in the revision history it says:
"Improved robstness of the session databases in the face of lost stop
packets. Now a stop packet will always remove any previous session that we
thought was on that NAS/Port combination. This will make the session
database "self-healing". "
However, it appears that this does not work if
user is disconnected
and the associated acct stop packet is lost
and when they redial they hit the same NAS port
Is this is becasue the db cleanup is done on receipt of the Acct record,
which doesn't happen until after the Auth request has already been denied?
Perhaps this clean up should happen on the auth request or on both
auth and acct?
Jim
On Fri, 18 Jun 1999, Mike McCauley wrote:
> Hi James.
>
> On Jun 17, 12:41pm, James H. Thompson wrote:
> > Subject: Re: (RADIATOR) Simultaneous use
> > On Mon, 14 Jun 1999, Mike McCauley wrote:
> >
> > > Hi James.
> > >
> > > On Jun 11, 2:21am, James H. Thompson wrote:
> > > > Subject: Re: (RADIATOR) Simultaneous use
> > > > Since the NAS reply items are different for each NAS, I'd have to setup
> > > > 3 full sets of check/reply items for each user. That sounds like
> > > > too much work. How would I do it by chaining the File authentications?
> > > I was thinking about something like this:
> > >
> > > <Realm DEFAULT>
> > > AuthByPolicy ContinueAlways
> >
> > Shouldn't the line above be:
> > AuthByPolicy ContinueWhileAccept
> > if the first Authby Rejects, we don't want to
> > let the next accept it?
>
> You are quite right.
>
> My apologies.
>
> >
> > > <AuthBy FILE>
> > > DefaultSimultaneosUse 1
> > > Filename xxx
> > > </AuthBy>
> > > <AuthBy FILE>
> > > Filename yyy
> > > </AuthBy>
> > > </Realm>
> > >
> > > In file xxx:
> > > # This make user1 and user2 have a sim-use limit of 2, everyone else gets 1
> > > DEFAULT
> > > user1 Simultaneous-Use=2
> > > user2 Simultaneous-Use=2
> > >
> > >
> > > IN file yyy:
> > >
> > > DEFAULT NAS-Identifier = "LRD56_82BE00", Auth-Type = ljnet_sql
> > > Service-Type = Framed-User,
> > > Framed-Protocol = PPP,
> > > Framed-Compression = Van-Jacobson-TCP-IP
> > > Idle-Timeout = 400
> > >
> > > # Nortel
> > > DEFAULT NAS-Identifier = "las-nortel", Auth-Type = ljnet_sql
> > > Service-Type = Framed-User,
> > > Framed-Protocol = PPP,
> > > Framed-Compression = Van-Jacobson-TCP-IP
> > > Idle-Timeout = 200
> > >
> > > etc.
> > >
> > > So the effect is that xxx checks the sim-use amd yyy check everything else.
> > >
> > >
> >
> >
> > Jim
> > [EMAIL PROTECTED]
> >
> >
> >-- End of excerpt from James H. Thompson
>
>
>
> --
> Mike McCauley [EMAIL PROTECTED]
> Open System Consultants Pty. Ltd Unix, Perl, Motif, C++, WWW
> 24 Bateman St Hampton, VIC 3188 Australia http://www.open.com.au
> Phone +61 3 9598-0985 Fax +61 3 9598-0955
>
> Radiator: the most portable, flexible and configurable RADIUS server
> anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
> Platypus, Freeside, TACACS+, PAM, external, etc etc on Unix, Win95/8,
> NT, Rhapsody
>
>
Jim
[EMAIL PROTECTED]
===
Archive at http://www.thesite.com.au/~radiator/
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
