Hi,
I'm receiving from SE100:
NAS-Port-Id = 2/2 vlan-id 1001 clips 132019
How to extract number 1001 which will be used in code:
switch extracted vlan-id {
case 1000 {
...
}
case 1001 {
...
}
case 1002
Hi,
Not sure about it but I think you might be able to use regex to do that.
It may be something like:
if(%{NAS-Port-Id} =~ / \b[1-4][0-9]{3}/) { #this to extract the vlan
switch %{1} { #this to refer to the matched vlan tag substring
case 1000
It works perfectly, thanks alot Alan for the fast and useful answer.
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/Nas-Port-Id-as-username-tp5664812p5666952.html
Sent from the FreeRadius - User mailing list archive at Nabble.com.
-
List info/subscribe/unsubscribe? See
We are using the Cisco ACS 5.3 as a RADIUS for database authentication and
authorization. The purpose is to authenticate incoming users based on the
NAS-PORT-ID. The problem is that we cannot find any solution for the Service
Router (Alcatel 7750) to send the NAS-PORT-ID to act as USERNAME
We are using the Cisco ACS 5.3 as a RADIUS for database authentication and
authorization. The purpose is to authenticate incoming users based on the
NAS-PORT-ID. The problem is that we cannot find any solution for the Service
Router (Alcatel 7750) to send the NAS-PORT-ID to act as USERNAME
Next time put something in subject so we can know something about your
problem... :)
On 25.4.2012 15:03, Xbert_badstuber wrote:
We are using the Cisco ACS 5.3 as a RADIUS for database authentication and
authorization. The purpose is to authenticate incoming users based on the
NAS-PORT-ID
want:
User -- [SR] -- User-Name = “MAC:xx.xx.xx.xx” Password = “secret”
NAS-Port-Id = 1/1/4.1001.129 -- [FR] -- User-Name = “1/1/4.1001.129”
Password = “secret” -- [ACS 5.3]
Is there a solution for this option in the Freeradius?
Yes. man unlang. You can update any attribute to have any
Hehe, yes i know... :) That became a little bit wrong... ;)
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/Re-We-are-using-the-Cisco-ACS-5-3-as-a-RADIUS-for-database-authentication-and-authorization-The-purp-tp5664867p5665034.html
Sent from the FreeRadius - User
the username password to something
standardized like NAS-IP-NAS-Port-ID somesecurepassword
Did that match the user name password in the RADIUS packet? If
not, it's not going to work.
When I did this though I think EAP failed with the user-name did not
match what was on the original request
to something
standardized like NAS-IP-NAS-Port-ID somesecurepassword
When I did this though I think EAP failed with the user-name did not
match what was on the original request.
What I am looking for is what the best way to approach this scenario is.
The 2 options I can think of is try writing
, but i didn't found out anything. :-(
Best place to look is in the actual RFC's to be honest:
http://tools.ietf.org/html/rfc2865#section-5.41 - NAS-Port-Type
http://tools.ietf.org/html/rfc2869#section-5.17 - NAS-Port-Id
For a list of valid types either grep the dictionaries or look at:
http
hi,
i've a question about the database fileds NASPortId and NASPortType
for radius in radacct.
what's the meaning oder those fields?
NASPortType is always filled with Async ...
NASPortId is filled with different Integers.
I've read the sources of ppp, but i didn't found out anything. :-(
Hi!
I have a freeradius(2.0.4+dfsg-6) using postgresql and running on Debian
Lenny.
Everything works great.
Now I'm in the position to where I need to insert or update the User-name,
NAS-Port-id, NAS-Port-type and NAS-Identiifier to a table in the database
each time freeradius receives
Hi All,
Can i log the NAS-PORT-ID in the log file instead of the NAS-PORT?
Thu Sep 3 10:53:10 2009 : Auth: Login OK: [627...@tedata.net.eg] (from
client MNSREST port 4060295476)
thanks
Amr
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Amr el-Saeed wrote:
Can i log the NAS-PORT-ID in the log file instead of the NAS-PORT?
Thu Sep 3 10:53:10 2009 : Auth: Login OK: [627...@tedata.net.eg] (from
client MNSREST port *4060295476)
In 2.1.7 you can customize that message to include anything you want.
Alan DeKok.
-
List info
Piero Giobbi wrote:
Im using freeradius 1.1.7 with Proxim AP4000 and it works. But i get
this in my syslog.
/Error: rlm_radutmp: Logout entry for NAS ap-serverummet port 9 has
wrong ID/
It just means that the server missed a logout packet for that port.
Alan DeKok.
-
List
Hi all.
Im using freeradius 1.1.7 with Proxim AP4000 and it works. But i get
this in my syslog.
Error: rlm_radutmp: Logout entry for NAS ap-serverummet port 9 has
wrong ID
What does this mean? Can i ignore it? Can't really find anything
useful on the net..
client-conf:
client
Thank you very much! Great job Peter !
This problem was solved using de rlm_sqlipool with sql postgres instance.
All other radius database transctions was made with another sql mysql
instance.
Thank for all
Toledo
On Wed 08 Aug 2007, Toledo, Luis Carlos wrote:
Hey all,
I have a
Hey all,
I have a serius problem with non valid Nas-port received from NASes, because
a need to provide a dynamic IP (rlm_ippool).
Have anyone any suggestion?
Thx
Toledo, Luis Carlos
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On Wed 08 Aug 2007, Toledo, Luis Carlos wrote:
Hey all,
I have a serius problem with non valid Nas-port received from NASes,
because a need to provide a dynamic IP (rlm_ippool).
Have anyone any suggestion?
http://wiki.freeradius.org/Rlm_sqlippool
--
Peter Nixon
http://peternixon.net/
-
Hey all,
I have a serius problem with non valid Nas-port received
from NASes,
because a need to provide a dynamic IP (rlm_ippool).
Have anyone any suggestion?
http://wiki.freeradius.org/Rlm_sqlippool
I am use mysql for all radius operations and data storage, is it sqlippoll
On Wed 08 Aug 2007, Toledo, Luis Carlos wrote:
Hey all,
I have a serius problem with non valid Nas-port received
from NASes,
because a need to provide a dynamic IP (rlm_ippool).
Have anyone any suggestion?
http://wiki.freeradius.org/Rlm_sqlippool
I am use mysql for
] On Behalf Of Geoffrey Cauchi
Sent: 06 September 2006 09:25
To: 'FreeRadius users mailing list'
Subject: RE: How to restrict pppoe users on nas-port-id
Use the check-item variable to restrict port id's
Gef
-Original Message-
From:
[EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
us.o
rg
Use the check-item variable to restrict port id's
Gef
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
rg] On Behalf Of [EMAIL PROTECTED]
Sent: 05 September 2006 21:04
To: freeradius-users@lists.freeradius.org
Subject: How to restrict pppoe users on nas-port-id
I'm using FreeRADIUS Version 1.0.4 with Dialup_admin and mysql and I
would like to know if anyone can direct me in the right place to find
out how to restrict pppoe users from logging in from multiple NAS port
IDs. I would like to restrict them to logging on to only a specific set
of port IDs
Hi all,
could you help me? I am using freeradius version 1.0.2. There is some
possibilities, how to do proxing based on attribute Nas-Port-Id (no only
based on realm)?
Thanks
Martin
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On 02/08/06, Colm Ennis [EMAIL PROTECTED] wrote:
hiya,does anyone know if users/sql authentication based on the NAS-Port-Idfield possible? and if so how?Colm,What are you going to authenticate? If they can use any username/password, then are you just checking whether a port is active or inactive?
hiya,
does anyone know if users/sql authentication based on the NAS-Port-Id
field possible? and if so how?
thanks for your help,
colm
-Original Message-
From: Colm Ennis
Sent: 26 July 2006 15:00
To: freeradius-users@lists.freeradius.org
Subject: authenticating based on Nas-Port
-Id rather than User-Name. (the dslams/basen we use
support populating NAS-Port-Id with the dslam/frame/slot/port).
i am also working on migrating to a mysql authentication backend.
so, does anyone have any tips on setting up NAS-Port-Id based
authentication with users/fastusers/sql? i hope
:
radclient: dict_init: /usr/local/etc/radiusclient-ng/dictionary[33]:
dict_addattr: Duplicate attribute name NAS-Port-Id
I've checked in the file /usr/local/etc/radiusclient-ng/dictionary,
but the NAS-Port-Id attribute exists only once.
Could you help please ? I'm new to FreeRadius
Thanks
-
List info
Silent Man [EMAIL PROTECTED] wrote:
radclient: dict_init: /usr/local/etc/radiusclient-ng/dictionary[33]:
dict_addattr: Duplicate attribute name NAS-Port-Id
You are having radclient, from the FreeRADIUS source, read a
dictionary file from the radiusclient package.
Don't do that.
Alan
Hi, Please I would want to consult about the use of NAS-Port-Id parameter
coming from the NAS, my NAS Server is not sending this parameter, I would
want to know If I could to replace this with the NAS-Port for using this in
the Key for identifying an accounting record as unique, i.e :
Replace
On Tue, 15 Mar 2005, [iso-8859-1] Ernesto Freyre Ramírez wrote:
Hi, Please I would want to consult about the use of NAS-Port-Id parameter
coming from the NAS, my NAS Server is not sending this parameter, I would
want to know If I could to replace this with the NAS-Port for using
33 matches
Mail list logo