Simultaneous-Use
hey i'm still unable to make simultaneous-use work :( i tried adding a simultaneous-use definition for each user, in the radcheck table, but that didn't help as well. please,if anyone has any ideas :) checkrad works, and returns 1, so the problem is with raddb, or with getting the attributes from the mysql table. how can i check where the problem is? how can i know which attributes raddb retrieved from the database, for a specific group? thanks :) - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Simultaneous-Use
ok, i found that it works, but only for the last logged-in user. i think there's a problem with my radutmp file. it seesm it only remembers the last logged-in user. when i do radwho i get only one user, the last logged-in. i'm running on freebsd 4.5 with freeradius 0.5. any ideas? thanks :) hey i'm still unable to make simultaneous-use work :( i tried adding a simultaneous-use definition for each user, in the radcheck table, but that didn't help as well. please,if anyone has any ideas :) checkrad works, and returns 1, so the problem is with raddb, or with getting the attributes from the mysql table. how can i check where the problem is? how can i know which attributes raddb retrieved from the database, for a specific group? thanks :) - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: freeradius and mysql
Artur, My situation seems to be the same as yours.. no tmp files and radwho doesn't work.. I first sent a Start to get accounting going, which causes it to log in the detail file and in the mysql table.. I'm thinking that maybe if we use mysql, then it won't generate the tmp files because of it being redundant? I don't have much of a clue as to what I'm doing, so I'm probably wrong. But, are these tmp files just for keeping track of who is connected and for using radwho to see it? If so, then can't we just do some simple mysql queries and get the same info? If I'm wrong, please let me know, because this is all new to me. Thanks! Frank - Original Message - From: Artur Hecker [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Saturday, April 06, 2002 7:34 AM Subject: Re: freeradius and mysql tywe wrote: That did it!! My accounting is working just fine! And now I even see it updating the mysql tables! Thanks a TON! Frank does it write any radutmp, radwtmp, sradutmp files, etc.? can you use radwho? in which sequence did you send your Accounting messages? First an ON or first a Start? in my case i get it working but it just wouldn't log anything (except in the details file) do you have the same problem? any comments are appreciated! artur -- hecker[at]enst.fr - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: freeradius and mysql
Nevermind that last message, I just realized that radutmp is used for checking Simultaneous-Use.. Hmm, I wonder why it doesn't work. I have radutmp listed in the accounting section right below sql. Maybe it should come before sql? I'll have to test this out more when I get some time. Please let me know if you figure it out before then. Thanks! Frank - Original Message - From: Artur Hecker [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Saturday, April 06, 2002 7:34 AM Subject: Re: freeradius and mysql tywe wrote: That did it!! My accounting is working just fine! And now I even see it updating the mysql tables! Thanks a TON! Frank does it write any radutmp, radwtmp, sradutmp files, etc.? can you use radwho? in which sequence did you send your Accounting messages? First an ON or first a Start? in my case i get it working but it just wouldn't log anything (except in the details file) do you have the same problem? any comments are appreciated! artur -- hecker[at]enst.fr - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Configuring Free Radius to do MAC Address Authentication
Hi David , had the same problem a few days ago , but luckely with the help of this fine group of people here I got it sorted out. 1. Edit your raddb/clients file and add the IP of your NAS in there with the secret. 2. All you need to do then is to add the Mac address of the end user as the UserName and the secret of the Nas that your client is connecting from as the Password. Make sure you put the mac address in the following format. xx-xx. Hope this helps you. - Original Message - From: David Petruzzella [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Sunday, April 07, 2002 5:17 AM Subject: RE: Configuring Free Radius to do MAC Address Authentication I'm kind of new at this and I was wondering if anyone can help me out configuring free radius for mac address authentication. I have it compiled. But I don't how to set it up so I can use it to Authenticate the mac addresses of my wireless network. I couldn't find any documentation on the subject. _ Chat with friends online, try MSN Messenger: http://messenger.msn.com - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: freeradius and mysql
hello i don't use sql and it doesn't work either. the files are the aquivalents of the system-wide utmp, wtmp, etc. files, if i'm not completely wrong. in fact i'm waiting for a note/comment of one of the developers (alan?) but the issue is either well-known or not important since there is no answer inspite of numerous posts. that's kind of sad, they could at least say: hey, you dumb ass, the answer is in the archives, etc. so, no logging so far :-( tywe wrote: Nevermind that last message, I just realized that radutmp is used for checking Simultaneous-Use.. Hmm, I wonder why it doesn't work. I have radutmp listed in the accounting section right below sql. Maybe it should come before sql? I'll have to test this out more when I get some time. Please let me know if you figure it out before then. Thanks! Frank - Original Message - From: Artur Hecker [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Saturday, April 06, 2002 7:34 AM Subject: Re: freeradius and mysql tywe wrote: That did it!! My accounting is working just fine! And now I even see it updating the mysql tables! Thanks a TON! Frank does it write any radutmp, radwtmp, sradutmp files, etc.? can you use radwho? in which sequence did you send your Accounting messages? First an ON or first a Start? in my case i get it working but it just wouldn't log anything (except in the details file) do you have the same problem? any comments are appreciated! artur -- hecker[at]enst.fr - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- -- o [EMAIL PROTECTED]| o IRCNET:MadArt@#karlsruhe o [EMAIL PROTECTED] | o http://www.madart.de --- - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
freeradius port
hey we have an old netserver that we want to re-activate. the problem is that i couldn't find where to define the radius port. so i assume, since this is a box from 1996, that it tries to connect to port 1645. we use 1812. is it possible to tell radiusd to run on more than one port? if not,any idea? thanks :) - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Freeradius not working under firewall
Can not thank the responder enough for the quick response. DNS works in the machine, as is evidenced by success of nslookup, host commands and successful browsing. I am attaching the ipchain output. 192.168.5.2 is the NAS, 192.168.5.3 is the radius server. Chain input (policy ACCEPT): target prot opt source destination ports ACCEPT all -- anywhere anywhere n/a ACCEPT tcp !y anywhere 192.168.5.0/24any - any DENY all -- 10.0.0.0/8 192.168.5.0/24n/a DENY all -- 127.0.0.0/8 192.168.5.0/24n/a DENY all -- 172.16.0.0/12 192.168.5.0/24n/a DENY all -- 192.168.0.0/16 192.168.5.0/24n/a DENY tcp l- anywhere 192.168.5.0/24any - 31337 DENY udp l- anywhere 192.168.5.0/24any - 31337 DENY tcp l- anywhere 192.168.5.0/24any - 12345:12346 DENY udp l- anywhere 192.168.5.0/24any - 12345:12346 DENY tcp l- anywhere 192.168.5.0/24any - ingreslock DENY tcp l- anywhere 192.168.5.0/24any - 27665 DENY udp l- anywhere 192.168.5.0/24any - 27444 DENY udp l- anywhere 192.168.5.0/24any - 31335 DENY all -- BASE-ADDRESS.MCAST.NET/8 anywhere n/a DENY all -- anywhere BASE-ADDRESS.MCAST.NET/8 n/a DENY all -- 203.190.34.0/24 anywhere n/a DENY udp -- anywhere anywhere any - bootps:bootpc ACCEPT tcp -- 192.168.5.0/24 192.168.5.0/24any - http REJECT tcp -- anywhere 192.168.5.0/24any - auth REJECT udp -- anywhere 192.168.5.0/24any - auth DENY tcp -- anywhere anywhere any - netbios-ns:netbios-ssn DENY udp -- anywhere anywhere any - netbios-ns:netbios-ssn REJECT udp -- anywhere anywhere any - router DENY tcp l- anywhere anywhere any - nfs DENY udp l- anywhere anywhere any - nfs DENY tcp -- anywhere anywhere any - cvsup:6003 DENY udp -- anywhere anywhere any - cvsup:6003 ACCEPT tcp -- 192.168.5.2 anywhere any - radius ACCEPT udp -- 192.168.5.2 anywhere any - radius ACCEPT tcp -- 192.168.5.2 anywhere any - radius-acct ACCEPT udp -- 192.168.5.2 anywhere any - radius-acct ACCEPT icmp -- anywhere 192.168.5.0/24any - any ACCEPT tcp -- anywhere 192.168.5.0/24any - 1023:65535 ACCEPT udp -- anywhere 192.168.5.0/24any - 1023:65535 DENY all l- anywhere anywhere n/a Chain forward (policy DENY): Chain output (policy ACCEPT): target prot opt source destination ports ACCEPT all -- anywhere anywhere n/a ACCEPT icmp -- 192.168.5.0/24 anywhere any - any ACCEPT all -- anywhere anywhere n/a - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
startup
Hello, I've been working for quite a while using cistro radius, I had encountered some problems and weird function lately, so I've decided to upgrade to free-radius. I've configured using: ./configure --localstatedir=/var --sysconfdir=/etc as suggested in doc/README in order to maintain my old configuration files and locations. I've copied scripts/rc.radiusd onto my old startup file. NOW, when I try to run it I get this: # /etc/rc3.d/S60radiusd start Starting Freeradius server: radwatch/etc/rc3.d/S60radiusd: start-stop-daemon: command not found radiusd. I understand the script is searching for file/script/function called `start-stop-daemon` , BUT I have no idea where its located nor where to find it if a correct path is in order here. Please enlighten me ... regards Zohar Ram Development Networking Knet -- Tel: 03-6233640/658 Mobile: 972-52-755-641 Email: [EMAIL PROTECTED] -- - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Fw: startup
Sorry Debian -- RedHat I didn't see that coming. regards Zohar Ram Development Networking Knet -- Tel: 03-6233640/658 Mobile: 972-52-755-641 Email: [EMAIL PROTECTED] -- - Original Message - From: Zohar Ram [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, April 04, 2002 7:47 PM Subject: startup Hello, I've been working for quite a while using cistro radius, I had encountered some problems and weird function lately, so I've decided to upgrade to free-radius. I've configured using: ./configure --localstatedir=/var --sysconfdir=/etc as suggested in doc/README in order to maintain my old configuration files and locations. I've copied scripts/rc.radiusd onto my old startup file. NOW, when I try to run it I get this: # /etc/rc3.d/S60radiusd start Starting Freeradius server: radwatch/etc/rc3.d/S60radiusd: start-stop-daemon: command not found radiusd. I understand the script is searching for file/script/function called `start-stop-daemon` , BUT I have no idea where its located nor where to find it if a correct path is in order here. Please enlighten me ... regards Zohar Ram Development Networking Knet -- Tel: 03-6233640/658 Mobile: 972-52-755-641 Email: [EMAIL PROTECTED] -- - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
odd error since switching to an L2TP config
We're using a service that forwards all our calls into our radius server. We've recently switched to an L2TP config where our provider (Verizon) forwards lots of stuff through a Cisco L2TP tunnel. i.e. Verizon owns the access servers and forwards the info out to us. Since we've switched to the L2TP config, we now see an odd thing when people are logging in with a '[EMAIL PROTECTED]' username. If they login with '[EMAIL PROTECTED]' we see something like: Sun Apr 7 13:02:12 2002 : Auth: Login incorrect: [realm.com/cisco] (from nas l2tp port 35 cli 2015790101) Sun Apr 7 13:02:12 2002 : Auth: Login OK: [[EMAIL PROTECTED]] (from nas l2tp port 35 cli 2015790101) Sun Apr 7 13:02:13 2002 : Auth: Login incorrect: [realm.com/cisco] (from nas l2tp port 35 cli 2015790101) For analysis, we'll look at those radius logs as three lines: Line 1 and 3 are duplicates because (I assume) I have my radius server listening on two ip's. That'll change later when the other auth server goes on line. However, I don't understand why I'm GETTING line 1 and 3 in the first place. Why is it giving me 'realm.com/cisco' errors from it? How should I make it stop? Also, users can login fine, we're just gettin spurious logs that are annoying. If a user logs in with only 'username' (which we allow at this time) they can login and there's no odd logs messages. That would look like: Sun Apr 7 12:59:35 2002 : Auth: Login OK: [username] (from nas l2tp port 21 cli 2013830465) Related info: radiusd-freeradius-0.4 linux 2.4.17 radacct_to_mysql Cisco configs are looking something like: aaa new-model ! ! aaa authentication login default local aaa authentication ppp default group radius aaa authorization network default group radius aaa accounting network default start-stop group radius aaa session-id common Phone numbers and domains have been changed to protect the guilty. ;) Any help appreciated. Also, am having trouble finding a way to search the list archives at http://lists.cistron.nl/archives/freeradius-users/2002/04/ - is there a search tool available on that server? John - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Core dump when user is in group (msyql)
Hello, I have a RH7.2 box running on standard kernel with FR 0.5 and mysql 3.23.40. When I try to authenticate a user that is mapped into any group in usergroup table, I get a core dump. If the user is not a part of any group, then things are fine. The mysql table structure should be according to the schema provided with FR0.5. Anyone had the same problems? -- modcall: entering group authorize modcall[authorize]: module preprocess returns ok modcall[authorize]: module suffix returns ok radius_xlat: 'grp_a1' sql_escape in: 'grp_a1' sql_escape out: 'grp_a1' sql_set_user: escaped user -- 'grp_a1' radius_xlat: 'SELECT id,UserName,Attribute,Value,op FROM radcheck WHERE Username = 'grp_a1' ORDER BY id' rlm_sql: Reserving sql socket id: 4 radius_xlat: 'SELECT radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupche ck.Value,radgroupcheck.op FROM radgroupcheck,usergroup WHERE usergroup.Username = 'grp_a1' AND usergroup.GroupName = radgroupcheck.GroupName ORDER BY radgroupcheck.id' radius_xlat: 'SELECT id,UserName,Attribute,Value,op FROM radreply WHERE Username = 'grp_a1' ORDER BY id' radius_xlat: 'SELECT radgroupreply.id,radgroupreply.GroupName,radgroupreply.Attribute,radgrouprep ly.Value,radgroupreply.op FROM radgroupreply,usergroup WHERE usergroup.Username = 'grp_a1' AND usergroup.GroupName = radgroupreply.GroupName ORDER BY radgroupreply.id' Segmentation fault (core dumped) - Regards, Veli-Matti Riepula - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Freeradius not working under firewall
May I suggest you put this at the top if the ipchains rules: ipchains -A input -p udp -s 192.168.5.2/32 -d 192.168.5.3 1614:1615 -j RETURN Which says that if the backet is from the NAS, destined for the Radius server on the radius ports, to stop processing the rest of the firewall rules. Andrew Tait System Administrator Country NetLink Pty, Ltd E-Mail: [EMAIL PROTECTED] WWW: http://www.cnl.com.au 30 Bank St Cobram, VIC 3644, Australia Ph: +61 (03) 58 711 000 Fax: +61 (03) 58 711 874 It's the smell! If there is such a thing. Agent Smith - The Matrix - Original Message - From: Dr. Muhammad Masroor Ali [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Monday, April 08, 2002 1:06 AM Subject: Re: Freeradius not working under firewall Can not thank the responder enough for the quick response. DNS works in the machine, as is evidenced by success of nslookup, host commands and successful browsing. I am attaching the ipchain output. 192.168.5.2 is the NAS, 192.168.5.3 is the radius server. Chain input (policy ACCEPT): target prot opt source destination ports ACCEPT all -- anywhere anywhere n/a ACCEPT tcp !y anywhere 192.168.5.0/24any - any DENY all -- 10.0.0.0/8 192.168.5.0/24n/a DENY all -- 127.0.0.0/8 192.168.5.0/24n/a DENY all -- 172.16.0.0/12 192.168.5.0/24n/a DENY all -- 192.168.0.0/16 192.168.5.0/24n/a DENY tcp l- anywhere 192.168.5.0/24any - 31337 DENY udp l- anywhere 192.168.5.0/24any - 31337 DENY tcp l- anywhere 192.168.5.0/24any - 12345:12346 DENY udp l- anywhere 192.168.5.0/24any - 12345:12346 DENY tcp l- anywhere 192.168.5.0/24any - ingreslock DENY tcp l- anywhere 192.168.5.0/24any - 27665 DENY udp l- anywhere 192.168.5.0/24any - 27444 DENY udp l- anywhere 192.168.5.0/24any - 31335 DENY all -- BASE-ADDRESS.MCAST.NET/8 anywhere n/a DENY all -- anywhere BASE-ADDRESS.MCAST.NET/8 n/a DENY all -- 203.190.34.0/24 anywhere n/a DENY udp -- anywhere anywhere any - bootps:bootpc ACCEPT tcp -- 192.168.5.0/24 192.168.5.0/24any - http REJECT tcp -- anywhere 192.168.5.0/24any - auth REJECT udp -- anywhere 192.168.5.0/24any - auth DENY tcp -- anywhere anywhere any - netbios-ns:netbios-ssn DENY udp -- anywhere anywhere any - netbios-ns:netbios-ssn REJECT udp -- anywhere anywhere any - router DENY tcp l- anywhere anywhere any - nfs DENY udp l- anywhere anywhere any - nfs DENY tcp -- anywhere anywhere any - cvsup:6003 DENY udp -- anywhere anywhere any - cvsup:6003 ACCEPT tcp -- 192.168.5.2 anywhere any - radius ACCEPT udp -- 192.168.5.2 anywhere any - radius ACCEPT tcp -- 192.168.5.2 anywhere any - radius-acct ACCEPT udp -- 192.168.5.2 anywhere any - radius-acct ACCEPT icmp -- anywhere 192.168.5.0/24any - any ACCEPT tcp -- anywhere 192.168.5.0/24any - 1023:65535 ACCEPT udp -- anywhere 192.168.5.0/24any - 1023:65535 DENY all l- anywhere anywhere n/a Chain forward (policy DENY): Chain output (policy ACCEPT): target prot opt source destination ports ACCEPT all -- anywhere anywhere n/a ACCEPT icmp -- 192.168.5.0/24 anywhere any - any ACCEPT all -- anywhere anywhere n/a - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Compile errors Version 0.5 on Redhat 7.1
Under RedHat 7.0 I had to ./configure --without-rlm_x99_token to get it to compile. Under RedHat 7.2 it compiled fine without need to configure out the rlm_x99_token module. From the looks of it, rlm_x99_token is pretty obscure. I know I didn't need it. Hope that helps. - Dan On Sat, 2002-04-06 at 04:46, [EMAIL PROTECTED] wrote: I've upgraded to newest redhat 7.1 gcc and the newest 7.1 cpp still getting errors when compiling. here is the error gcc -g -O2 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -Wall -D_GNU_SOURCE -DNDEBUG -I../../include -I/usr/include -c x99_pwe.c -o x99_pwe.o x99_pwe.c:36:25: openssl/md4.h: No such file or directory gmake[6]: *** [x99_pwe.o] Error 1 gmake[6]: Leaving directory `/root/code/freeradius-0.5/src/modules/rlm_x99_token ' gmake[5]: *** [common] Error 1 gmake[5]: Leaving directory `/root/code/freeradius-0.5/src/modules' gmake[4]: *** [all] Error 2 gmake[4]: Leaving directory `/root/code/freeradius-0.5/src/modules' gmake[3]: *** [common] Error 1 gmake[3]: Leaving directory `/root/code/freeradius-0.5/src' gmake[2]: *** [all] Error 2 gmake[2]: Leaving directory `/root/code/freeradius-0.5/src' gmake[1]: *** [common] Error 1 gmake[1]: Leaving directory `/root/code/freeradius-0.5' make: *** [all] Error 2 i thought that the x99 support wasn't a big deal but when i do a make install it doesn't copy the program to the correct location. any thoughts? Ryan Ryan Cayton Technical Analyst Horine and Associates, LLC. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- - Dan Perik Computer Services Department Lapilo Center New Tribes Mission - PNG - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
FreeRadius 0.5 with mysql 3.22.32
Dear all,
I had configured my free-radius 0.5 on redhat 6.2
linux server.
I run the server by using "./radiusd -xxyz -l
stdout"
The problem is that my dial up users got "Error 5:
access denied",
however, the standard output shown things ok.. one
more thing..
I can find the record for username "egtwc98" at
radacct table too...
Pls help.
rad_recv: Accounting-Request packet from host
156.62.150.121:1646, id=178, length=92Thread 2 assigned request 1---
Walking the entire request list ---Cleaning up request 0 ID 177 with
timestamp 3cb0fd96Nothing to do. Sleeping until we see a
request.Thread 2 handling request 1, (1 handled so
far) NAS-IP-Address =
156.62.150.121 NAS-Port =
27 NAS-Port-Type =
Async User-Name =
"SSDJC5" Acct-Status-Type =
Start Acct-Authentic =
Local Service-Type =
Framed-User Acct-Session-Id =
"028D" Framed-Protocol =
PPP Framed-IP-Address =
156.62.155.230 Acct-Delay-Time =
0modcall: entering group preacct hints: Matched DEFAULT at
36 modcall[preacct]: module "preprocess" returns updatedmodcall:
group preacct returns updatedmodcall: entering group
accountingradius_xlat:
'/etc/radius/var/log/radius/radacct/156.62.150.121/detail'rlm_detail:
/etc/radius/var/log/radius/radacct/%{Client-IP-Address}/detail expands to
/etc/radius/var/log/radius/radacct/156.62.150.121/detail
modcall[accounting]: module "detail" returns okradius_xlat:
'SSDJC5'sql_escape in: 'SSDJC5'sql_escape out:
'SSDJC5'sql_set_user: escaped user --
'SSDJC5'radius_xlat: 'INSERT into radacct (RadAcctId, AcctSessionId,
AcctUniqueId, UserName, Realm, NASIPAddress, NASPortId, NASPortType,
AcctStartTime, AcctStopTime, AcctSessionTime, AcctAuthentic, ConnectInfo_start,
ConnectInfo_stop, AcctInputOctets, AcctOutputOctets, CalledStationId,
CallingStationId, AcctTerminateCause, ServiceType, FramedProtocol,
FramedIPAddress, AcctStartDelay, AcctStopDelay) values('', '028D', '',
'SSDJC5', '', '156.62.150.121', '', 'Async', '2002-04-08 10:20:08', '0', '0',
'Local', '', '', '0', '0', '', '', '', 'Framed-User', 'PPP', '156.62.155.230',
'0', '0')'rlm_sql: Reserving sql socket id: 19query: INSERT into
radacct (RadAcctId, AcctSessionId, AcctUniqueId, UserName, Realm, NASIPAddress,
NASPortId, NASPortType, AcctStartTime, AcctStopTime, AcctSessionTime,
AcctAuthentic, ConnectInfo_start, ConnectInfo_stop, AcctInputOctets,
AcctOutputOctets, CalledStationId, CallingStationId, AcctTerminateCause,
ServiceType, FramedProtocol, FramedIPAddress, AcctStartDelay, AcctStopDelay)
values('', '028D', '', 'SSDJC5', '', '156.62.150.121', '', 'Async',
'2002-04-08 10:20:08', '0', '0', 'Local', '', '', '0', '0', '', '', '',
'Framed-User', 'PPP', '156.62.155.230', '0', '0')rlm_sql: Released sql
socket id: 19 modcall[accounting]: module "sql" returns
okradius_xlat: 'SSDJC5' modcall[accounting]: module
"radutmp" returns okmodcall: group accounting returns okSending
Accounting-Response of id 178 to 156.62.150.121:1646Finished request
1Going to the next requestThread 2 waiting to be assigned a
request
Regards,
Benson
Re: how does detail file works.
IQ,
The detail file is immediately updated whenever accounting requests come in.
And I'm pretty sure that it never deletes itself, that would be up to you to
setup a rotation script.
Frank
- Original Message -
From: freeradlist@GoldenIT [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Sunday, April 07, 2002 7:40 PM
Subject: how does detail file works.
Hi Every One,
I am new to free radius. It is working fine for me.
I
was just wondering how does detail file
(/usr/local/var/log/radius/radaact/ip/detail) works in free radius. I
mean
does it gives us stats on daily basis or weekly basis, is it written over
daily or weekly or does it keeps the record since the radius is installed?
I
have software that imports detail file once a month and make stats out of
it. I was wondering if detail file is getting written over every day if
yes
then how will we make monthly stats. I also have downloaded the radacct
script from the related software which is working pretty well for me,
but
this script is also providing me the stats since the day I have installed
the script nothing before that.
Kindly guide me about he working of detail file. And yes I installed
demon tools they worked fine for two weeks and then died so I am not using
them anymore but the Killscript.sh is working pretty well for me.
regards,
IQ
- Original Message -
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Friday, April 05, 2002 11:42 PM
Subject: Freeradius-Users digest, Vol 1 #624 - 8 msgs
Send Freeradius-Users mailing list submissions to
[EMAIL PROTECTED]
To subscribe or unsubscribe via the World Wide Web, visit
http://lists.cistron.nl/mailman/listinfo/freeradius-users
or, via email, send a message with subject or body 'help' to
[EMAIL PROTECTED]
You can reach the person managing the list at
[EMAIL PROTECTED]
When replying, please edit your Subject line so it is more specific
than Re: Contents of Freeradius-Users digest...
Today's Topics:
1. how to validate (Takemura Kiyoaki)
2. Re: freeradius and mysql (Nicolas)
3. Using Radius for Mac Auth. with Wireless Internet. (Stephan
Viljoen)
4. Authenticate with Windows NT domain (Joga Singh)
5. error when using freeradius with mysl authentication (Dirk
Tanneberger)
6. Fw: Using Radius for Mac Auth. with Wireless Internet. (Stephan
Viljoen)
7. rlm_sql_postgresql problem in FR 0.5+ (Timophey)
8. FreeRADIUS and PAM (McNutt, Justin M.)
--__--__--
Message: 1
Date: Fri, 05 Apr 2002 16:03:15 +0900
From: Takemura Kiyoaki [EMAIL PROTECTED]
Organization: Kochi University
To: [EMAIL PROTECTED]
Subject: how to validate
Reply-To: [EMAIL PROTECTED]
Hi,all.
We are in trouble with seeting up freeradius0.5 on solaris8.
Every connection became rejected as invalid password
(radius log below)
Fri Apr 5 14:48:30 2002 : Info: Listening on IP address
133.97.XXX.XXX ports 1645/udp and 1646/udp.
Fri Apr 5 14:48:30 2002 : Info: Ready to process requests.
Fri Apr 5 14:54:53 2002 : Auth: rlm_unix: [takemura]: invalid password
Fri Apr 5 14:54:58 2002 : Info: Sending duplicate authentication reply
to client ppp1-gw1:1645 - ID: 124
Fri Apr 5 14:54:58 2002 : Auth: rlm_unix: [takemura]: invalid password
Fri Apr 5 14:55:51 2002 : Auth: rlm_unix: [takemura]: invalid password
Fri Apr 5 14:55:56 2002 : Info: Sending duplicate authentication reply
to client ppp1-gw1:1645 - ID: 126
We use NIS password(no shadow file type).
This is an output between site radiusd.conf and the original one.
bind_address = 133.97.XXX.XXX
---
bind_address = *
186c185
port = 1645
---
port = 0
334,335c333,334
proxy_requests = no
# $INCLUDE ${confdir}/proxy.conf
---
proxy_requests = yes
$INCLUDE ${confdir}/proxy.conf
437c436
cache = no
---
cache = yes
440c439
# cache_reload = 600
---
cache_reload = 600
454,456c453,455
passwd = /var/nis/passwd
# shadow = /etc/shadow
group = /var/nis/group
---
passwd = /etc/passwd
# shadow = /etc/shadow
group = /etc/group
Debug mode output is
/usr/local/sbin/radiusd -xxyz -l stdout
Starting - reading configuration files ...
reread_config: reading radiusd.conf
Config: including file: /usr/local/etc/raddb/clients.conf
Config: including file: /usr/local/etc/raddb/snmp.conf
Config: including file: /usr/local/etc/raddb/sql.conf
main: prefix = /usr/local
main: localstatedir = /usr/local/var
main: logdir = /usr/local/var/log/radius
main: libdir = /usr/local/lib
main: radacctdir = /usr/local/var/log/radius/radacct
main: hostname_lookups = no
read_config_files: reading dictionary
read_config_files: reading clients
read_config_files: reading realms
