On following the messages; this is what I get from running freeradius -X but before point it to PostgreSQL it runs fine.
Starting - reading configuration files ... reread_config: reading radiusd.conf Config: including file: /etc/freeradius/proxy.conf Config: including file: /etc/freeradius/clients.conf Config: including file: /etc/freeradius/snmp.conf Config: including file: /etc/freeradius/eap.conf Config: including file: /etc/freeradius/postgresql.conf main: prefix = "/usr" main: localstatedir = "/var" main: logdir = "/var/log/freeradius" main: libdir = "/usr/lib/freeradius" main: radacctdir = "/var/log/freeradius/radacct" main: hostname_lookups = no main: snmp = no main: max_request_time = 30 main: cleanup_delay = 5 main: max_requests = 1024 main: delete_blocked_requests = 0 main: port = 0 main: allow_core_dumps = no main: log_stripped_names = no main: log_file = "/var/log/freeradius/radius.log" main: log_auth = no main: log_auth_badpass = no main: log_auth_goodpass = no main: pidfile = "/var/run/freeradius/freeradius.pid" main: user = "freerad" main: group = "freerad" main: usercollide = no main: lower_user = "no" main: lower_pass = "no" main: nospace_user = "no" main: nospace_pass = "no" main: checkrad = "/usr/sbin/checkrad" main: proxy_requests = yes proxy: retry_delay = 5 proxy: retry_count = 3 proxy: synchronous = no proxy: default_fallback = yes proxy: dead_time = 120 proxy: post_proxy_authorize = no proxy: wake_all_if_all_dead = no security: max_attributes = 200 security: reject_delay = 1 security: status_server = no main: debug_level = 0 read_config_files: reading dictionary read_config_files: reading naslist Using deprecated naslist file. Support for this will go away soon. read_config_files: reading clients read_config_files: reading realms radiusd: entering modules setup Module: Library search path is /usr/lib/freeradius Module: Loaded exec exec: wait = yes exec: program = "(null)" exec: input_pairs = "request" exec: output_pairs = "(null)" exec: packet_type = "(null)" rlm_exec: Wait=yes but no output defined. Did you mean output=none? Module: Instantiated exec (exec) Module: Loaded expr Module: Instantiated expr (expr) Module: Loaded PAP pap: encryption_scheme = "crypt" pap: auto_header = yes Module: Instantiated pap (pap) Module: Loaded CHAP Module: Instantiated chap (chap) Module: Loaded MS-CHAP mschap: use_mppe = yes mschap: require_encryption = no mschap: require_strong = no mschap: with_ntdomain_hack = no mschap: passwd = "(null)" mschap: ntlm_auth = "(null)" Module: Instantiated mschap (mschap) Module: Loaded System unix: cache = no unix: passwd = "(null)" unix: shadow = "/etc/shadow" unix: group = "(null)" unix: radwtmp = "/var/log/freeradius/radwtmp" unix: usegroup = no unix: cache_reload = 600 Module: Instantiated unix (unix) Module: Loaded eap eap: default_eap_type = "md5" eap: timer_expire = 60 eap: ignore_unknown_eap_types = no eap: cisco_accounting_username_bug = no rlm_eap: Loaded and initialized type md5 rlm_eap: Loaded and initialized type leap gtc: challenge = "Password: " gtc: auth_type = "PAP" rlm_eap: Loaded and initialized type gtc mschapv2: with_ntdomain_hack = no rlm_eap: Loaded and initialized type mschapv2 Module: Instantiated eap (eap) Module: Loaded preprocess preprocess: huntgroups = "/etc/freeradius/huntgroups" preprocess: hints = "/etc/freeradius/hints" preprocess: with_ascend_hack = no preprocess: ascend_channels_per_line = 23 preprocess: with_ntdomain_hack = no preprocess: with_specialix_jetstream_hack = no preprocess: with_cisco_vsa_hack = no preprocess: with_alvarion_vsa_hack = no Module: Instantiated preprocess (preprocess) Module: Loaded realm realm: format = "suffix" realm: delimiter = "@" realm: ignore_default = no realm: ignore_null = no Module: Instantiated realm (suffix) Module: Loaded files files: usersfile = "/etc/freeradius/users" files: acctusersfile = "/etc/freeradius/acct_users" files: preproxy_usersfile = "/etc/freeradius/preproxy_users" files: compat = "no" Module: Instantiated files (files) Module: Loaded SQL sql: driver = "rlm_sql_postgresql" sql: server = "localhost" sql: port = "" sql: login = "postgres" sql: password = "hello" sql: radius_db = "radius" sql: nas_table = "nas" sql: sqltrace = yes sql: sqltracefile = "/var/log/freeradius/sqltrace.sql" sql: readclients = no sql: deletestalesessions = yes sql: num_sql_socks = 5 sql: sql_user_name = "%{Stripped-User-Name:-%{User-Name:-none}}" sql: default_user_profile = "" sql: query_on_not_found = no sql: authorize_check_query = "SELECT id, UserName, Attribute, Value, Op ??FROM radcheck ??WHERE Username = '%{SQL-User-Name}' ??ORDER BY id" sql: authorize_reply_query = "SELECT id, UserName, Attribute, Value, Op ??FROM radreply ??WHERE Username = '%{SQL-User-Name}' ??ORDER BY id" sql: authorize_group_check_query = "SELECT radgroupcheck.id, radgroupcheck.GroupName, ??radgroupcheck.Attribute, radgroupcheck.Value,radgroupcheck.Op ??FROM radgroupcheck, usergroup ??WHERE usergroup.Username = '%{SQL-User-Name}' AND usergroup.GroupName = radgroupcheck.GroupName ??ORDER BY radgroupcheck.id" sql: authorize_group_reply_query = "SELECT radgroupreply.id, radgroupreply.GroupName, radgroupreply.Attribute, ??radgroupreply.Value, radgroupreply.Op ??FROM radgroupreply,usergroup ??WHERE usergroup.Username = '%{SQL-User-Name}' AND usergroup.GroupName = radgroupreply.GroupName ??ORDER BY radgroupreply.id" sql: accounting_onoff_query = "UPDATE radacct SET AcctStopTime = ('%S'::timestamp - '%{Acct-Delay-Time:-0}'::interval), AcctSessionTime = (EXTRACT(EPOCH FROM('%S'::timestamp with time zone - AcctStartTime::timestamp with time zone - '%{Acct-Delay-Time:-0}'::interval)))::BIGINT, AcctTerminateCause='%{Acct-Terminate-Cause}', AcctStopDelay = 0 WHERE AcctSessionTime IS NULL AND AcctStopTime IS NULL AND NASIPAddress= '%{NAS-IP-Address}' AND AcctStartTime <= '%S'::timestamp" sql: accounting_update_query = "UPDATE radacct SET FramedIPAddress = NULLIF('%{Framed-IP-Address}', '')::inet, AcctSessionTime = (EXTRACT(EPOCH FROM('%S'::timestamp with time zone - AcctStartTime::timestamp with time zone - '%{Acct-Delay-Time:-0}'::interval)))::BIGINT, AcctInputOctets = (('%{Acct-Input-Gigawords:-0}'::bigint << 32) + '%{Acct-Input-Octets:-0}'::bigint), AcctOutputOctets = (('%{Acct-Output-Gigawords:-0}'::bigint << 32) + '%{Acct-Output-Octets:-0}'::bigint) WHERE AcctSessionId = '%{Acct-Session-Id}' AND UserName = '%{SQL-User-Name}' AND NASIPAddress= '%{NAS-IP-Address}' AND AcctStopTime IS NULL" sql: accounting_update_query_alt = "INSERT into radacct (AcctSessionId, AcctUniqueId, UserName, Realm, NASIPAddress, NASPortId, NASPortType, AcctStartTime, AcctSessionTime, AcctAuthentic, AcctInputOctets, AcctOutputOctets, CalledStationId, CallingStationId, ??ServiceType, FramedProtocol, FramedIPAddress, XAscendSessionSvrKey) ??values('%{Acct-Session-Id}', '%{Acct-Unique-Session-Id}', '%{SQL-User-Name}', '%{Realm}', '%{NAS-IP-Address}', ??'%{NAS-Port}', '%{NAS-Port-Type}', ('%S'::timestamp - '%{Acct-Delay-Time:-0}'::interval - '%{Acct-Session-Time:-0}'::interval), ??'%{Acct-Session-Time}', '%{Acct-Authentic}', ??(('%{Acct-Input-Gigawords:-0}'::bigint << 32) + '%{Acct-Input-Octets:-0}'::bigint), ??(('%{Acct-Output-Gigawords:-0}'::bigint << 32) + '%{Acct-Output-Octets:-0}'::bigint), '%{Called-Station-Id}', ??'%{Calling-Station-Id}', '%{Service-Type}', '%{Framed-Protocol}', ??NULLIF('%{Framed-IP-Address}', '')::inet, '%{X-Ascend-Session-Svr-Key}')" sql: accounting_start_query = "INSERT into radacct ??(AcctSessionId, AcctUniqueId, UserName, Realm, NASIPAddress, NASPortId, NASPortType, AcctStartTime, AcctAuthentic, ??ConnectInfo_start, CalledStationId, CallingStationId, ServiceType, FramedProtocol, FramedIPAddress, AcctStartDelay, XAscendSessionSvrKey) ??values('%{Acct-Session-Id}', '%{Acct-Unique-Session-Id}', '%{SQL-User-Name}', '%{Realm}', '%{NAS-IP-Address}', ??'%{NAS-Port}', '%{NAS-Port-Type}', ('%S'::timestamp - '%{Acct-Delay-Time:-0}'::interval), '%{Acct-Authentic}', '%{Connect-Info}', ??'%{Called-Station-Id}', '%{Calling-Station-Id}', '%{Service-Type}', '%{Framed-Protocol}', ??NULLIF('%{Framed-IP-Address}', '')::inet, 0, '%{X-Ascend-Session-Svr-Key}')" sql: accounting_start_query_alt = "UPDATE radacct ??SET AcctStartTime = ('%S'::timestamp - '%{Acct-Delay-Time:-0}'::interval), AcctStartDelay = 0, ??ConnectInfo_start = '%{Connect-Info}' WHERE AcctSessionId = '%{Acct-Session-Id}' AND UserName = '%{SQL-User-Name}' ??AND NASIPAddress = '%{NAS-IP-Address}' AND AcctStopTime IS NULL" sql: accounting_stop_query = "UPDATE radacct ??SET AcctStopTime = ('%S'::timestamp - '%{Acct-Delay-Time:-0}'::interval), ??AcctSessionTime = NULLIF('%{Acct-Session-Time}', '')::bigint, ??AcctInputOctets = (('%{Acct-Input-Gigawords:-0}'::bigint << 32) + '%{Acct-Input-Octets:-0}'::bigint), ??AcctOutputOctets = (('%{Acct-Output-Gigawords:-0}'::bigint << 32) + '%{Acct-Output-Octets:-0}'::bigint), ??AcctTerminateCause = '%{Acct-Terminate-Cause}', AcctStopDelay = 0, ??FramedIPAddress = NULLIF('%{Framed-IP-Address}', '')::inet, ConnectInfo_stop = '%{Connect-Info}' ??WHERE AcctSessionId = '%{Acct-Session-Id}' AND UserName = '%{SQL-User-Name}' ??AND NASIPAddress = '%{NAS-IP-Address}' AND AcctStopTime IS NULL" sql: accounting_stop_query_alt = "INSERT into radacct ??(AcctSessionId, AcctUniqueId, UserName, Realm, NASIPAddress, NASPortId, NASPortType, AcctStartTime, AcctStopTime, ??AcctSessionTime, AcctAuthentic, ConnectInfo_stop, AcctInputOctets, AcctOutputOctets, CalledStationId, CallingStationId, ??AcctTerminateCause, ServiceType, FramedProtocol, FramedIPAddress, AcctStopDelay) ??values('%{Acct-Session-Id}', '%{Acct-Unique-Session-Id}', '%{SQL-User-Name}', '%{Realm}', '%{NAS-IP-Address}', ??'%{NAS-Port}', '%{NAS-Port-Type}', ('%S'::timestamp - '%{Acct-Delay-Time:-0}'::interval - '%{Acct-Session-Time:-0}'::interval), ??('%S'::timestamp - '%{Acct-Delay-Time:-0}'::interval), NULLIF('%{Acct-Session-Time}', '')::bigint, ??'%{Acct-Authentic}', '%{Connect-Info}', ??(('%{Acct-Input-Gigawords:-0}'::bigint << 32) + '%{Acct-Input-Octets:-0}'::bigint), ??(('%{Acct-Output-Gigawords:-0}'::bigint << 32) + '%{Acct-Output-Octets:-0}'::bigint), '%{Called-Station-Id}', ??'%{Calling-Station-Id}', '! %{Acct-Terminate-Cause}', '%{Service-Type}', '%{Framed-Protocol}', ??NULLIF('%{Framed-IP-Address}', '')::inet, 0)" sql: group_membership_query = "SELECT GroupName FROM usergroup WHERE UserName='%{SQL-User-Name}'" sql: connect_failure_retry_delay = 60 sql: simul_count_query = "" sql: simul_verify_query = "" sql: postauth_query = "INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ('%{User-Name}', '%{User-Password:-Chap-Password}', '%{reply:Packet-Type}', NOW())" sql: safe-characters = "@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-_: /" rlm_sql (sql): Could not link driver rlm_sql_postgresql: rlm_sql_postgresql.so: cannot open shared object file: No such file or directory rlm_sql (sql): Make sure it (and all its dependent libraries!) are in the search path of your system's ld. radiusd.conf[11]: sql: Module instantiation failed. radiusd.conf[1860] Unknown module "sql". radiusd.conf[1789] Failed to parse authorize section. ----- Original Message ----- From: freeradius-users-requ...@lists.freeradius.org To: freeradius-users@lists.freeradius.org Sent: Tuesday, 17 March, 2009 13:00:55 GMT +01:00 West Central Africa Subject: Freeradius-Users Digest, Vol 47, Issue 76 Send Freeradius-Users mailing list submissions to freeradius-users@lists.freeradius.org To subscribe or unsubscribe via the World Wide Web, visit http://lists.freeradius.org/mailman/listinfo/freeradius-users or, via email, send a message with subject or body 'help' to freeradius-users-requ...@lists.freeradius.org You can reach the person managing the list at freeradius-users-ow...@lists.freeradius.org When replying, please edit your Subject line so it is more specific than "Re: Contents of Freeradius-Users digest..." Today's Topics: 1. Re: FreeRadius with Postgresql (a.l.m.bu...@lboro.ac.uk) 2. Re: FreeRadius with Postgresql (t...@kalik.net) 3. Re: FreeRadius with Postgresql (phil lemelin) 4. Re: Radius and performance (Fajar A. Nugraha) 5. Re: FreeRadius with Postgresql (t...@kalik.net) 6. Re: Radius and performance (a.l.m.bu...@lboro.ac.uk) 7. Re: FreeRadius with Postgresql (Marinko Tarlac) 8. Re: Radius and performance (t...@kalik.net) 9. Re: Radius and performance (Marinko Tarlac) ---------------------------------------------------------------------- Message: 1 Date: Tue, 17 Mar 2009 11:05:09 +0000 From: a.l.m.bu...@lboro.ac.uk Subject: Re: FreeRadius with Postgresql To: FreeRadius users mailing list <freeradius-users@lists.freeradius.org> Message-ID: <20090317110509.ga28...@lboro.ac.uk> Content-Type: text/plain; charset=us-ascii Hi, > Please link me to a resources on how to make FreeRadius to work with > postgreSQL on Ubuntu 8.04 LTS? follow the usual MySQL/SQL stuff - just use postgres instead - ie 1) install postgres 2) configure postgres 3) install FreeRADIUS with postgres support 4) configure FreeRADIUS part 4 will need the SQL tables etc as supplied in the freeradius source to populate the DB. you will then need to configure a suitable user access rule for your chosen DB user (in usual postgres way). then edit the sql.conf file etc to call postgres module. edit postgres files (eg dialup.conf) with correct user/pass/table details alan ------------------------------ Message: 2 Date: Tue, 17 Mar 2009 12:11:51 +0100 From: <t...@kalik.net> Subject: Re: FreeRadius with Postgresql To: "FreeRadius users mailing list" <freeradius-users@lists.freeradius.org> Message-ID: <nzmwwgdz.1237288311.7684910....@kalik.net> Content-Type: text/plain; charset=ISO-8859-2 >Please link me to a resources on how to make FreeRadius to work with >postgreSQL on Ubuntu 8.04 LTS? >- You configure raddb/sql.conf. And create the database with scripts in raddb/sql/postgresql/. Then uncomment sql where you need it (authorize, accounting, session, ...) in raddb/sites-enabled/default. http://wiki.freeradius.org/SQL_HOWTO Ivan Kalik Kalik Informatika ISP ------------------------------ Message: 3 Date: Tue, 17 Mar 2009 07:29:36 -0400 From: phil lemelin <phil.leme...@gmail.com> Subject: Re: FreeRadius with Postgresql To: FreeRadius users mailing list <freeradius-users@lists.freeradius.org> Message-ID: <efe037fe0903170429l65ecdbcfk68bc504469127...@mail.gmail.com> Content-Type: text/plain; charset="iso-8859-1" > Please link me to a resources on how to make FreeRadius to work with > postgreSQL on Ubuntu 8.04 LTS? > > > You configure raddb/sql.conf. And create the database with scripts in > raddb/sql/postgresql/. Then uncomment sql where you need it (authorize, > accounting, session, ...) in raddb/sites-enabled/default. > > http://wiki.freeradius.org/SQL_HOWTO > > Ivan Kalik > Kalik Informatika ISP > I am currently looking into testing freeradius and started reading a couple of wiki/doc/man pages on the subject and ended on that SQL_HOWTO page. One of the prerequisite is to already have the NAS configured. Do you have any suggestion for a NAS running on a linux box ? Thank you. -- Philippe-Alexandre Lemelin -------------- next part -------------- An HTML attachment was scrubbed... URL: <https://lists.freeradius.org/pipermail/freeradius-users/attachments/20090317/92855a3e/attachment.html> ------------------------------ Message: 4 Date: Tue, 17 Mar 2009 18:32:47 +0700 From: "Fajar A. Nugraha" <fa...@fajar.net> Subject: Re: Radius and performance To: FreeRadius users mailing list <freeradius-users@lists.freeradius.org> Message-ID: <7207d96f0903170432s2daeb83ah8f9193b63b48c...@mail.gmail.com> Content-Type: text/plain; charset=ISO-8859-1 On Tue, Mar 17, 2009 at 5:39 PM, <t...@kalik.net> wrote: >>On a DSL environment where users are mostly >>auto-connect (i.e. modem redials automatically when disconnected) >>interim updates seems to contribute most load. > > Do all updates come at the same time? Using buffered-sql or such virtual > servers is designed for that. default will reply to the NAS instantly > and then pass on the requst to buffered-sql to process the requests at > it's own pace. That will even the load. > > Ivan Kalik > Kalik Informatika ISP > > - > List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html > How does buffered-sql read the detail file? I see filename = ${radacctdir}/detail but it does not show (for example) what happens when freeradius is stopped and restarted before all entries in the detail file processed : Does it re-process everything, or does it ignore everything and only process "new" detail log. Regards, Fajar ------------------------------ Message: 5 Date: Tue, 17 Mar 2009 12:34:52 +0100 From: <t...@kalik.net> Subject: Re: FreeRadius with Postgresql To: "FreeRadius users mailing list" <freeradius-users@lists.freeradius.org> Message-ID: <jdwxkxli.1237289692.3652060....@kalik.net> Content-Type: text/plain; charset=ISO-8859-2 >I am currently looking into testing freeradius and started reading a couple >of wiki/doc/man pages on the subject and ended on that SQL_HOWTO page. One >of the prerequisite is to already have the NAS configured. Do you have any >suggestion for a NAS running on a linux box ? radtest is installed together with the server. Ivan Kalik Kalik Informatika ISP ------------------------------ Message: 6 Date: Tue, 17 Mar 2009 11:41:30 +0000 From: a.l.m.bu...@lboro.ac.uk Subject: Re: Radius and performance To: FreeRadius users mailing list <freeradius-users@lists.freeradius.org> Message-ID: <20090317114130.ga28...@lboro.ac.uk> Content-Type: text/plain; charset=us-ascii Hi, > but it does not show (for example) what happens when freeradius is > stopped and restarted before all entries in the detail file processed > : Does it re-process everything, or does it ignore everything and only > process "new" detail log. if you run it, you'll see what it does and how it does it. data is appended until the detail module has dealt with it - ie nothing lost from detail file when stopping/starting the server alan ------------------------------ Message: 7 Date: Tue, 17 Mar 2009 12:42:13 +0100 From: Marinko Tarlac <mangi...@gmail.com> Subject: Re: FreeRadius with Postgresql To: FreeRadius users mailing list <freeradius-users@lists.freeradius.org> Message-ID: <41e5b64f0903170442u5b378b0jf26466791ac80...@mail.gmail.com> Content-Type: text/plain; charset="iso-8859-1" Please come back later and tell us your experience with postgre.. :) On Tue, Mar 17, 2009 at 12:34 PM, <t...@kalik.net> wrote: > >I am currently looking into testing freeradius and started reading a > couple > >of wiki/doc/man pages on the subject and ended on that SQL_HOWTO page. One > >of the prerequisite is to already have the NAS configured. Do you have any > >suggestion for a NAS running on a linux box ? > > radtest is installed together with the server. > > Ivan Kalik > Kalik Informatika ISP > > - > List info/subscribe/unsubscribe? See > http://www.freeradius.org/list/users.html > -------------- next part -------------- An HTML attachment was scrubbed... URL: <https://lists.freeradius.org/pipermail/freeradius-users/attachments/20090317/1093ab8f/attachment.html> ------------------------------ Message: 8 Date: Tue, 17 Mar 2009 12:43:21 +0100 From: <t...@kalik.net> Subject: Re: Radius and performance To: "FreeRadius users mailing list" <freeradius-users@lists.freeradius.org> Message-ID: <uq0a70zd.1237290201.2860670....@kalik.net> Content-Type: text/plain; charset=ISO-8859-2 >How does buffered-sql read the detail file? I see > >filename = ${radacctdir}/detail > >but it does not show (for example) what happens when freeradius is >stopped and restarted before all entries in the detail file processed >: Does it re-process everything, or does it ignore everything and only >process "new" detail log. > It renames detail to detail.work and processes that file while the server writes new requests to detail. When it's done processing detail.work it renames detail again etc. Restarting the server doesn't wipe out detail or detail.work. Ivan Kalik Kalik Informatika ISP ------------------------------ Message: 9 Date: Tue, 17 Mar 2009 13:00:51 +0100 From: Marinko Tarlac <mangi...@gmail.com> Subject: Re: Radius and performance To: FreeRadius users mailing list <freeradius-users@lists.freeradius.org> Message-ID: <41e5b64f0903170500h353b8f70uead8631b70cc6...@mail.gmail.com> Content-Type: text/plain; charset="iso-8859-1" Sorry for bothering but what if detail file is on daily basis ... detail-20090101 for example... On Tue, Mar 17, 2009 at 12:43 PM, <t...@kalik.net> wrote: > >How does buffered-sql read the detail file? I see > > > >filename = ${radacctdir}/detail > > > >but it does not show (for example) what happens when freeradius is > >stopped and restarted before all entries in the detail file processed > >: Does it re-process everything, or does it ignore everything and only > >process "new" detail log. > > > > It renames detail to detail.work and processes that file while the server > writes new requests to detail. When it's done processing detail.work it > renames detail again etc. Restarting the server doesn't wipe out detail > or detail.work. > > Ivan Kalik > Kalik Informatika ISP > > - > List info/subscribe/unsubscribe? See > http://www.freeradius.org/list/users.html > -------------- next part -------------- An HTML attachment was scrubbed... URL: <https://lists.freeradius.org/pipermail/freeradius-users/attachments/20090317/fe44d617/attachment.html> ------------------------------ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html End of Freeradius-Users Digest, Vol 47, Issue 76 ************************************************ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html