Re: [RADIATOR] RAdmin Authentication (Access to RAdmin Website)
Just an update to this - Ive enabled(forced) auth via .htaccess as an interim workaround, as I would prefer to use the RAdmin auth (i.e. So that Admin user credentials are easily added/changed within Radmin, rather than via .htpasswd file) Cheers. From: radiator-boun...@open.com.au [mailto:radiator-boun...@open.com.au] On Behalf Of Michael Bellears Sent: Thursday, 5 November 2015 7:43 AM To: radiator@open.com.au Subject: [RADIATOR] RAdmin Authentication (Access to RAdmin Website) Hi Guys, Upgraded from 1.10 -> 1.15, and I (currently) can access 1.15 via the "anonymous" user (i.e. no login is required(Or asked for) to access the Radmin pages) - In the manual, it states to enable RAdmin Auth (Which is what we want), you set "Authenticate Admin Users" option on the "Edit Radmin Configuration"...but I cannot see this option on that page? Cheers. ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator
[RADIATOR] RAdmin Authentication (Access to RAdmin Website)
Hi Guys, Upgraded from 1.10 -> 1.15, and I (currently) can access 1.15 via the "anonymous" user (i.e. no login is required(Or asked for) to access the Radmin pages) - In the manual, it states to enable RAdmin Auth (Which is what we want), you set "Authenticate Admin Users" option on the "Edit Radmin Configuration"...but I cannot see this option on that page? Cheers. ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator
Re: [RADIATOR] Authlog FILE - file location
Ah - Legendary! - Thank you Hugh. -Original Message- From: Hugh Irvine [mailto:h...@open.com.au] Sent: Wednesday, 4 November 2015 4:47 PM To: Michael Bellears Cc: radiator@open.com.au Subject: Re: [RADIATOR] Authlog FILE - file location Hello Michael - Yes - set the LogDir parameter to whatever you wish: ….. # set LogDir LogDir /var/log/radius ….. Identifier myauthlogger3 Filename %L/authlog_dsl_cust_a ….. You can also use any of the special characters listed in section 5.2 of the Radiator 4.15 reference manual (“doc/ref.pdf”). regards Hugh > On 4 Nov 2015, at 17:18, Michael Bellears wrote: > > Hi, > > Hopefully a quick question, Ive had a read of the manual, but cant seem to > find if it is possible to set a path for each logfile? > > i.e. > > >Identifier myauthlogger3 >Filename authlog_dsl_cust_a > > > Will log to file authlog_dsl_cust_a in the dir that radiator was started from > – Is there any way to add a “path” to where the file will be located? > > > Cheers. > ___ > radiator mailing list > radiator@open.com.au > http://www.open.com.au/mailman/listinfo/radiator -- Hugh Irvine h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP, DIAMETER, SIM, etc. Full source on Unix, Linux, Windows, MacOSX, Solaris, VMS, NetWare etc. ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator
[RADIATOR] Authlog FILE - file location
Hi, Hopefully a quick question, Ive had a read of the manual, but cant seem to find if it is possible to set a path for each logfile? i.e. Identifier myauthlogger3 Filename authlog_dsl_cust_a Will log to file authlog_dsl_cust_a in the dir that radiator was started from - Is there any way to add a "path" to where the file will be located? Cheers. ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator
Re: [RADIATOR] Migrating a Radiator+Radmin server
I think I may have found the problem. "older" version of SQL used: 'TYPE=MyISAM' "new" version of SQL uses: ENGINE=MYISAM On the "new" server, it complained about our old radmin dbase dump file, as it use "TYPE" - So, I did a find/replace of "TYPE" -> "ENGINE" - Unaware there was "other" lines that had "Type"...hence NASTYPE was changed by the find/replace to NASENGINEIm just in the process of reimporting (Post a more "accurate" find/replacefingers crossed all works ok :) -Original Message- From: Heikki Vatiainen [mailto:h...@open.com.au] Sent: Wednesday, 4 November 2015 7:55 AM To: Michael Bellears; radiator@open.com.au Subject: Re: [RADIATOR] Migrating a Radiator+Radmin server On 11/03/2015 11:13 PM, Michael Bellears wrote: > Thanks - absolutely no mods herethe migration page does mention quite a > few mods to tables etcperhaps it was in an older upgrade? I took a look at the older Radmin releases too and there's no NASENGINE there. Also, the latest version does not have NASENGINE either. Engine does remind me a bit of MySQL DB engines, though. When upgrading you should step upgrade. Currently, AuthRADMIN.pm in Radiator and Radmin goodies directory are the same, so there's no need to copy them. > What would be your suggestion be? I would try doing step upgrade from 1.10. There appears to be no DB step between versions 1.13 and 1.14. > Ie: It has an "other" version section: > > Other versions > In order to upgrade between any other versions, you will need to dump your > current database, install the new software and then reload your old data: I would not do this yet but try the steps first. Thanks, Heikki -- Heikki Vatiainen Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP, DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS, NetWare etc. ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator
Re: [RADIATOR] Migrating a Radiator+Radmin server
Thanks - absolutely no mods herethe migration page does mention quite a few mods to tables etcperhaps it was in an older upgrade? What would be your suggestion be? Ie: It has an "other" version section: Other versions In order to upgrade between any other versions, you will need to dump your current database, install the new software and then reload your old data: cd to distribution directory of your current version perl createdb.pl -dump >/tmp/radmin.dat cd to distribution directory of your new version follow full installation instructions for your new version perl createdb.pl /tmp/radmin.dat copy goodies/AuthRADMIN.pm to your Radiator installation Do I need to step upgrade? i.e 1.10 ->1.11, then 1.11->1.12 etc? Thanks -Original Message- From: radiator-boun...@open.com.au [mailto:radiator-boun...@open.com.au] On Behalf Of Heikki Vatiainen Sent: Tuesday, 3 November 2015 9:31 PM To: radiator@open.com.au Subject: Re: [RADIATOR] Migrating a Radiator+Radmin server On 3.11.2015 11.13, Michael Bellears wrote: > Ah - Just found one difference - NASTYPE appears to have been changed > to NASENGINE in RADCLIENTLIST? Hmm, are you sure this is not a local modification? I took a look at Radmin/Schema.pm and the only changes in RADCLIENTLIST seem to be related to lengths of some of the varchar type fields. The migration instructions are here, but the changes are for different tokens and their management: http://www.open.com.au/radmin/migration.html Thanks, Heikki -- Heikki Vatiainen Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP, DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS, NetWare etc. ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator
Re: [RADIATOR] Migrating a Radiator+Radmin server
Ah - Just found one difference - NASTYPE appears to have been changed to NASENGINE in RADCLIENTLIST? Found after running the error I received: mysql> select NASIDENTIFIER,SECRET,DEFAULTREALM,NASTYPE,DUPINTERVAL from RADCLIENTLIST; ERROR 1054 (42S22): Unknown column 'NASTYPE' in 'field list' From: radiator-boun...@open.com.au [mailto:radiator-boun...@open.com.au] On Behalf Of Michael Bellears Sent: Tuesday, 3 November 2015 7:06 PM To: 'radiator@open.com.au' Subject: [RADIATOR] Migrating a Radiator+Radmin server Hi Everyone, Migrating an old server -> New, and are having some issues with Radmin - Dump of the original mysql dbase, then import on the new server(After radiator and radmin install), Radmin works to an extent, but in some sections throws the following error: A serious error has occurred: Could not prepare and execute select NASIDENTIFIER,SECRET,DEFAULTREALM,NASTYPE,DUPINTERVAL from RADCLIENTLIST But I can list all users, list service profiles etc - The "old" radmin version was 1.10, the new is 1.15 - Hoping there is a "simple" fix :) (As I have looked at the table structure of RADCLIENTLIST on both the 1.10 ver and the 1.15 version, and they "appear" the same.) Cheers ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator
[RADIATOR] Migrating a Radiator+Radmin server
Hi Everyone, Migrating an old server -> New, and are having some issues with Radmin - Dump of the original mysql dbase, then import on the new server(After radiator and radmin install), Radmin works to an extent, but in some sections throws the following error: A serious error has occurred: Could not prepare and execute select NASIDENTIFIER,SECRET,DEFAULTREALM,NASTYPE,DUPINTERVAL from RADCLIENTLIST But I can list all users, list service profiles etc - The "old" radmin version was 1.10, the new is 1.15 - Hoping there is a "simple" fix :) (As I have looked at the table structure of RADCLIENTLIST on both the 1.10 ver and the 1.15 version, and they "appear" the same.) Cheers ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator
Re: [RADIATOR] Radiator / Radmin - bulk add users
Excellent - Thanks Hugh.
-Original Message-
From: Hugh Irvine [mailto:h...@open.com.au]
Sent: Thursday, 12 June 2014 4:05 PM
To: Michael Bellears
Cc: radiator@open.com.au
Subject: Re: [RADIATOR] Radiator / Radmin - bulk add users
Hello Michael -
See buildsql in the main Radiator distribution directory.
See also section 10.0 in the Radiator 4.13 reference manual ("doc/ref.pdf").
Here is the help for buildsql:
Radiator-4.13 hugh$ perl buildsql -h
usage: buildsql [-h] -dbsource dbi:drivername:option
[-dbusername dbusername] [-dbauth auth] [-password | -dbm | -flat]
[-z] [-u] [-f] [-d username] [-l username] [-t dbmtype]
[-tablename name] [-v]
[-username_column columnname]
[-password_column columnname]
[-encryptedpassword]
[-checkattr_column columnname]
[-replyattr_column columnname] filename ...
regards
Hugh
On 12 Jun 2014, at 12:45, Michael Bellears wrote:
> Hi,
>
> We have a need to add ~150users to Radmin - Doing this via the (Radmin) web
> interface would be tedious/error-prone - Is anyone aware of a script to bulk
> add users?
>
> Cheers.
> ___
> radiator mailing list
> radiator@open.com.au
> http://www.open.com.au/mailman/listinfo/radiator
--
Hugh Irvine
h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server anywhere.
SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside,
TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS, PEAP, TNC, WiMAX,
RSA, Vasco, Yubikey, MOTP, HOTP, TOTP, DIAMETER, SIM, etc.
Full source on Unix, Linux, Windows, MacOSX, Solaris, VMS, NetWare etc.
___
radiator mailing list
radiator@open.com.au
http://www.open.com.au/mailman/listinfo/radiator
[RADIATOR] Radiator / Radmin - bulk add users
Hi, We have a need to add ~150users to Radmin - Doing this via the (Radmin) web interface would be tedious/error-prone - Is anyone aware of a script to bulk add users? Cheers. ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator
[RADIATOR] Radmin - L2TP Multihop via Radius
Hi Guys, Our current setup is - We have multiple DSL realms all configured on our radmin/radiator server and approx 15 vpdn-groups on our LNS that connect to the carriers LACs. We are adding a new dsl realm, connection requests for the new realm will be coming from the same LAC's, but we want to not auth the new realm via our existing radius server - We want our LNS to create an L2TP tunnel to another LNS for this new realm (And then this other LNS will authenticate the DSL tails via another radius server). I believe this can be accomplished from radius...eg: testrealm.com.auPassword = "cisco" Service-Type = Outbound, Cisco-avpair = "vpdn:tunnel-type=l2tp", Cisco-avpair = "vpdn:tunnel-id=TEST7200", Cisco-avpair = "vpdn:ip-addresses=x.x.x.x", Cisco-avpair = "vpdn:source-ip=y.y.y.y", Cisco-avpair = "vpdn:l2tp-tunnel-password=xxx" But hoping someone can provide guidance as to how this can be done within Radmin...i.e. in radmin.cfg? Our existing realms are configured like so (radmin.cfg): AuthByPolicy ContinueWhileAccept DB stuff (login credentials etc) .. AccountingTable RADUSAGE AcctColumnDef USERNAME,User-Name (heap of other AcctColumnDef) .. AddToReply Framed-Protocol = PPP,\ Framed-IP-Netmask = 255.255.255.255,\ Framed-Routing = None,\ Framed-MTU = 1500,\ Framed-Compression = Van-Jacobson-TCP-IP,\ #Fall-Through = Yes,\ Service-Type = "Framed-User", Logging stuff.. So not 100% on how this new realm would be added to radmin.cfg? Thanks in advance. ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator
[RADIATOR] Radmin - still active?
Hi Guys, We have been running Radiator/RAdmin for many years - I have a question, but the RAdmin list appears to be inactive (last post in 2011?) Cheers. ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator
RE: (RADIATOR) Bytes from Octets
> > No, that's too simple, I want a harder answer :) Ok: 1 Octet == 8 Bits == 1 Byte (Only if the Byte is also 8 bits) - Bytes range from 4 - 10 bits, but octets are always 8 bits. Regards, MB === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
RE: (RADIATOR) Radusage table not updated.
> > Hello Michael - > > Can you please tell me what versions of Radiator and Radmin you are > running? > > Latest versions are Radiator 3.6 (plus patches) and Radmin 1.7 (plus > patches). Certainly Hugh: Radiator-3.5(No patches) RAdmin 1.7(No Patches) Regards, MB > > regards > > Hugh > > > On Tuesday, Jul 22, 2003, at 10:38 Australia/Melbourne, Michael > Bellears wrote: > > > Hi Hugh, > > > >> > >> The problem is due to the incorrect quoting of the string > containing > >> the "@" sign. > > > > Ok. > > > >> In most clauses based on SQL, %0 can be used for the > username string > >> and it will always be correctly quoted. > > > > As Radmin is being used for Acct., how would I modify the insert > > clause?(In the radmin.cfg, or would it require source-file mod?) > > > > Thanks for your assistance. > > > > Regards, > > MB > > > >> regards > >> > >> Hugh > >> > >> > >> On Monday, Jul 21, 2003, at 20:24 Australia/Melbourne, Michael > >> Bellears > >> wrote: > >> > >>> > >>> Hi Hugh, > >>> > >>>> > >>>> You should try the queries by hand to see what is happening. > >>>> > >>> > >>> Upon further investigation, it appears as though the '@' in the > >>> username is causing the problem: > >>> > >>> Success without '@' > >>> > >>> mysql> insert into RADUSAGE > >>> > >> > (ACCTTERMINATECAUSE,Connect_info,ACCTSESSIONTIME,TIME_STAMP,USERNAME, > >> C > >>> l > >>> > >> ient_Phone_Number,FRAMEDIPADDRESS,ACCTDELAYTIME,DNIS,ACCTINPUT > >> OCTETS,AC > >>> CTSTATUSTYPE,ACCTSESSIONID,ACCTOUTPUTOCTETS,NASPORT,NASIDENTIFIER) > >>> values (1,'31200 > >>> LAPM/ > >>> > >> V42BIS',344121,1058742326,'connect_test','755798217','203.149. > >> 64.50',0, > >>> '55849500',28682053,2,'86D0',89390039,3,'203.149.64.3'); > >>> Query OK, 1 row affected (0.01 sec) > >>> > >>> mysql> select > >>> > >> > USERNAME,TIME_STAMP,ACCTSESSIONID,ACCTSESSIONTIME,FRAMEDIPADDRESS,NAS > >> I > >>> D > >>> ENTIFIER,NASPORT,ACCTSTATUSTYPE from RADUSAGE where USERNAME = > >>> 'connect_test' order by TIME_STAMP; > >>> +--++---+- > >>> +-+---+-++ > >>> | USERNAME | TIME_STAMP | ACCTSESSIONID | ACCTSESSIONTIME | > >>> FRAMEDIPADDRESS | NASIDENTIFIER | NASPORT | ACCTSTATUSTYPE | > >>> +--++---+- > >>> +-+---+-++ > >>> | connect_test | 1058742326 | 86D0 | 344121 | > >>> 203.149.64.50 | 203.149.64.3 | 3 | 2 | > >>> +--++---+- > >>> +-+---+-++ > >>> 1 row in set (0.00 sec) > >>> > >>> Failure with '@' > >>> > >>> mysql> insert into RADUSAGE > >>> > >> > (ACCTTERMINATECAUSE,Connect_info,ACCTSESSIONTIME,TIME_STAMP,USERNAME, > >> C > >>> l > >>> > >> ient_Phone_Number,FRAMEDIPADDRESS,ACCTDELAYTIME,DNIS,ACCTINPUT > >> OCTETS,AC > >>> CTSTATUSTYPE,ACCTSESSIONID,ACCTOUTPUTOCTETS,NASPORT,NASIDENTIFIER) > >>> values (1,'31200 > >>> LAPM/ > >>> > >> V42BIS',344121,1058742326,'[EMAIL PROTECTED]','75 > >> 5798217', > >>> > >> '203.149.64.50',0,'55849500',28682053,2,'86D0',89390039,3, > >> '203.149. > >>> 64.3'); > >>> Query OK, 1 row affected (0.00 sec) > >>> > >>> mysql> select > >>> > >> > USERNAME,TIME_STAMP,ACCTSESSIONID,ACCTSESSIONTIME,FRAMEDIPADDRESS,NAS > >> I > >>> D > >>> ENTIFIER,NASPORT,ACCTSTATUSTYPE from RADUSAGE where USERNAME = > >>> '[EMAIL PROTECTED]' order by TIME_STAMP; Empty > set (0.00 > >>> sec) >
RE: (RADIATOR) Radusage table not updated.
Hi Hugh, > > The problem is due to the incorrect quoting of the string containing > the "@" sign. Ok. > In most clauses based on SQL, %0 can be used for the username string > and it will always be correctly quoted. As Radmin is being used for Acct., how would I modify the insert clause?(In the radmin.cfg, or would it require source-file mod?) Thanks for your assistance. Regards, MB > regards > > Hugh > > > On Monday, Jul 21, 2003, at 20:24 Australia/Melbourne, > Michael Bellears > wrote: > > > > > Hi Hugh, > > > >> > >> You should try the queries by hand to see what is happening. > >> > > > > Upon further investigation, it appears as though the '@' in the > > username is causing the problem: > > > > Success without '@' > > > > mysql> insert into RADUSAGE > > > (ACCTTERMINATECAUSE,Connect_info,ACCTSESSIONTIME,TIME_STAMP,USERNAME,C > > l > > > ient_Phone_Number,FRAMEDIPADDRESS,ACCTDELAYTIME,DNIS,ACCTINPUT > OCTETS,AC > > CTSTATUSTYPE,ACCTSESSIONID,ACCTOUTPUTOCTETS,NASPORT,NASIDENTIFIER) > > values (1,'31200 > > LAPM/ > > > V42BIS',344121,1058742326,'connect_test','755798217','203.149. > 64.50',0, > > '55849500',28682053,2,'86D0',89390039,3,'203.149.64.3'); > > Query OK, 1 row affected (0.01 sec) > > > > mysql> select > > > USERNAME,TIME_STAMP,ACCTSESSIONID,ACCTSESSIONTIME,FRAMEDIPADDRESS,NASI > > D > > ENTIFIER,NASPORT,ACCTSTATUSTYPE from RADUSAGE where USERNAME = > > 'connect_test' order by TIME_STAMP; > > +--++---+- > > +-+---+-++ > > | USERNAME | TIME_STAMP | ACCTSESSIONID | ACCTSESSIONTIME | > > FRAMEDIPADDRESS | NASIDENTIFIER | NASPORT | ACCTSTATUSTYPE | > > +--++---+- > > +-+---+-++ > > | connect_test | 1058742326 | 86D0 | 344121 | > > 203.149.64.50 | 203.149.64.3 | 3 | 2 | > > +--++---+- > > +-+---+-++ > > 1 row in set (0.00 sec) > > > > Failure with '@' > > > > mysql> insert into RADUSAGE > > > (ACCTTERMINATECAUSE,Connect_info,ACCTSESSIONTIME,TIME_STAMP,USERNAME,C > > l > > > ient_Phone_Number,FRAMEDIPADDRESS,ACCTDELAYTIME,DNIS,ACCTINPUT > OCTETS,AC > > CTSTATUSTYPE,ACCTSESSIONID,ACCTOUTPUTOCTETS,NASPORT,NASIDENTIFIER) > > values (1,'31200 > > LAPM/ > > > V42BIS',344121,1058742326,'[EMAIL PROTECTED]','75 > 5798217', > > > '203.149.64.50',0,'55849500',28682053,2,'86D0',89390039,3, > '203.149. > > 64.3'); > > Query OK, 1 row affected (0.00 sec) > > > > mysql> select > > > USERNAME,TIME_STAMP,ACCTSESSIONID,ACCTSESSIONTIME,FRAMEDIPADDRESS,NASI > > D > > ENTIFIER,NASPORT,ACCTSTATUSTYPE from RADUSAGE where USERNAME = > > '[EMAIL PROTECTED]' order by TIME_STAMP; > > Empty set (0.00 sec) > > > > Insert with correct data, but removing the '@' from username: > > > > mysql> insert into RADUSAGE > > > (ACCTTERMINATECAUSE,ACCTSESSIONTIME,TIME_STAMP,USERNAME,Client_Phone_N > > u > > > mber,FRAMEDIPADDRESS,ACCTDELAYTIME,DNIS,ACCTINPUTOCTETS,ACCTST > ATUSTYPE, > > ACCTOUTPUTOCTETS,ACCTSESSIONID,NASPORT,NASIDENTIFIER) values > > (18,21210,1058781354,'connect_test','atm > > 11','203.149.70.10',0,'3:2.261#184571819##speed:UBR:256#/ > > ',74104,2,77696,'9813',1,'203.63.121.145'); > > Query OK, 1 row affected (0.00 sec) > > > > mysql> select > > > USERNAME,TIME_STAMP,ACCTSESSIONID,ACCTSESSIONTIME,FRAMEDIPADDRESS,NASI > > D > > ENTIFIER,NASPORT,ACCTSTATUSTYPE from RADUSAGE where USERNAME = > > 'connect_test' order by TIME_STAMP; > > +--++---+- > > +-++-++ > > | USERNAME | TIME_STAMP | ACCTSESSIONID | ACCTSESSIONTIME | > > FRAMEDIPADDRESS | NASIDENTIFIER | NASPORT | ACCTSTATUSTYPE | > > +--++---+- > > +-++-
RE: (RADIATOR) Radusage table not updated.
Hi Hugh, > > You should try the queries by hand to see what is happening. > Upon further investigation, it appears as though the '@' in the username is causing the problem: Success without '@' mysql> insert into RADUSAGE (ACCTTERMINATECAUSE,Connect_info,ACCTSESSIONTIME,TIME_STAMP,USERNAME,Client_Phone_Number,FRAMEDIPADDRESS,ACCTDELAYTIME,DNIS,ACCTINPUTOCTETS,ACCTSTATUSTYPE,ACCTSESSIONID,ACCTOUTPUTOCTETS,NASPORT,NASIDENTIFIER) values (1,'31200 LAPM/V42BIS',344121,1058742326,'connect_test','755798217','203.149.64.50',0,'55849500',28682053,2,'86D0',89390039,3,'203.149.64.3'); Query OK, 1 row affected (0.01 sec) mysql> select USERNAME,TIME_STAMP,ACCTSESSIONID,ACCTSESSIONTIME,FRAMEDIPADDRESS,NASIDENTIFIER,NASPORT,ACCTSTATUSTYPE from RADUSAGE where USERNAME = 'connect_test' order by TIME_STAMP; +--++---+-+-+---+-++ | USERNAME | TIME_STAMP | ACCTSESSIONID | ACCTSESSIONTIME | FRAMEDIPADDRESS | NASIDENTIFIER | NASPORT | ACCTSTATUSTYPE | +--++---+-+-+---+-++ | connect_test | 1058742326 | 86D0 | 344121 | 203.149.64.50 | 203.149.64.3 | 3 | 2 | +--++---+-+-+---+-++ 1 row in set (0.00 sec) Failure with '@' mysql> insert into RADUSAGE (ACCTTERMINATECAUSE,Connect_info,ACCTSESSIONTIME,TIME_STAMP,USERNAME,Client_Phone_Number,FRAMEDIPADDRESS,ACCTDELAYTIME,DNIS,ACCTINPUTOCTETS,ACCTSTATUSTYPE,ACCTSESSIONID,ACCTOUTPUTOCTETS,NASPORT,NASIDENTIFIER) values (1,'31200 LAPM/V42BIS',344121,1058742326,'[EMAIL PROTECTED]','755798217','203.149.64.50',0,'55849500',28682053,2,'86D0',89390039,3,'203.149.64.3'); Query OK, 1 row affected (0.00 sec) mysql> select USERNAME,TIME_STAMP,ACCTSESSIONID,ACCTSESSIONTIME,FRAMEDIPADDRESS,NASIDENTIFIER,NASPORT,ACCTSTATUSTYPE from RADUSAGE where USERNAME = '[EMAIL PROTECTED]' order by TIME_STAMP; Empty set (0.00 sec) Insert with correct data, but removing the '@' from username: mysql> insert into RADUSAGE (ACCTTERMINATECAUSE,ACCTSESSIONTIME,TIME_STAMP,USERNAME,Client_Phone_Number,FRAMEDIPADDRESS,ACCTDELAYTIME,DNIS,ACCTINPUTOCTETS,ACCTSTATUSTYPE,ACCTOUTPUTOCTETS,ACCTSESSIONID,NASPORT,NASIDENTIFIER) values (18,21210,1058781354,'connect_test','atm 11','203.149.70.10',0,'3:2.261#184571819##speed:UBR:256#/',74104,2,77696,'9813',1,'203.63.121.145'); Query OK, 1 row affected (0.00 sec) mysql> select USERNAME,TIME_STAMP,ACCTSESSIONID,ACCTSESSIONTIME,FRAMEDIPADDRESS,NASIDENTIFIER,NASPORT,ACCTSTATUSTYPE from RADUSAGE where USERNAME = 'connect_test' order by TIME_STAMP; +--++---+-+-++-++ | USERNAME | TIME_STAMP | ACCTSESSIONID | ACCTSESSIONTIME | FRAMEDIPADDRESS | NASIDENTIFIER | NASPORT | ACCTSTATUSTYPE | +--++---+-+-++-++ | connect_test | 1058742326 | 86D0 | 344121 | 203.149.64.50 | 203.149.64.3 | 3 | 2 | | connect_test | 1058781354 | 9813 | 21210 | 203.149.70.10 | 203.63.121.145 | 1 | 2 | +--++---+-+-----++-++ 2 rows in set (0.00 sec) Any suggestions on how to get around this? (I would like the username to be inserted with the '@dsl.datafx.com.au' if possible) Thanks in advance, MB > > > On Saturday, Jul 19, 2003, at 08:43 Australia/Melbourne, Michael > Bellears wrote: > > > Radiator/Radmin is auth/acct for dialup users (MAX6000/PM3's), and > > also DSL users(Cisco7200). > > > > Dialup users acct data is successfully updated in the > RADUSAGE table, > > but DSL clients are not(RADONLINE is working for both). > > > > I see the insert in trace4: > > > > Sat Jul 19 08:05:51 2003: DEBUG: do query is: insert into RADUSAGE > > > (TIME_STAMP,USERNAME,ACCTDELAYTIME,DNIS,ACCTSTATUSTYPE,ACCTSES > SIONID,NA > > SPORT,NASIDENTIFIER) values > > > (1058565951,'[EMAIL PROTECTED]',0,'3:2.261#184571 > 819##spee > > d:UBR:256#/',1,'980F',1,'203.63.121.145') > > > > And also the insert in the mysql logs: > > > > 88528 Query
(RADIATOR) Radusage table not updated.
Radiator/Radmin is auth/acct for dialup users (MAX6000/PM3's), and also DSL
users(Cisco7200).
Dialup users acct data is successfully updated in the RADUSAGE table, but DSL clients
are not(RADONLINE is working for both).
I see the insert in trace4:
Sat Jul 19 08:05:51 2003: DEBUG: do query is: insert into RADUSAGE
(TIME_STAMP,USERNAME,ACCTDELAYTIME,DNIS,ACCTSTATUSTYPE,ACCTSESSIONID,NASPORT,NASIDENTIFIER)
values (1058565951,'[EMAIL
PROTECTED]',0,'3:2.261#184571819##speed:UBR:256#/',1,'980F',1,'203.63.121.145')
And also the insert in the mysql logs:
88528 Query insert into RADUSAGE
(TIME_STAMP,USERNAME,ACCTDELAYTIME,DNIS,ACCTSTATUSTYPE,ACCTSESSIONID,NASPORT,NASIDENTIFIER)
values (1058565951,'[EMAIL
PROTECTED]',0,'3:2.261#184571819##speed:UBR:256#/',1,'980F',1,'203.63.121.145')
But no results via Radmin Web Interface, or via CLI:
mysql> select
USERNAME,TIME_STAMP,ACCTSESSIONID,ACCTSESSIONTIME,FRAMEDIPADDRESS,NASIDENTIFIER,NASPORT,ACCTSTATUSTYPE
from RADUSAGE where USERNAME = '[EMAIL PROTECTED]' order by TIME_STAMP;
ERROR 1032: Can't find record in 'RADUSAGE'
I see no errors in mysql.err log.
A dialup users succesful insert FYR:
Trcae4:
Sat Jul 19 08:06:17 2003: DEBUG: do query is: insert into RADUSAGE
(Connect_info,ACCTSESSIONTIME,TIME_STAMP,USERNAME,Client_Phone_Number,FRAMEDIPADDRESS,ACCTDELAYTIME,DNIS,ACCTINPUTOCTETS,ACCTSTATUSTYPE,ACCTSESSIONID,ACCTOUTPUTOCTETS,NASPORT,NASIDENTIFIER)
values
('49333',863,1058565977,'eplan','755103035','203.149.64.51',0,'55848000',10315,2,'425834844',45523,20206,'203.149.64.4')
MySQL Log:
88528 Query insert into RADUSAGE
(Connect_info,ACCTSESSIONTIME,TIME_STAMP,USERNAME,Client_Phone_Number,FRAMEDIPADDRESS,ACCTDELAYTIME,DNIS,ACCTINPUTOCTETS,ACCTSTATUSTYPE,ACCTSESSIONID,ACCTOUTPUTOCTETS,NASPORT,NASIDENTIFIER)
values
('49333',863,1058565977,'eplan','755103035','203.149.64.51',0,'55848000',10315,2,'425834844',45523,20206,'203.149.64.4')
Thanks in advance.
Regards,
MB
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
RE: (RADIATOR) Radmin and DSL.
> > Hello Michael - > > If your DSL users are going to be authenticated from a > different realm, > then what you describe will work fine. > > Otherwise you could use Handlers, or you could use > Identifiers in your > Client clauses and use the Client-Identifier as the PoolHint for the > AuthBy DYNADDRESS. > > This topic has been discussed on the mailing list, so check the > archives. > > www.open.com.au/archives/radiator > For anyone that is setting up DSL Auth. On Radiator, sitting behind a Cisco LNS - You must have the following: ! interface Virtual-Template1 description Connect L2TP termination ip unnumbered <--- Important! ip policy route-map unlimited-traffic ppp authentication pap chap callin ppp authorization l2tp ppp accounting l2tp ! I originally had 'no ip address' which did not work: ! interface Virtual-Template1 description Connect L2TP termination no ip address ppp authentication pap chap callin ppp authorization l2tp ppp accounting l2tp ! Hope this helps someone. Regards, MB > regards > > Hugh > > > On Thursday, Jun 26, 2003, at 13:50 Australia/Melbourne, Michael > Bellears wrote: > > > Client of ours is running Radmin-1.7, Radiator 3.5 for > dialup clients > > (Modem+ISDN). > > > > They want to now also Authenticate for DSL users - NAS will > be a Cisco > > 7200. > > > > I have added a new Client (Via Radmin), with a NAS Type of > CiscoVPDN. > > > > Would I need to add a new realm to the config with RADMIN> and > > also containing an to allocate a > different pool(To > > the modem dialup users) of dynamic adddresses? > > > > Has anyone setup something similar to the above that would like to > > share > > there experiences? > > > > Thanks in advance. > > > > Regards, > > MB > > > > > > > > > > === > > Archive at http://www.open.com.au/archives/radiator/ > > Announcements on [EMAIL PROTECTED] > > To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe > > radiator' in the body of the message. > > > > > > NB: have you included a copy of your configuration file (no > secrets), together with a trace 4 debug showing what is happening? > > -- > Radiator: the most portable, flexible and configurable RADIUS > server anywhere. Available on *NIX, *BSD, Windows 95/98/2000, > NT, MacOS X. > - > Nets: internetwork inventory and management - graphical, > extensible, flexible with hardware, software, platform and > database independence. > > === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Radmin and DSL.
Client of ours is running Radmin-1.7, Radiator 3.5 for dialup clients (Modem+ISDN). They want to now also Authenticate for DSL users - NAS will be a Cisco 7200. I have added a new Client (Via Radmin), with a NAS Type of CiscoVPDN. Would I need to add a new realm to the config with and also containing an to allocate a different pool(To the modem dialup users) of dynamic adddresses? Has anyone setup something similar to the above that would like to share there experiences? Thanks in advance. Regards, MB === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) SNMP problem with PM3..(UPDATE)
Replacing the Nas.pm does not seem to fix the snmp problem to the PM3 (See debug output below). If you like I can do an snmpwalk on the pm3's to get correct oid's... The original users session is now deleted if another session is started, it is not denied. Wed Jan 9 09:16:31 2002: DEBUG: Query is: select NASIDENTIFIER, NASPORT, ACCTSESSIONID, FRAMEDIPADDRESS from RADONLINE where USERNAME='amg' Error in packet Reason: (noSuchName) There is no such variable name in this MIB. This name doesn't exist: interfaces.ifNumber.1.1.2.5 Error in packet Reason: (noSuchName) There is no such variable name in this MIB. This name doesn't exist: .3.2.1.1.1.5.25 Wed Jan 9 09:16:31 2002: DEBUG: Checking if user is still online: Livingston, amg, yyy.yyy.yyy.yyy, 20, 77000272 xxx.xxx.xxx.xxx Wed Jan 9 09:16:31 2002: DEBUG: Running command `/usr/bin/snmpget yyy.yyy.yyy.yyy 2.1.1.1.2.5` Wed Jan 9 09:16:31 2002: DEBUG: Running command `/usr/bin/snmpget yyy.yyy.yyy.yyy .3.2.1.1.1.5.25` Wed Jan 9 09:16:31 2002: NOTICE: Session for amg at yyy.yyy.yyy.yyy:20 has gone away Wed Jan 9 09:16:31 2002: DEBUG: Deleting session for amg, yyy.yyy.yyy.yyy, 20 Wed Jan 9 09:16:31 2002: DEBUG: do query is: delete from RADONLINE where NASIDENTIFIER='yyy.yyy.yyy.yyy' and NASPORT=020 === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) SNMP problem with PM3..
Thanks for the reply Hugh - That certainly clears things up! Side Note: I also noticed that there was a bug in Nas.pm (Discussed on the list: (RADIATOR) IMPORTANT - NasType Livingston on Radiator 2.18, dated Mon, 19 Mar 2001), which was affecting NasType Livingston - I have applied the patched version...hopefully this will solve the problem. Regards, MB >Hello Michael - > >The SNMP query is not run for every access request - it is only run if there >is a session limit exceeded according to the session database. The problem >with simultaneous use checking is that in many cases the information received >from the NAS in the radius accounting requests is different from the >information for the same session returned by an SNMP query. > >hth > >Hugh === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) SNMP problem with PM3..
Hi,
This has been discussed on the list before, but I cannot seem to find a
resolution ;)
One of our clients has Radiator 2.18 with Radmin 1.5 running on Debian
Linux 2.2, using PM3 NAS's.
Denying Simultaneous use has never worked when clients connect with
multilink ISDN connections - I now see that the SNMP query has stopped
for some reason -> (The following user has max simultaneous logins set
to 4)
##
Tue Jan 8 11:22:59 2002: DEBUG: Packet dump:
*** Received from xxx.xxx.xxx.xxx port 1026
Code: Access-Request
Identifier: 111
Authentic: o<224>a<136><27><30><217>t<162>*<141>V<149><134>Z5
Attributes:
User-Name = "amg"
User-Password =
"<239>5D<253>l<225><240>H<189><14><136><16><222>Q}*"
NAS-IP-Address = xxx.xxx.xxx.xxx
NAS-Port = 21
NAS-Port-Type = ISDN
Service-Type = Framed-User
Framed-Protocol = PPP
Called-Station-Id = ""
Calling-Station-Id = ""
Tue Jan 8 11:22:59 2002: DEBUG: Handling request with Handler
'Realm=DEFAULT'
Tue Jan 8 11:22:59 2002: DEBUG: Deleting session for amg,
xxx.xxx.xxx.xxx, 21
Tue Jan 8 11:22:59 2002: DEBUG: do query is: delete from RADONLINE
where NASIDENTIFIER='xxx.xxx.xxx.xxx' and NASPORT=021
Tue Jan 8 11:22:59 2002: DEBUG: Handling with Radius::AuthRADMIN
Tue Jan 8 11:22:59 2002: DEBUG: do query is: insert into RADMESSAGES
(TIME_STAMP, TYPE, MESSAGE) values (1010452979, 4, 'Handling with
Radius::AuthRADMIN')
Tue Jan 8 11:22:59 2002: DEBUG: Handling with Radius::AuthRADMIN
Tue Jan 8 11:22:59 2002: DEBUG: do query is: insert into RADMESSAGES
(TIME_STAMP, TYPE, MESSAGE) values (1010452979, 4, 'Handling with
Radius::AuthRADMIN')
Tue Jan 8 11:22:59 2002: DEBUG: Query is: select PASS_WORD,
STATICADDRESS, TIMELEFT, MAXLOGINS from RADUSERS where USERNAME='amg'
and BADLOGINS < 5 and VALIDFROM < 1010452979 and VALIDTO > 1010452979
Tue Jan 8 11:22:59 2002: DEBUG: Radius::AuthRADMIN looks for match with
amg
Tue Jan 8 11:22:59 2002: DEBUG: do query is: insert into RADMESSAGES
(TIME_STAMP, TYPE, MESSAGE) values (1010452979, 4, 'Radius::AuthRADMIN
looks for match with amg')
Tue Jan 8 11:22:59 2002: DEBUG: Query is: select NASIDENTIFIER,
NASPORT, ACCTSESSIONID, FRAMEDIPADDRESS from RADONLINE where
USERNAME='amg'
Tue Jan 8 11:22:59 2002: DEBUG: Radius::AuthRADMIN ACCEPT:
Tue Jan 8 11:22:59 2002: DEBUG: do query is: insert into RADMESSAGES
(TIME_STAMP, TYPE, MESSAGE) values (1010452979, 4, 'Radius::AuthRADMIN
ACCEPT: ')
Tue Jan 8 11:22:59 2002: DEBUG: do query is: update RADUSERS set
BADLOGINS=0 where USERNAME='amg'
Tue Jan 8 11:22:59 2002: DEBUG: Handling with Radius::AuthDYNADDRESS
Tue Jan 8 11:22:59 2002: DEBUG: Access accepted for amg
Tue Jan 8 11:22:59 2002: DEBUG: Packet dump:
*** Sending to xxx.xxx.xxx.xxx port 1026
Code: Access-Accept
Identifier: 111
Authentic: o<224>a<136><27><30><217>t<162>*<141>V<149><134>Z5
Attributes:
Framed-IP-Address = yyy.yyy.yyy.yyy
Framed-Protocol = PPP
Framed-IP-Netmask = 255.255.255.255
Framed-Routing = None
Framed-MTU = 1500
Framed-Compression = Van-Jacobson-TCP-IP
Tue Jan 8 11:22:59 2002: DEBUG: Packet dump:
*** Received from xxx.xxx.xxx.xxx port 1026
Code: Accounting-Request
Identifier: 112
Authentic: ~^<159><185><179><206>~+<219><21> <5>O<25><234>W
Attributes:
Acct-Session-Id = "7700026E"
User-Name = "amg"
NAS-IP-Address = xxx.xxx.xxx.xxx
NAS-Port = 21
NAS-Port-Type = ISDN
Acct-Status-Type = Start
Acct-Authentic = RADIUS
Called-Station-Id = ""
Calling-Station-Id = ""
Service-Type = Framed-User
Framed-Protocol = PPP
Framed-IP-Address = yyy.yyy.yyy.yyy
Acct-Delay-Time = 0
Tue Jan 8 11:22:59 2002: DEBUG: Handling request with Handler
'Realm=DEFAULT'
Tue Jan 8 11:22:59 2002: DEBUG: Adding session for amg,
xxx.xxx.xxx.xxx, 21
Tue Jan 8 11:22:59 2002: DEBUG: do query is: delete from RADONLINE
where NASIDENTIFIER='xxx.xxx.xxx.xxx' and NASPORT=021
Tue Jan 8 11:22:59 2002: DEBUG: do query is: insert into RADONLINE
(USERNAME, NASIDENTIFIER, NASPORT, ACCTSESSIONID, TIME_STAMP,
FRAMEDIPADDRESS, NASPORTTYPE, SERVICETYPE) values ('amg',
'xxx.xxx.xxx.xxx', 021, '7700026E', 1010452979, 'yyy.yyy.yyy.yyy',
'ISDN', 'Framed-User')
Tue Jan 8 11:22:59 2002: DEBUG: Handling with Radius::AuthRADMIN
Tue Jan 8 11:22:59 2002: DEBUG: do query is: insert into RADMESSAGES
(TIME_STAMP, TYPE, MESSAGE) values (1010452979, 4, 'Handling with
Radius::AuthRADMIN')
Tue Jan 8 11:22:59 2002: DEBUG: Handling accounting with
Radius::AuthRADMIN
Tue Jan 8 11:22:59 2002: DEBUG: do query is: insert into RADMESSAGES
(TIME_STAMP, TYPE, MESSAGE) values (1010452979, 4, 'Handling accounting
with Radius::AuthRADMIN')
Tue Jan 8 11:22:59 2002: DEBUG: do query is: update RADUSERS set
TIMELEFT=TIMELEFT-0, OCTETSINLE
(RADIATOR) Radmin and MAXLOGINS
We have a client who is using Radiator 2.18 and Radmin 1.5.
We are utilising MAXLOGINS to restrict simultaneous connections from
some permanent dial-up customers. (Eg. Ones that have only paid for
56/64k)
I am seeing users that connect with mutilink ISDN able to connect with
more than one simultaneous connection (Which we don't want!) -
Radmin/radwho.pl and portmaster are all reporting simultaneous logins.
A trace4 debug shows a unusual Access-Request for the first connection
from the offending user -> (Full trace 4 of the connection at end of
message)
Mon Nov 26 11:45:12 2001: DEBUG: Handling request with Handler
'Realm=DEFAULT'
Mon Nov 26 11:45:12 2001: DEBUG: Deleting session for gsqld001,
xxx.xxx.xxx.xxx, 1
But I do not see an Access-Request for the second connection - Only an
Accounting-Request ->
*** Sending to xxx.xxx.xxx.xxx port 1026
Code: Accounting-Response
Identifier: 137
Authentic: <155><3><152>|<255><208>x<196><154>c<200>,<203>4<142><168>
Attributes:
Mon Nov 26 11:45:13 2001: DEBUG: Packet dump:
*** Received from xxx.xxx.xxx.xxx port 1026
Code: Accounting-Request
Identifier: 138
Authentic: <165>t<21><214>LM<229><13>V<218><255><11><2><149><161><127>
Attributes:
Acct-Session-Id = "76000463"
User-Name = "gsqld001"
NAS-IP-Address = xxx.xxx.xxx.xxx
NAS-Port = 14
NAS-Port-Type = ISDN
Acct-Status-Type = Start
Acct-Authentic = RADIUS
radwho.pl output ->
gsqld001xxx.xxx.xxx.xxx1 76000462Mon Nov 26
11:45:12 20010 00:08:48 xxx.xxx.xxx.xxx.246 ISDN
Framed-User
gsqld001xxx.xxx.xxx.xxx14 76000463Mon Nov 26
11:45:13 20010 00:08:47 xxx.xxx.xxx.xxx.246 ISDN
Framed-User
mysql> select USERNAME, MAXLOGINS from RADUSERS where
USERNAME="gsqld001";
+--+---+
| USERNAME | MAXLOGINS |
+--+---+
| gsqld001 | 1 |
+--+---+
1 row in set (0.00 sec)
Trace 4 Debug ->
Mon Nov 26 11:45:12 2001: DEBUG: Packet dump:
*** Received from xxx.xxx.xxx.xxx port 1026
Code: Access-Request
Identifier: 136
Authentic: <30><16>&<30>z<177>%<20>&<165><137>w<174><205>S{
Attributes:
User-Name = "gsqld001"
User-Password =
"<151>Zq<164><24>s<23><156><14><171><29>tW<29><206><201>"
NAS-IP-Address = xxx.xxx.xxx.xxx
NAS-Port = 1
NAS-Port-Type = ISDN
Service-Type = Framed-User
Framed-Protocol = PPP
Called-Station-Id = "55849500"
Calling-Station-Id = "755381085"
Mon Nov 26 11:45:12 2001: DEBUG: Handling request with Handler
'Realm=DEFAULT'
Mon Nov 26 11:45:12 2001: DEBUG: Deleting session for gsqld001,
xxx.xxx.xxx.xxx, 1
Mon Nov 26 11:45:12 2001: DEBUG: do query is: delete from RADONLINE
where NASIDENTIFIER='xxx.xxx.xxx.xxx' and NASPORT=01
Mon Nov 26 11:45:12 2001: DEBUG: Handling with Radius::AuthRADMIN
Mon Nov 26 11:45:12 2001: DEBUG: do query is: insert into RADMESSAGES
(TIME_STAMP, TYPE, MESSAGE) values (1006739112, 4, 'Handling with
Radius:
:AuthRADMIN')
Mon Nov 26 11:45:12 2001: DEBUG: Handling with Radius::AuthRADMIN
Mon Nov 26 11:45:12 2001: DEBUG: do query is: insert into RADMESSAGES
(TIME_STAMP, TYPE, MESSAGE) values (1006739112, 4, 'Handling with
Radius:
:AuthRADMIN')
Mon Nov 26 11:45:12 2001: DEBUG: Query is: select PASS_WORD,
STATICADDRESS, TIMELEFT, MAXLOGINS from RADUSERS where
USERNAME='gsqld001' and BAD
LOGINS < 5 and VALIDFROM < 1006739112 and VALIDTO > 1006739112
Mon Nov 26 11:45:12 2001: DEBUG: Radius::AuthRADMIN looks for match with
gsqld001
Mon Nov 26 11:45:12 2001: DEBUG: do query is: insert into RADMESSAGES
(TIME_STAMP, TYPE, MESSAGE) values (1006739112, 4, 'Radius::AuthRADMIN
lo
oks for match with gsqld001')
Mon Nov 26 11:45:12 2001: DEBUG: Query is: select NASIDENTIFIER,
NASPORT, ACCTSESSIONID, FRAMEDIPADDRESS from RADONLINE where
USERNAME='gsqld00
1'
Mon Nov 26 11:45:12 2001: DEBUG: Radius::AuthRADMIN ACCEPT:
Mon Nov 26 11:45:12 2001: DEBUG: do query is: insert into RADMESSAGES
(TIME_STAMP, TYPE, MESSAGE) values (1006739112, 4, 'Radius::AuthRADMIN
AC
CEPT: ')
Mon Nov 26 11:45:12 2001: DEBUG: do query is: update RADUSERS set
BADLOGINS=0 where USERNAME='gsqld001'
Mon Nov 26 11:45:12 2001: DEBUG: Handling with Radius::AuthDYNADDRESS
Mon Nov 26 11:45:12 2001: DEBUG: Query is: select TIME_STAMP, YIADDR,
SUBNETMASK, DNSSERVER from RADPOOL
where POOL='pool1' and STATE=0 order by TIME_STAMP
Mon Nov 26 11:45:12 2001: DEBUG: do query is: update RADPOOL set
STATE=1,
TIME_STAMP=1006739112,
EXPIRY=1006820228, USERNAME='gsqld001' where
YIADDR='xxx.xxx.xxx.xxx.246' and TIME_STAMP =1006394858
Mon Nov 26 11:45:12 2001: DEBUG: Access accepted for gsqld001
Mon Nov 26 11:45:12 2001: DEBUG: Packet dump:
*** Sending to xxx.xxx.xxx.xxx port 1026
Code: Access-Accept
Identifier: 136
Authentic: <30><16>&<30>z<177>%<20>&<165><137>w<174><205>S{
Attributes:
Session-Timeout = 81116
Framed-Protocol = PPP
RE: (RADIATOR) Acct-Session-Id non-unique across mutiple NAS's..
Thanks for the response Hugh. Looks like I may switch to Radiator. Regards, MB -Original Message- From: Hugh Irvine [mailto:[EMAIL PROTECTED]] Sent: Tuesday, April 03, 2001 9:36 PM To: Michael Bellears; [EMAIL PROTECTED] Subject: Re: (RADIATOR) Acct-Session-Id non-unique across mutiple NAS's.. Hello Michael - The Acct-Session-Id is just a number, and will wrap around even on a single NAS you can't rely on it to be unique. Radiator has no trouble with any number of identical NAS's. hth Hugh At 20:44 +1000 01/4/3, Michael Bellears wrote: >Hi, Im currently using Cistron Radius (with MySQL) to auth dial-in users >from a PM3. Our original PM3 was getting close to maximum, so we purchased >another. During testing I noticed the new PM3 is attempting to use the same >Acct-Session-Id that had been previously used by the original PM3, the >INSERT to the DBase fails due to a non-unique Acct-Session-Id. > >Does Radiator accomodate for this type of scenario -> Multiple Identical >NAS's authing via a single Radius Server ? > >Regards, >Michael > >=== >Archive at http://www.starport.net/~radiator/ >Announcements on [EMAIL PROTECTED] >To unsubscribe, email '[EMAIL PROTECTED]' with >'unsubscribe radiator' in the body of the message. -- NB: I am travelling this week, so there may be delays in our correspondence. Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, Interbiller, TACACS+, PAM, external, etc, etc. Available on Unix, Linux, FreeBSD, Windows 95/98/2000, NT, MacOS X. === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Acct-Session-Id non-unique across mutiple NAS's..
Hi, Im currently using Cistron Radius (with MySQL) to auth dial-in users from a PM3. Our original PM3 was getting close to maximum, so we purchased another. During testing I noticed the new PM3 is attempting to use the same Acct-Session-Id that had been previously used by the original PM3, the INSERT to the DBase fails due to a non-unique Acct-Session-Id. Does Radiator accomodate for this type of scenario -> Multiple Identical NAS's authing via a single Radius Server ? Regards, Michael === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Allocation of hours to Users?
Hi, Is it possible under Radiator to allocate block's of pre-purchased hours to dial-up users? i.e. User1 purchases 50 hours, then hours are subtracted during usage. If the users hours go below zero, I don't want them to be disconnected, or not allowed access, I would prefer there allocated hours just go into negative (i.e they owe more money) I'm using MySql as the backend. Thanks in advance, Michael === Archive at http://www.starport.net/~radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
