Re: missing config items on reinstall

2011-02-15 Thread admin 
I would love to run the bootstrap command, but I get the make all error. 
Bootstrap did not exist till I copied it down from the web site. Should it work 
by copying the .cnf files to /certs,  editing them, then running ./bootstrap ? 
( I deleted all .csr and .key files)
-Original Message-
From: Alan Buxey a.l.m.bu...@lboro.ac.uk
Sender: freeradius-users-bounces+admin=lctn@lists.freeradius.org
Date: Tue, 15 Feb 2011 18:02:33 
To: FreeRadius users mailing listfreeradius-users@lists.freeradius.org
Reply-To: FreeRadius users mailing list freeradius-users@lists.freeradius.org
Subject: Re: missing config items on reinstall

Hi,

 rlm_eap: SSL error error:02001002:system library:fopen:No such file or 
 directory
 rlm_eap_tls: Error reading certificate file /etc/freeradius/certs/server.pem
 rlm_eap: Failed to initialize type tls

when you first run FreeRADIUS, if you havent made certs etc, then it will make 
certs
for youcheck the eap.conf config file and see the line

make_cert_command = ${certdir}/bootstrap


once the system is running, it will assume that the required certs are in 
place...in
your case you have deleted those...they either need to be put 
back/recovered...or,
if they are self-signed testing ones, just run the bootstrap command again!

alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.


-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Spaces in the end of User-Name.

2011-01-19 Thread admin 
Alexander Clouter a...@digriz.org.uk писал(а) в своём письме Wed, 19 Jan  
2011 10:54:11 +0200:



Ideally you should do something like:

authorization {
[snipped]

if (User-Name =~ /^\s/ || User-Name =~ /\s$/) {
update reply {
Reply-Message := Remove spaces from User-Name
}
reject
}

[snipped]
}



Something doesn't work.

sites-enabled/default:
authorize {
preprocess
chap
mschap
suffix
files
sql
logintime
auth
}

radiusd.conf:
exec auth {
   program = /usr/local/freeradius/run/Money %u %n %{NAS-Port}
   wait = yes
   input_pairs = request
   shell_escape = yes
   output = no
   output_pairs = reply
}

If I check existence of spaces in User-Name in my program  
/usr/local/freeradius/run/Money all works.

If I insert

if (User-Name =~ /^\s/ || User-Name =~ /\s$/) {
update reply {
Reply-Message := Remove spaces from User-Name
}
reject
}

in section authorize{} in any place the user with spaces in User-Name  
successfully transits authorization.


This unlang-code doesn't work too

if (User-Name =~ /(.+)\s+$/i) {
update request {
User-Name := %{1}
}
}

Where I was mistaken?
FreeRADIUS Version 2.1.10


-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Spaces in the end of User-Name.

2011-01-18 Thread admin 

Hi!
What i must to specify in a config file of freeradius2 that in each
request before its further handling it automatically deleted spaces in the
end of %{User-Name}?
The parameter nospace_user doesn't work. Not to start up users with spaces
in username doesn't approach.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Spaces in the end of User-Name.

2011-01-18 Thread admin 
Alan DeKok al...@deployingradius.com писал(а) в своём письме Wed, 19 Jan  
2011 09:13:35 +0200:



admin wrote:

What i must to specify in a config file of freeradius2 that in each
request before its further handling it automatically deleted spaces in  
the

end of %{User-Name}?


  You need to write a custom rule in unlang.



Something of type such this?

if (%{User-Name}=~/([a-zA-Z0-9_.]+)\s+$/i) {
%{User-Name}=%{1}
}

Where it is necessary to insert it in config file that User-Name changed  
globally before any actions with it?



  However... my $0.02 is that you shouldn't.  Instead, if you see a
User-Name with spaces, *reject* it.  The user is trying to play games.


Yes, but it creates many questions from users.



-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

RE: Wanted: Commercial FreeRADIUS Support

2010-06-17 Thread Jackal Admin 

I did!  They were initially unresponsive to phone and e-mail.
They have responded now!  In case that doesn't work out, any other
suggestions?
Certainly some people here must have experience with getting paid outside
support?


Garber, Neal wrote:
 
 Have you looked here: http://networkradius.com/ 
 
 Even if you aren't able to provide support, I'd be interested in any
 suggestions for where to get support from.
 
 -
 List info/subscribe/unsubscribe? See
 http://www.freeradius.org/list/users.html
 
 

-- 
View this message in context: 
http://old.nabble.com/Wanted%3A-Commercial-FreeRADIUS-Support-tp28896212p28919856.html
Sent from the FreeRadius - User mailing list archive at Nabble.com.

-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Wanted: Commercial FreeRADIUS Support

2010-06-16 Thread Jackal Admin 

Even if you aren't able to provide support, I'd be interested in any
suggestions for where to get support from.


Jackal Admin wrote:
 
 We have a a hotspot authentication system built on FreeRADIUS, MySQL, and
 PHP.
 It is not too complicated but we don't have the time to work on it
 ourselves.
 Looking for an expert or company to provide support, modification, and
 troubleshooting for this installation.
 E-mail to ad...@jackalwireless.net
 
 

-- 
View this message in context: 
http://old.nabble.com/Wanted%3A-Commercial-FreeRADIUS-Support-tp28896212p28908243.html
Sent from the FreeRadius - User mailing list archive at Nabble.com.

-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Wanted: Commercial FreeRADIUS Support

2010-06-15 Thread Jackal Admin 

We have a a hotspot authentication system built on FreeRADIUS, MySQL, and
PHP.
It is not too complicated but we don't have the time to work on it
ourselves.
Looking for an expert or company to provide support, modification, and
troubleshooting for this installation.
E-mail to ad...@jackalwireless.net

-- 
View this message in context: 
http://old.nabble.com/Wanted%3A-Commercial-FreeRADIUS-Support-tp28896212p28896212.html
Sent from the FreeRadius - User mailing list archive at Nabble.com.

-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: NAS-IP-Address in mysql

2007-02-14 Thread Dan Mahoney, System Admin 
On Thu, 15 Feb 2007, VeNoMouS wrote:

 Hi guys After doing some tests, I just discovered that I cant have more then
 one NAS-IP-Address in radgroupcheck (it seems to ignore the others) does
 anyone know of a work around as i dont want to use the huntgroup file (makes
 it kinda anonying since im doing a web frontend for administration).

this is getting to be a really common question :)

Yes, you need to embed the nas-ip-address as part of your query (in the 
WHERE clause (same way as you match the username) so only the matching 
items are returned.

-Dan



 Cheers


 -
 List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


--

I can feel it, comin' back again...Like a rolling thunder chasin' the
wind...

-Dan Mahoney, JS, JB  SL, May 10th, 1997, Approx 1AM

Dan Mahoney
Techie,  Sysadmin,  WebGeek
Gushi on efnet/undernet IRC
ICQ: 13735144   AIM: LarpGM
Site:  http://www.gushi.org
---

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: SQL help from someone who groks c, please?

2007-02-08 Thread Dan Mahoney, System Admin 
On Thu, 8 Feb 2007, ChristosH wrote:


No, wrong.

You can include any %{check-item} in your query.  I didn't have to modify 
the code at all, but my queries are PERVERSE.  Yours will probably be 
simpler.

If you want to give me your proposed database setup and schema, and what 
you need to auth against, I might be able to offer you a quick answer.  If 
it's a longer and more involved thing, contact me off-list and I might be 
able to work something for you.

This is my auth query (which is actually two) (beware, it's for our site 
database which polls a 
LOT of info from different tables you won't need -- however I find this to 
be a far more real-world example than dedicated radius tables) -- You can 
see that in this case I manually insert the Password Attribute, and 
Operator by using string literals.

authorize_check_query=\
SELECT `adm_permissions`.`admPermitID` AS `id`, 
`adm_permissions`.`admp_username` AS `UserName`, 'Password' as Attribute, 
\
`adm_permissions`.`admp_password` AS `Value`, '==' as Op FROM 
`adm_permissions` , `switches` Inner Join `interface_ip` ON \
`switches`.`id` = `interface_ip`.`deviceid` WHERE admp_username = 
'%{SQL-User-Name}' AND \
`interface_ip`.`interface_is_primary` = '1' AND \
interface_address = '%{NAS-IP-Address}'

This above gets permissions for any staff user, and checks our one-to-many 
interface table to find out what device they're actually logging into.

UNION SELECT IPCustomerID as id, 
`ip_customer`.`ipc_rmtusername`, 'Password' as \
Attribute,\
`ip_customer`.`ipc_rmtpassword` as Value, '==' as Op FROM `ip_customer` 
Inner Join `interface_ip` ON \
`ip_customer`.`ipc_rmtip` = `interface_ip`.`interface_address` Inner Join 
`switches` ON `switches`.`id` = \
`interface_ip`.`deviceid` WHERE interface_address = '%{NAS-IP-Address}' 
AND ipc_rmtusername = '%{SQL-User-Name}' \
GROUP BY `ip_customer`.`ipc_rmtusername`,\
`interface_ip`.`interface_address`

This does the same for any customer user.

Then my reply-items

authorize_reply_query = SELECT `ip_customer`.`ipCustomerID` AS `id`, 
`ip_customer`.`ipc_rmtusername` AS UserName,\
`rad_reply`.`Attribute`,`rad_reply`.`Value`, `rad_reply`.`Op` FROM 
`ip_customer` Left Join `interface_ip` ON \
`ip_customer`.`ipc_rmtip` =`interface_ip`.`interface_address` Inner Join 
`switches` ON `switches`.`id` = \
`interface_ip`.`deviceid` Inner Join`rad_reply` ON `switches`.`role` = 
`rad_reply`.`devicetype` WHERE \
`rad_reply`.`Usertype` = '2' AND ipc_rmtusername ='%{SQL-User-Name}' and 
interface_address = '%{NAS-IP-Address}' group by \
ipc_rmtusername, interface_address


This only lets a customer in if it has a devicetype of 2 (which is a 
remote reboot unit AND if they are listed as having a device on that unit. 
We have a table that specifies if you are a customer user then your reply 
is Outlet  If you're staff then it's Admin-User.

UNION 
SELECT`adm_permissions`.`admPermitID` AS `id`, 
`adm_permissions`.`admp_username` \
AS `UserName`, `rad_reply`.`Attribute`,`rad_reply`.`Value`, 
`rad_reply`.`Op` FROM `adm_permissions` , `switches` Inner \
Join `interface_ip` ON `switches`.`id` =`interface_ip`.`deviceid` Inner 
Join `rad_reply` ON `switches`.`role` = \
`rad_reply`.`devicetype` WHERE`rad_reply`.`Usertype` = '1' AND 
admp_username = '%{SQL-User-Name}' and interface_address = \
'%{NAS-IP-Address}'

Do the same as above with staff.

UNION SELECT `remote`.`port`as id, 
`ip_customer`.`ipc_rmtusername` as UserName, _latin1 \
'APC-Outlets' as Attribute,group_concat(remote.port order by remote.port 
asc separator ',') as Value, _latin1 ':=' as \
Op FROM `remote` Inner Join`ip_customer` ON `remote`.`suite` = 
`ip_customer`.`ipc_suite` AND `remote`.`row` = \
`ip_customer`.`ipc_row` AND`remote`.`rack` = `ip_customer`.`ipc_rack` AND 
`remote`.`server` = `ip_customer`.`ipc_server` \
Inner Join `interface_ip` ON`remote`.`deviceid` = 
`interface_ip`.`deviceid` Inner Join `switches` ON remote.deviceid = \
switches.id WHERE`ip_customer`.`ipc_rmtreboot` = 'y' AND 
ip_customer.ipc_rmtusername = '%{SQL-User-Name}' AND ipc_rmtip = \
'%{NAS-IP-Address}' AND switches.role = '4' GROUP BY interface_address, 
`ip_customer`.`ipc_rmtusername`

If they are a customer, return a comma-separated list of which outlets 
they 
are authorized for. (See the APC radius spec).






 Phil Mayers wrote:

 Dan Mahoney, System Admin wrote:

 My suggestion is that you use a custom schema and queries for your
 database - probably a stored procedure. Pass the NAS-IP-Address into
 these queries, and return different values based on the nas. Effectively
 you move the code that walks over the request and chooses the right
 values into the SQL server.


 So if I was looking to select a different response based on NAS what I
 should be doing is creating a stored procedure that ends up authenticating
 for me? I don't quite see where this would fit in with the rlm_sql logic.
 Would that go in the sql.conf file? For using a new schema, would that mean
 instead adding

Re: SQL help from someone who groks c, please?

2007-02-08 Thread Dan Mahoney, System Admin 
On Thu, 8 Feb 2007, ChristosH wrote:



 Phil Mayers wrote:

 A stored procedure is one solution to a particular set of problems.
 Whether it's appropriate depends on what you're trying to do.

 What do you want to achieve? You can certainly vary the reply info based
 on NAS without a stored procedure.


 Well, what I want to do is return a different vendor specific response based
 on the NAS IP.  The user data doesn't change depending on the NAS IP, but
 depending on where the user tries to authenticate from they'll have a
 different source NAS IP in the authenticate request packet and my response
 has to return a different response depending on where they are. Right now I
 have only 2 different responses that they could be, so I don't think it
 should be too difficult. Is there a quick workaround?

Okay, so create a table with your NASes, include the IP adderss, include a 
type flag.

Create another table with the responses for each type, join to the query 
on the type flag.  Use those responses.

-Dan

--

A mother can be an inspiration to her little son, change his thoughts,
his mind, his life, just with her gentle hum.

-No Doubt, Different People, from Tragic Kingdom


Dan Mahoney
Techie,  Sysadmin,  WebGeek
Gushi on efnet/undernet IRC
ICQ: 13735144   AIM: LarpGM
Site:  http://www.gushi.org
---

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

SQL help from someone who groks c, please?

2007-02-04 Thread Dan Mahoney, System Admin 
Hey all...

Disclaimer: If I should ask this on the devel list, let me know and I 
will.  As I'm not qualified in the languages to be a developer, this 
seemed the more logical place.

I'm decent with Radius but have just come to freeradius over Cistron...I'm 
still in the process of assimilating the op syntax, but that's not the 
problem, I think.

That said, I figured out two possible ways to handle my previous question 
regarding advanced SQL auth (including multiple occurances of the same 
username with different check-items).  What I need to know is which way it 
was intended to work (either one of my two thoughts here, or something 
entirely -- or even what I want to do isn't possible.)

Here's the thought (apologies if the tabs get messed up).

a) The rows returned are parsed in order, just as if they were a users 
file, and something (perhaps a password entry or an op of ==) triggers the 
system that it's on the next record.

of

b) The id field (which some of the docs say are unused) is used to 
bind multiple items having the same ID.

i.e (citing my earlier example)...

Jeremy nas-ip-address=the vpn server password=x
Service-Type = Framed-User

# Our switches, which we trust jeremy not to mess up
Jeremy password = y
Service-Type = Admin-User

Jeremy nas-ip-address=a big powerful router
Service-Type = Reject

If it's (a):

Based on the standard values in the database, would this work:

id  usernameattribute   value   op
1   jeremy  passwordX   ==
2   jeremy  nas-ip-address  vpnsvr:=
3   jeremy  passwordy   ==
4   jeremy  passwordz ==
5   jeremy  nas-ip-address  router:=

The problem I see with this one is that a) there's no easy way to keep 
your (presumably auto-increment) id field entries properly ordered.

Also, line 4 above doesn't make sense -- there really ARE no check items 
that would work here.  If line 4 above were deleted, it would instead 
match password=y, nas-ip-address=router (again, I may be missing something 
critical about operators and their signaling here).

Also, based on this, you would have to then find which attributes in the 
reply table to ask, which could *possibly* be based on the id of the 
password attribute, but that's hardly normalized.

If it's (b):

id  usernameattribute   value   op
1   jeremy  passwordX   ==
1   jeremy  nas-ip-address  vpnsvr:=
2   jeremy  passwordy   ==
3   jeremy  passwordz ==
3   jeremy  nas-ip-address  router:=

This one implies you either have a keyless table (bad), or that there's 
another key value here, which isn't in the included schemas.  It also 
implies that the server acutally LOOK AT the id value to know when to 
stop parsing.  In this case your reply items would be pulling based on 
that id field, not the username at all (since in this case the username 
is not unique).

/endif

The assumption I worked with is: My knowledge of SQL is far better than my 
knowledge of the inner workings of freeradius-SQL.

What I've done is I've had to hard code the NAS-IP address into my 
queries, coupled with some special tables to return the right values 
expected by certain network devices (for example), if it's a PDU, return 
the admin (or userlevel) service-type for those devices, if it's a switch, 
return the appropriate there -- even allowing our customers access to 
those PDU ports that they control, but this still isn't as flexible as an 
old-fashioned users file.  In reality, I should be able to return ALL 
records related, and radius should pick up the differences in the 
check-items, instead of the query only returning a select few.  This will 
make more sense if we decide we need to start checking more values than 
just the one.

I've also had to UNION my queries together because employees and clients 
are in different tables (and I am only checking on employee access on 
some devices -- but this is also done through the SQL).

I noticed, interestingly enough, that UNION works, but the semicolon does 
not (perhaps this is to prevent SQL injection?).  As I am unable to grok 
the c, I can't be sure.

I.e. at the moment there's about forty users, some of which have differing 
access than others, and there's no real radius groups, since each 
person's needs are slightly different and vary based on what each person 
has been certified and tested on.

Apologies for seeming long.

If anyone has any ideas, let me know, please.  I may be able to compensate 
someone for an hour or two of consultation time, if it gets the questions 
answered (please contact me off-list regarding this).

-Dan

--

Dan Mahoney
Techie,  Sysadmin,  WebGeek
Gushi on efnet/undernet IRC
ICQ: 13735144   AIM: LarpGM
Site:  http

Re: SQL help from someone who groks c, please?

2007-02-04 Thread Dan Mahoney, System Admin 
On Mon, 5 Feb 2007, Phil Mayers wrote:

 Dan Mahoney, System Admin wrote:

 That said, I figured out two possible ways to handle my previous question
 regarding advanced SQL auth (including multiple occurances of the same

 Minor point of terminology - SQL doesn't authenticate. It acts as a
 store for config and reply items.

Of course.  I myself am in the habit of stating things I already know to 
be true, just for the advantage of some poor soul trying to get something 
from mailing list archives.

 Not in the current server.

 Neither of your examples will work, because cCurrently* in the release
 version of FreeRadius, rlm_sql works as follows:

  * select per-user check items from radcheck
  * select all group check items for that user from radgroupcheck
  * merge them
  * compare them - if match:
* select per-user reply items from radreply
* select all group reply items for that user from radgroupreply
* merge them
* add them to the reply

 Because of the merging of the check/reply items, with the currently
 release version of FreeRadius it will be difficult to achieve what you
 want. There are probably ways to use clever tricks with the schema, but
 the algorithm that iterates over the SQL results is coded into the C
 portion of the module, and is not really flexible enough.

I assume you mean the core SQL module, and nothing driver specific, yes?

 My suggestion is that you use a custom schema and queries for your
 database - probably a stored procedure. Pass the NAS-IP-Address into
 these queries, and return different values based on the nas. Effectively
 you move the code that walks over the request and chooses the right
 values into the SQL server.

This I'm already doing.  I just wanted to be sure I wasn't going about it 
wrong.

 However, in the CVS version of FreeRadius, the SQL code works much more
 like you'd expect:

Also, for the edification of anyone who might stumble on this, the CVS 
code relevant to which version?  I.e. would this be a 2.x branch thing? 
Note that I'm not asking the luserish when will it be out I need it 
now!!!1 question, as I've already got workarounds in place to do what I 
need, but I've come across threads dating back five years in some software 
and was never sure which version was relevant.

  * select per-user check items from radcheck
  * compare them
  * if match, add per-user reply items from radreply
  * if Fall-Through:
* for each group
  * select per-group check items
  * compare them
  * if match, add the per-group reply items
  * stop unless Fall-Through

 With that schema, it would be relatively trivial to (ab)use groups as
 users.

Or I'd join against my devices table and return one entry for jeremy 
based on each network device in the grid with a simple left join (the 
distinction being that it's multiple answers based on a less-specific 
question, as opposed to a single check-item based on a more-specific 
query.)  Again, my SQL know-how is good, so I can contrib some more 
advanced examples if need be.  The concept of group ownership is still 
good, but with SQL working the way you describe, and fall-through working 
right, it's not strictly as necessary as it was: in theory it's possible 
with the new code to select ALL rows, and read the whole table just like 
an old-style users-file, no (waste of processor and resources aside).

For example, right now I have a few tables that match user-type and device 
type, so that for any user type, and any device (say, cisco core routers, 
or extreme distribution switches), that lists the appropriate reply-items.

The annoyance and minor difference here is the requirement to specialize 
the query -- with the current code, I need to include anything I want to 
specialize on (which means if there's five different check-items, I have 
to include them (and not all devices will include such check-items).

No groups necessary (I am not using them now, in fact, my queries 
encompass that logic).

 ...with appropriate check/reply items (e.g. check item might be
 huntgroup or nas-ip-address). The groups would contain one user - in the
 previous example, jeremy.

Okay -- do you know anything about if the semicolon is intentionally 
ignored?  I tried doing multiple queries in a single statement but got an 
error (thank god for UNION).

-Dan

--

Dan Mahoney
Techie,  Sysadmin,  WebGeek
Gushi on efnet/undernet IRC
ICQ: 13735144   AIM: LarpGM
Site:  http://www.gushi.org
---

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Advanced SQL Auth/Generate clients.conf from SQL?

2007-02-02 Thread Dan Mahoney, System Admin 
Hey all,

Two questions, related to SQL...

1:

I recently became enamored by the power of SQL, and while I find no easy 
way through SQL to do multiple check-items easily in a logical 
fall-throughable order.

I.e. through SQL how would one do (for an entry level tech):

Jeremy nas-ip-address=the vpn server password=x
Service-Type = Framed-User

# Our switches, which we trust jeremy not to mess up
Jeremy password = y
Service-Type = Admin-User

Jeremy nas-ip-address=a big powerful router
Service-Type = Reject

I see an easy way to return items based on group membership (which seems 
to be rather 1:n right now, i.e. it doesn't appear that a person can be a 
member of more than one group).

With the standard tables.  I.e. I'm not sure how the various items are 
linked and ordered where you are able to have multiple instances of the 
same usernames, but varying other auth attributes.

I do think I've found a happy medium (albeit with a more complex 
join/union system on the backend) -- but it involves embedding a lot of 
values into the query, which shouldn't be the case (I couldn't find a 
really-advanced example anywhere -- if anyone has one, I would LOVE to see 
it (as it translates to a normal users file.

I'm not using this for dialup, instead we're using it for network 
management (because RADIUS is a good common denominator, far better than 
tac+).  For that reason, we're going to have a lot of specific instances 
where we do (or don't) want people to have very specific types of access.

2:

My second question is, now that I've got a list of all my NASes in 
SQL, has anyone written (or added to beta or something similar) code to do 
*those* via SQL?  Specifically we already have all our network devices 
(and shared secrets) in a SQL database anyway, and it would be cool to use 
them in realtime.

I could just as easily bang together a perl script for this, and throw it 
in a crontab with a HUP tool (every hour or whatnot) -- and I would be 
happy to contibute such a script, but I'd like to know I'm not reinventing 
the wheel (especially because SQL-realtime is so much cooler than once an 
hour).

Any ideas GREATLY appreciated.

-Dan

--

Dan Mahoney
Techie,  Sysadmin,  WebGeek
Gushi on efnet/undernet IRC
ICQ: 13735144   AIM: LarpGM
Site:  http://www.gushi.org
---

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

freeradius-1.0.5 SMP

2005-12-30 Thread admin 




Hi all.
I have a promlem.
Platform: Intel 7320, 2Gb RAM, SMP (2xXeon)
OS: FreeBSD-Release-5.4
FreeRadius: 1.0.5 (from the ports)

Problem:
After start of a demon, after a while, freeradius ceases to accept inquiries.
Ktrace gives nothing.
It occurs in any configuration.
By the machine without SMP all works.
What will advise?
To transfer on the machine without SMP not so it would be desirable, loading on freeradius is planned huge.

P.S. Excuse for my English


hr
Allrightsaresold,theprofitisspentforbeer
adminmailto:[EMAIL PROTECTED]




- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

freeradius-1.0.5 SMP

2005-12-30 Thread admin 




Hi all.
I have a promlem.
Platform: Intel 7320, 2Gb RAM, SMP (2xXeon)
OS: FreeBSD-Release-5.4
FreeRadius: 1.0.5 (from the ports)

Problem:
After start of a demon, after a while, freeradius ceases to accept inquiries.
Ktrace gives nothing.
It occurs in any configuration.
By the machine without SMP all works.
What will advise?
To transfer on the machine without SMP not so it would be desirable, loading on freeradius is planned huge.

P.S. Excuse for my English


hr
Allrightsaresold,theprofitisspentforbeer
adminmailto:[EMAIL PROTECTED]




- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

freeradius-1.0.5 SMP

2005-12-30 Thread admin 
Здравствуйте, freeradius-users.

Hi,
I have a promlem.
Platform: Intel 7320, 2Gb RAM, SMP (2xXeon)
OS: FreeBSD-Release-5.4
FreeRadius: 1.0.5 (from the ports)

Problem:
After start of a freeradius, after a while, freeradius ceases to accept 
inquiries.
Ktrace gives nothing.
It occurs in any configuration.
By the machine without SMP all works.
What will advise?
To transfer on the machine without SMP not so it would be desirable, loading on 
freeradius is planned huge.

P.S. Excuse for my English

hr 
All rights are sold, the profit is spent for beer
 admin  mailto:[EMAIL PROTECTED]


- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Problems when using Cisco-AVPairs[*]

2005-09-11 Thread Admin 

 I need some help with Cisco AVPAirs, I am using freeradius + postgresql.
 
When I have the following entries in my radreply table -
 
database=# SELECT * from radreply where username='test' order by id;
 id | username |  attribute   | op |   value
+--+--++
 72 | test | Cisco-AVPair | =   | ip:inacl#1=deny tcp any any eq 25
 73 | test | Cisco-AVPair | += | ip:inacl#1=permit ip any any
 74 | test | Cisco-AVPair | += | ip:outacl#2=deny tcp any any eq 25
 75 | test | Cisco-AVPair | += | ip:outacl#2=permit ip any any
 
the access list works.
 
However, when I modify the entries 
 
database=# SELECT * from radreply where username='test' order by id;
 id | username |attribute| op |   value
+--+-++
 76 | test | Cisco-AVPair[0] | =  | ip:inacl#1=deny tcp any any eq 25
 77 | test | Cisco-AVPair[1] | =  | ip:inacl#1=permit ip any any
 78 | test | Cisco-AVPair[2] | =  | ip:outacl#2=deny tcp any any eq 25
 79 | test | Cisco-AVPair[3] | =  | ip:outacl#2=permit ip any any
 
none of the Cisco-AVPairs are passed to the Cisco NAS ( I can see that in the /var/log/radacct/{NAS-IP}/reply-detail file ).
 
A  radiusd -v   shows
 
radiusd: FreeRADIUS Version 1.0.4, for host , built on Jul 31 2005 at 16:53:35  
 
 
Thanks In advance.
 
 
Nat
 

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re[2]: make error /usr/bin/ld: cannot find -lz

2005-06-25 Thread admin 
[EMAIL PROTECTED] root]# rpm -qa | grep zlib
zlib1-1.2.1.1-3mdk

zlib installed, any ideas?

r Install zlib library for your system.

make faild with this error...

gcc -shared sql_mysql.lo -L/usr/lib -L/usr/lib/mysql
r /usr/lib/libmysqlclient.so -lz -lm -lssl -lcrypto -Wl,-soname -Wl,rlm_sql_my
sql-1.0.1.so -?o .libs/rlm_sql_mysql-1.0.1.so
/usr/bin/ld: cannot find -lz
collect2: ld returned 1 exit status
gmake[10]: *** [rlm_sql_mysql.la] Error 1

What is -lz ?



- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

x99_rlm.c:550: error: label at end of compound statement

2005-06-25 Thread admin 
Здравствуйте, Paul.

Вы писали 25 июня 2005 г., 6:49:39:

PH On Fri, Jun 24, 2005 at 02:58:14PM +0600, [EMAIL PROTECTED] wrote:
 make faild with this error...

 gcc -shared sql_mysql.lo -L/usr/lib -L/usr/lib/mysql
 /usr/lib/libmysqlclient.so -lz -lm -lssl -lcrypto -Wl,-soname
 -Wl,rlm_sql_mysql-1.0.1.so -o .libs/rlm_sql_mysql-1.0.1.so
 /usr/bin/ld: cannot find -lz
 collect2: ld returned 1 exit status
 gmake[10]: *** [rlm_sql_mysql.la] Error 1
 
 What is -lz ?

PH zlib. mySQL depends on it, so I'm surprised you got
PH mySQL in place without it...


ok, actually simply symlink /usr/lib/libz.so  /usr/lib/libz.so.1 and
ldconfig :

but new error was occured :(

gmake[6]: Entering directory `/tmp/freeradius-1.0.1/src/modules/rlm_x99_token'
gcc  -g -O2 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5   -Wall 
-D_GNU_SOURCE -g -Wshadow -Wpointer-arith -Wcast-qual -Wcast-align 
-Wwrite-strings -Wstrict-prototypes -Wmissing-prototypes -Wmissing-declarations 
-Wnested-externs -W -Wredundant-decls -Wundef  -I../../include 
-DX99_MODULE_NAME=\rlm_x99_token\  -DFREERADIUS -c x99_rlm.c -o x99_rlm.o
x99_rlm.c: In function `x99_token_authenticate':
x99_rlm.c:550: error: label at end of compound statement
gmake[6]: *** [x99_rlm.o] Error 1


- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Kill sessions

2005-03-10 Thread Hyperlink Admin 


Hey all,


I 
got a bit of a problem.



The setup we have here is a bit strange (I think). I dont have any access to 
any of the NAS's.



Instead I got given a list of IP addresses of other radius servers , that 
was added to my clients.conf file. These servers then passes everything on 
to my server (Now that I think of it, this is probably a proxy setup ?)




Anyways, my problem is as follows:



Our internet connection went down for about 3 hours yesterday. I had quite a 
few customers connected during this time, which means that they disconnected 
while my freeradius box was inaccessible. As a result, I am sitting with 
quite a few entries that never received account stop packages (i think) and 
now those users cant get access again, because I have similtanious use set 
to 1.



As a work around - I have just inccreasedthe similtanious use to 
2.



Now, finally my question: 



Is there a way to close all open connections ? Or at leastfake the 
account stop packages ?



Maybe a SQL query to run to close all open session in the database ? I dont 
know ? Anybody got any ideas how I would do this ?



Thanks,



Jacqueco Peenz

RE: SQL Query to get total bandwidth used per user per month.

2005-02-24 Thread Hyperlink Admin 


-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Graeme Lee
Sent: 24 February 2005 02:52 AM
To: freeradius-users@lists.freeradius.org
Subject: Re: SQL Query to get total bandwidth used per user per month.

Hyperlink Admin wrote:

Hi Guys,
 
Ok, what I would like to do is the following:
 
I would like to create a seperate radacct for each month.
 
It would be nice to have them going radacct1, raddact2, and so on. and 
then when it get to next year this time, just carry on with radacct13, 
radacct14 and so on, otherwise Ill just restart with radacct1 next year.
 
Does anybody know how I would go about setting this up ? Would it be 
possible to do this automatically ? or would I have to change the 
config file to write to a different radacctno each month ?
  

Maybe a second table for radacct_historical_data would be suitalbe?  
Move the data to the historical table and then delete it from your working
radacct table.

So for example: radacct and radacct_historical_data and then have a script
just adding the data to the end of the radacct_historical_data table each
month, and clearing the radacct table ?

Would I do this with a SQL query ? If so, what would the query look like ?

Then I can just create a script executing the query every month.

 
Then, my second question:
 
I need to get monthly total bandwidth transfer (both incomming and 
outgoing
traffic) for each user. This I got figured out with the following SQL
query:
 
SELECT username, sum(acctinputoctets+acctoutputoctets) AS total FROM 
radacct GROUP BY username;
 
It works great, but to sit and filter through all the users will be a 
pain each day.
 
I need it to only print the users that is over a cetain amount.
 
I have tried the following:
 
SELECT username, sum(acctinputoctets+acctoutputoctets) AS total FROM 
radacct WHERE  sum(acctinputoctets+acctoutputoctets)  3221225472 GROUP 
BY username;
 
and here is the error:
 
ERROR  (HY000): Invalid use of group function
  

You need a sub-select

SELECT * FROM (SELECT username, sum(acctinputoctets+acctoutputoctets) AS
total FROM radacct GROUP BY username) AS foo
radius- WHERE total  3221225472;

Works great !!! Thank you !
 
Im sure there is a way to do it, but I have never really worked with MySQL
or any queries. What I got here, I patched together from reading around on
the net and on this list.
  

I'm using postgresql.

Let me rephrase - Ive never used any sort of sql. Most Ive done with
databases is a little access database.
 
Last thing. And here I think I am actually pushing my luck.
 
Will it be possible (when the previous query actaully works) to
automatically take all the users listed in the results of the previous
query
and moved them from one group (profile) to another.
  

Well I'd suggest triggers which get fired on updates on the radacct 
table, which update a separate table with username, month, and data 
(plus whatever else you need to keep on a monthly basis).  Your trigger 
would have the benefit of being fired automatically rather than relying 
on human intervention.  Or you could use cron, and have an external 
script which checks the db regularly, and massages the data according to 
your needs.

Ok, im kinda lost. Triggers ? How would I add a trigger ? How does it work ?


Sorry, Like I said, im kind new to this


But thanks for the advise so far, I really appreciate it.
 
 
 
The thing is, we are reselling ADSL accounts for the local Telco company
here, and they are very strict on capping accounts on 3GB. So in order for
us to be able to provide the service I need to check total usage for each
user on a daily basis and if he is over the cap, he needs to be moved to a
much slower service.
 
I got the 2 different groups setup - capped and uncapped, and it is working
fine.
 
I would really appreciate it if someone could help me.
 
Thank you,
 
Jacqueco Peenz

  



- 
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html





- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

RE: SQL Query to get total bandwidth used per user per month.

2005-02-23 Thread Hyperlink Admin 
Hi Guys,
 
Ok, what I would like to do is the following:
 
I would like to create a seperate radacct for each month.
 
It would be nice to have them going radacct1, raddact2, and so on. and then
when it get to next year this time, just carry on with radacct13, radacct14
and so on, otherwise Ill just restart with radacct1 next year.
 
Does anybody know how I would go about setting this up ? Would it be
possible to do this automatically ? or would I have to change the config
file to write to a different radacctno each month ?
 
Then, my second question:
 
I need to get monthly total bandwidth transfer (both incomming and outgoing
traffic) for each user. This I got figured out with the following SQL query:
 
SELECT username, sum(acctinputoctets+acctoutputoctets) AS total FROM radacct
GROUP BY username;
 
It works great, but to sit and filter through all the users will be a pain
each day.
 
I need it to only print the users that is over a cetain amount.
 
I have tried the following:
 
SELECT username, sum(acctinputoctets+acctoutputoctets) AS total FROM radacct
WHERE  sum(acctinputoctets+acctoutputoctets)  3221225472 GROUP BY username;
 
and here is the error:
 
ERROR  (HY000): Invalid use of group function
 
I have also tried the following variations: (with each error)
 
SELECT username, sum(acctinputoctets+acctoutputoctets) AS total FROM radacct
WHERE  sum(acctinputoctets+acctoutputoctets)  3*1024*1024*1024 GROUP BY
username;
ERROR  (HY000): Invalid use of group function
 
SELECT username,sum(acctinputoctets+acctoutputoctets) FROM radacct WHERE
sum(acctinputoctets+acctoutputoctets)  3*1024*1024*1024 GROUP BY username;
ERROR  (HY000): Invalid use of group function
 
SELECT username,sum(acctinputoctets+acctoutputoctets) FROM radacct WHERE
sum(acctinputoctets+acctoutputoctets)  3221225472 GROUP BY username;
ERROR  (HY000): Invalid use of group function
 
SELECT username,sum(acctinputoctets+acctoutputoctets) FROM radacct WHERE
'sum(acctinputoctets+acctoutputoctets)'  3*1024*1024*1024 GROUP BY
username;
Empty set (0.00 sec) (not really error, but not what I need)
 
SELECT username,sum(acctinputoctets+acctoutputoctets) FROM radacct WHERE
'sum(acctinputoctets+acctoutputoctets)'  3221225472 GROUP BY username;
Empty set (0.00 sec) (not really error, but not what I need)
 
Im sure there is a way to do it, but I have never really worked with MySQL
or any queries. What I got here, I patched together from reading around on
the net and on this list.
 
Last thing. And here I think I am actually pushing my luck.
 
Will it be possible (when the previous query actaully works) to
automatically take all the users listed in the results of the previous query
and moved them from one group (profile) to another.
 
 
 
The thing is, we are reselling ADSL accounts for the local Telco company
here, and they are very strict on capping accounts on 3GB. So in order for
us to be able to provide the service I need to check total usage for each
user on a daily basis and if he is over the cap, he needs to be moved to a
much slower service.
 
I got the 2 different groups setup - capped and uncapped, and it is working
fine.
 
I would really appreciate it if someone could help me.
 
Thank you,
 
Jacqueco Peenz




- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

dialup_admin - please help

2005-02-17 Thread Hyperlink Admin 
Hi guys,

Ok,

I don't know what to do anymore. I have tried everyhting.

I got it working yesterday, and most of today, then the problem came back.

When I open one of the pages where I can enter the username or groupname I
get admin,en filled in that field.

When I turn on sql debug in admin.conf, all pages where where u can specify
a username or password, something similar to this is on the screen:

DEBUG(SQL,MYSQL DRIVER): Query: SELECT groupname FROM usergroup WHERE
username = 'admin,en'; DEBUG(SQL,MYSQL DRIVER): Query 

It looks like it is getting the admin,en value from somewhere.

I have tried working around it, but for example, when I want to edit a user,
and I type the usename in the field and click edit user, they it comes up
with a User [admin,en] could not be found.

For some reason it is defaulting back to admin,en.

I have even tried restarting my whole installation from scratch, fresh
FreeBSD installation, re downloaded all src files, recompiling everyhting,
and setting everything up from scratch.

But I still get the same thing.

Is it maybe the FreeBSD ? Or version of PHP or something like that ?

What I did to fix it twice is to remove the whole /usr/local/dialup_admin
directory and redo the whole installation from the freeradius tar file.

Then it worked fine, and then all of the sudden it is back. I didnt change
any config file, or made any other changes.

I know someone mentioned trying to get the latest version via cvs, but when
I followed the instructions in the HOWTO file, it downloaded a bunch of
file, but it is mostly garbage.

Commands I used:

shell cvs -d:pserver:[EMAIL PROTECTED]:/cvsroot/dialup-admin
login

* When prompted for a password simply press the Enter Key

shell cvs -z3
-d:pserver:[EMAIL PROTECTED]:/cvsroot/dialup-admin co
dialup_admin

I then replace the /usr/local/dialup_admin directory with the one that
downloaded and then the whole page is just garbage.

I have followed the HOWTO step-by-step, and still have no joy.

If anybody got any idea what else I can try, please let me know.


Thanks

Jacqueco Peenz 





- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

RE: Freeradius + mysql + dial-up admin - strange error (admin,en)

2005-02-16 Thread Hyperlink Admin 
Hi there,

Just an update on my previous question:

I have tured on sql debugging, and now I get the following line when I click
on ad user:

DEBUG(SQL,MYSQL DRIVER): Query: SELECT groupname FROM usergroup WHERE
username = 'admin,en';
DEBUG(SQL,MYSQL DRIVER): Query Result: 


Maybe it means more to u guys than to me.

Thanks again !

Cheerz 


Jacqueco Peenz

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Hyperlink
Admin
Sent: 16 February 2005 11:49 AM
To: freeradius-users@lists.freeradius.org
Subject: Freeradius + mysql + dial-up admin - strange error (admin,en)

Hi Guys,

I am running freeradius 1.01, Freebsd 5.3, MySQL 4.15, PHP4 and apache 1.3

I have everything setup more or less correctly (I think), but I am
experiencing a weird problem.

I have checked, and double checked my config files, and cannot see anything
in there, that would cause this error.

When I open dialupadmin webpage and try to add a user or a group I always
get 'admin,en' in the username or group name field.

I then replace it with the propper username or group name, and fill in all
the rest of the required fields. When I click on submit or add, the user is
created sucessfully, but with the wrong username or groupname. It defaults
back to admin,en as the username or group name. When I then try to add
another user or group, the same thing happens and I change the name again,
but then it tell me user (or group) admin,en already exsists.

Could anybody please help me to try sort this problem out ? I really need to
get this up and runing soon.

Thank you, 
 
Jacqueco Peenz




-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html




- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

RE: Freeradius + mysql + dial-up admin - strange error (admin,en)

2005-02-16 Thread Hyperlink Admin 
Hi There,

Thanx for the reply.

I am using the version that came with freeradius 1.0.1

I have not made any changes to any of the pages, except the admin.conf file

I tried to get get the latest CVS version with the method in the HOWTO. I
copied the files to /usr/local/dialup_admin, but then trying to access the
webpage, I got a file not found (buttons.html) error where the buttons
should be.

Don't know if I did something wrong ?

Thanks 


Jacqueco Peenz

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Kostas
Kalevras
Sent: 16 February 2005 03:03 PM
To: freeradius-users@lists.freeradius.org
Subject: Re: Freeradius + mysql + dial-up admin - strange error (admin,en)

On Wed, 16 Feb 2005, Hyperlink Admin wrote:

 Hi Guys,

 I am running freeradius 1.01, Freebsd 5.3, MySQL 4.15, PHP4 and apache 
 1.3

 I have everything setup more or less correctly (I think), but I am 
 experiencing a weird problem.

 I have checked, and double checked my config files, and cannot see 
 anything in there, that would cause this error.

 When I open dialupadmin webpage and try to add a user or a group I 
 always get 'admin,en' in the username or group name field.

 I then replace it with the propper username or group name, and fill in 
 all the rest of the required fields. When I click on submit or add, 
 the user is created sucessfully, but with the wrong username or 
 groupname. It defaults back to admin,en as the username or group name. 
 When I then try to add another user or group, the same thing happens 
 and I change the name again, but then it tell me user (or group) admin,en
already exsists.

 Could anybody please help me to try sort this problem out ? I really 
 need to get this up and runing soon.

What version of dialupadmin are you using? Try using the latest CVS version.

Have you done any changes in any of the pages?


 Thank you,

 Jacqueco Peenz




 -
 List info/subscribe/unsubscribe? See 
 http://www.freeradius.org/list/users.html


--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED]   National Technical University of Athens, Greece
Work Phone: +30 210 7721861
'Go back to the shadow' Gandalf

-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html





- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Subscription Analysis

2005-02-16 Thread Hyperlink Admin 
Hey again,

I got this sorted out - I downloaded freeradius from the website and
extracted the dialup_admin from there. And now its working. The problem must
have been with the version of freeradius in the FreeBSD ports.

Just one more question, when I look at a user I created, it says that user
can only log in for 4 hours per day and 20 hours per week, or something like
that.

Where would I edit (remove) this ?

Would it be possible to change this from a time restriction to a bandwidth
usage restriction ?

If so, could someone point me in the right direction ?

Im not asking for a step-by-step, just point me, and ill try it myself.

Thanks alot


Jacqueco Peenz

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Hyperlink
Admin
Sent: 16 February 2005 02:20 PM
To: freeradius-users@lists.freeradius.org
Subject: RE: Freeradius + mysql + dial-up admin - strange error (admin,en)

Hi there,

Just an update on my previous question:

I have tured on sql debugging, and now I get the following line when I click
on ad user:

DEBUG(SQL,MYSQL DRIVER): Query: SELECT groupname FROM usergroup WHERE
username = 'admin,en'; DEBUG(SQL,MYSQL DRIVER): Query Result: 


Maybe it means more to u guys than to me.

Thanks again !

Cheerz 


Jacqueco Peenz

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Hyperlink
Admin
Sent: 16 February 2005 11:49 AM
To: freeradius-users@lists.freeradius.org
Subject: Freeradius + mysql + dial-up admin - strange error (admin,en)

Hi Guys,

I am running freeradius 1.01, Freebsd 5.3, MySQL 4.15, PHP4 and apache 1.3

I have everything setup more or less correctly (I think), but I am
experiencing a weird problem.

I have checked, and double checked my config files, and cannot see anything
in there, that would cause this error.

When I open dialupadmin webpage and try to add a user or a group I always
get 'admin,en' in the username or group name field.

I then replace it with the propper username or group name, and fill in all
the rest of the required fields. When I click on submit or add, the user is
created sucessfully, but with the wrong username or groupname. It defaults
back to admin,en as the username or group name. When I then try to add
another user or group, the same thing happens and I change the name again,
but then it tell me user (or group) admin,en already exsists.

Could anybody please help me to try sort this problem out ? I really need to
get this up and runing soon.

Thank you, 
 
Jacqueco Peenz




-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html




-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html





- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

RE: Subscription Analysis

2005-02-16 Thread Hyperlink Admin 
 
Thanks a lot.

LOL.I was actually looking at it yesterday, reminding myself to comment
it out when I get this thing working.

Is there a wait to use like a bandwidth counter in the same way as the time
counter ?

Thanks

Jacqueco Peenz
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Mike-Olumide, Johnson
Sent: 16 February 2005 07:55 PM
To: freeradius-users@lists.freeradius.org
Subject: Re: Subscription Analysis

Counter defaults ..The last few lines in admin.conf to be precise.

- Original Message -
From: Hyperlink Admin [EMAIL PROTECTED]
To: freeradius-users@lists.freeradius.org
Sent: Wednesday, February 16, 2005 5:29 PM
Subject: Subscription Analysis


 Hey again,

 I got this sorted out - I downloaded freeradius from
the website and
 extracted the dialup_admin from there. And now its
working. The problem
must
 have been with the version of freeradius in the
FreeBSD ports.

 Just one more question, when I look at a user I
created, it says that user
 can only log in for 4 hours per day and 20 hours per
week, or something
like
 that.

 Where would I edit (remove) this ?

 Would it be possible to change this from a time
restriction to a bandwidth
 usage restriction ?

 If so, could someone point me in the right direction
?

 Im not asking for a step-by-step, just point me, and
ill try it myself.

 Thanks alot


 Jacqueco Peenz

 -Original Message-
 From: [EMAIL PROTECTED]
 [mailto:[EMAIL PROTECTED]
On Behalf Of
Hyperlink
 Admin
 Sent: 16 February 2005 02:20 PM
 To: freeradius-users@lists.freeradius.org
 Subject: RE: Freeradius + mysql + dial-up admin -
strange error (admin,en)

 Hi there,

 Just an update on my previous question:

 I have tured on sql debugging, and now I get the
following line when I
click
 on ad user:

 DEBUG(SQL,MYSQL DRIVER): Query: SELECT groupname
FROM usergroup WHERE
 username = 'admin,en'; DEBUG(SQL,MYSQL DRIVER):
Query Result:


 Maybe it means more to u guys than to me.

 Thanks again !

 Cheerz


 Jacqueco Peenz

 -Original Message-
 From: [EMAIL PROTECTED]
 [mailto:[EMAIL PROTECTED]
On Behalf Of
Hyperlink
 Admin
 Sent: 16 February 2005 11:49 AM
 To: freeradius-users@lists.freeradius.org
 Subject: Freeradius + mysql + dial-up admin -
strange error (admin,en)

 Hi Guys,

 I am running freeradius 1.01, Freebsd 5.3, MySQL
4.15, PHP4 and apache 1.3

 I have everything setup more or less correctly (I
think), but I am
 experiencing a weird problem.

 I have checked, and double checked my config files,
and cannot see
anything
 in there, that would cause this error.

 When I open dialupadmin webpage and try to add a
user or a group I always
 get 'admin,en' in the username or group name field.

 I then replace it with the propper username or group
name, and fill in all
 the rest of the required fields. When I click on
submit or add, the user
is
 created sucessfully, but with the wrong username or
groupname. It defaults
 back to admin,en as the username or group name. When
I then try to add
 another user or group, the same thing happens and I
change the name again,
 but then it tell me user (or group) admin,en already
exsists.

 Could anybody please help me to try sort this
problem out ? I really need
to
 get this up and runing soon.

 Thank you,

 Jacqueco Peenz




 -
 List info/subscribe/unsubscribe? See
 http://www.freeradius.org/list/users.html




 -
 List info/subscribe/unsubscribe? See
 http://www.freeradius.org/list/users.html





 -
 List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html





__
Do you Yahoo!? 
All your favorites on one personal page  Try My Yahoo!
http://my.yahoo.com 

-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html





-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Release notes

2004-12-28 Thread Admin 
Alan DeKok wrote:
Admin [EMAIL PROTECTED] wrote:
 

I have a question, does the each CVS version of FreeRadius have
release_note?
   

 No.  They are generated daily by a script, so there is no human
involvement to add release notes.
 

Where can I find the information about the difference between two
different CVS snapshots?
   

 Use cvs.
 Alan DeKok.
- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

 

I'm using CVS. But, as I said there aren't have no information like 
Release Notes.
In any case, thank you.


--
Best regards,
Serg Shipaev, IP TELephony EXchange Ltd.
e-mail: [EMAIL PROTECTED]
- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Release notes

2004-12-28 Thread Admin 
Alan DeKok wrote:
Admin [EMAIL PROTECTED] wrote:
 

I'm using CVS. But, as I said there aren't have no information like 
Release Notes.
   

 And as *I* said, there are none created.
 If you're using CVS, you should know that you can use CVS to see
the daily changes.  Please read a CVS manual.
 Alan DeKok.
- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

 

Ok, I knew it and I use it. But of course it may be better to have 
changelog.
In any case, thank you.

--
Best regards,
Serg Shipaev, IP TELephony EXchange Ltd.
e-mail: [EMAIL PROTECTED]
- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: 1 server - 2 databases

2004-12-28 Thread Admin 
EROS wrote:
Hi all,
I have one radius server and I want the server ask several database to
authorize the users.
The parameter which determine the database to ask could be the
calledstationid.
Is anybody know how I could do this ?
Thx ...
Merry Christmas and Happy New Year
- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

 

I'm using my own perl script to check availability my several databases. 
So, try to use rlm_perl.

--
Best regards,
Serg Shipaev, IP TELephony EXchange Ltd.
e-mail: [EMAIL PROTECTED]
- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Release notes

2004-12-27 Thread Admin 
Hi, all,
I have a question, does the each CVS version of FreeRadius have release_note? 
Where can I find the information about the difference between two different CVS 
snapshots?
--
Best regards,
Serg Shipaev, IP TELephony EXchange Ltd.
e-mail: [EMAIL PROTECTED]
- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

rlm_perl memory leak

2004-11-11 Thread Admin 
Hi, all.
I'm using FreeRadius 1.0.1 with rlm_perl under Linux kernel 2.4.27
rlm_perl module using DBI makes AAA.
BUT, I found it increases its memory usage from 8Mb to 500Mb, so, what 
will be the next??
And why?

Best regards,
AL
--
Best regards,
Serg Shipaev, IP TELephony EXchange Ltd.
e-mail: [EMAIL PROTECTED]
- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: rlm_perl memory leak

2004-11-11 Thread Admin 
Hi,
Thank you. I'll try to rebuild this module.
Is't works normally after?
AL
[EMAIL PROTECTED] wrote:
Hi!
I wrote about this leak sometime ago.
There was leakless rlm_perl in version 0.9.3.
In previous and in all 1.0.X versions memory leak exists.
So, now i use this rlm_perl with 1.0.1.
Attached version also have a little improvement - it
modifies all 3 items - reply, config but request.

 

Hi, all.
   

 

I'm using FreeRadius 1.0.1 with rlm_perl under Linux kernel 2.4.27
rlm_perl module using DBI makes AAA.
BUT, I found it increases its memory usage from 8Mb to 500Mb, so, what
will be the next??
And why?
   

 

Best regards,
AL
   


 


- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html