Re: Mysql Freeradius authentication again !!
On Sat, 28 Jul 2001 10:53, David Eusse wrote: David, apologies that this is not an answer to your question. > Can you help me again confirming the minimum sql tables I need to fill in > order to make a simple system work ? Could I respectfully ask for a "me too" please. --markc - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Mysql Freeradius authentication again !!
Hi Alan, Well, I¹ve done what you told me and I still have problems. Now I have the feeling that I¹m doing something wrong. I reinstalled everything and I have inserted just one record into the database: mysql> insert into radcheck set username=¹david¹,attribute=¹crypt-password¹,value=encrypt(¹david¹,¹da¹); When I run radtest sending the correct username and password, I get a reject packet. If I insist I get an accept after 4 or 5 tries. I thought it could be related to some kind of request timeout but even if I wait I get that problem. If I give a wrong password, I get a reject, BUT sometimes I get an accept. I have run the following radtest command: % radtest david david localhost 1812 testing123 The problem is that I can¹t test using the real NAS because that would be really annoying for my clients. I need to use mysql because we are writing a PHP/mysql administration frontend and also need to easily restrict different kinds of behaviours (dial-up, ISDN, MPPP, etc) Can you help me again confirming the minimum sql tables I need to fill in order to make a simple system work ? What I don't understand is the inconsistency of the results, because it looks like it is related to the sql module. Regards, David Eusse -- *** David F. Eusse Uribe Gerente General Calipso Proveedor Internet Servicios Profesionales y Empresariales de Internet http://www.calipso.com.co *** > > From: [EMAIL PROTECTED] > Reply-To: [EMAIL PROTECTED] > Date: Fri, 27 Jul 2001 17:23:55 -0400 > To: [EMAIL PROTECTED] > Subject: Re: Mysql Freeradius authentication > > David Eusse <[EMAIL PROTECTED]> wrote: >> I have performed two different installs in different machines. I=B9m using RH >> 7.1 with mysql 3.23.36 and freeradius 0.1 > > Upgrade to the latest CVS snapshot, and I believe that the problem > will go away. The code has been updated significantly. > > Hmm.. is it time to release 0.2? > > Alan DeKok. > > - > List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: No route, no DNS
At 02:19 PM 27/07/01 -0400, [EMAIL PROTECTED] wrote: >Thorsten Ries <[EMAIL PROTECTED]> wrote: >> I am currently installing freeradius working together with an ascend >> router and I have problems to access the machines behind the router. >> Establishing the connection and pinging the router is no problem, but >> nothing else is working. >> >> The users-file: >> >> test Password=="password" >> Service-Type = Framed-User, >> User-Name = "ISDN Test", >> Framed-Protocol = PPP, >> Framed-Address = 10.100.1.1, >> Framed-Netmask = 255.255.255.0, > > Don't use Framed-Netmask I've found with our MAX6000 that I have to explicitly specify Framed-Netmask = 255.255.255.255 in the DEFAULT profile, otherwise I get the same problem of connecting, but no traffic flowing. So not specifying Framed-Netmask must tell the NAS "use whatever your default Netmask parameter is" which could vary depending on the brand and configuration of the NAS. In the case of the MAX it has the option of using the built in Answer profile as a template or not. (effectively an invisible DEFAULT section off the bottom of your user file :) I havn't fully investigated yet to find out exactly which option is causing this, and I feel hapier specifying it explicitly anyway Regards, Simon - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Mysql Freeradius authentication
David Eusse <[EMAIL PROTECTED]> wrote: > I have performed two different installs in different machines. I=B9m using RH > 7.1 with mysql 3.23.36 and freeradius 0.1 Upgrade to the latest CVS snapshot, and I believe that the problem will go away. The code has been updated significantly. Hmm.. is it time to release 0.2? Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Mysql Freeradius authentication
Hi, I have just installed Freeradius with Mysql support and after creating users, groupnames, etc into the database, I have an authentication problem when using radtest. The problem is that apparently there is a comparaison error in the sql module because I get inconsistent Accepts o Rejects. Sometimes a wrong password gives an accept and sometimes a good password is rejected. I have used crypted and unencrypted attributes but the problem persists. I have performed two different installs in different machines. I¹m using RH 7.1 with mysql 3.23.36 and freeradius 0.1 Thanks in advance for any help. David Eusse -- -- *** David F. Eusse Uribe Gerente General Calipso Proveedor Internet Servicios Profesionales y Empresariales de Internet http://www.calipso.com.co *** - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: accounting scripts
Simon Byrnand <[EMAIL PROTECTED]> wrote: > > The Merit server does not implement the RADIUS protocol correctly. > > > > > > Why doesn't that surprise me. :) All of the code I've seen from Merit is "creative". > Can you be more specific ? It mangles Proxy-State, at least. While FreeRADIUS may not be *completely* RFC compatible, that's because it doesn't implement some things.What it does implement, it does correctly. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: No route, no DNS
Thorsten Ries <[EMAIL PROTECTED]> wrote: > I am currently installing freeradius working together with an ascend > router and I have problems to access the machines behind the router. > Establishing the connection and pinging the router is no problem, but > nothing else is working. > > The users-file: > > test Password=="password" > Service-Type = Framed-User, > User-Name = "ISDN Test", > Framed-Protocol = PPP, > Framed-Address = 10.100.1.1, > Framed-Netmask = 255.255.255.0, Don't use Framed-Netmask http://www.freeradius.org/faq/#5.10 Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: WARNING: Unresponsive child thread (pid %lu) for request...
[EMAIL PROTECTED] wrote: > radiusd run: > WARNING: Unresponsive child thread (pid 35842) for request 34 Use thread pools. Or, upgrade to the latest CVS snapshot. See the 'download' section of the web page. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
No route, no DNS
Hi, I am currently installing freeradius working together with an ascend router and I have problems to access the machines behind the router. Establishing the connection and pinging the router is no problem, but nothing else is working. The users-file: test Password=="password" Service-Type = Framed-User, User-Name = "ISDN Test", Framed-Protocol = PPP, Framed-Address = 10.100.1.1, Framed-Netmask = 255.255.255.0, Ascend-IP-Direct = 192.168.0.3, Ascend-Route-IP = Route-IP-Yes, Ascend-Route-IPX = Route-IPX-No, Ascend-Bridge = Bridge-No, Ascend-Idle-Limit = 600, Ascend-Maximum-Channels = 2, Ascend-Maximum-Time = 7200, Ascend-Client-Primary-DNS = 10.1.1.6, Ascend-Client-Secondary-DNS = 10.1.1.7, Ascend-Client-Assign-DNS = DNS-Assign-Yes This configuration is similar to the (fine) working users-file of the current radius-server. If I try to make a connection, radiusd -X shows the following: Sending Access-Accept of id 107 to 192.168.0.1:1025 Service-Type = Framed-User User-Name = "ISDN Test" Framed-Protocol = PPP Framed-Address = 10.100.1.1 Framed-Netmask = 255.255.255.0 Ascend-IP-Direct = 192.168.0.3 Ascend-Route-IP = Route-IP-Yes Ascend-Route-IPX = Route-IPX-No Ascend-Bridge = Bridge-No Ascend-Idle-Limit = 600 Ascend-Maximum-Channels = 2 Ascend-Maximum-Time = 7200 Ascend-Client-Primary-DNS = 10.1.1.6 Ascend-Client-Secondary-DNS = 10.1.1.7 Ascend-Client-Assign-DNS = DNS-Assign-Yes What's wrong? What do I forget? Any ideas? Thanks, Thorsten - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
WARNING: Unresponsive child thread (pid %lu) for request...
Hi! I run freeradius0.1 to use: %configure %make %make install no use thread pool. #./radiusd& radiusd run: WARNING: Unresponsive child thread (pid 35842) for request 34 WARNING: Unresponsive child thread (pid 36866) for request 35 WARNING: Unresponsive child thread (pid 38914) for request 37 WARNING: Unresponsive child thread (pid 39938) for request 38 ... And,accounting timeout! Why? Lisa [EMAIL PROTECTED] - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
proxy does not work(use freeradius+mysql)
Hello 1. I use two freeradiuses and mysql. First freeradius should send query to second (remote freeradius). And second radius must authentication and accounting via Mysql. If I use one freeradius and Mysql everything works exellent. Nothing works when I use two radiuses. I configurd according documentation doc/proxy the proxy.conf and clients files on first and second freeradiuses. 2. Is there any possibility to use only one radius which could forward query by realm to mysql which situated on another server? I would apreciate any help Svetlana - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: duplicated loging
On Thu, Jul 26, 2001 at 05:41:01PM +, Miquel van Smoorenburg wrote: > Samuel Maftoul <[EMAIL PROTECTED]> wrote: > >I'm encountering troubles using freeradius-0.1 with an AS 5300 cisco nas: > >I have four (no more or less) duplication of every action. > > Does the machine you're running the radius server on have more > than one IP address? If so, bind the server to the IP address you're > using for the radius server by using the '-i' command line option > or the 'myip' parameter in the config file. > > This is in the FAQ, btw That's why i've already tested. :) It doesn't do anything. (in the faq it's written that masseages are sent a lot of time like if there was network connexion problem or things like that. My message are just repeated 4 times. Maybe something can help you to help me (:)) I have splet something:It's not an AS 5300 but a cisco 2514. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
