is the
process to get this to link properly?
The latest CVS should build on an OSX system, though it gets trickier if
you want to use modules such as SQL due to the way OSX handles libraries
and linking.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
for me, running with the dev tools on 10.3.
You could perhaps try posting the error you are getting.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.net
dictionary.ascend ). See the MAX
documentation for how to do this.
Anobody knows if there's a way of the radius be in charge of assigning the
pool of ips for each group?
the rlm_ippool module can allow FreeRADIUS to assign IP's from a pool that
it manages.
-Chris
--
\\\|||/// \ StarNet Inc
mply
made a symbolic link to include the rlm_sql_mysql sub-directory in the
../modules/ directory and re-ran make. Everything works great now,
thanks!
Cordially,
Chris
DeRamus
OCIO VPN
Administrator
SAIC
-Original Message-From: Deramus, Chris
Sent: Sunday, December 14, 2003
is restarted or powered on it will then start this process. When I terminate the process I usually just executed a pkill -9 rad which is not the recommended way but it's a bad habit that I have :).
Thanks,
Chris DeRamus
OCIO VPN Administrator
SAIC
-Original Message-
From: Ripunjay Bararia [mailto
Title: RE: MySQL Help!
Alan,
What file(s) should I run ldd against?
Chris DeRamus
OCIO VPN Administrator
SAIC
-Original Message-
From: Alan DeKok [mailto:[EMAIL PROTECTED]]
Sent: Friday, December 12, 2003 4:44 PM
To: [EMAIL PROTECTED]
Subject: Re: MySQL Help!
Deramus
Title: RE: MySQL Help!
Chris,
Thanks for the input, however, when I updated the configure script with your extra code configure would not find lmysqlclient and prompted that I specify the path to the library files by using --with-mysql-lib= When I put in the path to the MySQL library files
Here's the output from the box, as you can see I have the development
package. Any other thoughts?
[EMAIL PROTECTED] -rpm -qa | grep mysql
mysqlclient9-3.23.22-8
mysql-devel-3.23.58-1.72
mysql-3.23.58-1.72
php-mysql-4.1.2-2.1.6
mysql-server-3.23.58-1.72
mod_auth_mysql-1.11-1
Thanks!
Chris
I also mis-typed my message. The package that I was talking about was
mysql-shared not mysql-devel. I do not think you need mysql-shared though,
or do you?
Thanks,
Chris DeRamus
OCIO VPN Administrator
SAIC
-Original Message-
From: NetNITCO Systems Administration [mailto:[EMAIL
Add the string debug_level = 2 as the last line of radiusd.conf
At 11:24 AM 12/12/2003, you wrote:
Hello to everyone.
As I have seen in a previous post a bug that occasionaly crashed the
server when it received a HUP signal has been fixed. After compiling
the latest release (0.9.3) on a SUN
an empty:
expr {
}
in the modules section of your config file? It doesn't contain anything,
but it needs to be there, if you have 'expr' in your Instatiate block.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director
./configure --disable-shared and still no go. I know I do not need mysql-shared, I am honestly stumped.
Sorry to keep this thread going, I just can't seem to find much documentation on any extra steps required when running this new distro of RedHat.
Thanks,
Chris DeRamus
-Original Message
. On Solaris we had to change some of the
Makefiles manually to get all of the appropriate libs included to build
the rlm_mysql driver built. It may be the same on RH as well.
Helpfully, MySQL 3 build syntax is not totally workable with MySQL 4 at
least as far as FR is concerned.
-Chris
At 04:14 PM 12/12/2003, Chris Parker wrote:
At 03:42 PM 12/12/2003, Rob Genovesi wrote:
oh boy, I remember kicking this around for ever as well ...
My solution was to 1) be sure you have development rpms installed and 2)
do not use --disable-shared when running configure. I don't know
exactly
module multiple times, even as a static module and no luck. I am wondering if this has to do with differences in the way MySQL is setup in the Enterprise 2.1 ES distro? Any light that you can shed on this issue would be greatly appreciated.
Thanks and have a great day,
Chris DeRamus
users, the list archives from the last few days.
You need the += attribute to add mutile attributes of the same type
to a reply.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http
appreciate it very much right now.
No, I'm still working on cleaning the patch up, as well as adding accounting
methods for the module.
I'll post to the list when it is in CVS, which should hopefully be later
today.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
to login to mysql as the same user that Radius uses ala:
mysql -u RADIUS_USER -p DBNAME
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.net \ (847) 963-0116
, then the
answer is yes.
Radius is connection agnostic. It doesn't care. It is up to the AP/NAS/etc.
to support the connection method/protocol/technology.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
= 12.34.56.78:1646
secret = ipassecret
nostrip
}
This should work. I don't think they do anything differently with
respect to Radius.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
no such method.
shrug Edit the source code for attr_filter to include a pre-proxy
section.
This is done in the latest CVS for post-proxy. I've got a patch we've
used internally for pre-proxy. I'll commit it today.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
want to reject in a named Huntgroup.
The put something similar to the following in your 'users' config:
DEFAULT Huntgroup == BADNAS, Auth-Type := Reject
Fall-Through = No
If what you are trying to do is neither of the above, please clarify
what you want to do.
-Chris
in clients.conf.
HTH,
Chris
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
At 05:06 PM 12/3/2003, [EMAIL PROTECTED] wrote:
Is it possible to have FreeRadius authenticate against a SAMBA 3.x
implementation?
rlm_smb ? I don't know how widely used this module is, but it should
do what you are looking for.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris
). It will *not* be the end-user.
If the NAS/AP doesn't send it, you don't get it.
is there some kind of way around this, like faking an Accounting-Start in
the radgroupreply table ( in MySQL )?
Yes. Look at the 'radzap' program. It functions by sending a spoofed
'Stop' packet to the server.
-Chris
At 12:46 PM 12/2/2003, Brian Clarkson wrote:
Chris Parker wrote:
At 12:27 PM 12/2/2003, Brian Clarkson wrote:
Accounting-Start packets are sent by the client ( which could be either
the NAS or the end-user in the case of wireless auth, which is what i'm
doing ).
No, it will be the NAS
At 02:14 AM 12/1/2003, you wrote:
Chris,
How we gonna map below entry (with TAG) in ldap.attrmap?? and how the entry
in LDAP will be??
Haizam,
I'm not familiar with LDAP configuration.
Chris
radiusTunnelPassword :
radiusTunnelMediumType :
radiusTunnelType :
radiusTunnelServerEndpoint:
Tunnel
At 01:51 PM 12/1/2003, Guillermo Delmastro wrote:
Hi list
I am using freradius 0-7 on a BSDi BSD/OS4.3.
It works fine, but last week I got this:
You must upgrade. 0.7 is very old now, and no longer supported.
Get the lastest version from http://www.freeradius.org/
-Chris
a TAG of 0.
Hope this helps,
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.net \ (847) 963-0116
oOo---(_)---oOo
made a web 'enabler' page, where people
could authenticate and have their NT password inserted into LDAP without doing
a change password. I figured that within a year everyone will be in there, and
we have the ability to populate it before that as well.
Chris
[EMAIL PROTECTED]
-
List info
staff2681 Nov 24 19:42 root.pem
-rw-r--r--1 root staff 148 Nov 21 18:29 xpextensions
Can someone take a look at this and possible tell me if I'm doing anything wrong? I
scripted the entre output of CA.all, so I can send as an attachment if requested.
Thanks,
-Chris
)
If I have the Password AV pair there, but without a password in the Value
field, it still fails. When a password is put in the Value field, it works.
Thoughts?
Auth-Type := Accept?
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX
it's got everything; I just added some
stuff for their management software yesterday.)
Patch please? Or list of the AV's? If no one reports it, it won't get
included in later versions either.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX
://www.freeradius.org/rfc/rfc2869.html#Message-Authenticator
The light at the end of the tunnel is that is *was* made mandatory
for any packet with EAP-Message attributes.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director
At 12:26 PM 11/21/2003, Bill Campbell wrote:
On Fri, Nov 21, 2003, Chris Parker wrote:
At 11:18 AM 11/21/2003, Bill Campbell wrote:
On Fri, Nov 21, 2003, Alan DeKok wrote:
Oliver Graf [EMAIL PROTECTED] wrote:
With that said, 0.9.3 has been released. It's in the normal places:
I submitted
. It
should reject the packet as invalid and not try to process it further.
We'll look into this and correct the behaviour.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http
at the
'dialup-admin' package, which allows you to easily manage an SQL database
rather than a flat users file. Your chances of making a typo would then
be greatly reduced imho, and if you did typo on one entry for a user, it
would not affect any other users.
-Chris
At 01:11 PM 11/21/2003, Greg G wrote:
Chris Parker wrote:
So, the packet being sent is an invalid accounting packet, as it doesn't
contain NAS-IP-Address or NAS-Identifier. Nor a session-id.
Now that's strange, because this packet is being sent from
radclient. I thought I had seen it work
for your patience. I'm sure I'll have more questions later.
Thanks,
-Chris
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
See scripts/CA.all
Ran this, and it appears that everything worked right up until the end,
when I got these errors:
Certificate is to be certified until Nov 20 23:34:06 2004 GMT (365 days)
Sign the certificate? [y/n]:y
failed to update database
TXT_DB error number 2
+ openssl pkcs12 -export
like the security services we
bring to our clients.
Go hawk for customers somewhere else, please. KTHX.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.net
, and the
# restrictions as to availability, are the same as
# for the input_pairs.
#
output_pairs = reply
So, by default, it will place the reply pairs into the reply, you
may want it to go to config or request, in order to affect the accept
or reject status.
-Chris
be configured as follows:
Tunnel-Password:0 = ,
Tunnel-Medium-Type:0 = IP,
Tunnel-Type:0 = L2TP,
Tunnel-Server-Endpoint:0 = xxx.xxx.xxx.xxx
HTH,
Chris Brotsos
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
out what entries you'll need to add in the 'users' file to
authenticate the users.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.net \ (847) 963-0116
oOo
for the LAN and WLAN
environments.
I for one would cetainly be willing to assist with an update/addition
to the book. :)
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http
dig up.
What options are you passing to ./configure?
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.net \ (847) 963-0116
oOo---(_)---oOo
pukes at line 34 of src/include/sha1.h:
/*
* FIPS 186-2 PRF based upon SHA1.
*/
extern void fips186_2prf(uint8_t mk[20], uint8_t finalkey[160]);
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.net \ (847) 963-0116
oOo---(_)---oOo
At 02:41 PM 11/18/2003, Alan DeKok wrote:
Chris Parker [EMAIL PROTECTED] wrote:
Nope, current CVS load pukes at line 34 of src/include/sha1.h:
Ok, but which C file?
src/lib/sha1.c:12
Everything which uses sha1.h SHOULD include sys/types.h, first.
And it does include sys/types.h on line 10
At 04:16 PM 11/18/2003, Alan DeKok wrote:
Chris Parker [EMAIL PROTECTED] wrote:
And it does include sys/types.h on line 10. Seems OSX doesn't have
'uint8_t' defined. It *does* however seem to have 'u_int8_t' defined.
See: src/include/autoconf.h
If uint8_t isn't defined, that header file
address and source UDP port and
Identifier within a short span of time.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.net \ (847) 963-0116
oOo
attribute? Or is this need to be encapsulated in a
Cisco-VSA attriubte ala:
id UserName Attributeop Value
11 12345Cisco-VSA=h323-credit-time=10
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless
the cisco or the radius (-X).
Or at least in the response from the radtest utility.
radiusd -x -x -x will show you the sql queries being executed. What
happens when you run them by hand?
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX
Attributeop Value
11 12345Cisco-AVPair =h323-credit-time=10
Ahh, that's what I get for trusting my memory rather than checking
the dictionary. Glad it pointed you in the correct direction. :)
Thank you very much Chris!
You are welcome.
-Chris
isn't working wrt to huntgroups and sql? A quick summary/example
would be appreciated. I apologize for not responding to your earlier
posts.
Since this is more a -devel question, it might be better to move the
request over to that list since this is more of -devel topic.
-Chris
At 10:26 AM 11/13/2003, Chris Parker wrote:
At 09:31 AM 11/13/2003, Jeff Murphy wrote:
On Mon, 2003-11-10 at 09:47, Alan DeKok wrote:
Rohaizam Abu Bakar [EMAIL PROTECTED] wrote:
Hopefully in 1.0 release, rlm_ldap can work...
as an aside, i'm emailed the list twice regarding rlm_sql's apparent
perform?
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.net \ (847) 963-0116
oOo---(_)---oOo
is not in the stock dictionary. NAS-IP-Address
is, and is probably what you meant.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.net \ (847) 963-0116
oOo
server. Is there a more dynamic way to do this?
Thanks in advance.
You could send the server a HUP signal ( kill -HUP 12345 ). Or you could
run 'fastusers' which will periodically reread the 'users' file.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
.
The latest FreeBSD release adds some previously missing functions to
FreeBSD ( namely a working threadsafe get(host|name)by*_r() ). The
work to add that to the configure/build process has not been done
yet however.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
At 02:44 PM 11/6/2003, Paul Hampson wrote:
From: Chris Parker
Sent: Friday, 7 November 2003 3:09 AM
At 10:02 AM 11/6/2003, Kristina Pfaff-Harris wrote:
You might also consider trying OpenBSD or FreeBSD instead of a Linux
distribution.
There are some thread issues on Free/Open BSD
Alan DeKok [EMAIL PROTECTED] wrote:
Jack J [EMAIL PROTECTED] wrote:
Looking at FreeRadius0.9.2 version, also
checked the mail archives, I could not find
this information, so hoping someone can share
some information.
a) For TTLS -Client Authentication (inner tunnel
realm):
0.9.2
radius_xlat: Running registered xlat function of module exec for string
'/bin/echo Nas-Port-Id = 0'
rlm_exec (exec): Executing /bin/echo Nas-Port-Id = 0
radius_xlat: '/bin/echo Nas-Port-Id = 0'
Exec-Program: /bin/echo Nas-Port-Id = 0
Exec-Program output: Nas-Port-Id = 0
Exec-Program-Wait:
to have the server send proxy retries ONLY when the NAS sends
its retries to the server, then set this to 'yes', and the other proxy
configuration parameters to 0 (zero).
So, try setting synchronous to 'no' and see if you still have problems with
the failover.
HTH,
Chris
retry_delay = 5
at least help
you test your hypothesis.
HTH,
Chris
At 10:57 AM 10/16/2003, you wrote:
I have a proxy server configured to proxy to the NULL realm.
This has worked fine until recently when it has started to silently drop
RADIUS requests rather than forward them. The NAS does not recieve any
response
external checks than exist within radius, so it would be outside the
scope of what FreeRADIUS ( or any other server ) can do.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http
to be inspecting closer how it does this
and work on duplicating the process.
It can't. It is simply not possible, unless VOPRadius has administrative
access to the NAS.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director
' stanza of your config?
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.net \ (847) 963-0116
oOo---(_)---oOo
,
the 'hints' file. Try editing the hints file ( or commenting
it out of your config from 'radiusd.conf' ).
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.net
accthost= 123.123.234.234:1813
secret = authkey
nostrip
}
realm jp {
type= radius
authhost= 123.123.234.235:1812
accthost= 123.123.234.235:1813
secret = authkey
nostrip
}
Chris
On Mon, 2003
as normal (data was
therefore being lost).
Can someone point out what it wrong above, or what I am missing please?
Did you run the server in debug mode ( radiusd -x -x ) to see what it was
doing?
Did anything appear in the log files?
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris
-IP
I believe you'll actually want to use += for the second 'Framed-Route'
a/v pair, so that you get both a/v's sent back to the NAS.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
think you need this to do?
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.net \ (847) 963-0116
oOo---(_)---oOo
At 07:30 AM 9/26/2003, you wrote:
Hi,
please help. I want to send more than one IP-Pool-Definition to my
ascend box. Freeradius sends only one of them.
users-file:
pools-Moritz Auth-Type := Local, User-Password ==secret
Service-Type = Dialout-Framed-User,
supplied a patch to make it do that.
I have one, we use it internally here in 'post-proxy' and it works well.
I'll commit that later today, so you can pull it in the latest CVS
builds from tomorrow on.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
),
as in 'radiusd -x -x'. The -X ( upper case ) flag has other side effects
such as disabling threaded operation which may or may not be intended if
you simply need more verbose logging to determine an issue.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
radtest using ntradping.
i am using postgresql 7.2.3 and freeradis 0.4 or the latest. my box is on
freebsd 4.8.
Please consider upgrading, the lastest release is 0.9.1. The version
0.4 is *very* *very* old and have many known bugs and memory leaks which
are fixed in the current release.
-Chris
At 10:26 AM 9/10/2003, [EMAIL PROTECTED] wrote:
do you have a suggestion to resolve this issue?
If you don't need the rlm_mschap module, an easy fix would be to simply
rm -rf the src/modules/rlm_mschap directory so that it doesn't build/install
it.
-Chris
--
\\\|||/// \ StarNet Inc
' )
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.net \ (847) 963-0116
oOo---(_)---oOo
highly on the wireless authentication that you need to support.
Unless it specifically needs MSChap, you may not need it. It is hard to
say as there are so many options/methods used by different wireless systems.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
:
User-Name = boggss
Acct-Status-Type = Start
Acct-Session-Id = 2836
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.net \ (847) 963
At 04:54 PM 9/8/2003, Chris Knipe wrote:
Lo everyone,
Just a bit of a informational question... Feature wise, compatibility wise,
management wise... You know.. The full monty..
http://www.freeradius.org/features.html ( needs to have EAP/LEAP added )
http://www.open.com.au/radiator/technical.html
the rlm_smb module for what you are doing?
Adam Rothenberg
Network Technician
Palatine High School
N. Rohlwing Rd.
Palatine, IL 60074
(847) 755-1764
Hey, you are just down the road! ( StarNet is on NW Hwy/First Bank Drive ).
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris
it is failing, then we can start looking into why it isn't
working for you.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.net \ (847) 963-0116
oOo---(_)---oOo
, but now
we'd like to use LDAP auth through PAM.
Why not use LDAP directly? PAM has many issues, including known memory
leaks ( in PAM, not FR ).
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
Lo everyone,
Just a bit of a informational question... Feature wise, compatibility wise,
management wise... You know.. The full monty..
How does FreeRadius compare against Radiator??
--
me
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
switch. If Called # authentication fails, fall back to using the
encapsulation protocol's authentication.
Regards,
Chris
On Fri, 5 Sep 2003, Tom Myren wrote:
Hi
I would like to have Freeradius proxy a request to a LDAP server that will
check the calling-station-id
against a white-list
are
logged. I'll try to get more info.
Regards, Chris
On Thu, 2003-08-28 at 15:20, Chris van Meerendonk wrote:
Hi Paul,
I can install a recent (cvs) version, but I'd like to know how to check
This is gonna take some time. I installed rlm_ippool only from cvs (the
rest is still 0.9.0 release
Lo all,
I'm doing VPN authentication with Free Radius, and use allot of FreeBSD /
PPPD processes to manage the VPNs in regards to actual connectivity.
Obviously, freeradius is used for all authentication / accounting, and it is
working pretty well... :)
I upgraded to .9 a while ago, and
Hi Paul,
I can install a recent (cvs) version, but I'd like to know how to check
This is gonna take some time. I installed rlm_ippool only from cvs (the
rest is still 0.9.0 release), but by server is crashing with it. I'll
let you know when I have something interesting.
Chris
-
List info
this?
Chris
On Wed, 2003-08-27 at 10:38, Paul Hampson wrote:
I'm looking for feedback from people using a CVS snapshot
more recent than Tue Jul 29 18:40:50 2003 UTC and using
rlm_ippool. There's an intended bugfix for the problem of
ippool entries disappearing on busy servers, but it's not
been
Wauw, that's fun! I'll try if I can find any bugs...
Thanks,
Chris
On Wed, 2003-08-27 at 14:31, Paul Hampson wrote:
From: Chris van Meerendonk
Sent: Wednesday, 27 August 2003 7:12 PM
I can install a recent (cvs) version, but I'd like to know how to check
which ip-addresses
to process CC transactions.
As to automating a signup process, it works very well, users can get
instant gratification, you have less overhead in account setups, etc.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director
changing the ld.so.conf file and some other
values but have had no luck.
I am unsure on how to get a more detailed output on where exactly
radiusd is failing and where it is trying to look for rlm_krb5.
Any and all help is greatly appreciated.
Chris Akens
-
List info/subscribe/unsubscribe? See
exit status
I'm at a loss. On my cygwin install, 'nm /usr/lib/libcrypt.a' does show
a '_crypt' symbol. What does this show on your system?
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.net \ (847) 963-0116
oOo---(_)---oOo
an attempt failled.
I'm using a simple script that reads radius.log and put that in a mysql
table that can be accessed by our helpdesk by using a simple
php-interface to help people with their dialin problems. Maybe you can
do something with it.
Succes, Chris
The db struct of radproblems is:
mysql
to allow the
use of X-Ascend attributes.
Once that's done, you use the X-Ascend-Client-Primary-DNS,
X-Ascend-Client-Secondary-DNS, and X-Ascend-Client-Assign-DNS attributes to
do what you want.
HTH,
Chris Brotsos
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list
dictionary.
Any more help on this is much appreciated.
They are in dictionary.ascend
Chris Brotsos
-Original Message-
From: Brian Foster [mailto:[EMAIL PROTECTED]
Sent: 18 August 2003 15:04
To: '[EMAIL PROTECTED]'
Subject: RE: config dns server in users file
Thanks J
I'll try that and get
been sql fixes in those releases.
FreeRADIUS 0.9.0, RedHat 8.0, Oracle9i 9.0.1
Does NOT dump core on a crash (I enabled core dumps)
Right, so run it inside gdb, ala:
bob$ gdb radiusd
gdb set args -x -x
gdb run
then when it crashes:
gdb bt
-Chris
--
\\\|||/// \ StarNet Inc
1 - 100 of 731 matches
Mail list logo
