I realy apologize for posting this dummy question again to the list.
What kind of info do I need to set in radreply table of MySql to avoid any
error in log file when I do not need to send any reply to the NAS. I act
only as remote proxed server with only user/password auth.
Leaving the table
25-Nov-02 at 10:49, Maurizio Martinoli ([EMAIL PROTECTED]) wrote :
Hi everyb ody, i am new to all this so i apologize if my questions are
dumb :-)
I would like to understand how the architecture of the whole system is.
I understood it should be something like this:
Client --(
Hi:
I am using Linux RedHat 7.3.
Did I make the configuration wrong?
Regards
Sarick
- Original Message -
From: 3APA3A [EMAIL PROTECTED]
To: Sarick [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Sent: Monday, November 25, 2002 6:15 PM
Subject: Re: Problem: authenticate with /etc/passwd users
Dear Sarick,
In your case problem is you try to use crypyted passwords with EAP/md5.
For EAP/md5 you need cleartext password.
--Monday, November 25, 2002, 1:30:10 PM, you wrote to [EMAIL PROTECTED]:
S Hi:
S I am using Linux RedHat 7.3.
S Did I make the configuration wrong?
S Regards
S Sarick
well if my AP does not support RADIUS then there should be a middle
machine that takes the packets from the AP, encapsulate them in RADIUS
format and sends them to the RADIUS server.
What i don't understand is what kind of software this machine should
have.
Could you tell me?
-Messaggio
25-Nov-02 at 11:51, Maurizio Martinoli ([EMAIL PROTECTED]) wrote :
well if my AP does not support RADIUS then there should be a middle
machine that takes the packets from the AP, encapsulate them in RADIUS
format and sends them to the RADIUS server.
What i don't understand is what kind of
i am only talking about the authentication, i am not talking about the
transferred data, don't worry.
If the AP works just as a HUB what kind of machine should i have between
the AP and the RADIUS?
-Messaggio originale-
Da: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]] Per conto di
Hi, firstly thanks your quick response. :-)
- Original Message -
From: 3APA3A [EMAIL PROTECTED]
To: Sarick [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Sent: Monday, November 25, 2002 6:50 PM
Subject: Re[2]: Problem: authenticate with /etc/passwd users
Dear Sarick,
In your case problem
25-Nov-02 at 12:04, Maurizio Martinoli ([EMAIL PROTECTED]) wrote :
i am only talking about the authentication, i am not talking about the
transferred data, don't worry.
If the AP works just as a HUB what kind of machine should i have between
the AP and the RADIUS?
Depends on the AP, no?
Maurizio Martinoli wrote:
I know that RADIUS is an authentication mechanism, what i don't
understand is that if my AP does not support RADIUS (so it works just as
a hub) who sends the RADIUS queries to the RADIUS server? There must be
the answer to this question is: probably (and quite
Your clients (in their machines) will need to run a client like this:
http://www.roaringpenguin.com/pppoe/
Your AP, as you said, is just a jub...
Tico
well if my AP does not support RADIUS then there should be a middle
machine that takes the packets from the AP, encapsulate them in RADIUS
well, Tico, that's not sufficient...
you will have to install a PPP server, too, where all the clients will
be actually connecting to. you will have to block any other access
(without this server connection) by some means (e.g. private ip
addresses). this PPP server will have to have a
25-Nov-02 at 12:26, Artur Hecker ([EMAIL PROTECTED]) wrote :
except, to remain at the same example: that's like putting the
2-seat-cessna into a 747 jumbo flying it across the ocean to the NY and
decapsulating it overthere. of course, you could say that your cessna
made the distance...
It's
I wrote a mistake. Roaring server PPPoe is a based-linux server pppoe, and
it has to be between AP and radius-server.
Clients must use a pppoe client like http://user.cs.tu-berlin.de/~normanb/
We already use this solution to authenticate my wireless clients.
Another solution is a captive portal.
tico, that was not the point.
the point was, how to authenticate to radius, not how to authenticate.
ciao
artur
Tico Kamide wrote:
I wrote a mistake. Roaring server PPPoe is a based-linux server pppoe, and
it has to be between AP and radius-server.
Clients must use a pppoe client like
Take a look at http://www.frontios.com/freeradius.html
for some information. Its a little dated, but is still OK (although youll
need to read it all and put it in the right order).
S.
Scott
Bartlett
BTA
Limited, 100 High Street Wandsworth, London SW18 4LA, United Kingdom
e:
[EMAIL
http://www.freeradius.org/rfc/
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]] On Behalf Of
Maurizio Martinoli
Sent: Monday, November 25, 2002 3:58 AM
To: [EMAIL PROTECTED]
Subject: R: system architecture
AP is the access point, and i am talking about
Title: Message
I know that this has
already been discussed here, but I was unable to search my archive and find the
answer. Bear with me. :)
I thought there was
an issue with MySQL connections timing out. Is there a way to ensure that
the connections will re-connect automatically?
I am
Sorry for the HTML post.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Brian Johnson [EMAIL PROTECTED] wrote:
I thought there was an issue with MySQL connections timing out. Is there
a way to ensure that the connections will re-connect automatically?
Yes. 0.7.1 should do it. If not, try 0.8.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
Thanks.
Any easy way to test this?
Brian J.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]] On Behalf Of
Alan DeKok
Sent: Monday, November 25, 2002 9:03 AM
To: [EMAIL PROTECTED]
Subject: Re: SQL Timeout
Brian Johnson [EMAIL PROTECTED] wrote:
I
How can I replicate the accounting to more that one radius server?
I've tried a number of ways (example below), but only one server seems
to see the accounting.
DEFAULT Called-Station-Id == 7017 Replicate-To-Realm := test.com
DEFAULT Called-Station-Id == 7017 Replicate-To-Realm := test2.com
That is a function of the nas.
On Mon, 2002-11-25 at 10:16, kenw wrote:
How can I replicate the accounting to more that one radius server?
I've tried a number of ways (example below), but only one server seems
to see the accounting.
DEFAULT Called-Station-Id == 7017 Replicate-To-Realm :=
25-Nov-02 at 15:16, kenw ([EMAIL PROTECTED]) wrote :
How can I replicate the accounting to more that one radius server?
I've tried a number of ways (example below), but only one server seems
to see the accounting.
DEFAULT Called-Station-Id == 7017 Replicate-To-Realm := test.com
DEFAULT
Please give me a hint of where in the doc.
I looked through the doc and couldn't find it.
Thanks,
Ken
Simon White wrote:
25-Nov-02 at 15:16, kenw ([EMAIL PROTECTED]) wrote :
How can I replicate the accounting to more that one radius server?
I've tried a number of ways (example below), but
Brian Johnson [EMAIL PROTECTED] wrote:
Any easy way to test this?
Uh, download it and install it?
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
25-Nov-02 at 15:24, kenw ([EMAIL PROTECTED]) wrote :
Please give me a hint of where in the doc.
I looked through the doc and couldn't find it.
Thanks,
Ken
Simon White wrote:
25-Nov-02 at 15:16, kenw ([EMAIL PROTECTED]) wrote :
How can I replicate the accounting to more that one
At 10:55 AM 11/23/2002 -0600, Marcin Groszek wrote:
I am setting up my first as5200 and i am having really hard time with
it.
One problem is, the subnet mask assign to dial-up users is 255.0.0.0 and
i have no idea how to change it to 255.255.255.0
I am using ip local pool not dhcp server , the ip
Ive just been trying to get freeradius working instead of citron radius,
but I've ran into a problem with the suffix parameter setting in
/etc/raddb/users.
My understanding of the Suffix was that:
DEFAULT Suffix == NC, Auth-Type := System
Service-Type = Framed-User,
At 04:03 PM 11/25/2002 +, Ewan Leith wrote:
Ive just been trying to get freeradius working instead of citron radius,
but I've ran into a problem with the suffix parameter setting in
/etc/raddb/users.
My understanding of the Suffix was that:
DEFAULT Suffix == NC, Auth-Type := System
Greetings,
I have just begun testing a FreeRADIUS install in my environment and a
having a weird problem that I cannot find in the mail archives. I am
using LDAP to authenticate but have a problem running radius in
daemonized mode. I can run radius -s and everything is peachy... I get
a LDAP bind
25-Nov-02 at 09:21, Samuel T Patterson ([EMAIL PROTECTED]) wrote :
Greetings,
I have just begun testing a FreeRADIUS install in my environment and a
having a weird problem that I cannot find in the mail archives. I am
using LDAP to authenticate but have a problem running radius in
works perfectly thanks, obvious when you think about it i suppose :)
Ewan
Chris Parker wrote:
Yes, so use the 'hints' file as the documentation at the beginning of
the hints file tells you how to do exactly what you are looking for.
-Chris
--
-
List info/subscribe/unsubscribe? See
On 25 Nov 2002, at 12:04, Maurizio Martinoli wrote:
From: Maurizio Martinoli [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject:R: R: R: R: system architecture
Send reply to: [EMAIL PROTECTED]
mailto:[EMAIL
Title: Configuring the Users file
Good Morning,
I am very new to Radius Server's and I have inherited a Radius Server that was built on Ascends' Radius Server version r1_0Ai5. The user configuration file is setup as follows:
XXX Password = "XXX"
Filter-Id = "1",
Filter-Id =
Hello everyone,
I'd like to know if there is a way to have a free md5 eap code for
windows xp client,
thanks in advance.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Go to
http://www.impossiblereflex.com/8021x/eap-tls-HOWTO.htm
Use EAP-TLS.
--- [EMAIL PROTECTED] [EMAIL PROTECTED] wrote:
Hello everyone,
I'd like to know if there is a way to have a free
md5 eap code for
windows xp client,
thanks in advance.
-
List info/subscribe/unsubscribe?
Alan,
You have got to be the biggest smart a$$ I've ever conversed with.
I like it. :)
I have it installed and running. The question is how can I test that it
will re-connect automatically. I was thinking that if I stop the mysql
service and restart it while radiusd is running, it should
The basic idea is to run TLS inside EAP and then EAP again within the
TLS session. Thus it is fairly similar to EAP-TTLS and seems to give
about the same advantages (support for legacy authentication methods,
protection of the identity, etc.).
The ID you reference (-05 is the latest version)
I have sql and chap in authorize section and the password is cleartext for
sure =) freeradius even finds it!
rlm_chap: Using clear text password testpasswd for user test
Evren
On Tue, 26 Nov 2002, Chhai Thach wrote:
In the radius.conf file under the authenticate function, it say:
Most
please kick out me! i do not want to be in the mail list! thank you!
__
===
Ãâ·ÑÊÔÓÃÐÂÀË15MÊÕ·ÑÓÊÏä ¸Ï½ôÐж¯£¡
(http://vip.sina.com/sol_mail/promotion/pro_men.html)
well you feel wrong because I already solved this problem, it was a
radclient bug...(which I found in mailing list archives)
Evren
On Tue, 26 Nov 2002, Chhai Thach wrote:
-- I have a feeling that the password stored inside your database is encrypted.
I have sql and chap in authorize
can someone let me know where to look to change the newer default filename
of the detail files where they have a filename as detail-date .. which
creates a new file each day, back to the older style where the detail file
was just called detail and continued to grow as a single file for as
On Fri, Nov 22, 2002 at 01:28:10AM +0200, Kostas Kalevras wrote:
On Thu, 21 Nov 2002 [EMAIL PROTECTED] wrote:
On Thu, Nov 21, 2002 at 12:01:42PM -0600, Chris Parker wrote:
At 12:56 PM 11/21/2002 -0500, [EMAIL PROTECTED] wrote:
I have FR running with LDAP authentication, MySQL
Since in our situation, the supplicant software is to be used by students
and faculty in our department.
To mandate the members to install additional Cygwin maybe inconvenient and
too complicated for them.
Therefore I'd like to get a free win2000k supplicant, and I think that would
be a better
45 matches
Mail list logo