Hello Arslan -
The problem you have is due to your configuration file and the use of
"FramedGroup" and "FramedGroupBaseAddress" - this is because the port number
that is reported by the NAS is used to generate the address.
As you are already using SQL, I would instead strongly encourage you to use
"AddressAllocatorSQL" together with an "AuthBy DYNADDRESS", which will work
much better for you. There are examples in the file
"goodies/addressallocator.cfg" and also have a look at sections 6.40 and 6.45
in the Radiator 2.18 reference manual.
hth
Hugh
> Hi hugh,
>
> We are facing a strange problem. We have two NAS's (Cisco as5300 and Lucent
> Max TNT) operating at the moment with raiator (2.18). We have defined IP
> address pools in radiator , one for each NAS's. Now Radiator is sometimes
> doing real strange things with MAX TNT (its configured to use radiator
> assigned ip's). Instead of assigning IPs from the specified pools its
> assigning IP's out of the pool. For exmample we have defined ip range
> 216.252.185.187 with maxportsperclassc to 60. Now radiator sometimes picks
> 216.252.186.xxx addresses (instead of picking from 216.252.185.xxx) and
> assigns it to clients. I am sending you radius config file and trace 4
> debug. Please have a look and suggest some solution.
>
> #Radiator configuration file for ISP Billing System
> #
> # Example Radiator configuration file that allows you to
> # authenticate from an SQL database.
> # With Radiator you can interface with almost any databse schema,
> # and there are many more configurable parameters that allow you
> # to control database fallback, select statements, column names
> # and arrangements etc etc etc.
> # See the reference manual for more details.
> =20
> Foreground
> LogStdout
> AuthPort 1645
> AcctPort 1646
> LogDir .
> DbDir .
> =20
> ########################################################################
> #Optional Parameters used from default
> =20
> FingerProg /usr/bin/finger
> SnmpgetProg /usr/bin/snmpget
> =20
> ########################################################################
> =20
> =20
> # You will probably want to change this to suit your site.
> =20
> <Client 203.135.41.131>
> Secret xxxxxx
> DupInterval 3
> # DefaultRealm AdvISP
> IgnoreAcctSignature
> NasType Cisco
> SNMPCommunity xxxx
> FramedGroupBaseAddress 216.252.185.64
> FramedGroupMaxPortsPerClassC 120
> </Client>
> =20
> <Client 203.135.41.138>
> Secret xxxxxxx
> DupInterval 3
> # DefaultRealm AdvISP
> IgnoreAcctSignature
> NasType Ascend
> SNMPCommunity xxxx
> FramedGroupBaseAddress 216.252.185.187
> FramedGroupMaxPortsPerClassC 60
> </Client>
> =20
> #<Client DEFAULT>
> # Secret mysecret
> # DupInterval 0
> #</Client>
> =20
> # You can put client details in a database table
> # and get their details from there with something like this:
> #<ClientListSQL>
> # DBSource xxxxxxxxxxx
> # DBUsername xxxxxxx
> # DBAuth xxxxxxxxxxx
> #</ClientListSQL>
> =20
> # This will authenticate users from table SUBSCRIBERS
> <Realm DEFAULT>
> RewriteUsername s/^([^@]+).*/$1/
> RejectHasReason
> <AuthBy SQL>
> =20
> # FramedGroup 0
> =20
> # Adjust DBSource, DBUsername, DBAuth to suit your DB
> DBSource xxxxxxxxxxxxxx
> DBUsername xxxxxxxxxxx
> DBAuth xxxxxxxxxxxx
> =20
> # For Authenication from Solaris encrypted password
> # AuthByPolicy ContinueWhileAccept
> AuthSelect select =
> PASSWORD,CallingStationId,ServiceType,FramedProtocol,F
> ramedIPNetmask,NASPortType,SimultaneousUse,FramedIPAddress,SessionTimeout=
> ,TimeDu
> ration from SUBSCRIBERS where Active=3D1 and USERNAME=3D'%n'
> AuthColumnDef 0, Encrypted-Password, check
> AuthColumnDef 1, GENERIC, check
> AuthColumnDef 2, Service-Type, check
> AuthColumnDef 3, Framed-Protocol, reply
> AuthColumnDef 4, Framed-IP-Netmask, reply
> AuthColumnDef 5, NAS-Port-Type, check
> AuthColumnDef 6, Simultaneous-Use, check
> AuthColumnDef 7, GENERIC, reply
> AuthColumnDef 8, GENERIC, reply
> AuthColumnDef 9, GENERIC, check
> AuthColumnDef 10, GENERIC, check
> =20
> # You may want to tailor these for your ACCOUNTING table
> AccountingTable TblTransaction
> AccountingStopsOnly
> AcctColumnDef LoginName,User-Name
> AcctColumnDef TimeClose,Timestamp,formatted-date,'%Y-%m-%d =
> %H:%M:%S'
> AcctColumnDef RecordType,Acct-Status-Type
> #AcctColumnDef AcctDelayTime,Acct-Delay-Time,integer
> AcctColumnDef BytesIn,Acct-Input-Octets,integer
> AcctColumnDef BytesOut,Acct-Output-Octets,integer
> AcctColumnDef SessionId,Acct-Session-Id
> AcctColumnDef Duration,Acct-Session-Time,integer
> AcctColumnDef TerminationCause,Acct-Terminate-Cause
> AcctColumnDef NASIdentifier,NAS-Identifier
> AcctColumnDef NASIPAddress,NAS-IP-Address
> AcctColumnDef NASPort,NAS-Port,integer
> AcctColumnDef FramedIPAddress,Framed-IP-Address
> AcctColumnDef CLI,Calling-Station-Id
> AcctColumnDef DelayTime,Acct-Delay-Time,integer
> </AuthBy>
> </Realm>
> =20
> =20
> <SessionDatabase SQL>
> # Specify the SQL database to connect to is similar to AuthSQL
> # You can specify multiple databases as fallbacks etc. See
> # the reference manual for more details
> DBSource xxxxxxxxxxxxxx
> DBUsername xxxxxx
> DBAuth xxxxxxxx
> # You can alter the SQL statements used to add, delete and count
> # sessions with AddQuery, DeleteQuery, ClearNasQuery and
> # CountQuery. That means you can accomodate many different
> # SQL Session Database schemas. The defaults for these =
> parameters
> # are suitable for the example RADONLINE table in the example =
> SQL
> # scripts in the goodies directory.
> # See the reference manual for more details
> =20
> AddQuery insert into TblActiveSessions (LoginName, =
> SessionId,TimeStart,N
> ASIPAddress,FramedIPAddress,NASPort,NASPortType,CLI,NASIdentifier) =
> values \
> =
> ('%n','%{Acct-Session-Id}',now(),'%{NAS-IP-Address}','%a','%{NAS-Port}',
> '%{NAS-Port-Type}','%{Calling-Station-Id}','%N')
> =20
> DeleteQuery delete from TblActiveSessions where LoginName=3D'%n' =
> and \
> NASPort=3D%{NAS-Port} and \
> NASIdentifier=3D'%N'
> =20
> ClearNasQuery delete from TblActiveSessions where =
> NASIdentifier=3D'%N'
> CountQuery select NASIdentifier, NASPort, SessionId from =
> TblActiveSessio
> ns where LoginName=3D'%n'
> =20
> =20
> # Optional identifier. Its just a name
> # Identifier SDB1
> =20
> </SessionDatabase>
> =20
> <Log SQL>
> DBSource xxxxxxxxxxxxxxxxx
> DBUsername xxxxxxxxx
> DBAuth xxxxxxxxxxxx
> Table TblRadiusLogs
> </Log>
>
> ------=_NextPart_000_000B_01C0C6D2.9B9F15E0--
>
> -------------------------------------------------------
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
