Re: [RADIATOR] DIAMETER support in RADIATOR
On 01/15/2014 07:27 PM, Leigh Porter wrote: I’m in need of some basic DIAMETER support. RADIATOR seemingly can gateway between DIAMETER and RADIUS but can I add a DIAMETER handler to trigger a function to do something and send a response? Or would I need to gateway to RADIUS first and then handle the request? Currently the easiest way to accomplish this might be to use PostDiaToRadiusConversionHook and PostRadiusToDiaConversionHook. The latter runs after Radiator has converted the request and allows you to do any modifications to the Diameter reply before it is sent back to the Diameter peer. You could have something very simple as AuthBy and do the most of the work in the hook or maybe do some of the work in the AuthBy and the rest in the hook. See goodies/diameter-server.cfg for more about the hooks. We are currently enhancing the Diameter support so that there is no need to go through RADIUS conversion. This applies to a number of mostly 3GPP applications. We would be interested to hear which Diameter applications you are working on. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP, DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS, NetWare etc. ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator
[RADIATOR] Radiator sotp to respond to request : stuck in a script : I/O error Interrupted
Hi,
yesterday we have experienced twice a situation where Radiator stops to respond
to requests apparently because the server was stuck in the execution of a
script.
Here is what we saw in the logfile :
Tue Jan 14 13:13:56 2014: DEBUG: Deleting session for demk2801, 10.40.0.130, 1
Tue Jan 14 13:13:56 2014: DEBUG: Handling with Radius::AuthFILE:
Tue Jan 14 13:13:56 2014: DEBUG: Handling with EAP: code 2, 11, 43, 25
Tue Jan 14 13:13:56 2014: DEBUG: Response type 25
Tue Jan 14 13:13:56 2014: DEBUG: EAP Success, elapsed time 0.267233
Tue Jan 14 13:13:56 2014: DEBUG: EAP result: 0,
Tue Jan 14 13:13:56 2014: DEBUG: AuthBy FILE result: ACCEPT,
Tue Jan 14 13:13:56 2014: DEBUG: Running aeriusSecurise_VLAN: for user demk2801
(Jan 14, 2014 13:13) : Accept
Tue Jan 14 13:13:56 2014: DEBUG: Running aeriusSecurise_VLAN: verify demk2801
is memberOf... for VLAN selection
13:47
Tue Jan 14 13:24:23 2014: ERR: Error in PostAuthHook(): I/O Error Interrupted
system call at /etc/radiator/hooks/ADI.pm line 111, GEN1 line 16081.
Here is what we have at line 111 of ADI.pm
#print Bind LDAP session with user $ldapuser \n;
my $mesg = $ldap-bind($ldapuser,
password = pack('H*',$ldappass))
or die $@;
Is there a way to make sure that if a bind does not work we exit the script
after a period of time ?
__
Pascal Beauregard
Analyste en télécommunications
Service des Technologies de l'information
Université de Sherbrooke
Tél. : 819-821-7770
Courriel : pascal.beaureg...@usherbrooke.ca
___
radiator mailing list
radiator@open.com.au
http://www.open.com.au/mailman/listinfo/radiator
