Re: [Oz-ISP] Portmaster 2E
Are you saying if I uncommented both udp addresses in /etc/services then radius is able to listen on both ports, I would have thought I would have had to have 2 radius's running. More information would be nice. Thanks Troy - Original Message - From: Artur Hecker [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Friday, May 10, 2002 7:15 PM Subject: Re: [Oz-ISP] Portmaster 2E hmmm, if it is important to you to keep your current configuration and for some reasons you don't want radius to listen on two ports, you could simply use a udp-proxy, i.e. a small simple programm which will copy ongoing packets from one udp-socket to another and vice versa... just search the net for qudproxy (those were the days ;-)) or ask me... you could start it on the same machine or on every intermediate you want. greetings art Troy Davis wrote: Ok it has been confirmed that on the PM2 the UDP port can not be changed :( Thanks to all that supplied your input Regards Troy -Original Message- From: Ryan Cochrane [mailto:[EMAIL PROTECTED]] Sent: Friday, 10 May 2002 9:10 AM To: Troy Davis Subject: RE: [Oz-ISP] Portmaster 2E set au 1 1.2.3.4 1812 (for radius) set acc 2 1.2.3.4 1813 (for accounting) I think. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Troy Davis Sent: Thursday, 9 May 2002 11:40 PM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: [Oz-ISP] Portmaster 2E Does anyone now how to change the UDP on the portmaster 2 from 1645/udp to 1813/udp. I have been searching for PM manuals but non have told me how to change this Thanks Troy - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- Artur Hecker artur[at]hecker.info - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: [Oz-ISP] Portmaster 2E
hello Troy! see comments inline, please Troy Davis wrote: Are you saying if I uncommented both udp addresses in /etc/services then radius is able to listen on both ports, I would have thought I would have huh? what makes you think that? i've never ever mentioned this particular file. what i was saying is, that you could copy the data from one udp-socket (i.e. ip+port) to another, namely with the help of the mentioned simple program. you said that your device (portmaster 2E) supposes the radius-server to be on port x which can't be reconfigured. if i understand well, your radius server runs at port y (with x != y). i proposed to you - as one possible solution - to copy the packets sent by the portmaster to the port x to the port y and vice versa. the ip can certainly be configured in this portmaster device, and the program which will copy the packets can be started wherever you want. basically it would work e.g. like this: src:srcport proxy:srcport proxy:x (fix!) radius:y portmaster - proxy radius-server where proxy is the address of the machine which proxy runs at. it _can_ be the radius-server itself. the proxy will of course do the vice versa in the opposite direction. the advantage of this setup is that you don't need to touch your running radius server nor to install another one. if you want to re-send the accounting packets you would start two instances of qudproxy, the second one working on x+1, y+1 ports. there is NO setup at all for the qudproxy program, you just have to start it, possibly in a while ( true; ) loop to avoid problems. regards, artur had to have 2 radius's running. More information would be nice. Thanks Troy - Original Message - From: Artur Hecker [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Friday, May 10, 2002 7:15 PM Subject: Re: [Oz-ISP] Portmaster 2E hmmm, if it is important to you to keep your current configuration and for some reasons you don't want radius to listen on two ports, you could simply use a udp-proxy, i.e. a small simple programm which will copy ongoing packets from one udp-socket to another and vice versa... just search the net for qudproxy (those were the days ;-)) or ask me... you could start it on the same machine or on every intermediate you want. greetings art -- Artur Hecker Groupe Accès et Mobilité hecker[at]enst.fr Département Informatique et Réseaux +33 1 45 81 750746, rue Barrault 75634 Paris cedex 13 http://www.infres.enst.fr ENST Paris - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: IPPOOL
On Fri, 10 May 2002, Ben Casado wrote: Guys; Every so often I need to reboot the server because the system accepts the requests, authenticates the users, but it doesn't assign anymore addresses. The client dies as ppp cannot complete. Any suggestions Ben From what i 've seen from the logs you 've sent the access server will send a NAS-Identifier attribute and not a NAS-IP-Address attribute in Access and Accounting requests. I 've changed the module to be able to handle this case (the key is now a string instead of an uint32). Do a cvs update and see how it works. Remember though to first delete the ip pool databases you may have since their structure has changed. -- Kostas Kalevras Network Operations Center [EMAIL PROTECTED] National Technical University of Athens, Greece Work Phone: +30 10 7721861 'Go back to the shadow' Gandalf - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
