d the sections that I found
to be of interest, I'm assuming the returned noop means that the module isn't
loaded, or isn't doing anything? I have the MS-CHAP module loaded in the
authorization section, should it be loaded in a different section of
radiusd.conf ?
Thanks for the h
- Original Message -
From: "Chris Parker" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, August 28, 2002 12:00 PM
Subject: Re: Ascend-Data-Filters problem with 0.7
"Chris Parker" <[EMAIL PROTECTED]> wrote:
> At 12:56 PM 8/28/2002 -
ata from 0.5.
>
> So you have 4 Ascend attributes configured, but 0.7 is only sending
>one. 'radclient' will tell you WHICH one is being sent.
Most likely, they simply need to use += in setting the attributes instead
of =. I suspect that using 'r
ys to skin this particular cat. Like PERL, FreeRADIUS
gives you many ways to solve the problem.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx
Thank you, it works like a charm now! Sorry for the wasted effort yesterday
with the patches to sql.c, etc.
Chris Kalin
- Original Message -
From: "Kostas Kalevras" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, August 26, 2002 8:00 PM
Subject: Re: rlm
At 12:44 PM 8/27/2002 -0700, Chen, Qinxue wrote:
>Does anyone have this issue? It seemed that only happened with username
>"Cxx", not even with "cx".
>
>Does anyone have a fix for this?
Disable 'hints'. The stock 'hints
between the two, this seemed a more
expedient solution to my particular problem (I'm only using sql, not
radutmp). I'll dig over in rad_check_ts and go from there.
Thanks for the help, at least eliminating sql_check_ts from this makes the
troubleshooting a little more obvious.
Chris Kalin
> Chris Parker wrote:
>
> > At 03:51 PM 8/26/2002 -0500, Chris A. Kalin wrote:
> >I've discovered a few little quirks in rlm_sql.c and sql.c that prevent
> >Simultaneous-Use from starting "radcheck" in a standard FreeRADIUS
install.
> >Without these
At 03:51 PM 8/26/2002 -0500, Chris A. Kalin wrote:
>I've discovered a few little quirks in rlm_sql.c and sql.c that prevent
>Simultaneous-Use from starting "radcheck" in a standard FreeRADIUS install.
>Without these fixes, Simultaneous-Use will still work in a "trust
the information using radcheck -
which can bite people if RADIUS Stop packets have been dropped, etc.
It's a 3 KB context patch or a 1 KB diff file. May I post it here or is
there a more appropriate venue?
Thanks,
Chris Kalin
Netwurx, Inc.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
standing
of the radius protocol and the implications of source addresses and how
radius servers utilize the packet source to make decisions.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @
as WINS servers.
How exactly do I do this? And why aren't the MS-Primary-DNS-Server and MS-Secondary-DNS-Server attributes working, is it because the Base Group setting on the VPN Concentrator overrides all of this?
Please help, thanks!
Chris
At 10:41 AM 8/22/2002 -0400, you wrote:
>Chris Brotsos <[EMAIL PROTECTED]> wrote:
> > If you mean, for example, to have an entry in proxy.conf as "realm
> > somerealm" match to "somerealm" and "SOMEREALM" then do the following...
> >
>
>realm, realm) == 0) {'
That should force FR to accomplish the functionality that you are referring to.
Chris
At 01:07 PM 8/22/2002 +0200, you wrote:
>I am running freeradius 0.7 and RedHat 7.3
>
>as radius proxy. It works fin, but the realm is case sensitive. How can I
>cha
the 'yes' with 'no'.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.net \ (
mp = ${logdir}/radwtmp
> }
>
>So everything is commented out except the group param...
By default the mod_config will set caching to yes...if you simply comment
it out, then you will actually be telling the server to cache. Be
explicitcache = no.
Chris
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
ad them into memory )
but you haven't told it where these files exist. :)
In your case, you'll want to disable cacheing and you should be fine.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, En
f 1.
If it seems wrong to you, you need to understand more about PPP. I suggest
searching google and reading some of the RFC's ( the latter for a detailed
technical explanation ).
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX
even though that is not the actual
disconnect-cause. Have the user dial-up using a terminal window. A more
helpful error may be sent from the RAS directly to the user.
Also...sorry, but I don't understand the question, "But wth do the Client a
CHAP authentication ?" Could you reph
in place to do it for you :).
Thanks,
Chris DeRamus
HQ VPN Administrator
Verizon
301-903-2093
-Original Message-
From: Mattt [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, August 21, 2002 10:17 AM
To: [EMAIL PROTECTED]
Subject: Re: Requirement to pass alternet Domain Name, DNS Serv
can't connect too.
>Any idea what might be the cause of this strange behavior.
If the RADIUS server is disabled...the user cannot authenticate.
Chris
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
servers.
How exactly do I do this? And why aren't the MS-Primary-DNS-Server and MS-Secondary-DNS-Server attributes working, is it because the Base Group setting on the VPN Concentrator overrides all of this?
Please help, thanks!
Chris
.
>I've found Service-Type but I can't find Tunnel-Type or Tunnel-Password.
>Anything special I need to do to get these in there?
Update your dictionary files? They are included in 'dictionary.tunnel'
and have been for some time.
-Chris
--
\\\|||/// \
s radius tell you when you run the server in debug mode? Note that
you have 'Fall-Through = Yes', so you may be overwriting/modifying the
profile with other entries. Run the server in debug mode and it will tell
you exactly what it is doing.
-Chris
--
\\\|||/// \
user name. Ignoring.
The NAS is not sending a User-Name attribute for some reason. Fix
this and you'll solve the problem. You should review the NAS documentation,
or attempt to contact Lucent for support.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
e SQL in your 'accounting' section of the config.
What happens in debug mode when an accounting request is received?
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\
cluded
'detail' in the 'accounting' block of your 'radiusd.conf' file?
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
Spike,
After processing the SQL table, attributes will be picked up from the
DEFAULT profile in the users file. If you need a specific DEFAULT profile
to be used then assign an attribute via SQL and use it as a check-item in
the users file DEFAULT profile.
Chris
At 06:11 PM 7/30/2002 -0600
clean, and then after the LIBS directive in
Make.inc.in...place -lpthread. It sounds like you are using Solaris...
If not, sorry, but I had the same problem, and that is how it was fixed.
Chris
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
At 02:07 AM 7/26/2002 +0800, Ador Dauz wrote:
>thank's Chris...
>I have a question again, In the table of radcheck, radgroupcheck
>radreply thiers a field called "op" whats this for? and also in the
>radgroupreply a field called "prio" I don't know what
cate' sections -- they
>have no such method.
Yup, do what it says, and remove 'sql' from the 'authenticate' section
of your radiusd.conf file.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!
n is not a supportable platform at the moment. It
is lacking too much in the way functionality that FreeRADIUS uses. There
was a report of someone getting it working on Win2k under MINGW32.
If you desperately need it on Win32 then you may want to look at that.
-Chris
--
\\\|||///
s of "ttq" should be "tty". (Something like "sed
s/ttq/tty/g" would be a quick fix that wouldn't break anything else.)
Took a bit of head scratching to find this one. :)
Chris Kalin
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Title: RE: Cannot find a Domain attribute ??
Alan
Sorry for the confusion, I meant I have to return that Domain attribute to the NAS, we have different program offices with resources on different domains. Let me know if I'm still confusing you.
Thanks,
Chris
-Original Me
life isn't it :)
Take care,
Chris DeRamus
HQ VPN Administrator
Verizon
301-903-2093
-Original Message-
From: Alan DeKok [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, July 16, 2002 3:19 PM
To: [EMAIL PROTECTED]
Subject: Re: Problem with Files module in latest snapshot?
"Der
roups into radgroupcheck for authorization and authentication. What else do you suggest?
Thanks,
Chris DeRamus
HQ VPN Administrator
Verizon
301-903-2093
-Original Message-
From: Alan DeKok [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, July 16, 2002 3:19 PM
To: [EMAIL PROTECTED]
Subject: R
the file to my /usr/local/etc/raddb directory, I didn't do a make or make install or anything, is this correct?
I'm sure it's something I'm not doing, thanks for your time.
Chris
-Original Message-
From: Alan DeKok [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, July
ie at this =)
Thanks!
Chris DeRamus
HQ VPN Administrator
Verizon
301-903-2093
-Original Message-
From: Alan DeKok [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, July 16, 2002 3:19 PM
To: [EMAIL PROTECTED]
Subject: Re: Problem with Files module in latest snapshot?
"Deramus,
close to the bottom where it lists the other VALUE Auth-Type's located underneath the Cistron extensions? I tried it in both locations and had no luck. I also tried a value of 255 instead of 256, don't know if that makes a difference.
Cordially,
Chris DeRamus
HQ VPN Administrator
Verizo
Title: RE: Problem with Files module in latest snapshot?
Alan,
Thanks for the suggestion but still no go, I appreciate the feedback though :)
Chris DeRamus
HQ VPN Administrator
Verizon
301-903-2093
-Original Message-
From: Alan DeKok [mailto:[EMAIL PROTECTED]]
Sent
Title: RE: Problem with Files module in latest snapshot?
Chris,
I did exactly what you recommended and still no go, I really am stumped. I will triple check my radiusd.conf file and verify that everything is okay. If you think of anything else please letme know.
Thanks,
Chris DeRamus
HQ
nfo.
The authorization information is *not* sent back to the NAS
unless the users is successfully authenticated, so there is
no exposure of info ( unless very poorly configured ). Why
do two lookups ( one to get password, one to get author info )
when you can do one lookup to get a
o
see what it is doing that it is not sending a reply.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.net
with one of
the measures put in place to reduce exposure, which is only answering
auth-requests from *known* ip addresses.
(yes, ip's can be spoofed, but spoofing is harder than not having to spoof).
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ /
At 06:25 PM 7/15/2002 -0400, Deramus, Chris wrote:
>I just updated with the July 15th snapshot, re-ran radiusd -X and am now
>getting a line that says.
>
>/usr/local/etc/raddb/users[143]: Parse error (reply) for entry DEFAULT: No
>token read where we expected an attribute
Title: Problem with Files module in latest snapshot?
I just updated with the July 15th snapshot, re-ran radiusd -X and am now getting a line that says.
/usr/local/etc/raddb/users[143]: Parse error (reply) for entry DEFAULT: No token read where we expected an attribute name
Errors reading /u
[mailto:[EMAIL PROTECTED]]
Sent: Thursday, July 11, 2002 11:14 AM
To: '[EMAIL PROTECTED]'
Subject: RE: Problem with PAP modules in FreeRadius 0.6!
On Thu, 11 Jul 2002, Deramus, Chris wrote:
> Kostas,
>
> I'm sorry I haven't done a CVS update yet. I should just go to
&g
t these. Other places
would be an LDAP store or SQL database ( which are simply other ways to
do the same thing as the 'users' file ).
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engin
the
different OSes. See the above article for an explanation of how and why.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.st
dditionally OS versions the server will work on.
Thanks,
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.net \ (84
ree-radius from scratch, or will it just update my files?
Thanks for your assistance.
Cordially,
Chris DeRamus
HQ VPN Administrator
Verizon
301-903-2093
-Original Message-
From: Kostas Kalevras [mailto:[EMAIL PROTECTED]]
Sent: Thursday, July 11, 2002 10:30 AM
To: '[EMAIL PROT
ey are 100% identical with the exception of 0.5 going through and 0.6 rejecting the user.
Thanks,
Chris
ransmission when it doesn't receive a response,
so this isn't necesarily an indication of a critical problem.
Deploying a faster radius server, or additional servers could help with
improving your response time to requests.
-Chris
--
\\\|||/// \ StarNet Inc.
client Provider>:1651 - ID: 0
>
Are you seeing that for a particular user or all users?
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.net \
tall or compile in my OS?
>
>Could anybody help me??
You may want to try the latest CVS version. Some cleanup to resolve some
compilation issues has been done since 0.6.0 was released.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX
emote server
unavailability ).
This has been added to the latest CVS, so you'll need to upgrade to that
to use ( or wait for 0.6.1 which should be coming out shortly ).
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wirel
on compatability in 'doc/ascend'.
That would be a good place to start.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.net \
At 04:57 PM 7/9/2002 -0300, Alexandre Strube wrote:
>Hey, the download page says that the release version is still 0.5
>http://www.freeradius.org/getting.html
Aye, it does, but you are actually downloading the latest release,
regardless of what it says. It will be updated shortly.
request."
You can edit this in 'radiusd.conf'. Read the whole file, comments
and all. It has lots of useful info in there. Really. I promise. :)
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ D
Title: Someone please help???
To all,
I've posted 3 times regarding this matter, and I'm not getting any response. I realize this seems like a very newbie question, if it is then I am sorry to waste your time but I would love a response at least.
I cannot get any rlm_ modules to load when I
the appropriate directory, yet still it won't load any modules.
Is there a different way of configuring radiusd.conf in 0.6 ?
Please help, I post as similar response before the 4th of July and got no response.
Thanks for your time,
Chris DeRamus
HQ VPN Administrator
Verizon
301-903
ain lots of
helpful examples. The man pages have a good amount of information as
well.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.net \ (847) 963-0
authentication and you have not configured
the radius server to accept CHAP authentication requests.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetw
sh table. disable caching and run debugs
>radiusd.conf[462]: unix: Module instantiation failed.
>
>how do I fix this..
You'll need to look at the 'radiusd.conf' file, and follow the steps
that the server is telling you to do above.
-Chris
--
\\\|||/// \
in the
>proxy.conf file.
No, it's not. And it's covered in the FAQ:
http://www.freeradius.org/faq/#4.8
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engine
rything in sql.conf and radiusd.conf...this is definitely
odd.
Thanks,
Chris DeRamus
HQ VPN Administrator
Verizon
301-903-2093
At 10:59 AM 7/2/2002 +0100, [EMAIL PROTECTED] wrote:
>Hi,
>
>Is it possible to ocnfigure a Freeradius proxy to log details of
>accounting packets that it is proxying?
Yes. Simply add the appropriate module to the 'accounting' block of
the se
At 02:41 PM 6/26/2002 +0800, James Taylor wrote:
>Thanks Chris, you are a legend!
>
>That config did exactly what I want. :)
>
>However now I have a problem with accounting packets.
>They seem to always be proxied off to the default realm no matter what.
>
>I guess this i
he latest CVS builds and will be incorporated into
the next release version.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.net \ (847) 963-
webfront using PHP, and the string inputted is then passed into the mySQL backend. This would automate the process very nicely and make the Administration of 3000 passwords a bit easier =)
Let me know what you think, thanks!
Chris DeRamus
HQ VPN Administrator
Verizon
301-903-2093
ree, they become available to anyone
updating or checking out a copy from CVS. For those who use the nightly
'builds' or 'tarballs' they are rebuilt at 4:00 AM CST from the as then
current CVS.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
inst your passwd/shadow files...then do not enable
the unix module.
Chris Brotsos
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
ry rig manually with like a cronjob, etc.
Thanks!
Chris DeRamus
HQ VPN Administrator
Verizon
301-903-2093
Title: FW: MySQL Attribute Question
Chris DeRamus
HQ VPN Administrator
Verizon
301-903-2093
-Original Message-
From: Deramus, Chris
Sent: Friday, June 21, 2002 11:09 AM
To: Deramus, Chris
Subject: RE: MySQL Attribute Question
I thought about something else Alan maybe you
make sure I didn't just mis-type it and that isn't it.
Thanks for your time,
Chris DeRamus
HQ VPN Administrator
Verizon
301-903-2093
-Original Message-
From: Alan DeKok [mailto:[EMAIL PROTECTED]]
Sent: Thursday, June 20, 2002 4:38 PM
To: [EMAIL PROTECTED]
Subject: Re:
ed IP address's as well as make an account expire on a given day.
Let me know if I'm missing something, thanks.
Chris DeRamus
HQ VPN Administrator
Verizon
301-903-2093
then that password is null and void, or, just as good can I set a time limit on that password's validity of lets say 1-2 days?
I've been looking at the counter module and I guess maybe it's possible in that but something tells me I'm looking in the wrong places. Where should I
Microsoft dialer with option "bring up terminal window after
>dialing".
>My LDAP has UserPassword attribute with MD5 encrypted value.
Regardless of what you use to store user information, if the radius server
cannot access a plaintext copy of the user's password,
o 'configure' or you can edit
the list of 'stable' modules located in 'src/modules/stable'.
( the latter only in the current CVS build, it's not in 0.5 )
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ /
uation.
All check items that you simply want to compare should use '=='
as the operator.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.n
/etc/radclient/etc/raddb 64.218.97.97:1645 01 cosi71sunfl
>radclient: no response from server
They sent the request to port 1645, is your server listening on that
port?
What debug info do you see when they send the request.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris
versions. There was a problem in previous versions that
incorrectly sent Proxy-State attributes back.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.net \
ocol = PPP,
> Framed-Compression = Van-Jacobson-TCP-IP
>
>With this configuration, both users are matched on
>first group, so both are rejected authorization.
Yes. You are using the wrong operators. Please see the
'users' man page.
-Chris
--
\\\|||/// \
fc2865.html#Access-Request
"Upon receipt of an Access-Request from a valid client, an
appropriate reply MUST be transmitted."
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @
ious
email. There is no other way, unless you write your own dialer software
and don't use Microsoft's DialUp Networking.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ ht
er PAP before CHAP.
On cisco you set the order thus:
int x/x/x:x:x
ppp authentication pap chap callin
On Ascend/Lucent with recent TAOS select the
"PAP-Preferred" option
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *i
h it was
replying to.
You want to do:
DEFAULT Called-Station-Id == 1234, Proxy-To-Realm := "company.com"
Fall-Through = Yes
DEFAULT Called-Station-Id == 2345, Proxy-To-Realm := "else.net"
Fall-Through = Yes
-Chris
--
\\\|||/// \
ords.
PHP and write your own? :) It's hard to package canned reports as
everyone seems to want different data to be reported, summed, averaged,
etc.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Enginee
f' to do whatever you need, I would
think.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starn
At 01:32 PM 6/8/2002 -0400, Eric Dean wrote:
>I got no bytes on this and I already google'd the hell out of the subject
>matter...any ideas?
http://www.mail-archive.com/freeradius-users@lists.cistron.nl/msg05238.html
-Chris
--
\\\|||/// \ StarNet Inc. \ C
from usrpass, not from
>DEFAULT in users.
>I think, it's not good.
Set 'Fall-Through = Yes' in the profile for 'usrpass' if you want it
to also use the DEFAULT profile reply items.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
e rfc.
It means that tags are not used, so there is no 'grouping' of attributes
by tag.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless!\ Director, Engineering
| @ @ |\ http://www.starnetwx.n
Kill radiusd and start radiusd -X, the user authnticate perfectly... :-/
>
>I have no ideia about what can make this happen.
>Does anyone of you would have any idea about it?
http://www.mail-archive.com/freeradius-users@lists.cistron.nl/msg04154.html
-Chris
--
\\\|||/// \ Sta
sible to do with the latest version
>of FreeRADIUS, or is it at least possible to write a module to accomplish
>this?
Yes, use the 'Proxy-To-Realm' attribute in your users/sql/ldap store.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \
Why did this fix get removed from the June 4th CVS snapshot? auth.c is
version 1.103 in those snapshots.
Chris
- Original Message -
From: "Alan DeKok" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday, May 31, 2002 12:06 PM
Subject: Re: Removal of Proxy-Sta
nd that entry isn't added to the database.
It doesn't display any active accounts even though I'm currently logged on right now.
Thanks,
Chris DeRamus
HQ VPN Administrator
Verizon
301-903-2093
ny a times and short of the basic configuration changes are there any major
changes that any of you had to make before this would begin to work.
Thanks,
Chris DeRamus
HQ VPN Administrator
Verizon
301-903-2093
At 02:45 PM 5/31/2002 -0400, Alan DeKok wrote:
>Chris Parker <[EMAIL PROTECTED]> wrote:
> > This assumes we are sending to a NAS, which we can't. Consider a two
> > stage proxy:
>
> The proxy state returned to the client MUST be exactly the same as
>what cli
At 01:50 PM 5/31/2002 -0400, eric wrote:
>Apparently, freeradius maintains the proxy-state elsewhere because I ran a
>test and it worked.
H. Interesting, I don't see where it's getting it from, but your
test shows it there...
My bad if I jumped the
;
The reply going back to ISP1 should be:
Blah = "blah",
Proxy-State = "foo"
Blah = "blah"
I'm working on a patch to do this, unless you want to take a stab
at it. :)
-Chris
--
\\
401 - 500 of 908 matches
Mail list logo