Hi,
I normally use MK for lots of things. The Mikrotik-Xmit-Limit attribute is
recognize for MK as a limitation, so when the limit arrives, the MT cuts the
user account.
You can write a exec program to modify the Mikrotik-Xmit-Limit attribute or
insert a trigger in the DB or use
Hi Chester,
I think for a good behaviour of SQL server, all of them have to be working in a
normal startup of a freeradius service. Try to repair why your SQL server are
down.
You have to have a stable system.
Regards,
Santiago
From:
In which statement do you implement this query?
Date: Sat, 16 Oct 2010 11:49:36 -0400
Subject: plpgsql freeradius authentication function
From: kak...@gmail.com
To: freeradius-users@lists.freeradius.org
Hi
I have a plpgsql function being called from freeradius to do authentication but
i
We worked with Meru as Access Point, but not as NAS.
If you want to autrhenticate users, then it is not the correct device; use
another one.
Anyway I think there is other better devices in the market at he same cost.
Date: Tue, 11 May 2010 17:16:31 +0200
From: al...@deployingradius.com
I think you need to analyse more the accounting request because the MAC and IP
address would be different.
Check the attributes framedipaddress and calledstationid in Accountig request.
Date: Sun, 28 Feb 2010 20:56:16 +0400
From: na...@ultel.net
To: freeradius-users@lists.freeradius.org
1. Can freeradius log accounting info in a local file, meaning not to use a sql
database? If yes, how to enable that and where the log files will be
(configurable?)
You needn't use a database if you do ot want. Depend on the level of the
detail you want there is the var/log/freeradius
Hi,
It is a long time since I work with FR and hotspots. I am using a Postgres
database, but I want to move to a ORACLE database.
To keep the consistency and the service I want to run simultaneously both
databases, so the INSERTs and UPDATEs have to be done in Postgres and ORACLE
The problem is 'Reply-Msg' attribute is not recognized by the radius server
becasuse it is a specific vendor attribute.
Try to find the specific dictionary.
From: adem...@netwizard.com.br
To: t...@kalik.net; freeradius-users@lists.freeradius.org
Subject: RE: radacct and db handles
Date:
You need additional attributes if you use vendor attributes. Special attributes
are related to the NAS you use.
The migration from MySQL to PostgreSQL is easy since there is th postgresql DB
schema in the instalacion sources (find some file with sql extension).
The use of a DHCP server
Hi,
I am using MikroTik and I am vry satisfied. However, it is not a easy device
to configura and understand all its different configurations.
I do not understand why you have to ue POD packets. If you do correctly the
configurations and you have you want to offer your users, I think you
Hi,
Currently my Simultaneous-Use attribute is not working and I have
few questions regarding this.
Following are my setup:
OS: CentOS 5.3
freeradius2-2.1.6
MySQL 5.0.45
PERL 5.8.8
===
I am consulting the FAQ checklist. Some are not applicable to me
Date: Tue, 4 Aug 2009 14:42:55 +0800
Subject: Re: Simutaneus Check Query in FR2?
From: d88...@gmail.com
To: freeradius-users@lists.freeradius.org
You are looking for in the wrong directory.
In FR2 the SQL queries are in sql/mysql/dialup.conf. In this file you will
find the
With the primary server everything works fine, but my problem is when I
force to switch to fallover server (I switch off IP 1.2.3.4 machine) my
freeradius server does not change to request 1.2.3.5 server.
How hard have you tried? It does not mark home server as dead on the first
packet
Hi,
I am using in my AAA servers the freeradius 2.1.3 version.
I am configuring the failover for the myrealm.com in proxy.conf.
For myrealm.com realm I have two AAA servers: 1.2.3.4 and 1.2.3.5
home_server primary_server {
1) The name os the rewrite name is wrong: try with add_service_volume
2) Do you have in your dictionary the 'ERX-Service-Volume:1' attribute. Unlass
try only with 'ERX-Service-Volume'
To: freeradius-users@lists.freeradius.org
Subject: How use tagged atrributes?
From: r.fila...@ttk.ru
Date:
Hi,
I am using freeradius 2.1.3 for my AAA servers. I have a little problem when a
third-patner RADIUS is dead. My problem is my freeradius send the following
status packect every
2-5 seconds.
Sending Access-Request of id 77 to 200.160.126.23 port 1812
User-Name :=
I'm sure that I'm not the only one that have NAS's behind dynamic IPs,
and this would make radius traffic from such NAS's much more secure.
OK, if you have Dynamic public IP you have two options:
1) use a DNS to identify the dynamic IP of your hotspot. It means that your
DSL router or
Postgres does supposedly have a version in beta for full master-master
replication, but every time we've tried to get it running it's crashed
on us as soon as we tried to actually write any data. Postgres in
general seemed much slower than MySQL for reading the data we needed as well.
I
Yes, man.
We know the PostgreSQL solution does not work. ORACLE is expensive. MySQL is
one master and serveral slaves.
Do you know another master-master database management system which is cheap?
Santiago
Ok. That is true. In that case you are talking about loosing money if
the
Hi,
I want the 'san0001' user has two passwords. There is in my radcheck table:
Username | Attribute | op | value
san0001 Password ?? santi1
san0001 Password
Hi,
Today I did some test with radreply.WISPr-Session-Terminate-Time and
radcheck.Expiration.
It is supposed both attributes do the same, but Expiration is from AAA server
side, meanwhile Session-Terminate-Time is from NAS side.
However, there is a difference if you want to to set
Hi,
I am several years working woth freeradius, bit recently I surgeg me a
question: I do not want that johndoe account never connect from NASES with
Client IP:
* 195.56.53.23
* 96.53.26.59
* 56.15.86.35
* 56.15.86.36
I know I have to use the attribute Client-IP-Address, so radckech
You have to implement some (perl, PHP, shell) code to remove the 'stale
session' from your database.
Date: Fri, 6 Mar 2009 20:33:05 -0300
From: alexan...@ondainternet.com.br
To: freeradius-users@lists.freeradius.org
Subject: stop old open session and star new..
Hello,
How i can solve
Good morning,
I am working with FR some years ago, and I have implemented a prepaid card
system. I want to get an account which are not valid until some date. I am
looking for some freeradius attribute which means 'account invalid until 15th
march 2009'.
I do not know if I have
Hi,
I use freeradius 1.1.7 for autenticate users to provide Internet
connectivity. I have groups of usernames who has access from anywhere. However,
I have others groups which only has access from one NAS (promotional codes). I
know how to block these accounts from my Postgres Database:
If you have these figures, yours database has to be GOOD DB server and a GOOD
machine. To: freeradius-users@lists.freeradius.org Subject: Re: Best Config
Date: Sat, 24 Jan 2009 11:08:53 +0100 From: t...@kalik.net From
experience, what would be the best server configuration for 200,000 users
Hi,
I am working with freeradius and mikrotik gateway for a long time, but
recently I detect in my PostgreSQL database, in radacct table some
inconsistencies. First af all, I say that I have the standard configuration
file (postgres.sql) for accounting queries.
My problem is sometimes
It is what I thought: Accounting Stop packet should be the only thing that
inserts dates.
Thanks. To: freeradius-users@lists.freeradius.org Subject: Re: accounting bug
in Mikrotik Date: Thu, 11 Dec 2008 10:59:26 +0100 From: [EMAIL PROTECTED]
I am working with freeradius and mikrotik gateway
Hi,
In a normal revision of detail file of radius logs I see:
-
Wed Dec 10 18:27:04 2008Acct-Status-Type = AliveNAS-Port-Type =
Wireless-802.11Calling-Station-Id = 00:15:AF:09:5E:B5
Called-Station-Id = hs-AKIWIFINAS-Port-Id = br-AKIWIFI
Hi,
I am using freeradius since four years and I used PPTP/L2TP tunnel for
autenticating users against my RADIUS servers with one of my NAS has a dynamic
IP (xDSL). However, I can not rely on these connections and the connectivity
sometimes fall down and the tunnel, too.
I have some
with duplicated session
is very strange. My NAS (Mtik 2.9.x and Mtik 3.x) sends duplicated session
ids but almost in the same time. For example one session is started now
and the second one is transfered 1 second later. On Tue, Oct 7, 2008
at 8:54 AM, Santiago Balaguer García [EMAIL
and it will be rejected. you will
see this in your log files.Another idea is to change NAS or you can create cron
script to delete duplicated entries. MT
On Mon, Oct 6, 2008 at 5:35 PM, Santiago Balaguer García [EMAIL PROTECTED]
wrote:
Hi,I am using a freeradius 1.1.7 + postgres since 3 years ago. The AAA
Hi,
I am using a freeradius 1.1.7 + postgres since 3 years ago. The AAA service
works fine, however my radacct table has sonetimes duplicate registers.
I realize that it happens when a NAS does not have a realiable Internet
conection, so NAS send the accounting packets several times.
Yes, you needn't. What you need is to create a normal user account and add
these attributes in radreply:
Framed-Protocol = PPP, Framed-IP-Address = 10.0.0.x,
Framed-IP-Netmask = 255.255.255.0,
Be carefull because you have to modify the ppp profiles in the Mikrotik client
in the option /ppp
Hi,
Recently I have just configured another RADIUS server and I use /etc/services
for radius service ports.
I use auth port 1645 and acct port 1646. But, are these ports better than auth
port 1812 and act port 1813 ? What ports are more standart ?
Santiago
HI,
I supposed you have in radiusd.conf file this code:
# Create a unique accounting session Id. Many NASes re-use or# repeat
values for Acct-Session-Id, causing no end of# confusion.#
# This module will add a (probably) unique session id# to an
Hi,
I have two radius server since three years ago. They are my two production
AAA servers and can authenticate until 300.000 accounts. So my RADIUS database
(PostgreSQL) grew up enough and I realize that my SQL queries slow down. I know
that I have four table with almost 500.000 registers
Hi, I have two radius server since three years ago. They are my two
production AAA servers and can authenticate until 300.000 accounts. So my
RADIUS database (PostgreSQL) grew up enough and I realize that my SQL queries
slow down. I know that I have four table with almost 500.000 registers
I usually execute VACUMM. But the time of the queries does not decrease.
PostgreSQL 7.4 Date: Tue, 11 Mar 2008 10:39:47 + From: [EMAIL PROTECTED]
To: freeradius-users@lists.freeradius.org Subject: Re: Database performance
(was Re: ) Hi,Any suggestion for improving the throughput and
The answer is not totally correct. Because a microcuts in the connectibity of
hotspot cause that hotspot re-sends the acct request.
In that case, you have to desactivate:
- accounting_start_query_alt
- accounting_stop_query_alt
Maybe It can cause that some requests do not register, and it
I have been following you since three years and
I trust you, so I will buy your book. Date: Tue, 15 Jan 2008 17:03:52 +0100
From: [EMAIL PROTECTED] To: freeradius-users@lists.freeradius.org Subject:
Re: alan's book, or anything new on the horizon Duane Cox wrote: I wonder
if Alan ever
People, I have several radius severs who have configurated the same databases.
As you said radius service has a fail-over when they connect to DB and the
first one fails.
However, the main problem that I see in your configuration is the concurrency
of database access. If you, at least, has
Is there any way to put all domains in a table and when freeradius start up, it
read this table and recognizes them?
I do not understand the realm table in radius DB. Any suggestion? From: [EMAIL
PROTECTED] To: [EMAIL PROTECTED]; freeradius-users@lists.freeradius.org
Subject: Re: Dynamic Realm
Thanks for the aclaration about realms. It is my repeated question. Now I am
waiting to freeradius 2.0 and try it.
By the way, I usually write in plain text. It was a browser bug.
From: [EMAIL PROTECTED]
To: freeradius-users@lists.freeradius.org
Subject: Re: Dynamic Realm
Date: Wed, 28
Hi, I use freeradius for a long time and now we are authenticating users of
roaming partners. I normally allow all the users of a domain. For example:
trustive/johndoeor teo/maria and I use mydomain realm. realm trustive {
type= radiusauthhost =
What is the question?
Perfectly You can use a MS SQL server using iodbc.
From:"Josh Howlett" [EMAIL PROTECTED]Reply-To:FreeRadius users mailing list freeradius-users@lists.freeradius.orgTo:"FreeRadius users mailing list" freeradius-users@lists.freeradius.orgCC:Josh Howlett [EMAIL
Yes, it forbit the access to some site it is easy if you have the correct NAS. You need for instance a mikrotik device where in the walled garden you can allow some site but you can ban others. ;)
From:"Parham Beheshti" [EMAIL PROTECTED]Reply-To:FreeRadius users mailing list
Use:
Auth-Type := reject
From:Kevin J [EMAIL PROTECTED]Reply-To:FreeRadius users mailing list freeradius-users@lists.freeradius.orgTo:freeradius-users@lists.freeradius.orgSubject:healthcheck?Date:Thu, 16 Aug 2007 09:40:56 -0700 (PDT)
We want to reject slb health checks immediately. What is
I have one question to this, you suposed that RADIUS and DataBase services are in the same machine, what happens if these services are in severa or there are replicate servers?
My advice is to create a database trigger on INSERTs, UPDATEs,DELETEs.For example, my postgresql trigger written in
nputoctect inmikrotikDate:Tue, 24 Jul 2007 20:16:10 +0100I have RouterOSv2.9 and input is input and output is output.Ivan KalikKalik Informatika ISPDana 24/7/2007, "Santiago Balaguer García" [EMAIL PROTECTED]pi¹e: Hi, I am workingwith freeradiusand mirkrotik routers since two years. However, I
Hi,
Iam working with freeradius and mirkrotik routers since two years. However, I have never realized that the radius attributes acctoutputoctects and acctinputoctects are intechanged in mikrotik.
Does anyone know ths mikrotik bug?
SantiagoÉxitos, grandes clásicos y novedades. Un millón de
Nobody understood my question.
I want to know how to custom a specific account with an specific sh exec. One different for each group of accounts. And I want to do using my database.
From: Santiago Balaguer García[EMAIL PROTECTED]Reply-To: FreeRadius users mailing list freeradius-users
But, can Freeradius 2.x.x read a realm table instead of proxy.conf file?
I guess FreeRadius 2.xx will make things easier? Éxitos, grandes clásicos y novedades. Un millón de canciones en MSN Music.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
hello all, i have added the following lines in acct_users file DEFAULT Acct-Status-Type == Start Exec-Program-Wait = "/usr/local/start.sh" DEFULT Acct-Status-Type == Stop
Exec-Program-Wait = "/usr/lcal/stop.sh" started radius in debug mode and i haven't seen Exec-Program-Wait executing those
I think there is no problem.
I have in my nas table (or clients.conf): 80.45.78.12/32 and 80.45.78.0/24 with diferent secret and I do not have any conflict.
From:Mark J Elkins [EMAIL PROTECTED]Reply-To:FreeRadius users mailing list freeradius-users@lists.freeradius.orgTo:FreeRadius users
DEFAULT User-Name =~ "(([a-zA-Z]+\.)*foo.com", Proxy-To-Realm := "foo.com" Will cause the following to be proxied to "foo.com": [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] ...
How can I integrate this entryof user file in a DB? Must I put this entries in radcheck table or in radreply
so by starting radiusd -X i have this error:rlm_sql (sql): Driver rlm_sql_unixodbc (module rlm_sql_unixodbc) loaded and linkedrlm_sql (sql): Attempting to connect to [EMAIL PROTECTED]:/radiusrlm_sql (sql): starting 0rlm_sql (sql): Attempting to connect rlm_sql_unixodbc #0rlm_sql_unixodbc: SQL
Hi people,
I have several roaming agreements and usually add a new entry in proxy.conf file when I sign a new one. I realize that I my DB about radius appears the realms table. Do you know it this table is useful? Can I put my realm from proxy.conf file to realm table?
Thanks,
SantiagoBusca a
Yes, what Alan says is true, in part . I have undred of MT and in some locatios I have the same problem. But I arrive to one conclusion for this affair: the main problem is the lack of conectivity to the Radius server and NAS.
From:Alan DeKok [EMAIL PROTECTED]Reply-To:FreeRadius users mailing
After I read the attached post, I have a doubt: if I use a MySQL DB to manage freeradius service, how can Ifix specific atributes to all users of a determined realm?
From:"Jóhann B. Guðmundsson" [EMAIL PROTECTED]Reply-To:FreeRadius users mailing list
Hi,
I am using freeradius for ages, but a boss ask me if it is possible to create an account which is only navigate for a specific website. Yes, it is true. I need an account to navigate for only one site (or set of websites). How can I configure this account?
Thanks.Acepta el reto MSN Premium:
I think both are wrong because you must distinguish amog the different SSIDs that an AP broadcast. It sometimes happens the wireless MAC are the same for all SSIDs. Only some devices (such as Mikrotik) let change the MAC for each ESSID.
Another thing is you have to differenciate the ESSID in
But, this version does not still support that the existed realms in 'proxy.conf' file was in a DB.
It is useful for me, because I have a lot of roaming partners.
From:Alan DeKok [EMAIL PROTECTED]Reply-To:FreeRadius users mailing list freeradius-users@lists.freeradius.orgTo:FreeRadius users
At once glace, iIt is a good link and talking about the beginnings of popularity of wireless technology.
I must go on reading it.
From:"Long" [EMAIL PROTECTED]Reply-To:[EMAIL PROTECTED], FreeRadius users mailing
Yes, freeradius works the same. Although, the line
readclient=yes
does not appear in postgresql.conf file, you can add in order to read NAS clients from the posrgres DB.
But, MySQL is simpler to use and understand. Anyway, I advance the selecction of a DB for freeradius do not depend on the
Hi people,
I am using freeradius 1.0.4 for sereral years and I do proxy radius
successfully with my roaming patners. However, now I have a roaming patner with
the BABEL realm. So, when a BABEL user authenticates in my RADIUS I do proxy
radius and BABEL radius server gives me the user
I try both but without success. I know if freeradius choose one server or
another because for each radius we stablish a VPN, so I can see in my Cisco VPN
concentrator which radius server my freeradius choosed. For each realm entry my
roaming partner and we get up a VPN.
Date: Wed, 13 Dec
The query which appears in sql.conf returns a set of registers. This query
behieves as radreply attributes, it means this querys corresponds to the
attributes of a username.
Find in a manual about the attributes of a username.
From: [EMAIL PROTECTED] To:
Hi people,
I do roaming with other companies successfully. My roaming partner has two
RADIUS servers, so in the proxy.conf I have two entries for the realm weroam/.
However, only the first entry works because if I change the IP for a incorrect
one (case of fallback), freeradius does not
Hi people,
I have installed freeradius 1.0.4 in my AAA servers. I work several years
with this service and funcion very well.
I am develeping a PHP platform for my people who install hotspots. Well, I want
to log if a nas can not authenticate with my RADIUS server because of any
reason.
I
Hi people,
I am using freeradius 1.0.4 in my debian machine. I get almost all data from a postgres database. However, all my realms are in the proxy.conf file.
I realized a realm table exists in my DB schema, however there is no SQL query which call to this table in the postgresql.conf file. Is
The best way to update your DB with the new session-timeout value is to
CREATE A TRIGGER in your database when a STOP request is sent by your NAS.
In this STOP request you have all information you need. I supposed your
hotspot has activated accounting option.
The option of executing an
You can use the radacct table to log your users. Obviously, you have to
enable the use of a DB for working with freeradius.
From: ego seek [EMAIL PROTECTED]
Reply-To: FreeRadius users mailing list
freeradius-users@lists.freeradius.org
To: Freeradius MailingList
If you aplly this change and add this rule, you do the same that freeradius
does to build acctuniqueid attribute and put this attribute as primery key.
Good question. Does anyone have anything against changing this?
-Peter
On Thu 31 Aug 2006 10:11, Santiago Balaguer GarcÃa wrote:
: James Wakefield [EMAIL PROTECTED]
Reply-To: FreeRadius users mailing list
freeradius-users@lists.freeradius.org
To: FreeRadius users mailing list freeradius-users@lists.freeradius.org
Subject: Re: Duplicate requests in a session
Date: Wed, 30 Aug 2006 22:07:09 +1000
Santiago Balaguer García wrote
After solving the problem of duplicate registers in radacct, see
https://list.xs4all.nl/pipermail/freeradius-users/2006-August/056246.html
I have this doubt:
why radacctid is the primary key of radacct table instead of acctuniqueid
?
This is a way to avoid this problem and the DBMS
They primary key should be a synthetic field, and not something
derived directly from the packet. Calling it 'acctuniqueid' is
awkward, maybe renaming it to 'radiuskey'?
It can then be used in the SQL queries as
%{Acct-Unique-ID:-%{Acct-Session-id}}, which should be safe for all
Following with my questions, I propose the next question:
Is it acceptable that a NAS always sends as a acctsession attribute a null
or void value ?
Santiago
_
Moda para esta temporada. Ponte al día de todas las tendencias.
Hi people,
1)
In my activity I realize that when the conexion to Internet of a NAS is
NOT good (there are some reday in the DSL), the NAS send several Start
requests. My problen is my RADIUS server ask for all these requests and they
are inserted in my DB. So, when the user or the NAS
Anyway, in some aspect freeradius can improve.
I use nas table and it works fine. Obviously, I must reboot my RADIAS
servers when I insert a new NAS client and it is a problem.
I afirm that 'realm' table is userless. I trid to configure lot of times
without success.
From: Gregory J. Marsh
Hi people,
I use freeradius 1.1.0 in a debian servers for several years. Now I use my
radius server more than before. So in my DB it appears some strange
duplicate registers which have the same inforrmation.
I show a snapshoot with an account where the problem happens:
Yeah!! Your solution is the easiest one.
I did not explain enough well my problem. the session-timeout has to asign
depending on the NAS and the remaining time.
My goal is sends the value of Session-Timeout attribute once this value had
benn multiplied by a factor depending on the NAS.
For
Hi people,
I have been working with RADIUS for sereral years and now we want to
implement a different accounting for prepaid cards. I will explain my
quesion shortly.
Two types of hotspots zones: Spain and Mexico. Everyone know prizces in
Mexico are cheaper than in Spain. Well, my
True. Nomadix developers told me ir is a problem of my RADIUS server. I
think it is almost impossible because Radius server it is a 'silly' machine.
If a NSE tells radius thatinsert a registes in radacct, radius server does
and it is supposed NAS controls its ID's. It is true I can add a DB
If you don't want Dynamic address use VPN between your RADIUS server an your
hotspots.
My question is :
- What can a malicious user can do with the secret? Can it alter
accounting and other things? (chillispot uses chap auth-type)
one is spell it out and try rumble it so he forms a new word
This is a very interesting question because I am looking for a solution for
enable/forbitten NAS.
From: Mike Jakubik [EMAIL PROTECTED]
Reply-To: FreeRadius users mailing list
freeradius-users@lists.freeradius.org
To: FreeRadius users mailing list freeradius-users@lists.freeradius.org
Hi people,
I use freeradius 1.0.5 and am getting my nas information from nas table
since several months ago. How ever, I realize I have to put DNS in this
table because I have DDNS entries. Where must I put the DDNS in this table??
In ipddr I can not because is inet type and a primary key.
Hi people,
I use freeradius-1.1.0 for several months. I have several types of prepaid
accounts, these accounts are limited in time, but I want some accounts are
only allow in some hotspots, and they are forbiden in the rest.
I read it is possoble from huntgroup file. But is it possible to
The answer why I have several password for a same radius account is easy.
I have two or more hotspot models (Nomadix, Mikrotik, Gemtek...) and I want
to active successfully MAC authentication method of these kind od devices.
While one hotspot accept blank password (see some previous entries
I made a mistake!!
the correct 'op' attribute is '+=' instead of '==' or ':='
*
[EMAIL PROTECTED] wrote:
I use freeradius-1.1.0. Where is any problem an account has two or
more
entries in radcheck table???
I use :
11:22:33:44:55:66
Hi,
I use freeradius-1.1.0. Where is any problem an account has two or more
entries in radcheck table???
I use :
11:22:33:44:55:66 :=''
11:22:33:44:55:66 :=mypassword
I change the op := instead of ==. Is there any problem???
My problem with the configuration above described is my RADIUS proxy doesn't
active fallover. It means the first entry falis, freeradius doesn't verify
the following entry of domain1. I test putting the label:
ldflag = fail_over
in the description os a realm entry. Whay can I
I have a freeradius 1.1.0 and a DB with all my users. I have two kinds of
users:
* users who can connect to all hotspots
* user who can only connect to one or some hotspots.
Actually I can use a script in Exec-Program-Wait property to differenciate,
but I don't seem a very clean method.
Hi people,
I have a LINUX machine with freeradius 1.1.10. I do proxy RADIUS correctly
with one remote server, but if I add in my proxy.conf file a redundant one
because the primary RADIUS fails, it doesn't work correctly.
I want to do roaming with two remote RADIUS servers to the
Hi,
I do proxy RADIUS correctly. so a radius account can be connected by
different NAS'es. Each NAS is owned by a Hotspot Operator. I have different
costs of roaming service depending on the Hotspot Operator.
How can I controll the NAS of a hotspot Operator (not is valid the
nasipaddress) ?
Hi people,
I am using freeradius-1.0.4 for more than two years in a Debian machine.
I have all my user configurations in a Postgres DB. Now I migrate the
clients.conf to DB successfully. For that porpouse I write at the end of my
sql.conf:
# Set to 'yes' to read radius clients from the
Hi people,
When I configure eap.conf file and re-launch ./radiusd -X appears:
*
rlm_eap: Loaded and initialized type gtc
tls: rsa_key_exchange = no
tls: dh_key_exchange = yes
tls: rsa_key_length = 512
tls: dh_key_length = 512
tls: verify_depth = 0
tls: CA_path =
I do roaming with third companies, so instead of add all the realms in the
file proxy.conf file, I would prefer to have them in realm table in my
postgres DB. It is easier to handle.
Otherwise, what is the use of realms and realmgroup tables??
I can also see a dictionary table commented
Hi people,
I am using freeradius-1.0.4 for more than two years in a Debian machine. I have all my user configurations in a Postgres DB. Now I migrate the clients.conf to DB successfully. For that porpouse I write at the end of my clients.conf:
# Set to 'yes' to read radius clients from the
Hi people,
I am using freeradius as authentication service for two years. I use freeradius 1.0.4 in a Debian servers. My quiestion is I use clients.conf file for mu nas clients, however I read in the freeradius doc that this file can be supported in an database ( it is very useful for me because
1 - 100 of 123 matches
Mail list logo
