will the portmaster3 continue to work as normal ? Thanks Speedlink === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Do not retry to send packets.
Hello, Have you tried a -1 value for Retries? Regards, Neil D. Quiogue On Saturday, October 26, 2002, at 03:24 AM, James M. Luedke wrote: Is there a way to make Radiator not re-send packets? I use AuthBy SQL and I have attempted to set retries to 0 and 1. When I set it to 0 it seems to retry 3 times, when I set it to 1 it retries twice. I am hoping someone can help me with this as I am in the middle of a network migration of my radius servers, and I need to proxy packets from one server to another to another in order switch the networks without our customers service being interupted. Sorry for posting a question about this again, but I think my last post may not have been clear. Thanks, James... === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Double Dip
Why not configure SMTP authentication instead? We use this method instead of putting IP addresses for roaming users since some roaming systems cannot guarantee accounting packets which makes putting IP addresses to a lookup table erratic at best. Regards, Neil D. Quiogue On Thursday, October 17, 2002, at 02:36 PM, Michael Saunders wrote: I know this is probably asking alot. I have 1 linux radiator server authenticating against a windows backend SQL 2002 with a session database. I have qmail running as my mail server with an mySQL database I have just installed a table in this table on it for authentication relaying. I need to add the ip address of customers as they login into this table as I have virtual ports as well and it is impossible to know what IP address a customer may have. Can anyone offer any solutions. Michael Saunders === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) calculating alive record
Just a side note: to handle Alive packets separately, just add a Handler. Handler Acct-Status-Type = Alive /Handler Regards, Neil D. Quiogue CPCNet Hong Kong Limited A CITIC Pacific Company Voice (852) 2170.7140 Fax (852) 2751.7030 Information and attachments herein are intended for the named recipients only. It may contain attorney-client privileged or confidential matter. If you have received this message in error, please notify the sender immediately, and destroy the original message. Do not disclose the contents to anyone. Thank you. - Original Message - From: Andy De Petter [EMAIL PROTECTED] To: Alex Symthe [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Wednesday, July 31, 2002 5:25 PM Subject: Re: (RADIATOR) calculating alive record I would suggest using a REPLACE INTO.. that would update everything accordingly. You just need to make sure your unique key(s) are well configured. -Andy Alex Symthe wrote: hi All, We are using Radiator 3 and need to do some processing on the accounting records in RADONLINE. When ever we recieve an Alive Record when need to update the TIMESTAMP field in RAODNLINE for the corresponding username. Im not sure how to write this but here's what it should do... - Incoming Alive Record ++ UPDATE RADONLINE SET TIMESTAMP = %t WHERE username = %u Does anyone have any similar code to do the above mentioned or some ideas on how to do it? THanks _ Chat with friends online, try MSN Messenger: http://messenger.msn.com === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. -- Andy De Petter - http://www.techos.be/andy - [EMAIL PROTECTED] (ROT13) Senior System Engineer - Skynet IT Network - http://www.skynet.be === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Radiator - Probs with Authby SQL
Hello Christian, For MySQL: Trye the MD5 function instead of the PASSWORD function. For Perl: For this, you would need to play around with Digest::MD5. Or if you want a quick way to do the creation, there's a Perl module from CPAN called Crypt::PasswdMD5 that provides an MD5-based crypt() function. Saluti, Neil D. Quiogue Information and attachments herein are intended for the named recipients only. It may contain attorney-client privileged or confidential matter. If you have received this message in error, please notify the sender immediately, and destroy the original message. Do not disclose the contents to anyone. Thank you. - Original Message - From: Mike McCauley [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, July 18, 2002 5:44 PM Subject: Antwort: Re: Antwort: Re: Antwort: Re: Antwort: Re: Antwort: Re: Antwort: Re: (RADIATOR) Radiator - Probs with Authby SQL -- Forwarded Message -- Subject: BOUNCE [EMAIL PROTECTED]:Non-member submission from [Christian Rautscher [EMAIL PROTECTED]] Date: Thu, 18 Jul 2002 04:28:23 -0500 From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] From [EMAIL PROTECTED] Thu Jul 18 04:28:22 2002 Received: from mail.raiffeisen.it (mail.raiffeisen.net [195.254.224.24]) by server1.open.com.au (8.11.0/8.11.0) with ESMTP id g6I9SL316539; Thu, 18 Jul 2002 04:28:22 -0500 Sensitivity: Subject: Antwort: Re: Antwort: Re: Antwort: Re: Antwort: Re: Antwort: Re: Antwort: Re: (RADIATOR) Radiator - Probs with Authby SQL To: Hugh Irvine [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] From: Christian Rautscher [EMAIL PROTECTED] Date: Thu, 18 Jul 2002 11:27:12 +0200 Message-ID: [EMAIL PROTECTED] X-MIMETrack: Serialize by Router on RIS3/RAIFF(Release 5.0.10 |March 22, 2002) at 18.07.2002 11:27:23 MIME-Version: 1.0 Content-type: text/plain; charset=us-ascii Hello Hugh, hello every1, is me again with the SQL Problem using MYSQL and Radiator. As last-way-out i tried the following: I reinstalled everything (OS/Radiator/Mysql) and updated the sql Database, so that my NAS was authorized to request Radiator for an incoming PPP. Than i tried to connect myself with the Example User (user: mikem pass: fred) and it worked perfectly At this point i am sure that my Router Configuration + Radiator Config are okay. -- Than i did create a new user in the DB: insert into SUBSCRIBERS ( USERNAME, PASSWORD, ENCRYPTEDPASSWORD, CHECKATTR, REPLYATTR, TIMELEFT ) values ( 'dialin', 'dialin', password ('dialin'),'Service-Type = Framed-User', 'Framed-Protocol = PPP', '100'); Than again i got the same error as before. That's why i am quite sure that the problem must be the encrypted Password. And as you see in the above-mentioned SQL-String, i used: password('dialin') but nevertheless i did try using: crypt('dialin') or md5('dialin') too. If i do believe the Radiator-manual than Radiator is using as default a Unix crypt(3) standart encryption. In the DOC Reference (Page 149, ref.html, 13.1.1) are some written pieces of examples but i don't understand them correctly. That's why my question: Can anybody tell me the right syntax to insert a new User in the mysql, using the same encrytion as there had been used with the EXAMPLE mikem? Or to give me a hint, or if it's possible an Example? Thankyou just in advance. Kind regards, Christian --- -- Mike McCauley [EMAIL PROTECTED] Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW 24 Bateman St Hampton, VIC 3188 Australia http://www.open.com.au Phone +61 3 9598-0985 Fax +61 3 9598-0955 Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory etc etc on Unix, Win95/8, 2000, NT, MacOS 9, MacOS X etc etc === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Auth by NT group Radius rejects expired passwords
Hello Richard, Are you running it in a UNIX-based system? If so then NT Global Groups (Group check item) are not enforced. FYI, The Group check item does not work with Local Groups. Regards, Neil D. Quiogue"Information and attachments herein are intended for the named recipientsonly. It may contain attorney-client privileged or confidential matter.If you have received this message in error, please notify the senderimmediately, and destroy the original message. Do not disclose thecontents to anyone. Thank you." - Original Message - From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, July 18, 2002 10:02 AM Subject: Re: (RADIATOR) Auth by NT group Radius rejects expired passwords Hugh Here is the copy the trace 4 debug. As you can see we are using a user called "radius". This user is not a member of the group "Dialup" and should be rejected. We downloaded the updated file AuthNT.pm. We have not tested this yet but will soon and I will feed back our successto you for expired passwords. Thanks Richard Fri Jul 12 15:05:37 2002: DEBUG: Reading users file /usr/local/etc/radius/users Fri Jul 12 15:05:38 2002: INFO: Server started: Radiator 3.1 on KWGENLX01 Wed Jul 17 20:18:22 2002: DEBUG: Packet dump: *** Received from 127.0.0.1 port 32903 Code: Access-Request Identifier: 96 Authentic: 1234567890123456 Attributes: User-Name = "radius" Service-Type = Framed-User NAS-IP-Address = 203.63.154.1 NAS-Port = 1234 Called-Station-Id = "123456789" Calling-Station-Id = "987654321" NAS-Port-Type = Async User-Password = "137234,163v14618889160216}x153" Wed Jul 17 20:18:22 2002: DEBUG: Handling request with Handler 'Realm=DEFAULT' Wed Jul 17 20:18:22 2002: DEBUG: Deleting session for radius, 203.63.154.1, 1234 Wed Jul 17 20:18:22 2002: DEBUG: Handling with Radius::AuthFILE: CheckUsers Wed Jul 17 20:18:22 2002: DEBUG: Radius::AuthFILE looks for match with radius Wed Jul 17 20:18:22 2002: DEBUG: Radius::AuthFILE looks for match with DEFAULT Wed Jul 17 20:18:22 2002: DEBUG: Handling with NT Wed Jul 17 20:18:22 2002: DEBUG: Radius::AuthFILE ACCEPT: Wed Jul 17 20:18:22 2002: DEBUG: Access accepted for radius Wed Jul 17 20:18:22 2002: WARNING: No such attribute Framed-Protocal Wed Jul 17 20:18:22 2002: DEBUG: Packet dump: *** Sending to 127.0.0.1 port 32903 Code: Access-Accept Identifier: 96 Authentic: 1234567890123456 Attributes: Service-Type = Framed-User Framed-Protocal = PPP Framed-IP-Address = 255.255.255.254 Framed-IP-Netmask = 255.255.255.255 Wed Jul 17 20:18:22 2002: DEBUG: Packet dump: *** Received from 127.0.0.1 port 32903 Code: Accounting-Request Identifier: 97 Authentic: 216!2112341468!231131DC4-21416p Attributes: User-Name = "radius" Service-Type = Framed-User NAS-IP-Address = 203.63.154.1 NAS-Port = 1234 NAS-Port-Type = Async Acct-Session-Id = "1234" Acct-Status-Type = Start Called-Station-Id = "123456789" Calling-Station-Id = "987654321" Framed-IP-Address = 255.255.255.254 Acct-Delay-Time = 0 Wed Jul 17 20:18:22 2002: DEBUG: Handling request with Handler 'Realm=DEFAULT' Wed Jul 17 20:18:22 2002: DEBUG: Adding session for radius, 203.63.154.1, 1234 Wed Jul 17 20:18:22 2002: DEBUG: Handling with Radius::AuthFILE: CheckUsers Wed Jul 17 20:18:22 2002: DEBUG: Accounting accepted Wed Jul 17 20:18:22 2002: DEBUG: Packet dump: *** Sending to 127.0.0.1 port 32903 Code: Accounting-Response Identifier: 97 Authentic: 216!2112341468!231131DC4-21416p Attributes: Wed Jul 17 20:18:22 2002: DEBUG: Packet dump: *** Received from 127.0.0.1 port 32903 Code: Accounting-Request Identifier: 98 Authentic: 180189208251201\5A@K0f210186n217 Attributes: User-Name = "radius" Service-Type = Framed-User NAS-IP-Address = 203.63.154.1 NAS-Port = 1234 NAS-Port-Type = Async Acct-Session-Id = "1234" Acct-Status-Type = Stop Called-Station-Id = "123456789" Calling-Station-Id = "987654321" Framed-IP-Address = 255.255.255.254 Acct-Delay-Time = 0 Acct-Session-Time = 1000 Acct-Input-Octets = 2 Acct-Output-Octets = 3 Wed Jul 17 20:18:22 2002: DEBUG: Handling request with Handler 'Realm=DEFAULT' Wed Jul 17 20:18:22 2002: DEBUG: Deleting session for radius, 203.63.154.1, 1234 Wed Jul 17 20:18:22 2002: DEBUG: Handling with Radius::AuthFILE: CheckUsers Wed Jul 17 20:18:22 2002: DEBUG: Accounting accepted Wed Jul 17 20:18:22 2002: DEBUG: Packet dump: *** Sending to 127.0.0.1 port 32903 Code: Accounting-Response Identifier: 98 Authentic: 180189208251201\5A@K0f210186n217 Attributes: -Forwarded by Richard Challinor/Pert
Re: (RADIATOR) Auth by NT group Radius rejects expired passwords
Hello Richard, Unfortunately, it's a limitation of the Authen::SMB module (or is it more on the smbval library). As of now, the only thing I can think of is install RADIUS on the NT machine. But this might not be an option to you. Regards, Neil D. Quiogue"Information and attachments herein are intended for the named recipientsonly. It may contain attorney-client privileged or confidential matter.If you have received this message in error, please notify the senderimmediately, and destroy the original message. Do not disclose thecontents to anyone. Thank you." - Original Message - From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Thursday, July 18, 2002 12:05 PM Subject: Re: (RADIATOR) Auth by NT group Radius rejects expired passwords Neil Thanks for the reply. Yes we are using Redhat 7.3 Do you know of a work around? Hugh It sounds like Neil has hit the nail on the head. Thanks Richard -----"neil d. quiogue" [EMAIL PROTECTED] wrote: -To: [EMAIL PROTECTED], [EMAIL PROTECTED]From: "neil d. quiogue" [EMAIL PROTECTED]Date: 07/18/2002 11:39AMSubject: Re: (RADIATOR) Auth by NT group Radius rejects expired passwords Hello Richard, Are you running it in a UNIX-based system? If so then NT Global Groups (Group check item) are not enforced. FYI, The Group check item does not work with Local Groups. Regards, Neil D. Quiogue"Information and attachments herein are intended for the named recipientsonly. It may contain attorney-client privileged or confidential matter.If you have received this message in error, please notify the senderimmediately, and destroy the original message. Do not disclose thecontents to anyone. Thank you." - Original Message - From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, July 18, 2002 10:02 AM Subject: Re: (RADIATOR) Auth by NT group Radius rejects expired passwords Hugh Here is the copy the trace 4 debug. As you can see we are using a user called "radius". This user is not a member of the group "Dialup" and should be rejected. We downloaded the updated file AuthNT.pm. We have not tested this yet but will soon and I will feed back our successto you for expired passwords. Thanks Richard Fri Jul 12 15:05:37 2002: DEBUG: Reading users file /usr/local/etc/radius/users Fri Jul 12 15:05:38 2002: INFO: Server started: Radiator 3.1 on KWGENLX01 Wed Jul 17 20:18:22 2002: DEBUG: Packet dump: *** Received from 127.0.0.1 port 32903 Code: Access-Request Identifier: 96 Authentic: 1234567890123456 Attributes: User-Name = "radius" Service-Type = Framed-User NAS-IP-Address = 203.63.154.1 NAS-Port = 1234 Called-Station-Id = "123456789" Calling-Station-Id = "987654321" NAS-Port-Type = Async User-Password = "137234,163v14618889160216}x153" Wed Jul 17 20:18:22 2002: DEBUG: Handling request with Handler 'Realm=DEFAULT' Wed Jul 17 20:18:22 2002: DEBUG: Deleting session for radius, 203.63.154.1, 1234 Wed Jul 17 20:18:22 2002: DEBUG: Handling with Radius::AuthFILE: CheckUsers Wed Jul 17 20:18:22 2002: DEBUG: Radius::AuthFILE looks for match with radius Wed Jul 17 20:18:22 2002: DEBUG: Radius::AuthFILE looks for match with DEFAULT Wed Jul 17 20:18:22 2002: DEBUG: Handling with NT Wed Jul 17 20:18:22 2002: DEBUG: Radius::AuthFILE ACCEPT: Wed Jul 17 20:18:22 2002: DEBUG: Access accepted for radius Wed Jul 17 20:18:22 2002: WARNING: No such attribute Framed-Protocal Wed Jul 17 20:18:22 2002: DEBUG: Packet dump: *** Sending to 127.0.0.1 port 32903 Code: Access-Accept Identifier: 96 Authentic: 1234567890123456 Attributes: Service-Type = Framed-User Framed-Protocal = PPP Framed-IP-Address = 255.255.255.254 Framed-IP-Netmask = 255.255.255.255 Wed Jul 17 20:18:22 2002: DEBUG: Packet dump: *** Received from 127.0.0.1 port 32903 Code: Accounting-Request Identifier: 97 Authentic: 216!2112341468!231131DC4-21416p Attributes: User-Name = "radius" Service-Type = Framed-User NAS-IP-Address = 203.63.154.1 NAS-Port = 1234 NAS-Port-Type = Async Acct-Session-Id = "1234" Acct-Status-Type = Start Called-Station-Id = "123456789" Calling-Station-Id = "987654321" Framed-IP-Address = 255.255.255.254 Acct-Delay-Time = 0 Wed Jul 17 20:18:22 2002: DEBUG: Handling request with Handler 'Realm=DEFAULT' Wed Jul 17 20:18:22 2002: DEBUG: Adding session for radius, 203.63.154.1, 1234 Wed Jul 17 20:18:22 2002: DEBUG:
Re: (RADIATOR) RFC For accounting Alive Packets
On Wednesday 24 April 2002 11:44 am, Michael Saunders wrote: Does anyone know if there is an RFC for accounting alive packets or some specifications he can follow somewhere to make sure they work with radiator RFC2869 RADIUS Extensions have a section on Interim Accounting updates. Regards, Neil D. Quiogue === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Logging into network
Please ignore this message. We found out the error. Much thanks. Regards, Neil D. Quiogue Information and attachments herein are intended for the named recipients only. It may contain attorney-client privileged or confidential matter. If you have received this message in error, please notify the sender immediately, and destroy the original message. Do not disclose the contents to anyone. Thank you. - Original Message - From: neil d. quiogue [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, March 14, 2002 7:22 AM Subject: (RADIATOR) Logging into network Greetings, Here's the situation. We've migrated one old RADIUS server to Radiator and everything works out properly except that for some reason, whenever it authenticates properly, the 'Logging into network...' message from MS DUN takes longer than usual to finish. I mean I'm receiving the accounting record fast enough. And the network is up (even if the dialog box takes forever). Anyone experienced this before and knew what configuration to tweak? We didn't experience this on the old RADIUS server. If anyone has tips, it would be great. Regards, Neil D. Quiogue Information and attachments herein are intended for the named recipients only. It may contain attorney-client privileged or confidential matter. If you have received this message in error, please notify the sender immediately, and destroy the original message. Do not disclose the contents to anyone. Thank you. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Syslog - Logging
Please use AUTHLOG Syslog found in Chapter 6.50 of the Reference manual. Though not SYSLOG, you may want to look at the authlog.cfg in the goodies/ directory. It has an example there. Regards, Neil D. QuioguePSINet Hong Kong Ltd.A MEMBER OF THE CITIC PACIFIC GROUPVoice (852) 2170.7140Fax (852) 2372.0287 "Information and attachments herein are intended for the named recipientsonly. It may contain attorney-client privileged or confidential matter.If you have received this message in error, please notify the senderimmediately, and destroy the original message. Do not disclose thecontents to anyone. Thank you." - Original Message - From: Shane Malden To: [EMAIL PROTECTED] Sent: Tuesday, January 29, 2002 7:00 PM Subject: (RADIATOR) Syslog - Logging I am just wondering if anyone knows the correct format of how to have Syslog log all user authentication attempts. Also, currently we have our Trace set to 3 and don't see any Successful authentications. If anyone can help, it would be appreciated. Regards, Shane
Re: (RADIATOR) figured it out.
Not with Radiator per se but with MySQL. What we usually do is have a regular check on the MySQL database to check for integrity. You may want to look at 'check table' statement or the 'myisamchk or mysqlcheck'. Regards, Neil D. Quiogue - Original Message - From: Aaron Collins [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Tuesday, January 29, 2002 8:56 AM Subject: (RADIATOR) figured it out. Ok as far as the previous question I had about the error DBD::mysql::db do failed: Can't open file: 'ACCOUNTING.MYD'. (errno: 145) at /usr/lib/perl5/site_perl/5.6.0/Radius/SqlDb.pm line 232. I figured out it was just a damaged table, and that it could be fixed by executing the command mysqlrepair table ACCOUNTING; I'd still like to here about other peoples experiances with MySQL and radiator. -- Signed, Aaron Collins Lead Internet Infrastructure Engineer [EMAIL PROTECTED] === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Radiator and Merit-AAA 4.5
dictionary.redback is what you're looking for. Regards, Neil D. Quiogue - Original Message - From: Muhammed, Rafi [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, October 18, 2001 12:00 PM Subject: (RADIATOR) Radiator and Merit-AAA 4.5 We are testing a ADSL set-up where in remote routers are connected to the corporate network through an ISP The corporate network connects to the ISP over 2M Frame relay link. The individual remote sites are connected to the ISP over ADSL. For Authentication, the ISP uses Merit-AAA 4.5 Radius Server and proxies it to our Radiator server in our corporate LAN. The problem is the accounting requests never complete and they generate lot of errors as shown below Thu Oct 18 15:54:51 2001: ERR: Attribute number 211 (vendor ) is not defined in your dictionary Thu Oct 18 15:54:51 2001: ERR: Attribute number 211 (vendor ) is not defined in your dictionary Thu Oct 18 15:54:51 2001: ERR: Attribute number 4 (vendor 2352) is not defined in your dictionary Thu Oct 18 15:54:51 2001: ERR: Attribute number 15 (vendor 2352) is not defined in your dictionary Thu Oct 18 15:54:51 2001: ERR: Attribute number 128 (vendor 2352) is not defined in your dictionary Thu Oct 18 15:54:51 2001: ERR: Attribute number 129 (vendor 2352) is not defined in your dictionary Thu Oct 18 15:54:51 2001: ERR: Attribute number 130 (vendor 2352) is not defined in your dictionary Thu Oct 18 15:54:51 2001: ERR: Attribute number 131 (vendor 2352) is not defined in your dictionary Thu Oct 18 15:54:51 2001: ERR: Attribute number 222 (vendor ) is not defined in your dictionary Thu Oct 18 15:54:51 2001: ERR: Attribute number 223 (vendor ) is not defined in your dictionary Due to this the authentication never completes and we see lot of authentication requests after one access request, and the process repeats continuously. Is there a dictionary file to address this problem? Thanks Muhammed Rafi === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Question: Log SYSLOG
Greetings, I would like to know if there's a way for me to send through Syslog the User-Name and Framed-IP-Address (and some others) fields without resorting to a Trace 4 and configuring Log SYSLOG I understand there's AuthLog SYSLOG but whenever I test it using radpwtst, it doesn't log it. Much thanks. Regards, Neil D. Quiogue === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Question: Log SYSLOG
Though replying to my own email is bad form, I just decided to create a hook for this and it worked. Regards, Neil D. Quiogue - Original Message - From: neil d. quiogue [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, October 17, 2001 8:01 PM Subject: (RADIATOR) Question: Log SYSLOG Greetings, I would like to know if there's a way for me to send through Syslog the User-Name and Framed-IP-Address (and some others) fields without resorting to a Trace 4 and configuring Log SYSLOG I understand there's AuthLog SYSLOG but whenever I test it using radpwtst, it doesn't log it. Much thanks. Regards, Neil D. Quiogue === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Radius client
Hello Bob, Have you tried Lars' radiusclient? http://www.mcs-cityline.net/~lf/radius/ Regards, Neil D. Quiogue PSINet Hong Kong Ltd. A MEMBER OF THE CITIC PACIFIC GROUP Voice (852) 2170.7140 Fax (852) 2372.0287 Information and attachments herein are intended for the named recipients only. It may contain attorney-client privileged or confidential matter. If you have received this message in error, please notify the sender immediately, and destroy the original message. Do not disclose the contents to anyone. Thank you. - Original Message - From: bshafer [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Tuesday, October 16, 2001 7:21 PM Subject: (RADIATOR) Radius client This isn`t exactly a Radiator question. But since we use Radiator, I thought I`d ask it here. We use Radiator for VPN authentication. We are developing a custom application that requires authentication. I said, Gee, why not use radius? So I`ve been looking an easy to use radius client. Something that does authentication and some simple accounting. I`ve looked at and tried RadiusPerl-0.05. And so far, no luck with the authentication, and it doesn`t appear to do accounting. With some persistence, sooner or later, I might get the authentication to work, but without the accounting, it seems of little use for our needs. The other thought I had is to use radpwtst as an example, and roll our own, but I thought I`d check here before I did that. I`d prefer not to have re-invent the wheel, if I can. Thanks, Bob Shafer University of Denver === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) stupid question ,-)
Hello, * For the shared secret thinggy * I'm not perfectly sure of this response but a client with no shared secret in the RADIUS server would be silently discarded. This is due to the way RADIUS works as the authenticator packets would be needing the shared secret. So if you would be needing a response from the RADIUS server without a secret, you won't get it. Note: Just correct me if I'm wrong. * For the monitoring of RADIUS * http://www.netplex-tech.com/software/nocol/ Or use NetSaint plus its radius plugin which uses Lars Fenneberg's radiusclient (http://www.mcs-cityline.net/~lf/radius/). (Or create a plugin for radpwtst). Regards, Neil D. Quiogue - Original Message - From: Shon Stephens [EMAIL PROTECTED] To: Andy De Petter [EMAIL PROTECTED]; Radiator Mailing [EMAIL PROTECTED] Sent: Tuesday, May 15, 2001 8:48 PM Subject: Re: (RADIATOR) stupid question ,-) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I don't know about making Radiator accept connections from your device. However, I use NOCOL to monitor my Radiator systems. It has a Radius AAA mechanism built into it. Its free too. Can't remember where to get it though? Shon Stephens [EMAIL PROTECTED] - - Original Message - From: Andy De Petter [EMAIL PROTECTED] To: Radiator Mailing [EMAIL PROTECTED] Sent: Tuesday, May 15, 2001 7:49 AM Subject: (RADIATOR) stupid question ,-) Hello, I don't know if anyone has ever tried this before, but I'm testing out a hardware monitoring tool, that can check ICMP/TCP/UDP protocols. Now, the problem I'm having here, is that I can't add this device in the client list of Radiator, because it doesn't support any secret (it just connects to a port, and sees if it's listening or not). I noticed that Radiator is rejecting the IP address of the device, because it's an unknown client. Is there a way, to make Radiator accept connections from this device, even without a shared secret? Or just stop Radiator from blocking that IP address? Thanks, -Andy -- *** DISCLAIMER *** This e-mail and any attachments thereto may contain information, which is confidential and/or protected by intellectual property rights and are intended for the sole use of the recipient(s) named above. Any use of the information contained herein (including, but not limited to, total or partial reproduction, communication or distribution in any form) by persons other than the designated recipient(s) is prohibited. If you have received this e-mail in error, please notify the sender either by telephone or by e-mail and delete the material from any computer. Thank you for your cooperation. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. -BEGIN PGP SIGNATURE- Version: PGPfreeware 7.0.3 for non-commercial use http://www.pgp.com iQA/AwUBOwElqEwGLkuD4lDdEQKJywCgz+W43kkCKGfsV5rYrVK3cXpUXlIAoMix tGUmu0geb/t0zYKoYwUhQ9EX =ItBQ -END PGP SIGNATURE- === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.