I think this is possible, but wanted to make sure and ask what would be the
best way to do this...
ie. Execute an external program or create a module.
I'm authenticating cable modems using freeradius with a sql database backend.
What I want to do, is after the authentication process, query the
, Nov 2, 2012 at 3:19 AM, Duane Cox duane...@gmail.com wrote:
List:
Hello. I have been working on this for a few days and have turned
here for help.
The server is listening on port 67 and when a DHCP packet comes in the
server processes it, but in debug mode it give an error No Pool-Name
Thanks Fajar, that did help me get past this hurdle. Pressing forward with the
dhcp side...
Thanks,
Duane
Sent from my iPad by Verizon Wireless
On Nov 1, 2012, at 4:59 PM, Fajar A. Nugraha l...@fajar.net wrote:
On Fri, Nov 2, 2012 at 3:19 AM, Duane Cox duane...@gmail.com wrote:
List
to be
received/processed by the server and hand out a response.
Thanks in advance,
Duane Cox
debug:
Received DHCP-Discover of id 9daef956 from 10.11.156.70:68 to
10.12.100.90:67
DHCP-Opcode = Client-Message
DHCP-Hardware-Type = Ethernet
DHCP-Hardware-Address-Length = 6
:
rlm_attr_rewrite
or
use conditional syntax within the sql.conf ie. %{%{Foo}:-%{Bar}}
Thanks
Duane Cox
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello
I wonder if Alan ever released that book that he had talked about in 2006?
Or did it become a collection of wiki pages?
Is anyone working on a second revision to Hassell's O'Reilly RADIUS?
Duane Cox
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello
Will this still expand with 2.0.0-beta ?
%{config:client[%{Packet-Src-IP-Address}].shortname}
I'm using 2.0.0-pre2 and it's working, but I am seeing some warnings with
2.0.0-beta about not being able to expand/find it.
-
List info/subscribe/unsubscribe? See
Please don't use -pre2. I'll be removing it from the web site soon,
as we plan on releasing 2.0.0 within a *very* short while. i.e. grab a
copy of the source from CVS, and use that.
AH, now you tell me :)
Just installed 2.0.0pre2
Is the HUP issues fixed? Just noticed it wasn't working, but
I'm doing this with no problem.
I have 2 freeradius servers both writing/reading the same dbms
I have split my load up so some NASes use one radiusd as a primary and the
other as the secondary. Then reversed that role for other NASes. It gives
a nice balance and if one were to fail, they just
.
What is correct:
%{NAS-Port:-%{NAS-Port-Id}} or %{%{NAS-Port}:-%{NAS-Port-Id}}
Also this one...
%{Acct-Output-Octets:-0} or %{%{Acct-Output-Octets}:-0}
Or will any of the above be OK?
I wasn't sure if I needed to change any of my variables prior to the upgrade
to 2.0.0 pre2
Thanks
Duane
I've been getting bombarded with old acct info, and looking into it, I
believe the reason the NAS keeps sending the same info over and over again,
is because radiusd isn't sending back any accounting-response.
Here is the debug output, I do notice that the session time is zero and
radiusd doesn't
I've just compiled the CVS version from 20060830 with
prefix=/root/bin/freeradius-cvs. When starting radiusd it complains
that the compiled modules have the wrong version:
I've been running 2.0.0-pre0 for quite some time, and constanty cvs update too.
I'm not sure what exact date my check out
Alle 17:16, domenica 20 agosto 2006, Albis Nunez ha scritto:
Hello Freeradius users, I need help to configure the freeradius to work
with my Microsoft sql server, if someone can help or provide me some
sample configuration I'll really appreciate it. I'm new in this business.
Thanks in
On the todo list for Monday, if additional debug output is needed.
I wouldn't have asked for it if I didn't need it...
debug radiusd -X
rad_recv: Access-Request packet from host 10.0.0.11 port 1145, id=104, length=56
User-Name = [EMAIL PROTECTED]
User-Password =
You are right, but is that right?? I dont' see that anywhere in the docs, that
behaviour doesn't make sense...
Duane Cox
- Original Message -
From: Dennis Skinner [EMAIL PROTECTED]
To: Duane Cox [EMAIL PROTECTED]; FreeRadius users mailing list
freeradius-users@lists.freeradius.org
Yes. That's been deleted in 2.0, and many of the modules updated,
in order to make it even easier to get it to work.
I think it's high time for 2.0. I've been waiting for a few fixes
for entirely too long now...
Alan DeKok.
If it is worth anything...
We are running the latest CVS
I've got
mssql.conf
read_groups = yes
but the rlm_sql module does not process the groups.
The user is found in radcheck and the check items (password) does match...
and I do NOT have Fall-Through = yes in the radreply ...
as per docs... (3d)
3. Group processing then begins if any of the
Alan:
why is it that with the recent -head cvs behaves like so.
radiusd.conf
log_file= /${logdir}/radiusd
log_destination = files
when rlm_sql is loaded, this gets printed to stdout (or maybe not stdout
because I can not seem to redirect it)
but when log is setup to use syslog,
Why are people so adamant abount RPMs...
Download the source for 1.1.2, configure/make/install where and how you want
it.
- Original Message -
From: Graham Beneke [EMAIL PROTECTED]
To: FreeRadius users mailing list freeradius-users@lists.freeradius.org
Sent: Saturday, July 29,
= disabled
Thanks,
Duane Cox
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I am trying to make use of a variable that should be stored
as: %{config:client[%{Packet-Src-IP-Address}].shortname}
Alan discusses it here...
http://lists.cistron.nl/pipermail/freeradius-devel/2005-March/008105.html
states it is in CVS back in MARCH 2005 and I am running v1.1.2
and my client
Is it possible to run a module twice in one
section...
meaning can I run the sql module twice in the
post-auth section ?
I am thinking I could, but I would have to call it
by a new name and then copy the lib files to also this new name.
Thanks
Duane Cox
- Original Message
current config ...
post-auth { sql
Post-Auth-Type REJECT
{
sql }}
and then mssql.conf contains one
postauth_query
Thanks
Duane Cox
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
yes, there is a subsection under the post_auth
section for such a thing...
- Original Message -
From:
Jeremy ohara
To: FreeRadius users mailing
list
Sent: Tuesday, May 16, 2006 3:24 PM
Subject: getting Freeradius to recorde
login failure, etc
hi there
mailing
list
Sent: Tuesday, May 16, 2006 9:13 PM
Subject: Re: getting Freeradius to
recorde login failure, etc
where and howdo i do it and what do i write???
jeremy
-Original
Message-From: "Duane Cox" [EMAIL PROTECTED]To:
"FreeRadius use
Hello List
Has anyone had any experience integrating the Canopy BAM 2.1 by Motorola
with freeRADIUS?
Thanks
Duane Cox
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
have added both clients to clients.conf and restarted radius. I didn't
see any errors or warnings about it.
Thanks
Duane Cox
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I believe I found my answer...
The SQL server is dual homed and had 2 default routes, one per interface.
I have removed one of the default routes and haven't seen the problem.
Thanks
Duane Cox
- Original Message -
From: Duane Cox [EMAIL PROTECTED]
To: Laker Netman [EMAIL PROTECTED
I'm seeing the same thing here with 1.1.1.
I have 2 servers with identical hardware/software configs.
Both servers hang at the same time.
stopping/starting the daemon doesn't resolve the issue, rebooting the box
does.
I was assuming it had something to do with the sql module because that is
Here is the debug of a packet, there is nothing special about this packet.
This packet hits the radius server every 30 seconds to test availability,
for monitoring purposes.
What hangs is the release of the rlm_sql ... (using sql_unixodbc)
Ready to process requests.
rad_recv: Access-Request
I take it that this isn't possible with freeradius?
Is there a way to have a conditional if statement in the post-auth
process?
For instance, I don't want to log to sql (postauth_query) if the
nas-ip-address == foobar
-
List info/subscribe/unsubscribe? See
[EMAIL PROTECTED]
To: Duane Cox [EMAIL PROTECTED]; FreeRadius users mailing list
freeradius-users@lists.freeradius.org
Sent: Wednesday, April 05, 2006 12:34 PM
Subject: Re: conflicts/duplicates need
--- Duane Cox [EMAIL PROTECTED] wrote:
Well I believe Alan is correct, that it must
This must be right, or on the right track because I have 2 radius servers
with identical configuration and both share the same database.
Both servers experience this outage at the same time...
Thanks
Duane Cox
- Original Message -
From: Alan DeKok [EMAIL PROTECTED]
To: Duane Cox [EMAIL
change NAS-IP-Address before relayingDoes anyone have any insight to this?
- Original Message -
From: Duane Cox
To: FreeRadius users mailing list
Sent: Monday, April 03, 2006 4:44 PM
Subject: post-auth question, prevent exec if attribute == foo
Hello List:
I'm using the post-auth
Well I believe Alan is correct, that it must be related to the database
because I have 2 radius servers both sharing the same database, and they
both experience this outage at the exact same time. It lasts for about 45
seconds every several hours.
I'm using unixODBC and MSSQL database, the
Is there a way to have a conditional if statement in the post-auth process?
For instance, I don't want to log to sql (postauth_query) if the
nas-ip-address == foobar
Is this possible?
TIA
Duane Cox
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
this?
Thanks
Duane Cox
Mon Apr 3 15:02:36 2006 : Auth: Login OK: [intermapper] (from client
intermapper port 0)
Mon Apr 3 15:03:06 2006 : Auth: Login OK: [intermapper] (from client
intermapper port 0)
Mon Apr 3 15:03:09 2006 : Error: Dropping conflicting packet from client
intermapper:32769 - ID: 81 due
List, Hello:
I've got the sql postauth working for Valid Logins, but rlm_sql does not
even call sql_postauth if the login fails.
Is this by design, or do I have a configuration error?
PROCESSES SQL_POSTAUTH:
Login OK: [intermapper] (from client intermapper port 0)
Processing the post-auth
Is there such a runtime variable that I could use that would be a specific
identification for a radius server?
Even a hostname would be suffice.
Thanks
Duane Cox
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
How do I learn more about how to use regular expressions in freeradius?
I have looked over the docs, mans, and examples in the source.
I have looked in Jonathan Hassell's RADIUS book...
I still haven't found anything on the subject.
Thanks
Duane Cox
You should be able to use regular
I've tracked down why some of my users aren't
authenticating...
Appartenly somewhere (rlm_sql ?) the username is
being changed possible in an anti-injection function, I don't know.
Can someone shed some light on this?
For instance, in the debug snip below, the username
'dcoxdcox' is
I noticed this too, that with 1.1.1 the docs are installed to doc/freeradius
and not doc/freeradius-1.1.1
I'm not sure why this change came about, but can't a simple sed script fix
it? Then build your RPM.
sed -i '[EMAIL PROTECTED]/[EMAIL PROTECTED]/[EMAIL PROTECTED]' doc/Makefile
sed -i
can ANYONE provide some advise on this?
Thanks
Duane Cox
Hello List
I've just replaced our previous radius server with freeRADIUS 1.1.1
Apparently the previous server had the ability to trim the username
with
a
pre \ and post @ character
So if someone passed the User-Name as [EMAIL
Hello List
I've just replaced our previous radius server with freeRADIUS 1.1.1
Apparently the previous server had the ability to trim the username with a
pre \ and post @ character
So if someone passed the User-Name as [EMAIL PROTECTED] the
server would see just username
I have the following in
can this be solved with regex ?
If so, where are the docs on freeradius regex?
- Original Message -
From: Duane Cox [EMAIL PROTECTED]
To: FreeRadius users mailing list freeradius-users@lists.freeradius.org
Sent: Saturday, March 25, 2006 8:47 AM
Subject: realm combination of ntdomain
List
Was the MSSQL re-connectivity issue addressed in the 1.1.0 build?
I know that as of 1.0.5 if freeradius lost connectivity with the MSSQL
database, freeradius would not reopen the socket.
I'm curious if this was ever fixed / addressed ...
Thanks,
Duane Cox
-
List info/subscribe
on linux.
Duane Cox
- Original Message -
From: Linda Pagillo [EMAIL PROTECTED]
To: FreeRadius users mailing list freeradius-users@lists.freeradius.org
Sent: Thursday, October 20, 2005 5:08 PM
Subject: Re: Freeradius and What's Up Gold Question
Thank you once again Mr.DeKok. I have
on linux.
Duane Cox
- Original Message -
From: Linda Pagillo [EMAIL PROTECTED]
To: FreeRadius users mailing list freeradius-users@lists.freeradius.org
Sent: Thursday, October 20, 2005 5:08 PM
Subject: Re: Freeradius and What's Up Gold Question
Thank you once again Mr.DeKok. I have
http://www.freeradius.org/development.html#cvs
- Original Message -
From: Cliff Hayes [EMAIL PROTECTED]
To: Duane Cox [EMAIL PROTECTED]
Sent: Thursday, October 13, 2005 1:56 PM
Subject: RE: Microsoft SQL 2000 interface
All,
Please help with instructions on how to download the CVS
Yes it can be done.
Do you have freeradius talking to the MSSQL db yet?
Duane Cox
- Original Message -
From: Cliff Hayes [EMAIL PROTECTED]
To: freeradius-users@lists.freeradius.org
Sent: Wednesday, October 12, 2005 8:56 AM
Subject: Microsoft SQL 2000 interface
All,
Sorry to have
(???)
Skickat: den 1 oktober 2005 08:58
Till: freeradius-users@lists.freeradius.org
Ämne: Re: freeradius and MS SQL -- anyone got it working?
On Friday 30 September 2005 21:28, Duane Cox wrote:
There are a few qwerks with getting FreeRadius to work with MSSQL.
thought so... :)
First thing
There are a few qwerks with getting FreeRadius to work with MSSQL.
First thing, the FreeTDS files have been removed (more like abandonded) from
FreeRadius.
If you really want to call FreeTDS direclty, you will have to download the
files from the attic.
But more than that you will also have to
During the configure/make process, was the module actually built? If not,
then you are missing the mysql driver stuff.
- Original Message -
From: Bill Neely
To: freeradius-users@lists.freeradius.org
Sent: Friday, September 23, 2005 7:28 PM
Subject: Installing FR 1.05
Am
List:
Is there anyway to prohibit (without editing the source or redirecting the
output to /dev/null) freeradius from displaying the
following message to stdout on startup.
[EMAIL PROTECTED]:/# radiusd
Tue Sep 20 15:08:47 2005 : Info: Starting - reading configuration files ...
Thanks
Duane Cox
There is an authenticate_query variable defined in the stock mssql.conf
If it's there, it's a big.
It's there... I would assume it should be removed in CVS and/or logged in your
bug tracking system. Do you have a mantis page?
Why we're at it, why not change the example mssql.conf file to
From: Nicolas Baradakis [EMAIL PROTECTED]
Duane Cox wrote:
Why we're at it, why not change the example mssql.conf file to
remove all references to FreeTDS... That should resolve _a lot_
of confusion...
As always, patches are welcome.
Is there a mantis page or bug tracker?
Nicolas
(sql)
radiusd.conf: SQL modules aren't allowed in 'authenticate' sections -- they
have no such method.
I am beginning to think this entry is defunct or never implemented.
Am I right? If so, then I could remove that entry from my mssql.conf.
Thanks
Duane Cox
-
List info/subscribe/unsubscribe
Can someone help me out and tell me what I am missing or doing wrong to get
this error.
I do not have openSSL installed on this server and would like to not install it.
Thanks!
Making static dynamic in rlm_x99_token...
make[6]: Entering directory
possible
Duane Cox
- Original Message -
From: Sebastian Wild
To: Duane Cox ; FreeRadius users mailing list
Sent: Tuesday, September 13, 2005 8:58 AM
Subject: Re: compile error with 1.0.5
In file included from x99_rlm.c:54:
x99.h:26:42: openssl/des.h: No such file or directory
Looks like
Hello List
Does someone have a compile script for setting up freetds?
I have compiled/installed freetds 0.63 and recompiled freeradius.
But not sure what I am doing wrong.
Thanks
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I see that the problem is the files are not included in the tar.gz
Has rlm_sql_freetds been retired?
Thanks
Duane Cox
- Original Message -
From: Duane Cox [EMAIL PROTECTED]
To: FreeRadius users mailing list freeradius-users@lists.freeradius.org
Sent: Tuesday, September 13, 2005 2:43 PM
61 matches
Mail list logo