Re: dyndns.org domain in Clients.conf
How i can use nas identifier attribute?? client.conf needs an ip however ?? i'm very confused. - Original Message - *From:* YvesDM [EMAIL PROTECTED] *To:* FreeRadius users mailing list freeradius-users@lists.freeradius.org *Sent:* Friday, May 04, 2007 1:21 PM *Subject:* Re: dyndns.org domain in Clients.conf On 5/4/07, AS Alex [EMAIL PROTECTED] wrote: Yes i have enabled hostname_lookups but nothing. Hostname lookups are only done at FR startup, so as soon as the ip changes you have a problem :-) Use the Nas identifier attribute. Kind regards, Yves -- - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: dyndns.org domain in Clients.conf
How i can use nas identifier attribute?? client.conf needs an ip however ?? i'm very confused. - Original Message - From: YvesDM To: FreeRadius users mailing list Sent: Friday, May 04, 2007 1:21 PM Subject: Re: dyndns.org domain in Clients.conf On 5/4/07, AS Alex [EMAIL PROTECTED] wrote: Yes i have enabled hostname_lookups but nothing. Hostname lookups are only done at FR startup, so as soon as the ip changes you have a problem :-) Use the Nas identifier attribute. Kind regards, Yves -- - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: dyndns.org domain in Clients.conf
Hi! YvesDM wrote: How i can use nas identifier attribute?? client.conf needs an ip however ?? i'm very confused. In clients.conf use 0.0.0.0/0 and make sure your shared secret is long and strong. A small note if you really want to do this: in 2.0, this will only match for the exact address 0.0.0.0, and not for all IP addresses anymore, like it does in 1.x. You can work around this by using two entries, one for 0.0.0.0/1 and one for 128.0.0.0/1. I don't think this is a very good idea anyway (Yes, I do use it myself, but that is for a very nonstandard and non-production setup on an isolated network, not for an internet-connected server.) Gtnx Marcel - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: dyndns.org domain in Clients.conf
On 5/8/07, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: Hi! YvesDM wrote: How i can use nas identifier attribute?? client.conf needs an ip however ?? i'm very confused. In clients.conf use 0.0.0.0/0 and make sure your shared secret is long and strong. A small note if you really want to do this: in 2.0, this will only match for the exact address 0.0.0.0, and not for all IP addresses anymore, like it does in 1.x. You can work around this by using two entries, one for 0.0.0.0/1 and one for 128.0.0.0/1. I don't think this is a very good idea anyway (Yes, I do use it myself, but that is for a very nonstandard and non-production setup on an isolated network, not for an internet-connected server.) Gtnx Marcel Hi Marcel, Tnx for the note about 2.0, I didn't know that. I also didn't look into 2.0so far, maybe it's time to do so. I know 0.0.0.0/0 in clients.conf is not a preferable setup, but many public hotspot setups have nas's with dynamic ip's and as far as I know there is no other solution for this, unless you really go for some advanced scripting like somebody else proposed in this topic. If you have a better solution for this, I will be happy to learn! Kind Regards, Yves - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: dyndns.org domain in Clients.conf
Hello black, Friday, May 04, 2007, 12:18:00 PM, you wrote: black devils Hi, black devils I have created one hotspot with a openwrt router and chillispot. I use a black devils remote server radius (freeradius) for authenticate users of hotspot. Move your clients.conf to SQL database. You can use the dyndns settings of the openwrt router to send the IP address to your own server (choose custom on your dyndns configuration). On your server, have a script to parse the info, update the database with the new IP address and (this is the hardest thing :) restart FR to learn the IP. Cheers, Claudiu FILIP Globtel Internet @: [EMAIL PROTECTED] Http://www.globtel.ro - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: dyndns.org domain in Clients.conf
Hi, I have created one hotspot with a openwrt router and chillispot. I use a remote server radius (freeradius) for authenticate users of hotspot. use a VPN between the 2 systems - then you can simply use the VPN tunnel addresses for each system to talk to each other - securely! openvpn works fine on the openwrt - i dont know what your chillispot box is, but i'm sure that too should be fine - there are packages for most distros alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: dyndns.org domain in Clients.conf
Hi, just a guess: Ensure that you have following line radiusd.conf: hostname_lookups = yes Milan Holub holub (at) thenet (dot) ch -- TheNet-Internet Services AG, im Bernertechnopark, Morgenstr. 129 CH-3018, Bern, Switzerland 031 998 4333, Fax 031 998 4330 http://www.thenet.ch http://wlan.thenet.ch -- - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: dyndns.org domain in Clients.conf
Yes i have enabled hostname_lookups but nothing. For VPN...can be an idea but without vpn it's possibile to realize what i need?? - Original Message - From: Milan Holub [EMAIL PROTECTED] To: FreeRadius users mailing list freeradius-users@lists.freeradius.org Sent: Friday, May 04, 2007 11:29 AM Subject: Re: dyndns.org domain in Clients.conf Hi, just a guess: Ensure that you have following line radiusd.conf: hostname_lookups = yes Milan Holub holub (at) thenet (dot) ch -- TheNet-Internet Services AG, im Bernertechnopark, Morgenstr. 129 CH-3018, Bern, Switzerland 031 998 4333, Fax 031 998 4330 http://www.thenet.ch http://wlan.thenet.ch -- - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: dyndns.org domain in Clients.conf
AS Alex wrote: Yes i have enabled hostname_lookups but nothing. For VPN...can be an idea but without vpn it's possibile to realize what i need?? No. RADIUS clients are identified by IP addresses, not host names. If the IP address changes while the server is running, you must HUP or re-start the server for it to discover that. Configuring clients by hostname is possible, but it's almost always a bad idea. Alan DeKok. -- http://deployingradius.com - The web site of the book http://deployingradius.com/blog/ - The blog - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: dyndns.org domain in Clients.conf
On 5/4/07, AS Alex [EMAIL PROTECTED] wrote: Yes i have enabled hostname_lookups but nothing. Hostname lookups are only done at FR startup, so as soon as the ip changes you have a problem :-) Use the Nas identifier attribute. Kind regards, Yves - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html