Re: Dynamic IP Allocation
Please disregard this thread. I have solve my problem. Setup (as you probably guessed) mistake. Bill On 11/9/2012 1:20 PM, Bill Schoolfield wrote: Any help on this? I have deleted the db.ippool and db.ipindex files, restarted the server... But I get the same result. Different ip but from a private address range. Bill On 11/9/2012 12:31 PM, Bill Schoolfield wrote: Hi I'm trying to get dynamic ip allocation working. I ran a test via radtest: [root@freerad raddb]# radtest billtest2 "this#x7g" localhost 0 mysecret Sending Access-Request of id 53 to 192.168.111.55 port 1812 User-Name = "billtest2" User-Password = "this#x7g" NAS-IP-Address = 192.168.111.55 NAS-Port = 0 Message-Authenticator = 0x rad_recv: Access-Accept packet from host 192.168.111.55 port 1812, id=53, length=32 Framed-IP-Address = 192.168.1.215 Framed-IP-Netmask = 255.255.255.0 and I'm getting a IP that's not from my pool. Here is the pertinent section in radiud.conf: ippool main_pool { range-start = 204.101.13.2 range-stop = 204.101.13.252 netmask = 255.255.255.0 } which is within the modules section. Database wise the billtest2 user is a user that belongs to a group linked to this pool. The default site file has this pool in the post auth section. Below is the radius log? What am I missing? Bill /usr/sbin/radiusd -X FreeRADIUS Version 2.1.10, for host x86_64-redhat-linux-gnu, built on Mar 25 2011 at 10:54:38 Copyright (C) 1999-2009 The FreeRADIUS server project and contributors. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. You may redistribute copies of FreeRADIUS under the terms of the GNU General Public License v2. Starting - reading configuration files ... including configuration file /etc/raddb/radiusd.conf including configuration file /etc/raddb/proxy.conf including configuration file /etc/raddb/clients.conf including files in directory /etc/raddb/modules/ including configuration file /etc/raddb/modules/realm including configuration file /etc/raddb/modules/detail including configuration file /etc/raddb/modules/unix including configuration file /etc/raddb/modules/mac2ip including configuration file /etc/raddb/modules/pam including configuration file /etc/raddb/modules/logintime including configuration file /etc/raddb/modules/perl including configuration file /etc/raddb/modules/detail.log including configuration file /etc/raddb/modules/mac2vlan including configuration file /etc/raddb/modules/radutmp including configuration file /etc/raddb/modules/etc_group including configuration file /etc/raddb/modules/wimax including configuration file /etc/raddb/modules/ntlm_auth including configuration file /etc/raddb/modules/preprocess including configuration file /etc/raddb/modules/files including configuration file /etc/raddb/modules/attr_rewrite including configuration file /etc/raddb/modules/attr_filter including configuration file /etc/raddb/modules/always including configuration file /etc/raddb/modules/sql_log including configuration file /etc/raddb/modules/counter including configuration file /etc/raddb/modules/sqlcounter_expire_on_login including configuration file /etc/raddb/modules/policy including configuration file /etc/raddb/modules/expr including configuration file /etc/raddb/modules/cui including configuration file /etc/raddb/modules/linelog including configuration file /etc/raddb/modules/opendirectory including configuration file /etc/raddb/modules/chap including configuration file /etc/raddb/modules/smbpasswd including configuration file /etc/raddb/modules/passwd including configuration file /etc/raddb/modules/otp including configuration file /etc/raddb/modules/detail.example.com including configuration file /etc/raddb/modules/relay_detail including configuration file /etc/raddb/modules/echo including configuration file /etc/raddb/modules/smsotp including configuration file /etc/raddb/modules/inner-eap including configuration file /etc/raddb/modules/pap including configuration file /etc/raddb/modules/exec including configuration file /etc/raddb/modules/mschap including configuration file /etc/raddb/modules/acct_unique including configuration file /etc/raddb/modules/sradutmp including configuration file /etc/raddb/modules/checkval including configuration file /etc/raddb/modules/ippool including configuration file /etc/raddb/modules/digest including configuration file /etc/raddb/modules/expiration including configuration file /etc/raddb/modules/dynamic_clients including configuration file /etc/raddb/eap.conf including configuration file /etc/raddb/sql.conf including configuration file /etc/raddb/sql/mysql/dialup.conf including configuration file /etc/raddb/policy.conf including files in directory /etc/raddb/sites-enabled/ including configuration file /etc/raddb/sites-enabled/default.orig including configurati
Re: Dynamic IP Allocation
Any help on this? I have deleted the db.ippool and db.ipindex files, restarted the server... But I get the same result. Different ip but from a private address range. Bill On 11/9/2012 12:31 PM, Bill Schoolfield wrote: Hi I'm trying to get dynamic ip allocation working. I ran a test via radtest: [root@freerad raddb]# radtest billtest2 "this#x7g" localhost 0 mysecret Sending Access-Request of id 53 to 192.168.111.55 port 1812 User-Name = "billtest2" User-Password = "this#x7g" NAS-IP-Address = 192.168.111.55 NAS-Port = 0 Message-Authenticator = 0x rad_recv: Access-Accept packet from host 192.168.111.55 port 1812, id=53, length=32 Framed-IP-Address = 192.168.1.215 Framed-IP-Netmask = 255.255.255.0 and I'm getting a IP that's not from my pool. Here is the pertinent section in radiud.conf: ippool main_pool { range-start = 204.101.13.2 range-stop = 204.101.13.252 netmask = 255.255.255.0 } which is within the modules section. Database wise the billtest2 user is a user that belongs to a group linked to this pool. The default site file has this pool in the post auth section. Below is the radius log? What am I missing? Bill /usr/sbin/radiusd -X FreeRADIUS Version 2.1.10, for host x86_64-redhat-linux-gnu, built on Mar 25 2011 at 10:54:38 Copyright (C) 1999-2009 The FreeRADIUS server project and contributors. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. You may redistribute copies of FreeRADIUS under the terms of the GNU General Public License v2. Starting - reading configuration files ... including configuration file /etc/raddb/radiusd.conf including configuration file /etc/raddb/proxy.conf including configuration file /etc/raddb/clients.conf including files in directory /etc/raddb/modules/ including configuration file /etc/raddb/modules/realm including configuration file /etc/raddb/modules/detail including configuration file /etc/raddb/modules/unix including configuration file /etc/raddb/modules/mac2ip including configuration file /etc/raddb/modules/pam including configuration file /etc/raddb/modules/logintime including configuration file /etc/raddb/modules/perl including configuration file /etc/raddb/modules/detail.log including configuration file /etc/raddb/modules/mac2vlan including configuration file /etc/raddb/modules/radutmp including configuration file /etc/raddb/modules/etc_group including configuration file /etc/raddb/modules/wimax including configuration file /etc/raddb/modules/ntlm_auth including configuration file /etc/raddb/modules/preprocess including configuration file /etc/raddb/modules/files including configuration file /etc/raddb/modules/attr_rewrite including configuration file /etc/raddb/modules/attr_filter including configuration file /etc/raddb/modules/always including configuration file /etc/raddb/modules/sql_log including configuration file /etc/raddb/modules/counter including configuration file /etc/raddb/modules/sqlcounter_expire_on_login including configuration file /etc/raddb/modules/policy including configuration file /etc/raddb/modules/expr including configuration file /etc/raddb/modules/cui including configuration file /etc/raddb/modules/linelog including configuration file /etc/raddb/modules/opendirectory including configuration file /etc/raddb/modules/chap including configuration file /etc/raddb/modules/smbpasswd including configuration file /etc/raddb/modules/passwd including configuration file /etc/raddb/modules/otp including configuration file /etc/raddb/modules/detail.example.com including configuration file /etc/raddb/modules/relay_detail including configuration file /etc/raddb/modules/echo including configuration file /etc/raddb/modules/smsotp including configuration file /etc/raddb/modules/inner-eap including configuration file /etc/raddb/modules/pap including configuration file /etc/raddb/modules/exec including configuration file /etc/raddb/modules/mschap including configuration file /etc/raddb/modules/acct_unique including configuration file /etc/raddb/modules/sradutmp including configuration file /etc/raddb/modules/checkval including configuration file /etc/raddb/modules/ippool including configuration file /etc/raddb/modules/digest including configuration file /etc/raddb/modules/expiration including configuration file /etc/raddb/modules/dynamic_clients including configuration file /etc/raddb/eap.conf including configuration file /etc/raddb/sql.conf including configuration file /etc/raddb/sql/mysql/dialup.conf including configuration file /etc/raddb/policy.conf including files in directory /etc/raddb/sites-enabled/ including configuration file /etc/raddb/sites-enabled/default.orig including configuration file /etc/raddb/sites-enabled/inner-tunnel including configuration file /etc/raddb/sites-enabled/control-socket including configuration file /etc
Dynamic IP Allocation
Hi I'm trying to get dynamic ip allocation working. I ran a test via radtest: [root@freerad raddb]# radtest billtest2 "this#x7g" localhost 0 mysecret Sending Access-Request of id 53 to 192.168.111.55 port 1812 User-Name = "billtest2" User-Password = "this#x7g" NAS-IP-Address = 192.168.111.55 NAS-Port = 0 Message-Authenticator = 0x rad_recv: Access-Accept packet from host 192.168.111.55 port 1812, id=53, length=32 Framed-IP-Address = 192.168.1.215 Framed-IP-Netmask = 255.255.255.0 and I'm getting a IP that's not from my pool. Here is the pertinent section in radiud.conf: ippool main_pool { range-start = 204.101.13.2 range-stop = 204.101.13.252 netmask = 255.255.255.0 } which is within the modules section. Database wise the billtest2 user is a user that belongs to a group linked to this pool. The default site file has this pool in the post auth section. Below is the radius log? What am I missing? Bill /usr/sbin/radiusd -X FreeRADIUS Version 2.1.10, for host x86_64-redhat-linux-gnu, built on Mar 25 2011 at 10:54:38 Copyright (C) 1999-2009 The FreeRADIUS server project and contributors. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. You may redistribute copies of FreeRADIUS under the terms of the GNU General Public License v2. Starting - reading configuration files ... including configuration file /etc/raddb/radiusd.conf including configuration file /etc/raddb/proxy.conf including configuration file /etc/raddb/clients.conf including files in directory /etc/raddb/modules/ including configuration file /etc/raddb/modules/realm including configuration file /etc/raddb/modules/detail including configuration file /etc/raddb/modules/unix including configuration file /etc/raddb/modules/mac2ip including configuration file /etc/raddb/modules/pam including configuration file /etc/raddb/modules/logintime including configuration file /etc/raddb/modules/perl including configuration file /etc/raddb/modules/detail.log including configuration file /etc/raddb/modules/mac2vlan including configuration file /etc/raddb/modules/radutmp including configuration file /etc/raddb/modules/etc_group including configuration file /etc/raddb/modules/wimax including configuration file /etc/raddb/modules/ntlm_auth including configuration file /etc/raddb/modules/preprocess including configuration file /etc/raddb/modules/files including configuration file /etc/raddb/modules/attr_rewrite including configuration file /etc/raddb/modules/attr_filter including configuration file /etc/raddb/modules/always including configuration file /etc/raddb/modules/sql_log including configuration file /etc/raddb/modules/counter including configuration file /etc/raddb/modules/sqlcounter_expire_on_login including configuration file /etc/raddb/modules/policy including configuration file /etc/raddb/modules/expr including configuration file /etc/raddb/modules/cui including configuration file /etc/raddb/modules/linelog including configuration file /etc/raddb/modules/opendirectory including configuration file /etc/raddb/modules/chap including configuration file /etc/raddb/modules/smbpasswd including configuration file /etc/raddb/modules/passwd including configuration file /etc/raddb/modules/otp including configuration file /etc/raddb/modules/detail.example.com including configuration file /etc/raddb/modules/relay_detail including configuration file /etc/raddb/modules/echo including configuration file /etc/raddb/modules/smsotp including configuration file /etc/raddb/modules/inner-eap including configuration file /etc/raddb/modules/pap including configuration file /etc/raddb/modules/exec including configuration file /etc/raddb/modules/mschap including configuration file /etc/raddb/modules/acct_unique including configuration file /etc/raddb/modules/sradutmp including configuration file /etc/raddb/modules/checkval including configuration file /etc/raddb/modules/ippool including configuration file /etc/raddb/modules/digest including configuration file /etc/raddb/modules/expiration including configuration file /etc/raddb/modules/dynamic_clients including configuration file /etc/raddb/eap.conf including configuration file /etc/raddb/sql.conf including configuration file /etc/raddb/sql/mysql/dialup.conf including configuration file /etc/raddb/policy.conf including files in directory /etc/raddb/sites-enabled/ including configuration file /etc/raddb/sites-enabled/default.orig including configuration file /etc/raddb/sites-enabled/inner-tunnel including configuration file /etc/raddb/sites-enabled/control-socket including configuration file /etc/raddb/sites-enabled/copy-acct-to-home-server including configuration file /etc/raddb/sites-enabled/default main { user = "radiusd" group = "radiusd" allow_core_dumps = no } incl
Re: DHCP and dynamic ip allocation from a pool
Alan DeKok wrote: Evgeniy Kozhuhovskiy wrote: Keep us informed :-) As always, patches are welcome. In fact, i'm thinking about it. I'll try :) It's easy for me to do 1-2 line fixes. Re-writing the SQL IPPool module to handle DHCP is not a priority, and will not be a priority for a long time. -- With best regards, Evgeniy Kozhuhovskiy, Leader of Services team, Minsk State Phony Network, RUE Beltelecom. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: DHCP and dynamic ip allocation from a pool
Evgeniy Kozhuhovskiy wrote: > Keep us informed :-) As always, patches are welcome. It's easy for me to do 1-2 line fixes. Re-writing the SQL IPPool module to handle DHCP is not a priority, and will not be a priority for a long time. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: DHCP and dynamic ip allocation from a pool
Alan DeKok wrote: In fact, main problem in native rlm_sql_ippool is that "freeing" of ip is done via accounting section - and there is no analog of Stop packet in dhcp (but it can be simulated, using Lease-Time) Yes. There is some work that needs to be done in order to integrate DHCP into the SQL IP pools. Keep us informed :-) -- With best regards, Evgeniy Kozhuhovskiy, Leader of Services team, Minsk State Phony Network, RUE Beltelecom. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: DHCP and dynamic ip allocation from a pool
Evgeniy Kozhuhovskiy wrote: > Does anybody already implemented dynamic allocation of ips > from pool? I don't think so. > In fact, main problem in native rlm_sql_ippool is that "freeing" of ip > is done via accounting section - and there is no analog of Stop packet > in dhcp (but it can be simulated, using Lease-Time) Yes. There is some work that needs to be done in order to integrate DHCP into the SQL IP pools. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
DHCP and dynamic ip allocation from a pool
Does anybody already implemented dynamic allocation of ips from pool? Or any ideas? In fact, main problem in native rlm_sql_ippool is that "freeing" of ip is done via accounting section - and there is no analog of Stop packet in dhcp (but it can be simulated, using Lease-Time) -- With best regards, Evgeniy Kozhuhovskiy, Leader of Services team, Minsk State Phony Network, RUE Beltelecom. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Dynamic IP Allocation With Freeradius
Hi, > That would be the magical mythical network of one mask I was talking about > at NW. It's valid for any range of IPs and allows communication only via > the default root. but it only works if all your clients on the L2 layer are dumb. any student worth their name would run eg IPX or decnet which would then allow them to communicate. only TCP/IP is that dumb ;-) alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Dynamic IP Allocation With Freeradius
[EMAIL PROTECTED] wrote: Hi, /usr/local/etc/raddb/radiusd.conf ippool main_pool { # range-start,range-stop: The start and end ip # addresses for the ip pool range-start = 192.168.1.1 range-stop = 192.168.3.254 # netmask: The network mask used for the ip's netmask = 255.255.255.255 forgive my foolish networking but why that netmask? some method used to try to isolate clients from each other? That would be the magical mythical network of one mask I was talking about at NW. It's valid for any range of IPs and allows communication only via the default root. the correct netmask for that range would be 255.255.252.0 though that would also cover the 192.168.0.0/24 range too. you need to ensure and take care that you choose correct aligned regions for IP addresses. Sun Apr 13 06:04:19 2008 : Debug: Module: Loaded radutmp Sun Apr 13 06:04:19 2008 : Debug: radutmp: filename = "/usr/local/var/log/radius/radutmp" Sun Apr 13 06:04:19 2008 : Debug: radutmp: username = "%{User-Name}" Sun Apr 13 06:04:19 2008 : Debug: radutmp: case_sensitive = yes Sun Apr 13 06:04:19 2008 : Debug: radutmp: check_with_nas = yes Sun Apr 13 06:04:19 2008 : Debug: radutmp: perm = 384 Sun Apr 13 06:04:19 2008 : Debug: radutmp: callerid = yes Sun Apr 13 06:04:19 2008 : Debug: Module: Instantiated radutmp (radutmp) Segmentation fault what are the permissions of that file and directory? (eg ls -l /usr/local/var/log/radius ) and whats the next module in your config file? otherwise, docs/bugs compile it with debug support etc. alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Dynamic IP Allocation With Freeradius
Hi, > /usr/local/etc/raddb/radiusd.conf > > ippool main_pool { > > # range-start,range-stop: The start and end ip > # addresses for the ip pool > range-start = 192.168.1.1 > range-stop = 192.168.3.254 > > # netmask: The network mask used for the ip's > netmask = 255.255.255.255 forgive my foolish networking but why that netmask? some method used to try to isolate clients from each other? the correct netmask for that range would be 255.255.252.0 though that would also cover the 192.168.0.0/24 range too. you need to ensure and take care that you choose correct aligned regions for IP addresses. > Sun Apr 13 06:04:19 2008 : Debug: Module: Loaded radutmp > Sun Apr 13 06:04:19 2008 : Debug: radutmp: filename = > "/usr/local/var/log/radius/radutmp" > Sun Apr 13 06:04:19 2008 : Debug: radutmp: username = "%{User-Name}" > Sun Apr 13 06:04:19 2008 : Debug: radutmp: case_sensitive = yes > Sun Apr 13 06:04:19 2008 : Debug: radutmp: check_with_nas = yes > Sun Apr 13 06:04:19 2008 : Debug: radutmp: perm = 384 > Sun Apr 13 06:04:19 2008 : Debug: radutmp: callerid = yes > Sun Apr 13 06:04:19 2008 : Debug: Module: Instantiated radutmp (radutmp) > Segmentation fault what are the permissions of that file and directory? (eg ls -l /usr/local/var/log/radius ) and whats the next module in your config file? otherwise, docs/bugs compile it with debug support etc. alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Dynamic IP Allocation With Freeradius
4:19 2008 : Info: rlm_sql (sql): Attempting to connect to >[EMAIL PROTECTED]:/radius >Sun Apr 13 06:04:19 2008 : Debug: rlm_sql (sql): starting 0 >Sun Apr 13 06:04:19 2008 : Debug: rlm_sql (sql): Attempting to connect >rlm_sql_mysql #0 >Sun Apr 13 06:04:19 2008 : Info: rlm_sql_mysql: Starting connect to MySQL >server for #0 >Sun Apr 13 06:04:19 2008 : Debug: rlm_sql (sql): Connected new DB handle, #0 >Sun Apr 13 06:04:19 2008 : Debug: rlm_sql (sql): starting 1 >Sun Apr 13 06:04:19 2008 : Debug: rlm_sql (sql): Attempting to connect >rlm_sql_mysql #1 >Sun Apr 13 06:04:19 2008 : Info: rlm_sql_mysql: Starting connect to MySQL >server for #1 >Sun Apr 13 06:04:19 2008 : Debug: rlm_sql (sql): Connected new DB handle, #1 >Sun Apr 13 06:04:19 2008 : Debug: rlm_sql (sql): starting 2 >Sun Apr 13 06:04:19 2008 : Debug: rlm_sql (sql): Attempting to connect >rlm_sql_mysql #2 >Sun Apr 13 06:04:19 2008 : Info: rlm_sql_mysql: Starting connect to MySQL >server for #2 >Sun Apr 13 06:04:19 2008 : Debug: rlm_sql (sql): Connected new DB handle, #2 >Sun Apr 13 06:04:19 2008 : Debug: rlm_sql (sql): starting 3 >Sun Apr 13 06:04:19 2008 : Debug: rlm_sql (sql): Attempting to connect >rlm_sql_mysql #3 >Sun Apr 13 06:04:19 2008 : Info: rlm_sql_mysql: Starting connect to MySQL >server for #3 >Sun Apr 13 06:04:19 2008 : Debug: rlm_sql (sql): Connected new DB handle, #3 >Sun Apr 13 06:04:19 2008 : Debug: rlm_sql (sql): starting 4 >Sun Apr 13 06:04:19 2008 : Debug: rlm_sql (sql): Attempting to connect >rlm_sql_mysql #4 >Sun Apr 13 06:04:19 2008 : Info: rlm_sql_mysql: Starting connect to MySQL >server for #4 >Sun Apr 13 06:04:19 2008 : Debug: rlm_sql (sql): Connected new DB handle, #4 >Sun Apr 13 06:04:19 2008 : Debug: Module: Instantiated sql (sql) >Sun Apr 13 06:04:19 2008 : Debug: Module: Loaded Acct-Unique-Session-Id >Sun Apr 13 06:04:19 2008 : Debug: acct_unique: key = "User-Name, >Acct-Session-Id, NAS-IP-Address, Client-IP-Address, NAS-Port" >Sun Apr 13 06:04:19 2008 : Debug: Module: Instantiated acct_unique >(acct_unique) >Sun Apr 13 06:04:19 2008 : Debug: Module: Loaded detail >Sun Apr 13 06:04:19 2008 : Debug: detail: detailfile = >"/usr/local/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d" >Sun Apr 13 06:04:19 2008 : Debug: detail: detailperm = 384 >Sun Apr 13 06:04:19 2008 : Debug: detail: dirperm = 493 >Sun Apr 13 06:04:19 2008 : Debug: detail: locking = no >Sun Apr 13 06:04:19 2008 : Debug: Module: Instantiated detail (detail) >Sun Apr 13 06:04:19 2008 : Debug: Module: Loaded radutmp >Sun Apr 13 06:04:19 2008 : Debug: radutmp: filename = >"/usr/local/var/log/radius/radutmp" >Sun Apr 13 06:04:19 2008 : Debug: radutmp: username = "%{User-Name}" >Sun Apr 13 06:04:19 2008 : Debug: radutmp: case_sensitive = yes >Sun Apr 13 06:04:19 2008 : Debug: radutmp: check_with_nas = yes >Sun Apr 13 06:04:19 2008 : Debug: radutmp: perm = 384 >Sun Apr 13 06:04:19 2008 : Debug: radutmp: callerid = yes >Sun Apr 13 06:04:19 2008 : Debug: Module: Instantiated radutmp (radutmp) >Segmentation fault > > >Any suggestions please. > >Regards, >Joel > - Original Message - > From: Joel @ Gmail > To: freeradius-users@lists.freeradius.org > Sent: Saturday, April 12, 2008 7:11 PM > Subject: Dynamic IP Allocation With Freeradius > > > Dear Friends, > > Right now I have setup working of freeradius with mysql authentication. I > have static & dynamic group created in mysql and all seems working. Currently > static IPs are provided by radius with mysql backend. But dynamic IP is > provided by Cisco Router. Cisco router is configured as PPPOE/PPPOA. Cisco > does all authentication with freeradius. > > Now what I want is to provided Dynamic IPs with freeradius instead of Cisco. > I have searched alot and tried few setting but that didnt worked. Is it > possible to configure USERS file and have all dynamic users get dynamically > using USERS file ? I checked but wasnt sucessful. Or a solution in mysql > itself. > > For testing i had activated below config in radiusd.conf > > ippool main_pool { > > # range-start,range-stop: The start and end ip > # addresses for the ip pool > range-start = 192.168.1.1 > range-stop = 192.168.3.254 > > # netmask: The network mask used for the ip's > netmask = 255.255.255.0 > > # cache-size: The gdbm cache size for the db > # files. Should be equal to the number of ip's > # available in the ip pool > cache-size = 800 > > # session-db: The main db file used to allocate ip's to > clients > session-db = ${raddbdir}/db.ippool > > # ip-index: Helper db index file used in multilink > ip-index = ${raddbdir}/db.ipindex > > # override: Will this ippool override a Framed-IP-Address > already set > override = no > > # maximum-timeout: If not zero specifies the maximum time in > seconds an > # entry may be active. Default: 0 > maximum-timeout = 0 > } > > > main_pool in accounting & post-auth modules. > > > doing this and starting the radius gives me segmentation error. > > Any suggestion please ? > > > Regards, > Joel > - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Dynamic IP Allocation With Freeradius
: Connected new DB handle, #3 Sun Apr 13 06:04:19 2008 : Debug: rlm_sql (sql): starting 4 Sun Apr 13 06:04:19 2008 : Debug: rlm_sql (sql): Attempting to connect rlm_sql_mysql #4 Sun Apr 13 06:04:19 2008 : Info: rlm_sql_mysql: Starting connect to MySQL server for #4 Sun Apr 13 06:04:19 2008 : Debug: rlm_sql (sql): Connected new DB handle, #4 Sun Apr 13 06:04:19 2008 : Debug: Module: Instantiated sql (sql) Sun Apr 13 06:04:19 2008 : Debug: Module: Loaded Acct-Unique-Session-Id Sun Apr 13 06:04:19 2008 : Debug: acct_unique: key = "User-Name, Acct-Session-Id, NAS-IP-Address, Client-IP-Address, NAS-Port" Sun Apr 13 06:04:19 2008 : Debug: Module: Instantiated acct_unique (acct_unique) Sun Apr 13 06:04:19 2008 : Debug: Module: Loaded detail Sun Apr 13 06:04:19 2008 : Debug: detail: detailfile = "/usr/local/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d" Sun Apr 13 06:04:19 2008 : Debug: detail: detailperm = 384 Sun Apr 13 06:04:19 2008 : Debug: detail: dirperm = 493 Sun Apr 13 06:04:19 2008 : Debug: detail: locking = no Sun Apr 13 06:04:19 2008 : Debug: Module: Instantiated detail (detail) Sun Apr 13 06:04:19 2008 : Debug: Module: Loaded radutmp Sun Apr 13 06:04:19 2008 : Debug: radutmp: filename = "/usr/local/var/log/radius/radutmp" Sun Apr 13 06:04:19 2008 : Debug: radutmp: username = "%{User-Name}" Sun Apr 13 06:04:19 2008 : Debug: radutmp: case_sensitive = yes Sun Apr 13 06:04:19 2008 : Debug: radutmp: check_with_nas = yes Sun Apr 13 06:04:19 2008 : Debug: radutmp: perm = 384 Sun Apr 13 06:04:19 2008 : Debug: radutmp: callerid = yes Sun Apr 13 06:04:19 2008 : Debug: Module: Instantiated radutmp (radutmp) Segmentation fault Any suggestions please. Regards, Joel - Original Message - From: Joel @ Gmail To: freeradius-users@lists.freeradius.org Sent: Saturday, April 12, 2008 7:11 PM Subject: Dynamic IP Allocation With Freeradius Dear Friends, Right now I have setup working of freeradius with mysql authentication. I have static & dynamic group created in mysql and all seems working. Currently static IPs are provided by radius with mysql backend. But dynamic IP is provided by Cisco Router. Cisco router is configured as PPPOE/PPPOA. Cisco does all authentication with freeradius. Now what I want is to provided Dynamic IPs with freeradius instead of Cisco. I have searched alot and tried few setting but that didnt worked. Is it possible to configure USERS file and have all dynamic users get dynamically using USERS file ? I checked but wasnt sucessful. Or a solution in mysql itself. For testing i had activated below config in radiusd.conf ippool main_pool { # range-start,range-stop: The start and end ip # addresses for the ip pool range-start = 192.168.1.1 range-stop = 192.168.3.254 # netmask: The network mask used for the ip's netmask = 255.255.255.0 # cache-size: The gdbm cache size for the db # files. Should be equal to the number of ip's # available in the ip pool cache-size = 800 # session-db: The main db file used to allocate ip's to clients session-db = ${raddbdir}/db.ippool # ip-index: Helper db index file used in multilink ip-index = ${raddbdir}/db.ipindex # override: Will this ippool override a Framed-IP-Address already set override = no # maximum-timeout: If not zero specifies the maximum time in seconds an # entry may be active. Default: 0 maximum-timeout = 0 } main_pool in accounting & post-auth modules. doing this and starting the radius gives me segmentation error. Any suggestion please ? Regards, Joel- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Dynamic IP Allocation With Freeradius
>Dear Friends, > >Right now I have setup working of freeradius with mysql authentication. I have >static & dynamic group created in mysql and all seems working. Currently >static IPs are provided by radius with mysql backend. But dynamic IP is >provided by Cisco Router. Cisco router is configured as PPPOE/PPPOA. Cisco >does all authentication with freeradius. > >Now what I want is to provided Dynamic IPs with freeradius instead of Cisco. I >have searched alot and tried few setting but that didnt worked. Is it possible >to configure USERS file and have all dynamic users get dynamically using USERS >file ? I checked but wasnt sucessful. Or a solution in mysql itself. > >For testing i had activated below config in radiusd.conf > > ippool main_pool { > ># range-start,range-stop: The start and end ip ># addresses for the ip pool >range-start = 192.168.1.1 >range-stop = 192.168.3.254 > ># netmask: The network mask used for the ip's >netmask = 255.255.255.0 > ># cache-size: The gdbm cache size for the db ># files. Should be equal to the number of ip's ># available in the ip pool >cache-size = 800 > ># session-db: The main db file used to allocate ip's to clients >session-db = ${raddbdir}/db.ippool > ># ip-index: Helper db index file used in multilink >ip-index = ${raddbdir}/db.ipindex > ># override: Will this ippool override a Framed-IP-Address > already set >override = no > ># maximum-timeout: If not zero specifies the maximum time in > seconds an ># entry may be active. Default: 0 >maximum-timeout = 0 >} > > >main_pool in accounting & post-auth modules. All you have to do is add Pool-Name := main_pool as a check item in user configuration. Doesn't matter is it in users or sql. It makes sense to make a group for dynamic users and add this to radgroupcheck. You should also consider netmask 255.255.255.255 for PPP users. There is no reason why would they see each other on the network. > > >doing this and starting the radius gives me segmentation error. > start or HUP? Ivan Kalik Kalik informatika ISP - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Dynamic IP Allocation With Freeradius
Dear Friends, Right now I have setup working of freeradius with mysql authentication. I have static & dynamic group created in mysql and all seems working. Currently static IPs are provided by radius with mysql backend. But dynamic IP is provided by Cisco Router. Cisco router is configured as PPPOE/PPPOA. Cisco does all authentication with freeradius. Now what I want is to provided Dynamic IPs with freeradius instead of Cisco. I have searched alot and tried few setting but that didnt worked. Is it possible to configure USERS file and have all dynamic users get dynamically using USERS file ? I checked but wasnt sucessful. Or a solution in mysql itself. For testing i had activated below config in radiusd.conf ippool main_pool { # range-start,range-stop: The start and end ip # addresses for the ip pool range-start = 192.168.1.1 range-stop = 192.168.3.254 # netmask: The network mask used for the ip's netmask = 255.255.255.0 # cache-size: The gdbm cache size for the db # files. Should be equal to the number of ip's # available in the ip pool cache-size = 800 # session-db: The main db file used to allocate ip's to clients session-db = ${raddbdir}/db.ippool # ip-index: Helper db index file used in multilink ip-index = ${raddbdir}/db.ipindex # override: Will this ippool override a Framed-IP-Address already set override = no # maximum-timeout: If not zero specifies the maximum time in seconds an # entry may be active. Default: 0 maximum-timeout = 0 } main_pool in accounting & post-auth modules. doing this and starting the radius gives me segmentation error. Any suggestion please ? Regards, Joel- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
WG: Re: Dynamic IP Allocation for multiple Radius Servers
Library Problem seems to be everywhere in 1.0.1 :-) Stefan Neis suggested as response to my question: --- > >The problem seems to be, again, that even one adds > >> >--with-ltdl-lib=/opt/csw/share/libtool/libltdl > >> >--with-ltdl-include=/opt/csw/share/libtool/libltdl > >"make" does not seem to care about it. > > I've found this to be the case with several (if not all) of the > --with-BLAH-lib and with --with-BLAH-include options. A relatively easy way around that problem would be to use CFLAGS="relevant -I options" LDFLAGS="relevant -L and -l options" ./configure ... That way, you can even reorder the libs as necessary, as I found necessary e.g. with 1.0.0 to get OpenSSL stuff compiled in (the default configure script would try to compile stuff with -lcrypto -lssl which fails at least for static libs, while "-lssl -lcrypto" in LDFLAGS telled configure to do the right thing). --- Matthias Rumitz TC Unix / Netzwerke ADIVA Computertechnologie GmbH Norsk-Data-Str. 1 D-61352 Bad Homburg v.d.H. Fon: +49(0) 61 72 / 48 61 - 0 Fax: +49(0) 61 72 / 48 61 - 700 Web: http://www.adiva.de eMail: [EMAIL PROTECTED] Diese E-Mail Nachricht enthält vertrauliche und/oder rechtlich geschützte Informationen. Wenn Sie nicht der richtige Adressat sind oder diese E-Mail irrtümlich erhalten haben, informieren Sie bitte sofort den Absender und vernichten Sie diese Mail. This e-mail message may contain confidential and/or privileged information. If you are not the intended recipient (or have received this e-mail in error) please notify the sender immediately and destroy this e-mail. - Originalnachricht - Von: Ken Doyle <[EMAIL PROTECTED]> Datum: Freitag, Februar 11, 2005 2:35 am Betreff: Re: Dynamic IP Allocation for multiple Radius Servers > Hi guys > > I've been playing with Ruslan's patched rlm_sqlippool module > (http://www.onlinebilling.ru/freeradius/rlm_sqlippool.tar.gz), but > I've been unable to > get it to compile at all. I'm using Debian Sarge (testing), and the > freeradius 1.0.1 source. It's been at least seven years since I've > debugged any C at all and everything I've tried so far has led to a > dead end. I'm pretty sure I'm missing something, but I can't > figure out > what's actually wrong. > > If anyone has compiled this on Debian or has any ideas, I'd be > extremely grateful for any help. If I can't get this module, or the > older version of this module working properly > (I haven't yet been able to get multiple ip pools working for the > default user with the unpatched rlm_sqlippool module), I'm going to > have to abandon Freeradius. > > Ken. > (Thanks to Alan and Ruslan for their time and help). > > This is what happens: > > Making static dynamic in rlm_sqlippool... > make[6]: Entering directory `/root/freeradius- > 1.0.1/src/modules/rlm_sqlippool'gcc -g -O2 -D_REENTRANT - > D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5 > -Wall -D_GNU_SOURCE -g -Wshadow -Wpointer-arith -Wcast-qual > -Wcast-align -Wwrite-strings -Wstrict-prototypes -Wmissing-prototypes > -Wmissing-declarations -Wnested-externs -W -Wredundant-decls - Wundef > -I../../include -c rlm_sqlippool.c -o rlm_sqlippool.o > In file included from rlm_sqlippool.c:24: > rlm_sql.h:46: error: parse error before "SQL_CONFIG" > rlm_sql.h:46: warning: function declaration isn't a prototype > rlm_sql.h:47: error: parse error before "SQL_CONFIG" > rlm_sql.h:47: warning: function declaration isn't a prototype > rlm_sql.h:48: error: parse error before "SQL_CONFIG" > rlm_sql.h:48: warning: function declaration isn't a prototype > rlm_sql.h:49: error: parse error before "SQL_CONFIG" > rlm_sql.h:49: warning: function declaration isn't a prototype > rlm_sql.h:50: error: parse error before "SQL_CONFIG" > rlm_sql.h:50: warning: function declaration isn't a prototype > rlm_sql.h:51: error: parse error before "SQL_CONFIG" > rlm_sql.h:51: warning: function declaration isn't a prototype > rlm_sql.h:52: error: parse error before "SQL_CONFIG" > rlm_sql.h:52: warning: function declaration isn't a prototype > rlm_sql.h:53: error: parse error before "SQL_CONFIG" > rlm_sql.h:53: warning: function declaration isn't a prototype > rlm_sql.h:54: error: parse error before "SQL_CONFIG" > rlm_sql.h:54: warning: function declaration isn't a prototype > rlm_sql.h:55: error: parse error before "SQL_CONFIG" > rlm_sql.h:55: war
Re: Dynamic IP Allocation for multiple Radius Servers
Hi guys I've been playing with Ruslan's patched rlm_sqlippool module (http://www.onlinebilling.ru/freeradius/rlm_sqlippool.tar.gz), but I've been unable to get it to compile at all. I'm using Debian Sarge (testing), and the freeradius 1.0.1 source. It's been at least seven years since I've debugged any C at all and everything I've tried so far has led to a dead end. I'm pretty sure I'm missing something, but I can't figure out what's actually wrong. If anyone has compiled this on Debian or has any ideas, I'd be extremely grateful for any help. If I can't get this module, or the older version of this module working properly (I haven't yet been able to get multiple ip pools working for the default user with the unpatched rlm_sqlippool module), I'm going to have to abandon Freeradius. Ken. (Thanks to Alan and Ruslan for their time and help). This is what happens: Making static dynamic in rlm_sqlippool... make[6]: Entering directory `/root/freeradius-1.0.1/src/modules/rlm_sqlippool' gcc -g -O2 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5 -Wall -D_GNU_SOURCE -g -Wshadow -Wpointer-arith -Wcast-qual -Wcast-align -Wwrite-strings -Wstrict-prototypes -Wmissing-prototypes -Wmissing-declarations -Wnested-externs -W -Wredundant-decls -Wundef -I../../include -c rlm_sqlippool.c -o rlm_sqlippool.o In file included from rlm_sqlippool.c:24: rlm_sql.h:46: error: parse error before "SQL_CONFIG" rlm_sql.h:46: warning: function declaration isn't a prototype rlm_sql.h:47: error: parse error before "SQL_CONFIG" rlm_sql.h:47: warning: function declaration isn't a prototype rlm_sql.h:48: error: parse error before "SQL_CONFIG" rlm_sql.h:48: warning: function declaration isn't a prototype rlm_sql.h:49: error: parse error before "SQL_CONFIG" rlm_sql.h:49: warning: function declaration isn't a prototype rlm_sql.h:50: error: parse error before "SQL_CONFIG" rlm_sql.h:50: warning: function declaration isn't a prototype rlm_sql.h:51: error: parse error before "SQL_CONFIG" rlm_sql.h:51: warning: function declaration isn't a prototype rlm_sql.h:52: error: parse error before "SQL_CONFIG" rlm_sql.h:52: warning: function declaration isn't a prototype rlm_sql.h:53: error: parse error before "SQL_CONFIG" rlm_sql.h:53: warning: function declaration isn't a prototype rlm_sql.h:54: error: parse error before "SQL_CONFIG" rlm_sql.h:54: warning: function declaration isn't a prototype rlm_sql.h:55: error: parse error before "SQL_CONFIG" rlm_sql.h:55: warning: function declaration isn't a prototype rlm_sql.h:56: error: parse error before "SQL_CONFIG" rlm_sql.h:56: warning: function declaration isn't a prototype rlm_sql.h:57: error: parse error before "SQL_CONFIG" rlm_sql.h:57: warning: function declaration isn't a prototype rlm_sql.h:58: error: parse error before "SQL_CONFIG" rlm_sql.h:58: warning: function declaration isn't a prototype rlm_sql.h:59: error: parse error before "SQL_CONFIG" rlm_sql.h:59: warning: function declaration isn't a prototype rlm_sql.h:66: error: parse error before "SQL_CONFIG" rlm_sql.h:66: warning: no semicolon at end of struct or union rlm_sql.h:70: error: parse error before '}' token ... etc, and then ends: rlm_sqlippool.c:1038: error: `data' undeclared (first use in this function) rlm_sqlippool.c:1038: error: parse error before ')' token rlm_sqlippool.c: In function `sqlippool_detach': rlm_sqlippool.c:1115: error: `data' undeclared (first use in this function) rlm_sqlippool.c:1115: error: parse error before ')' token rlm_sqlippool.c:1113: warning: unused parameter `instance' make[6]: *** [rlm_sqlippool.o] Error 1 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Dynamic IP Allocation for multiple Radius Servers
On Mon, 7 Feb 2005, Ken Doyle wrote: Hi, I've been working on building and configuring a cluster which will, amongst other things, run Freeradius (I hope). Currently everything is okay, but now I appear to be stuck. At the moment I'm dymanically allocating IP's using the IPPool module, which is working fine on a single server. Unfortunately the rest of the cluster needs to know which IP's have been assigned. The running system: Debian Sarge (up to date), Openldap (which is being used for authorisation and authentication), FreeRADIUS 1.0.1. Accounting is being handled by MySQL which is not currently on the cluster. If the IPPool module could talk to MySQL I wouldn't have a problem. I'm thinking of nfs mounting the database files required for the various pools, but I don't think that's very practical. Does anyone have any advice or ideas? At this point I'm basically burnt out, and any help would be greatly appreciated, even if it's just a link to something I've missed in google. rlm_ippool will eventually also update it's db on accounting-start/update packets. That way you can just use accounting relaying to keep the db's on multiple servers synchronized. Thank you for your time, Ken. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- Kostas Kalevras Network Operations Center [EMAIL PROTECTED] National Technical University of Athens, Greece Work Phone: +30 210 7721861 'Go back to the shadow' Gandalf - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Dynamic IP Allocation for multiple Radius Servers
http://www.onlinebilling.ru/freeradius/rlm_sqlippool.tar.gz Ken Doyle <[EMAIL PROTECTED]> wrote: > Thanks for the help Alan, however rd.ranetka.ru does not seem to > resolve, and the one other link to this module that I could find > (ftp://lopez.globe.net.nz/Linux/freeradius/rlm_sqlippool.tar.gz) does > not resolve either. Given that I missed turning up this module in my > initial searching, I'm hoping there is another link to this module > somewhere. I'll keep looking, but this project needs to go into > production soon, and any help would be appreciated, even if it's just > a local copy you have lying around. > http://www.striker.ottawa.on.ca/~aland/rlm_sqlippool.tar.gz > > It may not be there for long, though. > > Alan DeKok. That module creates pool of sql connections for each (!) ippool configured. Thats very bad. I wrote about that ... see http://lists.cistron.nl/pipermail/freeradius-devel/2004-April/007074.html Alan, I think that module can be merged to current CVS tree? It used in productional enviroment for 2+ yrs in our company. It's also tested with post-1.0 CVS versions... I had changed my workstation, so rd.ranetka.ru link doesn't work. Please use http://www.onlinebilling.ru/freeradius/rlm_sqlippool.tgz - it's of clean&robust version of that module, that works fine. The source code based on another guys work, so I can find out there unpatched and pacthed versions of original code. Enjoy. HTH Ruslan smime.p7s Description: S/MIME Cryptographic Signature
Re: Dynamic IP Allocation for multiple Radius Servers
Alan DeKok <[EMAIL PROTECTED]> wrote: > http://www.striker.ottawa.on.ca/~aland/rlm_sqlippool.tar.gz > > It may not be there for long, though. > > Alan DeKok. Thanks Alan, greatly appreciated. It downloaded and extracted fine. I'll go off and tinker with it now. Hopefully that's the last hurdle out of the way. Ken. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Dynamic IP Allocation for multiple Radius Servers
Ken Doyle <[EMAIL PROTECTED]> wrote: > Thanks for the help Alan, however rd.ranetka.ru does not seem to > resolve, and the one other link to this module that I could find > (ftp://lopez.globe.net.nz/Linux/freeradius/rlm_sqlippool.tar.gz) does > not resolve either. Given that I missed turning up this module in my > initial searching, I'm hoping there is another link to this module > somewhere. I'll keep looking, but this project needs to go into > production soon, and any help would be appreciated, even if it's just > a local copy you have lying around. http://www.striker.ottawa.on.ca/~aland/rlm_sqlippool.tar.gz It may not be there for long, though. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Dynamic IP Allocation for multiple Radius Servers
Alan DeKok <[EMAIL PROTECTED]> wrote: > Ken Doyle <[EMAIL PROTECTED]> wrote: > > If the IPPool module could talk to MySQL I wouldn't have a problem. > > I'm thinking of nfs mounting the database files required for the > > various pools, but I don't think that's very practical. > > There was an rlm_sqlippool a while ago... > > ftp://rd.ranetka.ru/pub/sql-ip-pool/rlm_sqlippool.tar.gz > > That might work. > > Alan DeKok. Thanks for the help Alan, however rd.ranetka.ru does not seem to resolve, and the one other link to this module that I could find (ftp://lopez.globe.net.nz/Linux/freeradius/rlm_sqlippool.tar.gz) does not resolve either. Given that I missed turning up this module in my initial searching, I'm hoping there is another link to this module somewhere. I'll keep looking, but this project needs to go into production soon, and any help would be appreciated, even if it's just a local copy you have lying around. Thanks again for your help, Ken. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Dynamic IP Allocation for multiple Radius Servers
Ken Doyle <[EMAIL PROTECTED]> wrote: > If the IPPool module could talk to MySQL I wouldn't have a problem. > I'm thinking of nfs mounting the database files required for the > various pools, but I don't think that's very practical. There was an rlm_sqlippool a while ago... ftp://rd.ranetka.ru/pub/sql-ip-pool/rlm_sqlippool.tar.gz That might work. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Dynamic IP Allocation for multiple Radius Servers
Hi, I've been working on building and configuring a cluster which will, amongst other things, run Freeradius (I hope). Currently everything is okay, but now I appear to be stuck. At the moment I'm dymanically allocating IP's using the IPPool module, which is working fine on a single server. Unfortunately the rest of the cluster needs to know which IP's have been assigned. The running system: Debian Sarge (up to date), Openldap (which is being used for authorisation and authentication), FreeRADIUS 1.0.1. Accounting is being handled by MySQL which is not currently on the cluster. If the IPPool module could talk to MySQL I wouldn't have a problem. I'm thinking of nfs mounting the database files required for the various pools, but I don't think that's very practical. Does anyone have any advice or ideas? At this point I'm basically burnt out, and any help would be greatly appreciated, even if it's just a link to something I've missed in google. Thank you for your time, Ken. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html