Re: (RADIATOR) Bound IP
Hi Tim - Yes, well that is the same conclusion that Mike and I came to as well. I think the best and simplest approach is to run multiple instances - one on each IP address, as you have described before. regards Hugh On Wed, 1 May 2002 13:19, Timothy G. Wells wrote: Thanks! But I found an unfortunate issue with this. If I remove the BindAddress and let Radiator listen on all IP's then the answer comes back as 0.0.0.0. If I leave the BindAddress then it does say the correct IP but that doesn't help me in my attempt to prevent having multiple instances running listening to different IP's. Is there a way to have radiator listen to all IP's loaded but tell me which one it gets a request to? This shows what I'm trying to do ... my %IPlist = ('206.112.216.72', 1, '206.112.216.73', 2, '206.112.216.74', 3, '206.112.216.75', 4, '206.112.216.105', 5); my $mysocketaddr = getsockname(${$_[0]}-{RecvSocket}); my ($myport, $myaddr) = Socket::sockaddr_in($mysocketaddr); my $myIP = Socket::inet_ntoa($myaddr); ${$_[0]}-add_attr('Provider', $IPlist{$myIP}); Thanks, -- Tim At 11:02 AM 5/1/2002 +1000, Hugh Irvine wrote: Hello Tim - You have access to both the source and destination: $p-{RecvFrom}; and $p-{RecvSocket}; Have a look at Radius/Radius.pm, sub newRecvFrom. regards Hugh On Tue, 30 Apr 2002 22:45, Timothy G. Wells wrote: Greetings, From within a hook, how would I identify the IP address the packet was sent to? I have multiple IP's on my ethernet. Thanks, -- Tim Timothy G. Wells Good News Internet Services [EMAIL PROTECTED] http://www.goodnews.net -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X. - Nets: internetwork inventory and management - graphical, extensible, flexible with hardware, software, platform and database independence. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X. - Nets: internetwork inventory and management - graphical, extensible, flexible with hardware, software, platform and database independence. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) regexp in Realm check item
Does anyone have an example of using a regular expression for a Realm check item in a Handler clause? I can see in the manual (v. 2.18.3) that it can be done, but can't find an example in the goodies folder. As an example I want to match the following expression, but I don't know if I need the '/' characters, etc: /^sat\..+\.com$/ and all of this after the @ of course. Griff Hamlin, III === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Logging Active Handler
Hi. I need to log active handler identifier to the SQL table. In other words, the handler where the failure occurs should be logged. What do I need to do? I read documentation, but it's not exactly clear to me as how to do it. -- History has shown that the road to injustice is frequently lit with the light of good intention === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) regexp in Realm check item
Hello Griff - Can you please send me an example of what you are trying to do? thanks Hugh On Fri, 3 May 2002 03:38, Griff Hamlin, III wrote: Does anyone have an example of using a regular expression for a Realm check item in a Handler clause? I can see in the manual (v. 2.18.3) that it can be done, but can't find an example in the goodies folder. As an example I want to match the following expression, but I don't know if I need the '/' characters, etc: /^sat\..+\.com$/ and all of this after the @ of course. Griff Hamlin, III === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X. - Nets: internetwork inventory and management - graphical, extensible, flexible with hardware, software, platform and database independence. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Logging Active Handler
Hello Dan - You would do something like this: # define Handler with an Identifier Handler . Identifier SomethingDescriptive ... /Handler Then you would use this for logging: %{Handler:Identifier} regards Hugh On Fri, 3 May 2002 08:02, Dan Melomedman wrote: Hi. I need to log active handler identifier to the SQL table. In other words, the handler where the failure occurs should be logged. What do I need to do? I read documentation, but it's not exactly clear to me as how to do it. -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X. - Nets: internetwork inventory and management - graphical, extensible, flexible with hardware, software, platform and database independence. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Ascend-Data-Filter...
This works: Realm unlimitedDUP RewriteUsername s/^([^@]+).*/$1/ AuthBy FILE Filename /etc/raddb/users.unlimited.dup DefaultReply Service-Type=Framed-User,\ Framed-Protocol=PPP,\ Framed-IP-Address=255.255.255.254,\ Framed-IP-Netmask=255.255.255.255,\ Ascend-Data-Filter=ip in forward tcp est,\ Ascend-DataFilter=ip in forward dstip 216.127.146.0/24,\ Ascend-DataFilter=ip in forward dstip 63.80.49.5,\ Ascend-DataFilter=ip in forward dstip 65.89.75.10,\ Ascend-Data-Filter=ip in drop tcp dstport = 25,\ Ascend-Data-Filter=ip in forward /AuthBy AcctLogFileName %L/%N.dup/detail /Realm ...but the following didn't: Realm unlimitedDUP RewriteUsername s/^([^@]+).*/$1/ AuthBy FILE Filename /etc/raddb/users.unlimited.dup DefaultReply Service-Type=Framed-User,\ Framed-Protocol=PPP,\ Framed-IP-Address=255.255.255.254,\ Framed-IP-Netmask=255.255.255.255 AddToReply Ascend-Data-Filter=ip in forward tcp est,\ Ascend-DataFilter=ip in forward dstip 216.127.146.0/24,\ Ascend-DataFilter=ip in forward dstip 63.80.49.5,\ Ascend-DataFilter=ip in forward dstip 65.89.75.10,\ Ascend-Data-Filter=ip in drop tcp dstport = 25,\ Ascend-Data-Filter=ip in forward /AuthBy AcctLogFileName %L/%N.dup/detail /Realm Thanks again. Chris Craft, Postmaster/NOC Meister SpringSips.com On Wednesday 01 May 2002 02:46, Hugh Irvine wrote: Hello Chris - Could you send me a copy of what works and what doesn't so I can check it? thanks Hugh (who also loves Radiator) Uh oh... first day on the list, and already I'm doing the answering my own post faux-pas! For some reason, nothing in my AddToReply directives is being added. When I added the stuff under AddToReply to the DefaultReply directive, all was good in the world. Go figure. Thanks for being there. (I just love Radiator! :) Chris Craft, Postmaster/NOC Meister SpringSips.com CHOP === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Radiator - Double Authen
Hello Hugh,What we have to do is the TNT/proxy RADIUS will pass the CLI and usernameand password to authentication RADIUS. The TNT will firstly check theCalling Station ID, we use :-DEFAULT Password="Ascend=CLID" Ascend-Require-Auth=Require-AuthThen, after bypass this level of authen, then go to next level authen: -a1234567 Authentication-Type=Unix-PWAs a result, is it possible to perform the same authentication process atthe Radiator?Regards,Arthur