Re: (RADIATOR) DEFAULT entries...
On Mar 11, 2:45pm, Joost Stegeman wrote: Subject: Re: (RADIATOR) DEFAULT entries... Stephen, I think DEFAULT entries are only processed for usernames that haven not been found in any other clause. So only unknown users are checked against the DEFAULT user entry and thus let in and given the reply-items. Actually, no. The DEFAULT user will be checked if no specific user matched: ie if either there was no specific user entry, _or_ if there was a specific user entry, but some of the check items failed. Hope that helps. Cheers. -- Mike McCauley [EMAIL PROTECTED] Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW 24 Bateman St Hampton, VIC 3188 Australia Consulting and development Phone, Fax: +61 3 9598-0985 http://www.open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, external, etc etc on Unix, Win95/8, NT, Rhapsody === To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) DEFAULT entries...
I'm trying to setup a DEFAULT entries to setup things like Port-Limit, Session-Timeout, Idle-Timeout and Simultaneous-Use. I put the following entry into my users file. DEFAULT Simultaneous-Use = 1 Idle-Timeout = 1800, Session-Timeout = 86400, Port-Limit = 1 This is not working. In fact, it's allowing invalid usernames to get access. I'd really like that to STOP! :-) radpwtst doesn't show the attributes being set for valid users, but they are for mikem. (ie mikem is not a valid user, sorry Mike!) My users files is common to multiple realms, is the barest required to allow authentication and Realm AddToReply items are set per realm to enable VPN's, tunnelling and the like. An example user is.. testuser Password = "N0tL1k3ly" My std .cfg is.. Realm AuthBy FILE # Defaults to %D/users It only needs usernames # and password in it Filename %D/dialup.users AddToReply Service-Type = Framed-User,\ Framed-Protocol = PPP,\ Framed-IP-Netmask = 255.255.255.255,\ Framed-Routing = None,\ Framed-Compression = Van-Jacobson-TCP-IP,\ Framed-MTU = 1500,\ Annex-Primary-DNS-Server = 202.10.0.36,\ Annex-Secondary-DNS-Server = 202.10.0.66 /AuthBy # Where do we write the accounting file AcctLogFileName %L/detail.DEFAULT-%Y%m%d /Realm There is a Realm DEFAULT to enable IPASS global roaming. Any pointers/clues appreciated... -- Stephen Ollis [EMAIL PROTECTED] Ph: +61 2 9911 1606(BH) Team Leader, Server Systems - Network Engineering +61 2 9911 1555(FAX) ATT EasyLink Services, Lvl 8, 15 Orion Rd, Lane Cove, NSW 2066 Australia 'There is no traffic jam on the extra mile.' - Zig Ziegler === To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.