Download/use luser error
Hey all, I am having a problem connecting to a Cisco 10k. Here's the user: [EMAIL PROTECTED] Password == ctdn Service-Type = Framed-User, Framed-Protocol = PPP, Context-Name = wherever.com, Cisco-Account-Info = Andtc_512, Cisco-AVPair = ip:addr-pool=wherever, Cisco-AVPair = ip:vrf-id=WHEREVER, Cisco-AVPair = ip:ip-unnumbered=loopback 1, Cisco-AVPair = subscriber:sg-service-type=primary When I test this, I get the following: radtest [EMAIL PROTECTED] ctdn 127.0.0.1:1812 10 testing123 Sending Access-Request of id 183 to 127.0.0.1:1812 User-Name = [EMAIL PROTECTED] User-Password = ctdn NAS-IP-Address = server NAS-Port = 10 rad_recv: Access-Accept packet from host 127.0.0.1:1812, id=183, length=92 Service-Type = Framed-User Framed-Protocol = PPP Context-Name = wherever.com Cisco-Account-Info = Andtc_512 Cisco-AVPair = ip:addr-pool=wherever Note that I don't get the last 3 Cisco-AVPair options. OK, I am running Version 0.9.3... Big deal! It's been working great for years until the network guy decided to change to the Cisco 10k. Anticipating a flood of Upgrade, stupid! e-mails, I decided to upgrade, just to see if that would help. So I downloaded the latest and greatest, gunzipped it (even tried the bunzip version), but when I try to untar the file, I get tar: directory checksum error... The 10k guy says that he can use this user config in his Steel Belted Radius server (actually kinda funny, he's a 10k guy using Juniper software)... Am I just using the wrong syntax that SBR fixes automagically? Any ideas? TIA, Alex - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Hello, and a (hopefully) simple question
So, what would be the difference between a customer who was disconnected, and one who cannot remember his/her password (yeah, this never happens, right?) There would be no differentiation, and customers who have simply forgotten their password may be upset when you tell then they are disconnected Might want to remember that when you write your web page. Just my $.10... Alex Vlad Sedov wrote: Well, what I'm trying to do is accept the session whether the password is correct or not, but if it's not correct, assign Framed-IP-Address from a different IP pool, so our firewall downstream from the NAS can redirect their HTTP traffic to a payment site. Vlad On Jan 25, 2008 11:27 AM, JB [EMAIL PROTECTED] wrote: If it's just a message you want to display, you could use the Reply- Message attribute. Of course, your access controler would have to know how handle this attribute. JB Marinko Tarlac wrote: radius will reply whatever you need but you need to tell him what do you want. For example, if you're using mysql, when user account expires you can add him to specific group and group attributes you can set in radgroupreply table. (ip pool, tx, rx limit etc.) On Jan 25, 2008 6:18 PM, Vlad Sedov [EMAIL PROTECTED] wrote: Hey folks. Right now, we use freeradius to authenticate simple pap/chap PPP clients. When a username/password is rejected, radius simply send back a reject message to the NAS. Is it possible to change this behavior so that a failed auth attempt gets accepted with an alternate IP pool instead of being rejected? the idea is to force suspended users through a web proxy that tells them that they have a billing issue, instead of rejecting their connection altogether. Any help would be appreciated Vlad JB - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: Freeradius using a Cistron users file.
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Chris Parker Sent: Tuesday, January 13, 2004 5:36 PM To: [EMAIL PROTECTED] Subject: RE: Freeradius using a Cistron users file. Perhaps rather than storing a crypted password in the plaintext Password attribute, you could try using the 'Crypted-Password' attribute. -Chris Thank you, Chris, for the advise. That worked. Is that documented anywhere, other than maybe the O'Reilly Radius book (that I don't have)? I could not find it anywhere in the man pages, docs, faq, etc. The confusion on this whole thing stemmed from the fact that I am trying to integrate a freeradius server into an existing Cistron environment, and the way we have configured the users file is to put an encrypted password string into the Password attribute... Thanks again. That's all I needed to get it to work. Alex - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html