Alex Bahoor wrote:
This is a fact--the internet would not work if DNS uses dynamic port to
listen to? You must understand, all these known port numbers are used to
start up client connections, however dynamic port assignment is part of the
process to create connections between clients and
You can still change the ports on your private DNS server to any thing you
want for security reasons.
So, you say yourself that even in the case you are most fond of (DNS)
changing default port is OK as na option. What was the problem with
freeradius having the same option? Please stop trolling
freerad...@corwyn.net wrote:
I hope that help,
It helps show you're not worth bothering with. Thanks.
...with a GMAME feed you can use your NNTP clients score file to solve
this particular problem. :)
Cheers
--
Alexander Clouter
.sigmonster says: I can't drive 55.
-
List
Alan DeKok al...@deployingradius.com writes:
Bjørn Mork wrote:
Alan DeKok al...@deployingradius.com writes:
I've put a pre-release of version 2.1.8 on the web site:
http://git.freeradius.org/pre/
Hmm, they were both a bit small. I see 14 and 20 bytes. Something
probably went wrong
i guess this version also solved ASSERT FAILED event.c[2682]: request-ev !=
NULL issue?
- Original Message
From: Bjørn Mork bj...@mork.no
To: FreeRadius users mailing list freeradius-users@lists.freeradius.org
Sent: Sun, December 6, 2009 9:46:38 PM
Subject: Re: Pre-release of Version
Wegener, Norbert wrote:
Building an rpm on Suse10.3 fails with:
Fixed, thanks.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Thomas Fagart wrote:
Could we use any module inside dhcp server ?
No. Most of the modules are specific to RADIUS.
I wanted to use sql but doesn't seems to work.
It should work if you:
a) configure the SQL module
b) use sql.authorize, rather than just sql.
Did you check the XLAT fixes in? I saw commits for a couple of fixes
but not the modified code in xlat.c...
i guess this version also solved ASSERT FAILED event.c[2682]: request-ev !=
NULL issue?
- Original Message
From: Bjørn Mork bj...@mork.no
To: FreeRadius users mailing
Arran Cudbard-Bell wrote:
Did you check the XLAT fixes in? I saw commits for a couple of fixes
but not the modified code in xlat.c...
It's in the v2.1.x branch on github. It will be in 2.1.8.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
piston wrote:
i guess this version also solved ASSERT FAILED event.c[2682]: request-ev !=
NULL issue?
Yes.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Bjørn Mork wrote:
Looks very promising so far. I've not seen any problems yet. I'd vote
for this as the best FreeRADIUS release ever :-)
Thanks. We've done burn-in tests with 100's of millions of packets
in a variety of scenarios. It looks pretty solid.
Alan DeKok.
-
List
I changed it but it's always the same problem:
[tls] TLS_accept: SSLv3 write certificate request A
[tls] TLS_accept: SSLv3 flush data
[tls] TLS_accept: Need to read more data: SSLv3 read client
certificate
A
Problem? What problem? Those are normal openSSL messages.
Ivan
On Wed, Nov 25, 2009 at 02:33:30AM +0100, Josip Rodin wrote:
[myownlittle_linelog] expand: %{%{Packet-Type}:-format} -
Accounting-Request
[myownlittle_linelog] Entry .Accounting-Request is not a variable
assignment
Speaking of which, while browsing
How rude! I can't believe highly professional people could be so uncivilized
on mail aliases. It's cowardly to hide behind the internet and insult
people. Where is the moderator from all that?
Alex
-Original Message-
From:
Bjørn Mork bj...@mork.no writes:
Looks very promising so far. I've not seen any problems yet.
Famous Last Words candidate...
It took two more hours, then I got:
Sun Dec 6 16:23:33 2009 : Proxy: Marking home server 10.10.10.132 port 1645
as dead.
Sun Dec 6 16:23:33 2009 : Error: Failed
Josip Rodin wrote:
Speaking of which, while browsing 558c51a711d7a326604eda0fc51040cbda2b77a8
I just noticed that it would be good for these error messages be elevated
so that users can see them outside of debug mode. Specifically:
RDEBUG2(Badly formatted variable: %s, *from);
RDEBUG2(Badly
Bjørn Mork bj...@mork.no writes:
Bjørn Mork bj...@mork.no writes:
Looks very promising so far. I've not seen any problems yet.
Famous Last Words candidate...
It took two more hours, then I got:
Sun Dec 6 16:23:33 2009 : Proxy: Marking home server 10.10.10.132 port 1645
as dead.
Sun
Bjørn Mork wrote:
It took two more hours, then I got:
Sun Dec 6 16:23:33 2009 : Proxy: Marking home server 10.10.10.132 port 1645
as dead.
Sun Dec 6 16:23:33 2009 : Error: Failed binding to proxy address * port
2727: Address already in use
and the server stopped answering
On Sun, Dec 06, 2009 at 07:43:49PM +0100, Alan DeKok wrote:
Josip Rodin wrote:
Speaking of which, while browsing 558c51a711d7a326604eda0fc51040cbda2b77a8
I just noticed that it would be good for these error messages be elevated
so that users can see them outside of debug mode. Specifically:
Josip Rodin wrote:
People should want to know as soon as possible if their configuration is
has syntax errors - it's likely that the same issue can have bad effects
on the functionality they want.
I agree. They should test their configuration before putting it
live into a production
On Sun, Dec 06, 2009 at 08:34:41PM +0100, Alan DeKok wrote:
Josip Rodin wrote:
People should want to know as soon as possible if their configuration is
has syntax errors - it's likely that the same issue can have bad effects
on the functionality they want.
I agree. They should test
Bjørn Mork wrote:
Bjørn Mork bj...@mork.no writes:
The server had been running for 45 hours when this happened. I haven't
got the faintest idea where to start looking for the bug.
I have to correct myself after looking over the logs: The server
stopped answering authentication requsts,
Hi,
People whose servers do 1k operations/s are the ones who can be assumed to
be already prepared for the situation where the log volume increases by a
magnitude, for whatever reason.
err, no - the reason? most of our logging of RADIUS stuff does into
fast DBs - hosted elsewhere. therefore
Hi,
How rude! I can't believe highly professional people could be so uncivilized
on mail aliases. It's cowardly to hide behind the internet and insult
people. Where is the moderator from all that?
hide behind? aliases?
i'm not sure where this paranoia comes from - we arent using aliases
or
Greetings,
We are using Freeradius v2 to authenticate and give IP to a large group of
mobiles, connected to us via gprs through 2 NAS randomicaly.
We need this group of mobiles to get an IP address based on the NAS where
they authenticate from and keep this IP always it connects from
this same
So, trying to be clear, what we need is:
IF mobile CONNECTS via NAS1 - Gets IP from pool1
IF mobile CONNECTS via NAS1 again - Gets THE same IP from pool1
IF mobile CONNECTS via NAS2 - Gets IP from pool2
IF mobile CONNECTS via NAS2 again - Gets THE same IP from pool2
I was afraid of using sqlippool because the DB of this server is MySQL and
there is a warning about that in FreeRadius:
# WARNING: MySQL has certain limitations that means it can
# hand out the same IP address to 2 different users.
Because of this I would like to try via config file
On Sun, Dec 06, 2009 at 09:54:31PM +, Alan Buxey wrote:
Hi,
People whose servers do 1k operations/s are the ones who can be assumed to
be already prepared for the situation where the log volume increases by a
magnitude, for whatever reason.
err, no - the reason? most of our logging
NOD32 Antivirus, version of virus signature
database 4665 (20091206) __
The message was checked by ESET NOD32 Antivirus.
http://www.eset.com
__ Information from ESET NOD32 Antivirus, version of virus signature
database 4665 (20091206) __
The message was checked
udp 0 0 *:radius *:*
udp 0 0 *:radius-acct *:*
So after all, it's not selecting random port numbers. Is this a bug?
No. The server is behaving as expected.
Tim
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Alex Bahoor wrote:
As other explained, when the port is set to 0, the daemon will take any port
dynamically.
This is not what the documentation says. It is not what people told
you on this list.
However, thanks to Tim, he cleared out my confusion, and I see
clearly the ports are in fact
rena...@flash.net.br wrote:
I was afraid of using sqlippool because the DB of this server is MySQL and
there is a warning about that in FreeRadius:
# WARNING: MySQL has certain limitations that means it can
# hand out the same IP address to 2 different users.
Because of this
Hi,
First i want to say that i think that freeradius is a great piece of software.
My NAS, pppd, does not grant access to a user with attribute Auth-Type
set to Accept but radtest does work. Could this be solved by
recompiling pppd with the dictionary file included in the source that
reads
VALUE
jon michaels wrote:
My NAS, pppd, does not grant access to a user with attribute Auth-Type
set to Accept but radtest does work.
Post the debug log as suggested in the FAQ, README, INSTALL, man
page, and daily on this list.
My *guess* is that the NAS is doing MS-CHAP. You *cannot* simply
34 matches
Mail list logo
