(RADIATOR) ansiCreate.sql
Hello, I begun to use Radiator 2.16.1 recenty. At once, I have trouble exceuting goodies/ansCreate.sql on Oracle 8.1.6. I cant create table RADPOOL by UNIQUE construction. It seems that create table RADPOOL SQL syntax is wrong. I deleted 'UNIQUE RADPOOL_I (YIADDR)' line and previous empty line. It run well. Is that way right? Regards -- KUBOTA,Takaya @ NTT Software Corporation. [EMAIL PROTECTED] voice/facsimile: +81-45-212-7369/9800 === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Cisco NAS weirdity
It works fine for PM3's though, those errors appear to be coming from the Cisco boxen queries, and I think the source of trouble is that 20019 which seems to be a Port number (at least that is what radwho thinks): usernamesome IP address 20019 0754Tue Aug 15 08:14:33 20000 00:04:30 ISDNFramed-User 5248's don't have 2 ports in them, just 48 :) So something weird is afoot. I'll look at this second issue later today. Chris, The 20019 value is the numerical port. You can change this behaviour in your config (on 11.3 and greater IOS). You're probably expecting the Textual one similar to 'Async24' or 'vty24' etc. Im not sure what the above numerical line number translates to, ill ask around here (one of the CCIE's should know) and reply back later with that. try the following config statement: aaa nas port extended Regards, Robert Moss. Hi Robert, Oh cool, with your help I found this page, looks like I can get lost in here for awhile and emerge with the answer. Thanks! http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgc r/secur_r/srprt2/srrad.htm Chris === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Oracle + FreeBSD
--- Forwarded mail from [EMAIL PROTECTED] Date: Wed, 16 Aug 2000 17:10:22 +1000 (EST) From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: BOUNCE [EMAIL PROTECTED]:Non-member submission from ["Lachlan Fletcher" [EMAIL PROTECTED]] From mikem Wed Aug 16 17:10:17 2000 Received: by oscar.open.com.au (8.9.0/8.9.0) id RAA08184 for [EMAIL PROTECTED]; Wed, 16 Aug 2000 17:10:16 +1000 (EST) Received: from mail.ausisp.com (mail.ausisp.com [203.2.239.72]) by perki.connect.com.au with ESMTP id QAA25936 (8.8.8/IDA-1.7 for [EMAIL PROTECTED]); Wed, 16 Aug 2000 16:59:59 +1000 (EST) Received: from mail.ausisp.com (mail.ausisp.com [203.2.239.72]) by perki.connect.com.au with ESMTP id QAA25936 (8.8.8/IDA-1.7 for [EMAIL PROTECTED]); Wed, 16 Aug 2000 16:59:59 +1000 (EST) Received: from lfletcher (nm1.geko.net.au [203.2.239.20]) by mail.ausisp.com (8.9.3/8.9.3) with SMTP id QAA67223 for [EMAIL PROTECTED]; Wed, 16 Aug 2000 16:58:41 +1000 (EST) envelope-from [EMAIL PROTECTED] From: "Lachlan Fletcher" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: Oracle + FreeBSD Date: Wed, 16 Aug 2000 17:01:01 +1000 Message-ID: [EMAIL PROTECTED] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300 In-Reply-To: a04320406b5bf997d3207@[203.170.155.1] Importance: Normal Content-Type: text/plain; charset="iso-8859-1" Hi, We currently have Oracle servers running on both Linux and Solaris, but all our other servers are FreeBSD. Is there any way we can run our Radius server on a FreeBSD server (to keep our network guys happy) accessing the Oracle servers running on either Linux or Solaris? I know we could do it using proxy radius servers, but this does not really seem like a very attractive option. Is/Has anyone does this already? Lachlan. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Hugh Irvine Sent: Wednesday, 16 August 2000 11:08 To: Robin Gruyters; [EMAIL PROTECTED] Subject: Re: (RADIATOR) Blokking user information Hello Robin - This is usually dealt with by a special Handler that is only used by those administrative users hth Hugh Hi, Just wondering, isit possible to make a list of users that won't be listed in de Accounting?!?! (e.g. root, administrator) Same thing when u use PasswordLogFileName with ExcludeFromPasswordLog. -- Regards, Robin Gruyters - [EMAIL PROTECTED] - WISH BV - nic-hdl: RG3771-RIPE http://www.wish.nl - tel: +31(0)413242500 - fax. +31(0)208762628 PGP key ID DEB8C991 - Head Engineering / Web Designer / B.O.F.H. BOFH excuse: kernel panic: write-only-memory (/dev/wom0) capacity exceeded. ---End of forwarded mail from [EMAIL PROTECTED] -- Mike McCauley [EMAIL PROTECTED] Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW 24 Bateman St Hampton, VIC 3188 Australia http://www.open.com.au Phone +61 3 9598-0985 Fax +61 3 9598-0955 Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory etc etc on Unix, Win95/8, 2000, NT, MacOS 9, MacOS X === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. -- -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, Interbiller, TACACS+, PAM, external, etc, etc. Available on Unix, Linux, FreeBSD, Windows 95/98/2000, NT, MacOS X. === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. ---End of forwarded mail from [EMAIL PROTECTED] -- Mike McCauley [EMAIL PROTECTED] Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW 24 Bateman St Hampton, VIC 3188 Australia http://www.open.com.au Phone +61 3 9598-0985 Fax +61 3 9598-0955 Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory etc etc on Unix, Win95/8, 2000, NT, MacOS 9, MacOS X === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Using DBI but no AuthSelect
Hi all... It might be me growing extremely picky, but here goes: I like the fallback DBI functions wich Radiator provides, and would like to use it. The problem is that the standard AuthSelect is not enough for me. I need to do more than one lookup be Auth-request, and I need to perform Perl code to check several things on the user who wishes access. On top of this I need to log, very carefully, in a database what went wrong (also from a users point of view) in the Perl code. I tried to leave it all ub to a preAuthHook or a postAuthHook, but if I want to use the fallback DBI that comes with Radiator it wants to perform a database lookup in the AuthBy SQL clause, which I can't use for anything really.. Is there a possibility to leave the authentication _completely_ up to a hook, so I can still use the DBI function in Radiator. Or is the solution to make my own EXTERNAL program for authentication (and hereby miss out on the Radiator DBI)?? /Jesper === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) New radius system test.
Hi, I have the next scenario: |-| | NAS ||--||---| | | | PROXY RADIUS | | RADIATOR1 | | NETWORK ||--||---| |-| And I would like that my RADIATOR1 host forward all Authentication and Accounting packets it recevies from PROXY RADIUS to another host runing radiator. This is it: |-| | NAS ||--||---| |---| | | | PROXY RADIUS | | RADIATOR1 | | RADIATOR2 | | NETWORK ||--||---| |---| |-| But the issue is that RADIATOR1 doesn't forward to PROXY RADIUS the Authentication/Accounting responses coming from RADIATOR2 and that the Authentication/Accounting flow between NAS NETWORK and RADIATOR1 don't be affected by problems in the Authentication/Accounting flow between RADIATOR1 and RADIATOR2. For example, an Authentication request packet will go from one NAS of the NAS NETWORK to PROXY RADIUS, PROXY RADIUS will forward it to RADIATOR1; RADIATOR1 processes it, sends the response to PROXY RADIUS and forwards it to RADIATOR2. PROXY RADIUS forward the response to the NAS which send the Authentication request. On the other side, RADIATOR2 processes the packet coming from RADIATOR1 and sends the response to it, but RADIATOR1 doesn't forward this response to the PROXY RADIUS. The same will happen with the Accounting packets. Is it possible to do this with Radiator ? How ? RADIATOR2 is a new Radius system I want test with the current radius traffic before put it as a production system. Greetings. --- Carles Xavier Munyoz Baldó / [EMAIL PROTECTED] Wanadoo España Dpto. Sistemas / System Department Tel: +34 96 504 Ext. 40046 - Fax: +34 96 5040047 http://www.wanadoo.es/ --- === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Radiator + Oracle + FreeBSD
Hi, We currently have Oracle servers running on both Linux and Solaris, but all our other servers are FreeBSD. Is there any way we can run our Radius server on a FreeBSD server (to keep our network guys happy) accessing the Oracle servers running on either Linux or Solaris? I know we could do it using proxy radius servers, but this does not really seem like a very attractive option. Is/Has anyone does this already? Lachlan. === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Too many open files
Hi Rob, Ulimit -a: time(seconds)unlimited file(blocks) unlimited data(kbytes) 2097148 stack(kbytes)8192 coredump(blocks) unlimited nofiles(descriptors) 64 vmemory(kbytes) unlimited But I have in other machine EXACTLY the same conf (I use a load balancer, balancing Radius Packets to both machines) and in one I get the Warning: Too many open files, and in the other not!!! I also have Radiator 2.15 in another machine (solaris 2.6) ... and ulimit -a results are the same as above ... without these warnings ... ¿Where can be the problem? Im not sure why the other box is not failing, but i can tell you now, that having only 64 filedescriptors available as your soft limit is going to cause problems. Filedescriptors aren't just for opening files, they're used for sockets and other things too. You will need to increase your shell limit by typing 'ulimit -n 1024' which will take effect immediately, and in the long term you can set the entire system filedescriptor limit to 1024 or greater. There are two filedescriptor limits: Soft and Hard. The Soft limits are a warning, and software can usually work around it. Hard limits are the number of filedescriptors available to you in total. There is a crash course in filedescriptors on the Squid proxy website http://www.squid-cache.org/Doc/FAQ/FAQ-11.html#ss11.4 Regards, Robert Moss. === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
RE: (RADIATOR) Radiator + Oracle + FreeBSD
Howdy, I've heard - but haven't tested - that the following works: You install Radiator on FreeBSD, and ensure that DBD::Proxy is also installed. You then use DBD::Proxy to talk to DBD::Oracle on your Linux / Solaris box, which in turn talks to Oracle. A quick read through the CPAN descriptions for the Perl modules suggests that this is possible. Don't know how well it would work in reality though. Regards, Chris Knight Systems Administrator AIMS Independent Computer Professionals Tel: +61 3 6334 6664 Fax: +61 3 6331 7032 Mob: +61 419 528 795 Web: http://www.aims.com.au -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Lachlan Fletcher Sent: Wednesday, 16 August 2000 18:56 To: [EMAIL PROTECTED] Subject: (RADIATOR) Radiator + Oracle + FreeBSD Hi, We currently have Oracle servers running on both Linux and Solaris, but all our other servers are FreeBSD. Is there any way we can run our Radius server on a FreeBSD server (to keep our network guys happy) accessing the Oracle servers running on either Linux or Solaris? I know we could do it using proxy radius servers, but this does not really seem like a very attractive option. Is/Has anyone does this already? Lachlan. === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Several questions about Radiator
Hi, I would to know how to : - insert accounting (at least, IP and calling number) in a SQL database - define different authenticating methods according the calling number or the called number or the username Thanks in advance for your help.Gildas. --- Gildas PERROT, [EMAIL PROTECTED] Fluxus, 37 avenue du Colonel Pierre Avia, 75015 Paris__o http://www.fluxus.net ---_`\,_ "En 2000, FranceNet change de nom et devient Fluxus"- (_)/ (_) === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Re: no reply problem!
I'm running Radiator 2.16.1 on a Solaris Enterprise 450/Solaris 2.6 Oracle Client is running in this box. Radiator save the data in the oracle database. When the radiator authenticating port stop to respond it doesn't say anything in the logs. Maybe a oracle problem ?? thanks! Felipe Hugh Irvine wrote: This sounds like an operating system problem - what platform are you running on (hardware and software)? And what else is running on the box? Also, what does the log show prior to Radiator stopping? thanks Hugh At 5:00 PM -0300 15/8/00, Felipe Salum wrote: Hi! I'm having the follow problem. My radiator is running okay, with some ports to authenticate and accounting. But sometimes one of theses ports lock I dont know why and It doesnt say anything in the logs (trace 4). When I test with radpwtst I just receive a No Reply in the Access Request but I see the open port with netstat. Why radiator dont authenticate now if it was authenticating without problems before ??? ps: I need to edit the cfg file and change the ports to another, start radiator and then change in my NAS to the new port to radiator start authenticating again!!! Please, If anyone can help me why this problem occurs sometime I will be happy! Thanks in advance. Felipe Salum -- -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, Interbiller, TACACS+, PAM, external, etc, etc. Available on Unix, Linux, FreeBSD, Windows 95/98/2000, NT, MacOS X. === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Ascend-Client-Gateway
Hello everyone, We would like to assign the value of "Ascend-Client-Gateway" in the users file dynamically via a script, e.g., Ascend-Client-Gateway=`/usr/local/bin/setgw`. Has anyone done this before? Did it work? Is there a better way? Thanks in advance, William Hernández === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Oracle and FreeBSD
I dont know if anyone has mentioned this yet, but the best way to get to Oracle (or any other SQL) from an unsupported platform is to use the DBI::Proxy stuff in the latest DBI releases. That involves running a DBI::Proxy server on the supported box, and using something like dbi:Proxy:hostname=romeo;port=9991;dsn=dbi:Oracle:xyz in the Radiator on the unsupported host (ie on the FreeBSD box in this example) The effect is that the DBI requests are sent to the server on the supported box, where they are translated into Oracle requests. It works just fine. Hope that helps. Cheers. -- Mike McCauley [EMAIL PROTECTED] Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW 24 Bateman St Hampton, VIC 3188 Australia http://www.open.com.au Phone +61 3 9598-0985 Fax +61 3 9598-0955 Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory etc etc on Unix, Win95/8, 2000, NT, MacOS 9, MacOS X === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Mysql vs PostgreSQL
I had a lot of trouble with PG but MySQL has been fine. I know for a fact it is faster, but it may lack some features of importance to you. I'm hardly a database expert, but I *have* looked at both of these. Chris From: Robin Gruyters [EMAIL PROTECTED] Date: Thu, 17 Aug 2000 00:12:28 +0200 To: Radiator mailing [EMAIL PROTECTED] Subject: (RADIATOR) Mysql vs PostgreSQL Hi, Just one question, which is better for accounting, MySQL or PostgreSQL... -- Regards, Robin Gruyters - [EMAIL PROTECTED] - WISH BV - nic-hdl: RG3771-RIPE http://www.wish.nl - tel: +31(0)413242500 - fax. +31(0)208762628 PGP key ID DEB8C991 - Head Engineering / Web Designer / B.O.F.H. BOFH excuse: because of network lag due to too many people playing deathmatch === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Several questions about Radiator
--- Forwarded mail from [EMAIL PROTECTED] Date: Wed, 16 Aug 2000 23:40:27 +1000 (EST) From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: BOUNCE [EMAIL PROTECTED]:Non-member submission from ["Gildas PERROT" [EMAIL PROTECTED]] From mikem Wed Aug 16 23:40:20 2000 Received: by oscar.open.com.au (8.9.0/8.9.0) id XAA08878 for [EMAIL PROTECTED]; Wed, 16 Aug 2000 23:40:18 +1000 (EST) Received: from hyperbate.francenet.fr (hyperbate.francenet.fr [193.149.97.80]) by perki.connect.com.au with ESMTP id XAA12836 (8.8.8/IDA-1.7 for [EMAIL PROTECTED]); Wed, 16 Aug 2000 23:34:31 +1000 (EST) Received: from hyperbate.francenet.fr (hyperbate.francenet.fr [193.149.97.80]) by perki.connect.com.au with ESMTP id XAA12836 (8.8.8/IDA-1.7 for [EMAIL PROTECTED]); Wed, 16 Aug 2000 23:34:31 +1000 (EST) Received: from gildas (breizh.francenet.fr [193.149.97.100]) by hyperbate.francenet.fr (8.10.1/8.10.1) with SMTP id e7GDYTT06703 for [EMAIL PROTECTED]; Wed, 16 Aug 2000 15:34:29 +0200 (MET DST) From: "Gildas PERROT" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: Several questions about Radiator Date: Wed, 16 Aug 2000 15:31:44 +0200 Message-ID: [EMAIL PROTECTED] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Importance: Normal Content-Type: text/plain; charset="iso-8859-1" Hi, I would to know how to : - insert accounting (at least, IP and calling number) in a SQL database - define different authenticating methods according the calling number or the called number or the username Thanks in advance for your help.Gildas. --- Gildas PERROT, [EMAIL PROTECTED] Fluxus, 37 avenue du Colonel Pierre Avia, 75015 Paris__o http://www.fluxus.net ---_`\,_ "En 2000, FranceNet change de nom et devient Fluxus"- (_)/ (_) ---End of forwarded mail from [EMAIL PROTECTED] -- Mike McCauley [EMAIL PROTECTED] Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW 24 Bateman St Hampton, VIC 3188 Australia http://www.open.com.au Phone +61 3 9598-0985 Fax +61 3 9598-0955 Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory etc etc on Unix, Win95/8, 2000, NT, MacOS 9, MacOS X === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Using DBI but no AuthSelect
Hello Jesper - The way to do this is with an Identifier in your AuthBy SQL and then refer to it in your hook code. This has been discussed on the list several times before, so you might like to have a look at the archive site: http://www.starport.net/~radiator In any case, you would do something like this: # configure AuthBy SQL with Identifier AuthBy SQL Identifier Check_SQL . /AuthBy Then in your hook code, you would do this: my $authby = Radius::AuthGeneric::find('Check_SQL'); my $rc = $authby-. You will be able to use any of the routines available to AuthBy SQL. hth Hugh At 10:36 AM +0200 16/8/00, Jesper L . Nielsen wrote: Hi all... It might be me growing extremely picky, but here goes: I like the fallback DBI functions wich Radiator provides, and would like to use it. The problem is that the standard AuthSelect is not enough for me. I need to do more than one lookup be Auth-request, and I need to perform Perl code to check several things on the user who wishes access. On top of this I need to log, very carefully, in a database what went wrong (also from a users point of view) in the Perl code. I tried to leave it all ub to a preAuthHook or a postAuthHook, but if I want to use the fallback DBI that comes with Radiator it wants to perform a database lookup in the AuthBy SQL clause, which I can't use for anything really.. Is there a possibility to leave the authentication _completely_ up to a hook, so I can still use the DBI function in Radiator. Or is the solution to make my own EXTERNAL program for authentication (and hereby miss out on the Radiator DBI)?? /Jesper === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. -- -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, Interbiller, TACACS+, PAM, external, etc, etc. Available on Unix, Linux, FreeBSD, Windows 95/98/2000, NT, MacOS X. === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) New radius system test.
Hello Carlos - There is no reason that you cannot do what you wish with another AuthBy RADIUS clause in RADIATOR1. I will need to see configuration files (no secrets) together with trace 4 debug output to help you discover why it is not working correctly. regards Hugh At 10:58 AM +0200 16/8/00, Carles Xavier Munyoz Baldó wrote: Hi, I have the next scenario: |-| | NAS ||--||---| | | | PROXY RADIUS | | RADIATOR1 | | NETWORK ||--||---| |-| And I would like that my RADIATOR1 host forward all Authentication and Accounting packets it recevies from PROXY RADIUS to another host runing radiator. This is it: |-| | NAS ||--||---| |---| | | | PROXY RADIUS | | RADIATOR1 | | RADIATOR2 | | NETWORK ||--||---| |---| |-| But the issue is that RADIATOR1 doesn't forward to PROXY RADIUS the Authentication/Accounting responses coming from RADIATOR2 and that the Authentication/Accounting flow between NAS NETWORK and RADIATOR1 don't be affected by problems in the Authentication/Accounting flow between RADIATOR1 and RADIATOR2. For example, an Authentication request packet will go from one NAS of the NAS NETWORK to PROXY RADIUS, PROXY RADIUS will forward it to RADIATOR1; RADIATOR1 processes it, sends the response to PROXY RADIUS and forwards it to RADIATOR2. PROXY RADIUS forward the response to the NAS which send the Authentication request. On the other side, RADIATOR2 processes the packet coming from RADIATOR1 and sends the response to it, but RADIATOR1 doesn't forward this response to the PROXY RADIUS. The same will happen with the Accounting packets. Is it possible to do this with Radiator ? How ? RADIATOR2 is a new Radius system I want test with the current radius traffic before put it as a production system. Greetings. --- Carles Xavier Munyoz Baldó / [EMAIL PROTECTED] Wanadoo España Dpto. Sistemas / System Department Tel: +34 96 504 Ext. 40046 - Fax: +34 96 5040047 http://www.wanadoo.es/ --- === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. -- -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, Interbiller, TACACS+, PAM, external, etc, etc. Available on Unix, Linux, FreeBSD, Windows 95/98/2000, NT, MacOS X. === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Handlers and reply packets
Hello Andrew - The easiest way to do this is upon receipt of the original incoming packet with a Handler to recognise Port-Type = ISDN. You can then use the StripFromReply in the AuthBy RADIUS. hth Hugh At 3:38 PM +1000 16/8/00, Andrew Pollock wrote: Hi guys, Can Radiator handlers fire on reply packets received from another RADIUS server that it's proxied to? I have a requirement where I need to strip out an attribute from a reply packet, but only when it's for an ISDN call (for example). i.e. NAS -- Radiator Another RADIUS server The second RADIUS server replies with a Session-Timeout in the Access-Accept packet (and this can't be readily changed), which I'd like to strip out for ISDN calls, so I basically want a handler that will only match Access-Accept packets with an attribute of Port-Type = ISDN, and then use a StripFromReply. Andrew === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. -- -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, Interbiller, TACACS+, PAM, external, etc, etc. Available on Unix, Linux, FreeBSD, Windows 95/98/2000, NT, MacOS X. === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) ansiCreate.sql
Hello Takaya - I have copied this message to Mike, as he is much more familiar with Oracle. regards Hugh At 2:56 PM +0900 16/8/00, KUBOTA,Takaya wrote: Hello, I begun to use Radiator 2.16.1 recenty. At once, I have trouble exceuting goodies/ansCreate.sql on Oracle 8.1.6. I cant create table RADPOOL by UNIQUE construction. It seems that create table RADPOOL SQL syntax is wrong. I deleted 'UNIQUE RADPOOL_I (YIADDR)' line and previous empty line. It run well. Is that way right? Regards -- KUBOTA,Takaya @ NTT Software Corporation. [EMAIL PROTECTED] voice/facsimile: +81-45-212-7369/9800 === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. -- -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, Interbiller, TACACS+, PAM, external, etc, etc. Available on Unix, Linux, FreeBSD, Windows 95/98/2000, NT, MacOS X. === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) ansiCreate.sql
Hello Takaya, At 2:56 PM +0900 16/8/00, KUBOTA,Takaya wrote: Hello, I begun to use Radiator 2.16.1 recenty. At once, I have trouble exceuting goodies/ansCreate.sql on Oracle 8.1.6. I cant create table RADPOOL by UNIQUE construction. It seems that create table RADPOOL SQL syntax is wrong. I deleted 'UNIQUE RADPOOL_I (YIADDR)' line and previous empty line. It run well. Is that way right? Yes. Sorry, that is our mistake. We have fixed it for the next release. Thank you for telling us. Cheers. Regards -- KUBOTA,Takaya @ NTT Software Corporation. [EMAIL PROTECTED] voice/facsimile: +81-45-212-7369/9800 === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. -- -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, Interbiller, TACACS+, PAM, external, etc, etc. Available on Unix, Linux, FreeBSD, Windows 95/98/2000, NT, MacOS X. -- End of excerpt from Hugh Irvine -- Mike McCauley [EMAIL PROTECTED] Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW 24 Bateman St Hampton, VIC 3188 Australia http://www.open.com.au Phone +61 3 9598-0985 Fax +61 3 9598-0955 Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory etc etc on Unix, Win95/8, 2000, NT, MacOS 9, MacOS X === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Re: no reply problem!
Hello Felipe - I would still like to see a copy of the configuration file (no secrets) together with a trace 4 debug showing what is happening before the problem occurs. thanks Hugh At 3:30 PM -0300 16/8/00, Felipe Salum wrote: I'm running Radiator 2.16.1 on a Solaris Enterprise 450/Solaris 2.6 Oracle Client is running in this box. Radiator save the data in the oracle database. When the radiator authenticating port stop to respond it doesn't say anything in the logs. Maybe a oracle problem ?? thanks! Felipe Hugh Irvine wrote: This sounds like an operating system problem - what platform are you running on (hardware and software)? And what else is running on the box? Also, what does the log show prior to Radiator stopping? thanks Hugh At 5:00 PM -0300 15/8/00, Felipe Salum wrote: Hi! I'm having the follow problem. My radiator is running okay, with some ports to authenticate and accounting. But sometimes one of theses ports lock I dont know why and It doesnt say anything in the logs (trace 4). When I test with radpwtst I just receive a No Reply in the Access Request but I see the open port with netstat. Why radiator dont authenticate now if it was authenticating without problems before ??? ps: I need to edit the cfg file and change the ports to another, start radiator and then change in my NAS to the new port to radiator start authenticating again!!! Please, If anyone can help me why this problem occurs sometime I will be happy! Thanks in advance. Felipe Salum -- -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, Interbiller, TACACS+, PAM, external, etc, etc. Available on Unix, Linux, FreeBSD, Windows 95/98/2000, NT, MacOS X. -- -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, Interbiller, TACACS+, PAM, external, etc, etc. Available on Unix, Linux, FreeBSD, Windows 95/98/2000, NT, MacOS X. === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Re:
Hello Sérgio - This is a vendor-specific attribute for Cisco (vendor 9). What dictionary are you using? thanks Hugh At 6:15 PM +0100 16/8/00, Sérgio Manuel Ventura Ginja wrote: Hi! The message ERR: Attribute number 1 (vendor 9) is not defined in your dictionary is always apearing in my debugging log. What does it means? I have ATTRIBUTE User-Name 1 string defined in my dictionary Regards === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. -- -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, Interbiller, TACACS+, PAM, external, etc, etc. Available on Unix, Linux, FreeBSD, Windows 95/98/2000, NT, MacOS X. === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Several questions about Radiator
Salut Gildas - Ca va la vie? There are example SQL configuration files and table creation scripts in the goodies directory of the distribution. Aslo have a look at section 6.25 in the reference manual. For dealing with Calling-Station-Id and/or Called-Station-Id, you would use Handlers, something like this: # Handler to check Called-Station-Id Handler Called-Station-Id = nn . /Handler # Handler to check Calling-Station-Id Handler Calling-Station-Id = m . /Handler # Handler to check both Handler Called-Station-Id = n, Calling-Station-Id = . /Handler Note that you should not use both Handlers and Realms in the same configuration file and the order of Handlers is important as they are scanned in the order of appearance in the configuration file. This topic has also been discussed often on the mailing list, so you could have a look at the archive site and do a search. hth Hugh At 3:41 PM +0200 16/8/00, Gildas PERROT wrote: Hi, I would to know how to : - insert accounting (at least, IP and calling number) in a SQL database - define different authenticating methods according the calling number or the called number or the username Thanks in advance for your help. Gildas. --- Gildas PERROT, [EMAIL PROTECTED] Fluxus, 37 avenue du Colonel Pierre Avia, 75015 Paris__o http://www.fluxus.net ---_`\,_ "En 2000, FranceNet change de nom et devient Fluxus"- (_)/ (_) === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. -- -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, Interbiller, TACACS+, PAM, external, etc, etc. Available on Unix, Linux, FreeBSD, Windows 95/98/2000, NT, MacOS X. === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Ascend-Client-Gateway
Hello William - You will need to do this in a hook. There are some example hooks in the Radaitor distribution in the file "goodies/hooks.txt". hth Hugh At 4:00 PM -0400 16/8/00, William Hernandez wrote: Hello everyone, We would like to assign the value of "Ascend-Client-Gateway" in the users file dynamically via a script, e.g., Ascend-Client-Gateway=`/usr/local/bin/setgw`. Has anyone done this before? Did it work? Is there a better way? Thanks in advance, William Hernández === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. -- -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, Interbiller, TACACS+, PAM, external, etc, etc. Available on Unix, Linux, FreeBSD, Windows 95/98/2000, NT, MacOS X. === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.