radrelay
Hello, I have problem with radrelay (FR 0.9.3). Sometimes, detail-combined get growing indefinitely on the two servers, and I can see the same accounting record many time in the two detail combined, one with the client-ip-address of the other and vice versa. I have problem with a broken proxy which send accounting reply with wrong signature. I have also problem with another client who's accounting server fail regulary and force FR to failover on his backup server. Could these facts make radrelay crasy ? - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
synchronous proxy and fail-over
Hello, I have found that the backup server of my client is never used when the his main server is down. Another strange behaviour is that the reject is not answered on a timeout but on receipt of the next authentication request, even if it comes one hour after ! To solve the problem I have changed synchronous to no. Synchronous mode is broken ? (I use 0.9.3) - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
CHAP problem
Hello, I have experienced a problem with CHAP when proxying authentication to a client where the proxy rejects all authentication. I solved the problem by patching the FR code myself and I think this should be fixed in future releases: The problem is that the proxy doesn't know the attribute CHAP-Challenge, and takes the challenge directly from the vector field, as says the RFC when the CHAP-challenge is not provided by the NAS. Well, when FR receives a request he systematically build a CHAP-Challenge attribute from the vector field if there isn't already one provided by the NAS. And when he proxys, he systematically builds a new random vector field, patching the challenge for the client. The solution is to copy the CHAP-Challenge in the vector when proxying. Someone think about undesirable side effects with doing this ? - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
rlm_attr_filter
hello, I want to filter attributes returned by a proxy, with freeradius 0.9.1, and I can get no result. I am asking myself how rlm_attr_filter can work since it has only an 'authorize' method called before the realm stuff. Why is this module not called in the post-proxy section ? - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: rlm_attr_filter
- Original Message - From: Chris Parker [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, September 18, 2003 6:21 PM Subject: Re: rlm_attr_filter Why is this module not called in the post-proxy section ? Because no one has supplied a patch to make it do that. I have one, we use it internally here in 'post-proxy' and it works well. I'll commit that later today, so you can pull it in the latest CVS builds from tomorrow on. Great! Thanks. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html