Alex Radetsky <[EMAIL PROTECTED]> wrote:
> So, if radius got packet from remote server with configured source_ip and
> port, radiusd marks it as active.
>
> But in my case, radius got packet from configured source_ip, but another
> port.
>
> What does it mean?
It means that the server
Alex Radetsky <[EMAIL PROTECTED]> wrote:
> I'm using freeradius-0.7.1. I'm trying to configure this freeradius
> as proxy server to remote.
Upgrade to 0.9.3. Please.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Wed, Dec 10, 2003 at 03:11:42PM +0100, Thomas MARCHESSEAU wrote:
Hi Alex,
did u check clients.conf ?
[EMAIL PROTECTED] bin]# grep "195.123.5.10" /usr/local/radius-proxy/etc/raddb/*
clients: 195.123.5.10 123
clients.conf: client 195.123.5.10 {
proxy.conf: authhost = 195.123.5.10:1812
ource_ip, but another
port.
What does it mean? Does some one proxy exist between my and remote radius?
Is it correct?
PS. I can rewrite this code to create workaround. But I do not know, may
be it will not correct.
--
Alex Radetsky
AR2657-RIPE
RAD-UANIC
-
List
On Wed, Dec 10, 2003 at 04:18:30PM +0200, Alexey Balabushevich wrote:
> >
> > I'm using freeradius-0.7.1. I'm trying to configure this freeradius
> > as proxy server to remote.
> >
> > --
> > rad_recv: Access-Reject packet from host 195.123.5.10:1
On Wed, Dec 10, 2003 at 03:11:42PM +0100, Thomas MARCHESSEAU wrote:
> Hi Alex,
>
> did u check clients.conf ?
>
>
[EMAIL PROTECTED] bin]# grep "195.123.5.10" /usr/local/radius-proxy/etc/raddb/*
clients: 195.123.5.10 123
clients.conf: client 1
On Wed, Dec 10, 2003 at 03:56:45PM +0200, Alex Radetsky wrote:
>
> Hello, Collegues!
>
> I'm using freeradius-0.7.1. I'm trying to configure this freeradius
> as proxy server to remote.
>
> --
> rad_recv: Access-Reject packet from host 195.123.5.10:1288,
Hi Alex,
did u check clients.conf ?
Thomas .
Alex Radetsky wrote:
Hello, Collegues!
I'm using freeradius-0.7.1. I'm trying to configure this freeradius
as proxy server to remote.
--
rad_recv: Access-Reject packet from host 195.123.5.10:1288, id=1, length=48
Ignoring request fr
Hello, Collegues!
I'm using freeradius-0.7.1. I'm trying to configure this freeradius
as proxy server to remote.
--
rad_recv: Access-Reject packet from host 195.123.5.10:1288, id=1, length=48
Ignoring request from unknown proxy 195.123.5.10:1288
--
Host 195.123.5.10 was con
; Enviado el: miércoles, 10 de diciembre de 2003 7:37
> Para: [EMAIL PROTECTED]
> Asunto: Re: filtering attributes in proxy
>
>
> > Have you tried with pre-proxy and attr_rewrite? I?m trying but
> attr_rewrite
> > module is not called (/usr/sbin/freeradius -x). I don?t know
> Have you tried with pre-proxy and attr_rewrite? I?m trying but
attr_rewrite
> module is not called (/usr/sbin/freeradius -x). I don?t know why.
No I haven't.
use -X instead -x, it'll show lot of things
and have u included that in the preproxy section in radiusd.
Have you tried with pre-proxy and attr_rewrite? I?m trying but attr_rewrite
module is not called (/usr/sbin/freeradius -x). I don?t know why.
Sergio.
> -Mensaje original-
> De: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] nombre de Chris
> Parker
> Enviado el: martes, 09
At 11:59 PM 12/8/2003, denz wrote:
> > > but when I start the server I get this message ant the end, and server
> > > exits.
> > >
> > > Module: Instantiated attr_filter (attr_filter)
> > > radiusd.conf: "attr_filter" modules aren't allow
> > > but when I start the server I get this message ant the end, and server
> > > exits.
> > >
> > > Module: Instantiated attr_filter (attr_filter)
> > > radiusd.conf: "attr_filter" modules aren't allowed in 'pre-proxy'
> &
>From: "Anson Rinesmith"
<[EMAIL PROTECTED]>>To:
<[EMAIL PROTECTED]>
>Subject: Proxy Setup
>Date: Fri, 5 Dec 2003 11:57:00
-0600>Reply-To: [EMAIL PROTECTED]>>I
want any username like [EMAIL PRO
Gary Algier <[EMAIL PROTECTED]> wrote:
> I am trying to figure out how to automatically proxy based upon criteri
> in the users file.
Use the Proxy-To-Realm attribute:
bob Proxy-To-Realm := "realm"
> I can see how I can check the NAS-IP-Address, but then
> I don
Hi:
I am trying to figure out how to automatically proxy based upon criteri
in the users file.
For example:
I have a user "gary" who logs in on a particular NAS (let us say
on IP 192.168.1.1). When he does so, his authentication should
be passed off to the radius server at 192.168.2
"Anson Rinesmith" <[EMAIL PROTECTED]> wrote:
> to my proxy.conf file. It still tries to authenticate locally. I was told
> not to put anything in my realms file.
>
> What am I missing?
Read the output of radiusd -X. It will tell you WHY it is, or is
not, proxying.
Alan DeKok.
-
List info
I want any username like [EMAIL PROTECTED] to be proxied to
an existing radius server.
I have added
realm mydomain.net {
type = radius
authhost = 192.168.69.10:1645
accthost = 192.168.69.10:1646
secret = ascend
}
to my proxy.co
Hello,
I have found that the backup server of my client is never used when the his
main server is down.
Another strange behaviour is that the reject is not answered on a timeout
but on receipt of the next authentication request, even if it comes one hour
after !
To solve the problem I have chang
At 10:43 AM 12/4/2003, Alan DeKok wrote:
"denz" <[EMAIL PROTECTED]> wrote:
> but when I start the server I get this message ant the end, and server
> exits.
>
> Module: Instantiated attr_filter (attr_filter)
> radiusd.conf: "attr_filter" modules aren
"denz" <[EMAIL PROTECTED]> wrote:
> but when I start the server I get this message ant the end, and server
> exits.
>
> Module: Instantiated attr_filter (attr_filter)
> radiusd.conf: "attr_filter" modules aren't allowed in 'pre-proxy'
>
> > I need to remove the attribute
> > Calling-Station-Id = xxx
> > from the requests before passing it to the remote radius server.
>
> Use rlm_attr_filter in pre-proxy.
I modified the radiusd.conf as suggested,
pre-proxy {
attr_filter
When I remove the realms entry, it tries to authenticate locally, when
watching 'radiusd -X'
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Alan DeKok
Sent: Wednesday, December 03, 2003 3:38 PM
To: [EMAIL PROTECTED]
Subject: Re: proxy
"
"Anson Rinesmith" <[EMAIL PROTECTED]> wrote:
> I added
> realm bigrivertel.net {
> type= radius
> authhost= 192.168.69.10:1645
> accthost= 192.168.69.10:1646
> secret = ascend
> }
>
> With the same errors, should I remove my entry from realms th
PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Alan DeKok
Sent: Wednesday, December 03, 2003 2:56 PM
To: [EMAIL PROTECTED]
Subject: Re: proxy
"Anson Rinesmith" <[EMAIL PROTECTED]> wrote:
> I have put my realm in the realms file: bigrivertel.net
> 192.168.69.10
You
"Anson Rinesmith" <[EMAIL PROTECTED]> wrote:
> I have put my realm in the realms file: bigrivertel.net
> 192.168.69.10
You've also got to list it in the 'clients' file, OR use the
"proxy.conf" file.
> /usr/local/etc/raddb/realms[28]: Cannot find 'clients' file entry of remote
> server 209.16.22
I have put my realm in the realms file: bigrivertel.net
192.168.69.10
When I run ‘radiusd –X’, I get the
following error:
/usr/local/etc/raddb/realms[28]: Cannot find 'clients' file
entry of remote server 209.16.220.10 for realm "bigrivertel.net"
Errors reading realms
Errors
"denz" <[EMAIL PROTECTED]> wrote:
> I need to remove the attribute
> Calling-Station-Id = xxx
> from the requests before passing it to the remote radius server.
Use rlm_attr_filter in pre-proxy.
> And while doing that I need to run some script and pu
Alan DeKok <[EMAIL PROTECTED]> wrote:
>Ben Hockenhull <[EMAIL PROTECTED]> wrote:
>> Under 0.9.3, only the first AVPair is sent back. I'm not sure why.
>
> Read the 'man' page for the 'users' file. I think it's also in the
>FAQ.
>
> Try '+=', instead of '='.
Ah ha. That did it. I didn't see
hi!
I'm using freeradius cvs(Nov 25 -2003) as a radius proxy. And as a remote
radius server I got another copy of freeradius running.
For my application enviorenment I need my radius-proxy server to pass all
requests to the remote server. But under one condition.
i.e.
I need to remov
For example of proxy configuration... let say login
as [EMAIL PROTECTED] , Is it possible
for Freeradius to strip the username (user1) and proxied to other radius server
using "abc.com.my" only...
thanks..
--haizam
Make sure when you install the new server you get the new man pages as well.
Alan DeKok wrote:
Ben Hockenhull <[EMAIL PROTECTED]> wrote:
Under 0.9.3, only the first AVPair is sent back. I'm not sure why.
Read the 'man' page for the 'users' file. I think it's also in the
FAQ.
Try '+=',
Ben Hockenhull <[EMAIL PROTECTED]> wrote:
> Under 0.9.3, only the first AVPair is sent back. I'm not sure why.
Read the 'man' page for the 'users' file. I think it's also in the
FAQ.
Try '+=', instead of '='.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/
Hi there,
I'm doing testing in preparation to upgrade a server from 0.5 to 0.9.3,
and I've run into an issue with Cisco's auth-proxy feature. Under 0.5,
it's been working. Upon successful authentication, the radius server
sends back the proper Cisco-AVpairs for a temporary
"denz" <[EMAIL PROTECTED]> wrote:
> I've got a radius sever(some Old radius server) configured with a
> NAS. I want to pass MSISDN from NAS to radius. But the problem is when I
> pass that attribute, the Authentication process stops.
I doubt that very much.
Read the FAQ about posting que
freeradius in proxy mode, so that it will manipulate the access requests having
Extra attribs, do some extra work(eg: - record MSISDNs in a DB) and forward
those filtered requests to a remote server.
How could we achive this purpose. Can somebody
point me to a good documentation ?
denzel.
Hi,
Radius Server 1 --> Free Radius --> Radius Server 2
I control the Free Radius server, which serves as a proxy. I need to modify
a radius attribute value that is incoming from Radius Server 1 before it is
being send to Radius Server 2. How can I do that?
I'm using rlm_perl, so i
03 3:28 AM
Subject: Re: Limiting access at a proxy server based on Called-Station-ID
> Mark Moody <[EMAIL PROTECTED]> wrote:
> > We need to limit their users access based on Called-Station-ID.
> > When the Auth request comes in from the NAS, I need to be able to
> > cons
Mark Moody <[EMAIL PROTECTED]> wrote:
> We need to limit their users access based on Called-Station-ID.
> When the Auth request comes in from the NAS, I need to be able to
> consult a (possibly large) list of access numbers and determine if
> the user called an approved number, if so allow the requ
I've been asked if the following is possible. We operate a pair of
radius servers that proxy several realms to their respective home
servers. We need to limit their users access based on
Called-Station-ID. When the Auth request comes in from the NAS, I need
to be able to consult a (pos
I am not sure how to achieve this using rlm_attr_rewrite (probably
others can help), but you can write your own "post-proxy" method. Add
that module in the "post-proxy" section of radius.conf, so that your
post-proxy method is called whenever the Radius server receives a r
Sorry, I don't know how to make it work. Could you
tell me more about it ?
I use freeradius to be a proxy
server. A <===> MySite
<=> B
I want each Auth-Reply to be one of below
cases.
1. If the Session-Timeout is defined and the value
is great than 0, proxy
s, but there is
special group of users which want duplicate his accounting info to non
local server, but authorize locally. i create prefix for this group and
i add it into proxy configuration with two accthost entries.
now i need strip suffix for this special group before authorization,
because i d
rlm_attr_filters may work?
Liyan Tan
[EMAIL PROTECTED] 2003-11-13
Hello~
May I add an
attribute "session-time" into a proxy-reply packet if the value of
"session-timeout" is not assigned
before I reply it to
another radiusd server ?
Thanks a lot
~
ok
looking at your radiusd.conf file, i wonder if you have to add a preacct
section with a suffix module in it in order to look up the realms.
otherwise it seems ok to me.
ciao
artur
I made a mistake editing that mail last night.
realm dimapel.com.br {
type= radius
Artur
I made a mistake editing that mail last night.
200.193.87.129 has no relation to problem related. It's another server
for tests.
my problem is: the proxy server doesn't send acct (accounting) packets
to 200.180.55.65 server.
Justo know:
200.180.22.15 is the RAS that co
ress = 200.180.22.15
NAS-Port = 108
Calling-Station-Id = "475211600"
Called-Station-Id = "12110482815300"
Connect-Info = "34000/28800_K56_/LAPM/V42BIS"
Proxy-State = "73"
--- Walking the entire request list ---
i strongly d
e:
- proxy.conf
- radiusd.conf
- console out of radiusd -X (of proxy server)
Obs.: I didn't put radiusd -X console out of realm server. Because I
used iptraf -i on the realm server and theres's no acct packet comming
from proxy server.
$ cat proxy.conf | grep -v "#
=?ISO-8859-1?Q?Jefferson_D=FCmes?= <[EMAIL PROTECTED]> wrote:
> I'm not an "radius expert", but I already used a cistron (patched to log
> in mysql) and icradius. In this two server, I just say to do proxy to
> some server and it does it (auth ant acct).
Fre
Hi Alan
Would you show me where is some kind of reference of the problem I
reported ???
I'm not an "radius expert", but I already used a cistron (patched to log
in mysql) and icradius. In this two server, I just say to do proxy to
some server and it does it (auth ant acct)
=?ISO-8859-1?Q?Jefferson_D=FCmes?= <[EMAIL PROTECTED]> wrote:
> Freeradius 0.8 doesn't send account packet's to other freeradius.
It does if you've configured it correctly.
> No erros in log files.
>
> Someone give me an idea.
Since you haven't followed the directions in the FAQ for problem
Freeradius 0.8 doesn't send account packet's to other freeradius.
There's no firewall rules between the servers.
No erros in log files.
Someone give me an idea.
thanks.
details:
Freeradius 0.8 compiled with ldap auth an mysql account support.
-
List info/subscribe/unsubscribe? See http://www.
On Fri, 24 Oct 2003, CW wrote:
> Is it possible to have ONE radius server query TWO databases in the same
> server for requests for different realms?
>
> For example if I had two realms
>
>
> dialup.someisp.net
> adsl.someisp.net
>
> and both realms came into the same radius server, and I had tw
(B
(B
(BIs it possible to have ONE radius
(Bserver query TWO databases in the same server for requests for different
(Brealms?
(B
(BFor example if I had two
(Brealms
(B
(B
(Bdialup.someisp.net
(Badsl.someisp.net
(B
(Band both realms came into the same radius
(Bserver, and I
the radtest to our windows radius server
it goes through ok so I know it works.
I setup the proxy, but two questions. Do I have the hotspot send auth and acct
to the default port of 1814? Or 1812 and 1813?
Also, My error I get in the radius
log is
Wed Oct 22 14:39:22 2003 : Error: Ignoring
Thanks for your advise.
It works for Authentication, but Accounting.
If I want to proxy accounting packets with these rulers, what should I do ?
1.proxy accounting packets which realm ends with ".us" to serverATus.
2. proxy accounting packets which realm ends with ".jp" to s
NULL realm, this would at least help
you test your hypothesis.
HTH,
Chris
At 10:57 AM 10/16/2003, you wrote:
I have a proxy server configured to proxy to the NULL realm.
This has worked fine until recently when it has started to silently drop
RADIUS requests rather than forward them. The NAS does
I have a proxy server configured to proxy to the NULL realm.
This has worked fine until recently when it has started to silently drop
RADIUS requests rather than forward them. The NAS does not recieve any
response and so rejects users.
My hypothesis is that the RADIUS server it is proxying to
At 09:58 PM 10/15/2003, you wrote:
I tried to set the Radius server (0.9.1 on Red Hat 9) so it can do
proxy. I use the sql module for authentication (mysql).
I have two users, [EMAIL PROTECTED]' and 'alex_chen'. in the DB.
I setup the proxy.conf like the followings so that if t
Dear All:
I have 2 Radius
Servers, R1, R2, and each server maintains its own user data.
I hope to use the
realm "@myrealm" for each user.
I built a proxy server
with freeradiusd 0.9.0 to be a dispatcher.
The trouble is I can't
identify a
I tried to set the Radius server (0.9.1 on Red Hat 9) so it can do
proxy. I use the sql module for authentication (mysql).
I have two users, [EMAIL PROTECTED]' and 'alex_chen'. in the DB.
I setup the proxy.conf like the followings so that if the proxy server
192.168.1.12 fails,
On Tue, 2003-10-14 at 15:22, Alan DeKok wrote:
> Josh Howlett <[EMAIL PROTECTED]> wrote:
> > My reading of the source suggests to me that it will get dropped
> > silently, but I would appreciate an educated opinion!
>
> Pretty much. Sending a reject request may be friendlier, though.
Yes. It w
Josh Howlett <[EMAIL PROTECTED]> wrote:
> My reading of the source suggests to me that it will get dropped
> silently, but I would appreciate an educated opinion!
Pretty much. Sending a reject request may be friendlier, though.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.
rce suggests to me that it will get dropped
> silently, but I would appreciate an educated opinion!
By "it" I mean a RADIUS packet that the proxy FreeRADIUS server has
recieved.
josh.
--
---
Josh Howlett, Networking & Dig
Can someone please briefly indicate the expected behaviour of FreeRADIUS
where a realm has a single instance of a {auth|acct}host is specified,
but this server has been marked dead owing to inactivity?
My reading of the source suggests to me that it will get dropped
silently, but I would appreciat
"Roman Janos" <[EMAIL PROTECTED]> wrote:
> Actually the question is other. Are there any plans to implement (or
> it is already implemented?) proxying functionality for EAP-TTLS
> tunneled authentication method (e.g. EAP-MD5,PAP,
) ?
No.
> If not the TTLS implementation makes no sense.
I dis
methods that can be deployed on whatever
legacy RADIUS server and use of FREERADIUS as a proxy to take advantage
about security in shared media environments.
Pleas comment.
Regards
Roman
> -Puvodní zpráva-
> Od: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] uivatele Alan DeKok
>
fastbyte <[EMAIL PROTECTED]> wrote:
> Is there any plans to implement proxying for EAP/TTLS in near future?
No.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi Chris,
Chris Parker wrote:
At 08:18 AM 10/8/2003, Thomas MARCHESSEAU wrote:
Hi all,
I would like to know if there is a special tricks to have "accthost"
working on freeradius 0.9.1 in proxy mode :
My accounting request are not forwarded by the proxy to my radius
server .
What
At 08:18 AM 10/8/2003, Thomas MARCHESSEAU wrote:
Hi all,
I would like to know if there is a special tricks to have "accthost"
working on freeradius 0.9.1 in proxy mode :
My accounting request are not forwarded by the proxy to my radius server .
What modules do you have enabled in th
Hi all,
I would like to know if there is a special tricks to have "accthost"
working on freeradius 0.9.1 in proxy mode :
My accounting request are not forwarded by the proxy to my radius server .
--- proxy.conf (working fine on 0.8.1)
realm myrealm.net {
AP protocol(But i have no confidence).
>
> I have no clue how you decided that from reading proxy.c. The
> server can proxy any authentication method used by the NAS.
Thank you again.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello,
Is there any plans to implement proxying for EAP/TTLS in near future?
Sergio
Alan DeKok wrote:
"Roman Janos" <[EMAIL PROTECTED]> wrote:
I try to make TTLS authentication. This is gone with PAP/EAP-MD5 in tunneled
mode but only if the PAP/EAP-MD5 credentials
were on the same maschine.
"Roman Janos" <[EMAIL PROTECTED]> wrote:
> I try to make TTLS authentication. This is gone with PAP/EAP-MD5 in tunneled
> mode but only if the PAP/EAP-MD5 credentials
> were on the same maschine.
>
> If I try to put the user credentials on other freeradius server and try to
> make proxing it don't
freeradius server and try to
make proxing it don't go any more.
There seems be a problem with proxing becouse no proxy request isn't send to
other radius server.
Below is useful listing (end part with eror and proxy setting). On other
second RADIUS server is TTLS radius server configured
xy.c) and it seemed to be
> support only CHAP protocol(But i have no confidence).
I have no clue how you decided that from reading proxy.c. The
server can proxy any authentication method used by the NAS.
> Q. Does FreeRadius support proxy setting with PAP authentication?
Yes, if the NAS
Allen,
You could try to put the following in the users file:
DEFAULT Realm =~ "\.us$", Proxy-To-Realm += "us"
DEFAULT Realm =~ "\.jp$", Proxy-To-Realm += "jp"
In proxy.conf you can put something like:
realm us {
type= radius
Hello all.
I have some problem with Freeradius-0.9.1 with proxy setting.
I have some company who provide AccessPoint's each other by roaming setting.
Almost of company is pretty good working, But only one is problem.
This Admin says his radius server is little old and it only suppory wit
Hello~
I have a question
about Proxy.
I would like to
1.proxy realms which end
with ".us" to serverATus.
2. proxy realm which end
with ".jp" to serverATjp.
What should I
define in the proxy.conf ?
Thanks a lot
...
"Ivan Meic" <[EMAIL PROTECTED]> wrote:
> I'm not using a 'round robin' method, so I really
> was expecting that it will send accounting packets to
> all servers specified in the list.
That isn't the way it's intended to work.
> Ok, I can understand how to use radrelay, but than I have another p
I am proxying auth from my server (freeradius, .8.1) to another server
(cistron radius) and when running radtest, I can only get correct
answers if I add the '1' to radtest to turn the Framed-Protocol = PPP on
How do I insert that into a auth request on the regular proxy? Or,
should I
#x27;round robin' method, so I really
was expecting that it will send accounting packets to
all servers specified in the list.
> > In this case it works fine, but if I want to proxy it
> > to one additional server it doesn't work.
> > The proxy only sends the accounting da
"Ivan Meic" <[EMAIL PROTECTED]> wrote:
> Also I'm using proxy features to be able to send the accounting data
> to one more server, just to have another copy.
Ok..
> realm NULL {
>type= radius
>authhost=
Hi,
I'm using FreeRADIUS v0.8.1 on RedHat 7.1.
I'm using it strictly for accounting purposes with
MySQL running in the background.
Also I'm using proxy features to be able to send the accounting data
to one more server, just to have another copy.
--- proxy.conf ---
proxy serve
Currently using freeradius-0.9.1 running over Freebsd
v4.8.
Is it possible to do proxy authentication and
accounting based on NAS-IP-Address / Client-IP-Address or NAS-Identifier
instead or realms?
Regards
I read in the freradius specification that it is
capable of doing proxy authentication and/or accounting forwarding based on any
attribute. Traditionally, Proxy was only applicable through
Realms/Suffixes.
Suppose I want to do accounting forwarding based on
NAS-IP address, how I would do
Can I use a combination of a (local) radius proxy and a (remote) radius
server?
Whenever a client tries to authenticate himself:
=> I first want to check against a local radius-server
=> if that failed, I want to check with a remote radius server instead.
I am not looking for local cachin
Hello,
I would like freeradius to accept both user & [EMAIL PROTECTED] for valid
authentication via an access server. I have tried to do this via proxy
realms, but cannot seem to get it working. I get the following error:
Thread 5 handling request 4, (1 handled so far)
NAS-IP-Add
> I am going to get the following data from a user:
>
> [EMAIL PROTECTED]
>
> I need to parse off bar.com and have Freeradius pass [EMAIL PROTECTED] to the
> proper radius server for auth.
Well, I don't much about proxying yet, but maybe you can accomplish to let
the username change in [EMAIL PROT
> From: Erik Denny
> Sent: Saturday, 23 August 2003 2:24 PM
> I'm running .8 on Redhat 7.3, on a machine that is essentially acting as a
> radius server traffic cop.
>
> I am going to get the following data from a user:
>
> [EMAIL PROTECTED]
>
> I need to parse off bar.com and have Freeradius
I'm running .8 on Redhat 7.3, on a machine that is essentially acting as a
radius server traffic cop.
I am going to get the following data from a user:
[EMAIL PROTECTED]
I need to parse off bar.com and have Freeradius pass [EMAIL PROTECTED] to the
proper radius server for auth.
I've fiddled
Hi,
I have one FR 0.8.1 runing as Radius Proxy (radius A).
I got 3 kind of auth packet from one NAS
(1) userid
(2) abc/[EMAIL PROTECTED]
(3) [EMAIL PROTECTED]
I would like auth case (1) locally(radius A) ,
case (2) should be fwd to radius B
case (3) should be fwd to radius C
So I config
Hi All,
I'm frist time try the radius server. May I ask who can post
the freeradius on redhat here? Or where can I find the details study
manuel?
Thanks
Dick Lau wrote:
> Hi All,
>
> I'm frist time try the radius server. May I ask who can post the
> freeradius on redhat here? Or where can I find the details study manuel?
>
> Thanks
I found this
http://people.redhat.com/twoerner/SRPMS/freeradius-0.8.1-6.src.rpm
It's handy, though is not up da
Chris van Meerendonk <[EMAIL PROTECTED]> wrote:
> Is it possible to filter attributes that are sent by using radius proxy
> to the home-server? Something like attr_filter in the pre-proxy stage?
If attr_filter doesn't already have a pre-proxy stage, it should be
~2 minutes to
t;On Fri, 2003-08-08 at 15:48, Alan DeKok wrote:
> > > Chris van Meerendonk <[EMAIL PROTECTED]> wrote:
> > > > Is it possible to filter attributes that are sent by using radius proxy
> > > > to the home-server? Something like attr_filter in the pre-proxy stage
I have one FR 0.8.1 runing as Radius Proxy (radius A).
I got 3 kind of auth packet from one NAS
(1) userid
(2) abc/[EMAIL PROTECTED]
(3) [EMAIL PROTECTED]
I would like auth case (1) locally(radius A) ,
case (2) should be fwd to radius B
case (3) should be fwd to radius C
So I config my
At 08:06 AM 8/11/2003, you wrote:
On Fri, 2003-08-08 at 15:48, Alan DeKok wrote:
> Chris van Meerendonk <[EMAIL PROTECTED]> wrote:
> > Is it possible to filter attributes that are sent by using radius proxy
> > to the home-server? Something like attr_filter in the pre-
1 - 100 of 504 matches
Mail list logo