Re: Dynamic IP addresses from FreeRadius questions
20-Jan-03 at 21:51, Li Lin ([EMAIL PROTECTED]) wrote : > I am setting up the dynamic IP addresses from FreeRadius and I have some > questions as follows. > > 1. I included the rlm_ippool into the Makefile and put dbm in the users > file. >I do not know why I still get the following an error message as follow. > > "/usr/local/etc/raddb/users[101]: Parse error (reply) for entry > userSecret1Name: Unknown attribute Pool-Name > Errors reading /usr/local/etc/raddb/users " This means line 101 of your users file has an error. Pool-Name is not a valid attribute. In fact, it means exactly what it says in the error message. > 2. Could you check my users, radiusd.conf files to see anything > missing/incorrect for the dynamic IP Radius addressing? Get it working without this first. > 3. I also included the run time messages, could you please help me to take a > look whether all modules have been installed properly? There's just not the time in a day for me (or anyone else) to check your configuration in its raw verbose format like that. Get things working in stages, never ask so many questions at once, walk before you run. Regards, -- |-Simon White, Internet Services Manager, Certified Check Point CCSA. |-MTDS Internet, Security, Anti-Virus, Linux and Hosting Solutions. |-MTDS 14, rue du 16 novembre, Agdal, Rabat, Morocco. |-MTDS tel +212.3.767.4861 - fax +212.3.767.4863 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Dynamic IP addresses from FreeRadius questions
Hello,
Tuesday, January 21, 2003, 5:51:06 AM, Li Lin wrote:
LL> Hi,
LL> I am setting up the dynamic IP addresses from FreeRadius and I have some
LL> questions as follows.
LL> 1. I included the rlm_ippool into the Makefile and put dbm in the users
LL> file.
It is good idea to leave only modules you plan to use.
So review the presence some modules (chap, mschap,suffix,dbm, ...)
in configuration file or learn more about it.
LL>I do not know why I still get the following an error message as follow.
LL> "/usr/local/etc/raddb/users[101]: Parse error (reply) for entry
LL> userSecret1Name: Unknown attribute Pool-Name
LL> Errors reading /usr/local/etc/raddb/users "
Which version of freeradius do you use?
Look the Pool-Name attribute is defined in dictionaries by command
fgrep Pool-Name /usr/local/etc/raddb/dictionary*
LL> 2. Could you check my users, radiusd.conf files to see anything
LL> missing/incorrect for the dynamic IP Radius addressing?
LL> authorize {
LL>
LL> preprocess
LL> chap did you use it ?
LL> mschapdid you use it ?
LL> suffix
LL> files
LL> mypoolmay be safety removed from this section
LL> dbm did you use it ?
LL>
LL> }
LL> Thank you very much.
LL> Li Lin
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Dynamic IP addresses from FreeRadius questions
Hi,
I am setting up the dynamic IP addresses from FreeRadius and I have some
questions as follows.
1. I included the rlm_ippool into the Makefile and put dbm in the users
file.
I do not know why I still get the following an error message as follow.
"/usr/local/etc/raddb/users[101]: Parse error (reply) for entry
userSecret1Name: Unknown attribute Pool-Name
Errors reading /usr/local/etc/raddb/users "
2. Could you check my users, radiusd.conf files to see anything
missing/incorrect for the dynamic IP Radius addressing?
3. I also included the run time messages, could you please help me to take a
look whether all modules have been installed properly?
Thank you very much.
Li Lin
--
(a) RADIUSD.CONF file
modules {
ippool ippool {
name = ippool
session-db = /usr/local/etc/raddb/ippool-sess-db
ip-index = /usr/local/etc/raddb/ippool-idx-db
range-start = 177.30.0.1
range-stop = 177.30.255.254
netmask = 255.255.0.0
cache-size = 1000
}
dbm {
usersfile = /usr/local/etc/raddb/users.db
}
}
authorize {
preprocess
chap
mschap
suffix
files
mypool
dbm
}
accounting {
acct_unique
detail
unix# wtmp file
radutmp
mypool
}
post-auth {
# Get an address from the IP Pool.
mypool
}
++
(b) USERS file
userSecret1Name Auth-Type := Local, Password == "XXX"
Service-Type = Framed-User,
Framed-Protocol = PPP,
Framed-MTU = 1500,
Framed-Filter-Id = "std.ppp",
Framed-Compression = Van-Jacobsen-TCP-IP,
Service-Type = Authenticate-Only,
Pool-Name := "mypool",
Framed-IP-Address = 177.30.0.1+,
(c) Run time messages.
/usr/local/etc/raddb#radiusd -X
Starting - reading configuration files ...
reread_config: reading radiusd.conf
Config: including file: /usr/local/etc/raddb/proxy.conf
Config: including file: /usr/local/etc/raddb/clients.conf
Config: including file: /usr/local/etc/raddb/snmp.conf
Config: including file: /usr/local/etc/raddb/sql.conf
main: prefix = "/usr/local"
main: localstatedir = "/usr/local/var"
main: logdir = "/usr/local/var/log/radius"
main: libdir = "/usr/local/lib"
main: radacctdir = "/usr/local/var/log/radius/radacct"
main: hostname_lookups = no
main: max_request_time = 30
main: cleanup_delay = 5
main: max_requests = 1024
main: delete_blocked_requests = 0
main: port = 0
main: allow_core_dumps = no
main: log_stripped_names = no
main: log_file = "/usr/local/var/log/radius/radius.log"
main: log_auth = no
main: log_auth_badpass = no
main: log_auth_goodpass = no
main: pidfile = "/usr/local/var/run/radiusd/radiusd.pid"
main: user = "root"
main: group = "root"
main: usercollide = no
main: lower_user = "no"
main: lower_pass = "no"
main: nospace_user = "no"
main: nospace_pass = "no"
main: checkrad = "/usr/local/sbin/checkrad"
main: proxy_requests = yes
proxy: retry_delay = 5
proxy: retry_count = 3
proxy: synchronous = no
proxy: default_fallback = no
proxy: dead_time = 120
proxy: servers_per_realm = 15
security: max_attributes = 200
security: reject_delay = 1
security: status_server = no
main: debug_level = 0
read_config_files: reading dictionary
read_config_files: reading naslist
read_config_files: reading clients
read_config_files: reading realms
radiusd: entering modules setup
Module: Library search path is /usr/local/lib
Module: Loaded expr
Module: Instantiated expr (expr)
Module: Loaded PAP
pap: encryption_scheme = "crypt"
Module: Instantiated pap (pap)
Module: Loaded CHAP
Module: Instantiated chap (chap)
Module: Loaded MS-CHAP
mschap: ignore_password = no
mschap: use_mppe = yes
mschap: require_encryption = no
mschap: require_strong = no
mschap: passwd = "(null)"
mschap: authtype = "MS-CHAP"
Module: Instantiated mschap (mschap)
Module: Loaded System
unix: cache = no
unix: passwd = "(null)"
unix: shadow = "(null)"
unix: group = "(null)"
unix: radwtmp = "/usr/local/var/log/radius/radwtmp"
unix: usegroup = no
unix: cache_reload = 600
Module: Instantiated unix (unix)
Module: Loaded preprocess
preprocess: huntgroups = "/usr/local/etc/raddb/huntgroups"
preprocess: hints = "/usr/local/etc/raddb/hints"
preprocess: with_ascend_hack = no
preprocess: ascend_channels_per_line = 23
preprocess: with_ntdomain_hack = no
preprocess: with_specialix_jetstream_hack = no
preprocess: with_cisco_vsa_hack = no
Module: Instantiated preprocess (preprocess)
Module: Loaded realm
realm: format = "suffix"
realm: delimiter = "@"
Module: Instantiated realm (suffix)
Module: Loaded files
files: usersfile = "/usr/local/etc/raddb/users"
files: acctusersfile = "/usr/local/etc/raddb/acct_users"
files: preproxy_us
