RE: Cannot find a Domain attribute ??

d the sections that I found to be of interest, I'm assuming the returned noop means that the module isn't loaded, or isn't doing anything? I have the MS-CHAP module loaded in the authorization section, should it be loaded in a different section of radiusd.conf ?   Thanks for the h

Re: Ascend-Data-Filters problem with 0.7

- Original Message - From: "Chris Parker" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, August 28, 2002 12:00 PM Subject: Re: Ascend-Data-Filters problem with 0.7 "Chris Parker" <[EMAIL PROTECTED]> wrote: > At 12:56 PM 8/28/2002 -

Re: Ascend-Data-Filters problem with 0.7

ata from 0.5. > > So you have 4 Ascend attributes configured, but 0.7 is only sending >one. 'radclient' will tell you WHICH one is being sent. Most likely, they simply need to use += in setting the attributes instead of =. I suspect that using 'r

Re: List of NAS

ys to skin this particular cat. Like PERL, FreeRADIUS gives you many ways to solve the problem. -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless!\ Director, Engineering | @ @ |\ http://www.starnetwx

Re: rlm_sql.c and sql.c fixes for Simultaneous-Use

Thank you, it works like a charm now! Sorry for the wasted effort yesterday with the patches to sql.c, etc. Chris Kalin - Original Message - From: "Kostas Kalevras" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Monday, August 26, 2002 8:00 PM Subject: Re: rlm

Re: Chopped User-Name with "Cxxxx" (C was chopped)

At 12:44 PM 8/27/2002 -0700, Chen, Qinxue wrote: >Does anyone have this issue? It seemed that only happened with username >"Cxx", not even with "cx". > >Does anyone have a fix for this? Disable 'hints'. The stock 'hints

Re: rlm_sql.c and sql.c fixes for Simultaneous-Use

between the two, this seemed a more expedient solution to my particular problem (I'm only using sql, not radutmp). I'll dig over in rad_check_ts and go from there. Thanks for the help, at least eliminating sql_check_ts from this makes the troubleshooting a little more obvious. Chris Kalin

Re: rlm_sql.c and sql.c fixes for Simultaneous-Use

> Chris Parker wrote: > > > At 03:51 PM 8/26/2002 -0500, Chris A. Kalin wrote: > >I've discovered a few little quirks in rlm_sql.c and sql.c that prevent > >Simultaneous-Use from starting "radcheck" in a standard FreeRADIUS install. > >Without these

Re: rlm_sql.c and sql.c fixes for Simultaneous-Use

At 03:51 PM 8/26/2002 -0500, Chris A. Kalin wrote: >I've discovered a few little quirks in rlm_sql.c and sql.c that prevent >Simultaneous-Use from starting "radcheck" in a standard FreeRADIUS install. >Without these fixes, Simultaneous-Use will still work in a "trust

rlm_sql.c and sql.c fixes for Simultaneous-Use

the information using radcheck - which can bite people if RADIUS Stop packets have been dropped, etc. It's a 3 KB context patch or a 1 KB diff file. May I post it here or is there a more appropriate venue? Thanks, Chris Kalin Netwurx, Inc. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: [FreeRadius] Random port for proxy requests?

standing of the radius protocol and the implications of source addresses and how radius servers utilize the packet source to make decisions. -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless!\ Director, Engineering | @

Requirement to pass alternet Domain Name, DNS Servers, and WINSs ervers -- HELP

as WINS servers. How exactly do I do this? And why aren't the MS-Primary-DNS-Server and MS-Secondary-DNS-Server attributes working, is it because the Base Group setting on the VPN Concentrator overrides all of this? Please help, thanks! Chris

Re: Proxy.conf

At 10:41 AM 8/22/2002 -0400, you wrote: >Chris Brotsos <[EMAIL PROTECTED]> wrote: > > If you mean, for example, to have an entry in proxy.conf as "realm > > somerealm" match to "somerealm" and "SOMEREALM" then do the following... > > >

Re: Proxy.conf

>realm, realm) == 0) {' That should force FR to accomplish the functionality that you are referring to. Chris At 01:07 PM 8/22/2002 +0200, you wrote: >I am running freeradius 0.7 and RedHat 7.3 > >as radius proxy. It works fin, but the realm is case sensitive. How can I >cha

Re: FreeBSD System Auth

the 'yes' with 'no'. -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless!\ Director, Engineering | @ @ |\ http://www.starnetwx.net \ (

Re: FreeBSD System Auth

mp = ${logdir}/radwtmp > } > >So everything is commented out except the group param... By default the mod_config will set caching to yes...if you simply comment it out, then you will actually be telling the server to cache. Be explicitcache = no. Chris - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: FreeBSD System Auth

ad them into memory ) but you haven't told it where these files exist. :) In your case, you'll want to disable cacheing and you should be fine. -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless!\ Director, En

Re: Odd thing happening...

f 1. If it seems wrong to you, you need to understand more about PPP. I suggest searching google and reading some of the RFC's ( the latter for a detailed technical explanation ). -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX

Re: Win 2000 User cannt authorize

even though that is not the actual disconnect-cause. Have the user dial-up using a terminal window. A more helpful error may be sent from the RAS directly to the user. Also...sorry, but I don't understand the question, "But wth do the Client a CHAP authentication ?" Could you reph

RE: Requirement to pass alternet Domain Name, DNS Servers, andWI NS s ervers

in place to do it for you :). Thanks, Chris DeRamus HQ VPN Administrator Verizon 301-903-2093 -Original Message- From: Mattt [mailto:[EMAIL PROTECTED]] Sent: Wednesday, August 21, 2002 10:17 AM To: [EMAIL PROTECTED] Subject: Re: Requirement to pass alternet Domain Name, DNS Serv

Re: Win 2000 User cannt authorize

can't connect too. >Any idea what might be the cause of this strange behavior. If the RADIUS server is disabled...the user cannot authenticate. Chris - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Requirement to pass alternet Domain Name, DNS Servers, and WINSs ervers

servers. How exactly do I do this? And why aren't the MS-Primary-DNS-Server and MS-Secondary-DNS-Server attributes working, is it because the Base Group setting on the VPN Concentrator overrides all of this? Please help, thanks! Chris

Re: IPSec tunnels

. >I've found Service-Type but I can't find Tunnel-Type or Tunnel-Password. >Anything special I need to do to get these in there? Update your dictionary files? They are included in 'dictionary.tunnel' and have been for some time. -Chris -- \\\|||/// \

Re: session-timeout cisco 5800

s radius tell you when you run the server in debug mode? Note that you have 'Fall-Through = Yes', so you may be overwriting/modifying the profile with other entries. Run the server in debug mode and it will tell you exactly what it is doing. -Chris -- \\\|||/// \

RE: ascend radius problem

user name. Ignoring. The NAS is not sending a User-Name attribute for some reason. Fix this and you'll solve the problem. You should review the NAS documentation, or attempt to contact Lucent for support. -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker

RE: Accounting is Where?

e SQL in your 'accounting' section of the config. What happens in debug mode when an accounting request is received? -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless!\ Director, Engineering | @ @ |\

Re: Accounting is Where?

cluded 'detail' in the 'accounting' block of your 'radiusd.conf' file? -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless!\ Director, Engineering

Re: users file and SQL?

Spike, After processing the SQL table, attributes will be picked up from the DEFAULT profile in the users file. If you need a specific DEFAULT profile to be used then assign an attribute via SQL and use it as a check-item in the users file DEFAULT profile. Chris At 06:11 PM 7/30/2002 -0600

RE: Segmentation Fault

clean, and then after the LIBS directive in Make.inc.in...place -lpthread. It sounds like you are using Solaris... If not, sorry, but I had the same problem, and that is how it was fixed. Chris - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: mysql authentication

At 02:07 AM 7/26/2002 +0800, Ador Dauz wrote: >thank's Chris... >I have a question again, In the table of radcheck, radgroupcheck >radreply thiers a field called "op" whats this for? and also in the >radgroupreply a field called "prio" I don't know what

Re: mysql authentication

cate' sections -- they >have no such method. Yup, do what it says, and remove 'sql' from the 'authenticate' section of your radiusd.conf file. -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless!

Re: CygWin - compiling errors

n is not a supportable platform at the moment. It is lacking too much in the way functionality that FreeRADIUS uses. There was a report of someone getting it working on Win2k under MINGW32. If you desperately need it on Win32 then you may want to look at that. -Chris -- \\\|||///

checkrad.pl bug

s of "ttq" should be "tty". (Something like "sed s/ttq/tty/g" would be a quick fix that wouldn't break anything else.) Took a bit of head scratching to find this one. :) Chris Kalin - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

RE: Cannot find a Domain attribute ??

Title: RE: Cannot find a Domain attribute ?? Alan Sorry for the confusion, I meant I have to return that Domain attribute to the NAS, we have different program offices with resources on different domains. Let me know if I'm still confusing you. Thanks, Chris -Original Me

Success Alan thanks for the CVS

life isn't it :) Take care, Chris DeRamus HQ VPN Administrator Verizon 301-903-2093 -Original Message- From: Alan DeKok [mailto:[EMAIL PROTECTED]] Sent: Tuesday, July 16, 2002 3:19 PM To: [EMAIL PROTECTED] Subject: Re: Problem with Files module in latest snapshot? "Der

RE: Problem with Files module in latest snapshot?

roups into radgroupcheck for authorization and authentication. What else do you suggest? Thanks, Chris DeRamus HQ VPN Administrator Verizon 301-903-2093 -Original Message- From: Alan DeKok [mailto:[EMAIL PROTECTED]] Sent: Tuesday, July 16, 2002 3:19 PM To: [EMAIL PROTECTED] Subject: R

RE: Problem with Files module in latest snapshot?

the file to my /usr/local/etc/raddb directory, I didn't do a make or make install or anything, is this correct? I'm sure it's something I'm not doing, thanks for your time. Chris -Original Message- From: Alan DeKok [mailto:[EMAIL PROTECTED]] Sent: Tuesday, July

RE: Problem with Files module in latest snapshot?

ie at this =) Thanks! Chris DeRamus HQ VPN Administrator Verizon 301-903-2093 -Original Message- From: Alan DeKok [mailto:[EMAIL PROTECTED]] Sent: Tuesday, July 16, 2002 3:19 PM To: [EMAIL PROTECTED] Subject: Re: Problem with Files module in latest snapshot? "Deramus,

RE: Problem with Files module in latest snapshot?

close to the bottom where it lists the other VALUE Auth-Type's located underneath the Cistron extensions? I tried it in both locations and had no luck. I also tried a value of 255 instead of 256, don't know if that makes a difference. Cordially, Chris DeRamus HQ VPN Administrator Verizo

RE: Problem with Files module in latest snapshot?

Title: RE: Problem with Files module in latest snapshot? Alan, Thanks for the suggestion but still no go, I appreciate the feedback though :) Chris DeRamus HQ VPN Administrator Verizon 301-903-2093 -Original Message- From: Alan DeKok [mailto:[EMAIL PROTECTED]] Sent

RE: Problem with Files module in latest snapshot?

Title: RE: Problem with Files module in latest snapshot? Chris, I did exactly what you recommended and still no go, I really am stumped. I will triple check my radiusd.conf file and verify that everything is okay. If you think of anything else please letme know. Thanks, Chris DeRamus HQ

Re: a question of philosophy

nfo. The authorization information is *not* sent back to the NAS unless the users is successfully authenticated, so there is no exposure of info ( unless very poorly configured ). Why do two lookups ( one to get password, one to get author info ) when you can do one lookup to get a

Re: Authenticate using a *wrong* password

o see what it is doing that it is not sending a reply. -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless!\ Director, Engineering | @ @ |\ http://www.starnetwx.net

Re: promiscuous authentication

with one of the measures put in place to reduce exposure, which is only answering auth-requests from *known* ip addresses. (yes, ip's can be spoofed, but spoofing is harder than not having to spoof). -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ /

Re: Problem with Files module in latest snapshot?

At 06:25 PM 7/15/2002 -0400, Deramus, Chris wrote: >I just updated with the July 15th snapshot, re-ran radiusd -X and am now >getting a line that says. > >/usr/local/etc/raddb/users[143]: Parse error (reply) for entry DEFAULT: No >token read where we expected an attribute

Problem with Files module in latest snapshot?

Title: Problem with Files module in latest snapshot? I just updated with the July 15th snapshot, re-ran radiusd -X and am now getting a line that says. /usr/local/etc/raddb/users[143]: Parse error (reply) for entry DEFAULT: No token read where we expected an attribute name Errors reading /u

RE: Problem with PAP modules in FreeRadius 0.6!

[mailto:[EMAIL PROTECTED]] Sent: Thursday, July 11, 2002 11:14 AM To: '[EMAIL PROTECTED]' Subject: RE: Problem with PAP modules in FreeRadius 0.6! On Thu, 11 Jul 2002, Deramus, Chris wrote: > Kostas, > > I'm sorry I haven't done a CVS update yet. I should just go to &g

Re: about reply attributes

t these. Other places would be an LDAP store or SQL database ( which are simply other ways to do the same thing as the 'users' file ). -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless!\ Director, Engin

Re: FreeBSD 4.6 and user threads

the different OSes. See the above article for an explanation of how and why. -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless!\ Director, Engineering | @ @ |\ http://www.st

Re[2]: FreeBSD 4.6 and user threads

dditionally OS versions the server will work on. Thanks, -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless!\ Director, Engineering | @ @ |\ http://www.starnetwx.net \ (84

RE: Problem with PAP modules in FreeRadius 0.6!

ree-radius from scratch, or will it just update my files? Thanks for your assistance. Cordially, Chris DeRamus HQ VPN Administrator Verizon 301-903-2093 -Original Message- From: Kostas Kalevras [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 11, 2002 10:30 AM To: '[EMAIL PROT

Problem with PAP modules in FreeRadius 0.6!

ey are 100% identical with the exception of 0.5 going through and 0.6 rejecting the user. Thanks, Chris

RE: How to port FreeRadius?

ransmission when it doesn't receive a response, so this isn't necesarily an indication of a critical problem. Deploying a faster radius server, or additional servers could help with improving your response time to requests. -Chris -- \\\|||/// \ StarNet Inc.

RE: How to port FreeRadius?

client Provider>:1651 - ID: 0 > Are you seeing that for a particular user or all users? -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless!\ Director, Engineering | @ @ |\ http://www.starnetwx.net \

Re: How to port FreeRadius?

tall or compile in my OS? > >Could anybody help me?? You may want to try the latest CVS version. Some cleanup to resolve some compilation issues has been done since 0.6.0 was released. -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX

Re: freeradius and mysql replication question

emote server unavailability ). This has been added to the latest CVS, so you'll need to upgrade to that to use ( or wait for 0.6.1 which should be coming out shortly ). -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wirel

Re: Max 6000

on compatability in 'doc/ascend'. That would be a good place to start. -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless!\ Director, Engineering | @ @ |\ http://www.starnetwx.net \

Re: Download page

At 04:57 PM 7/9/2002 -0300, Alexandre Strube wrote: >Hey, the download page says that the release version is still 0.5 >http://www.freeradius.org/getting.html Aye, it does, but you are actually downloading the latest release, regardless of what it says. It will be updated shortly.

Re: Threads Question

request." You can edit this in 'radiusd.conf'. Read the whole file, comments and all. It has lots of useful info in there. Really. I promise. :) -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless!\ D

Someone please help???

Title: Someone please help??? To all, I've posted 3 times regarding this matter, and I'm not getting any response. I realize this seems like a very newbie question, if it is then I am sorry to waste your time but I would love a response at least. I cannot get any rlm_ modules to load when I

RE: FreeRADIUS 0.6.0 Module HELP!

the appropriate directory, yet still it won't load any modules. Is there a different way of configuring radiusd.conf in 0.6 ? Please help, I post as similar response before the 4th of July and got no response. Thanks for your time, Chris DeRamus HQ VPN Administrator Verizon 301-903

Re: How to test help please

ain lots of helpful examples. The man pages have a good amount of information as well. -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless!\ Director, Engineering | @ @ |\ http://www.starnetwx.net \ (847) 963-0

Re: help with radius authentication

authentication and you have not configured the radius server to accept CHAP authentication requests. -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless!\ Director, Engineering | @ @ |\ http://www.starnetw

Re: some help please

sh table. disable caching and run debugs >radiusd.conf[462]: unix: Module instantiation failed. > >how do I fix this.. You'll need to look at the 'radiusd.conf' file, and follow the steps that the server is telling you to do above. -Chris -- \\\|||/// \

Re: Help freeradius0.6 with mysql

in the >proxy.conf file. No, it's not. And it's covered in the FAQ: http://www.freeradius.org/faq/#4.8 -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless!\ Director, Engine

FreeRadius 0.6 + MySQL Question

rything in sql.conf and radiusd.conf...this is definitely odd.   Thanks,   Chris DeRamus HQ VPN Administrator Verizon 301-903-2093  

Re: accounting on a proxy

At 10:59 AM 7/2/2002 +0100, [EMAIL PROTECTED] wrote: >Hi, > >Is it possible to ocnfigure a Freeradius proxy to log details of >accounting packets that it is proxying? Yes. Simply add the appropriate module to the 'accounting' block of the se

Re: Proxy radius based on dialled number

At 02:41 PM 6/26/2002 +0800, James Taylor wrote: >Thanks Chris, you are a legend! > >That config did exactly what I want. :) > >However now I have a problem with accounting packets. >They seem to always be proxied off to the default realm no matter what. > >I guess this i

user/group switching behaviour changed

he latest CVS builds and will be incorporated into the next release version. -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless!\ Director, Engineering | @ @ |\ http://www.starnetwx.net \ (847) 963-

RE: Re[6]: MS-CHAP V2 Question

webfront using PHP, and the string inputted is then passed into the mySQL backend. This would automate the process very nicely and make the Administration of 3000 passwords a bit easier =) Let me know what you think, thanks! Chris DeRamus HQ VPN Administrator Verizon 301-903-2093

Re: repository update frequency?

ree, they become available to anyone updating or checking out a copy from CVS. For those who use the nightly 'builds' or 'tarballs' they are rebuilt at 4:00 AM CST from the as then current CVS. -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker

Re: Livingston Radius to Freeradius migration

inst your passwd/shadow files...then do not enable the unix module. Chris Brotsos - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Please Help!! -- Attribute Expiration Question

ry rig manually with like a cronjob, etc.   Thanks!   Chris DeRamus HQ VPN Administrator Verizon 301-903-2093  

FW: MySQL Attribute Question

Title: FW: MySQL Attribute Question Chris DeRamus HQ VPN Administrator Verizon 301-903-2093 -Original Message- From: Deramus, Chris Sent: Friday, June 21, 2002 11:09 AM To: Deramus, Chris Subject: RE: MySQL Attribute Question I thought about something else Alan maybe you

RE: MySQL Attribute Question

make sure I didn't just mis-type it and that isn't it. Thanks for your time, Chris DeRamus HQ VPN Administrator Verizon 301-903-2093 -Original Message- From: Alan DeKok [mailto:[EMAIL PROTECTED]] Sent: Thursday, June 20, 2002 4:38 PM To: [EMAIL PROTECTED] Subject: Re:

MySQL Attribute Question

ed IP address's as well as make an account expire on a given day.   Let me know if I'm missing something, thanks.   Chris DeRamus HQ VPN Administrator Verizon 301-903-2093  

RE: Re[4]: MS-CHAP V2 Question

then that password is null and void, or, just as good can I set a time limit on that password's validity of lets say 1-2 days? I've been looking at the counter module and I guess maybe it's possible in that but something tells me I'm looking in the wrong places. Where should I

Re: both PAP and CHAP authentication from LDAP

Microsoft dialer with option "bring up terminal window after >dialing". >My LDAP has UserPassword attribute with MD5 encrypted value. Regardless of what you use to store user information, if the radius server cannot access a plaintext copy of the user's password,

Re: Compiling/installing freeradius with specific modules

o 'configure' or you can edit the list of 'stable' modules located in 'src/modules/stable'. ( the latter only in the current CVS build, it's not in 0.5 ) -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ /

Re: Problem in group authentication

uation. All check items that you simply want to compare should use '==' as the operator. -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless!\ Director, Engineering | @ @ |\ http://www.starnetwx.n

Re: Proxy Value 33

/etc/radclient/etc/raddb 64.218.97.97:1645 01 cosi71sunfl >radclient: no response from server They sent the request to port 1645, is your server listening on that port? What debug info do you see when they send the request. -Chris -- \\\|||/// \ StarNet Inc. \ Chris

Re: Proxy Value 33

versions. There was a problem in previous versions that incorrectly sent Proxy-State attributes back. -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless!\ Director, Engineering | @ @ |\ http://www.starnetwx.net \

Re: Problem in group authentication

ocol = PPP, > Framed-Compression = Van-Jacobson-TCP-IP > >With this configuration, both users are matched on >first group, so both are rejected authorization. Yes. You are using the wrong operators. Please see the 'users' man page. -Chris -- \\\|||/// \

Re: force pap in a chap first environment

fc2865.html#Access-Request "Upon receipt of an Access-Request from a valid client, an appropriate reply MUST be transmitted." -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless!\ Director, Engineering | @

Re: force pap in a chap first environment

ious email. There is no other way, unless you write your own dialer software and don't use Microsoft's DialUp Networking. -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless!\ Director, Engineering | @ @ |\ ht

Re: force pap in a chap first environment

er PAP before CHAP. On cisco you set the order thus: int x/x/x:x:x ppp authentication pap chap callin On Ascend/Lucent with recent TAOS select the "PAP-Preferred" option -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *i

RE: Proxy Client Source IP and Realm

h it was replying to. You want to do: DEFAULT Called-Station-Id == 1234, Proxy-To-Realm := "company.com" Fall-Through = Yes DEFAULT Called-Station-Id == 2345, Proxy-To-Realm := "else.net" Fall-Through = Yes -Chris -- \\\|||/// \

Re: radius accounting table parser and front end

ords. PHP and write your own? :) It's hard to package canned reports as everyone seems to want different data to be reported, summed, averaged, etc. -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless!\ Director, Enginee

Re: Exec-Program-Wait

f' to do whatever you need, I would think. -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless!\ Director, Engineering | @ @ |\ http://www.starn

RE: Proxy Client Source IP and Realm

At 01:32 PM 6/8/2002 -0400, Eric Dean wrote: >I got no bytes on this and I already google'd the hell out of the subject >matter...any ideas? http://www.mail-archive.com/freeradius-users@lists.cistron.nl/msg05238.html -Chris -- \\\|||/// \ StarNet Inc. \ C

Re: (no subject)

from usrpass, not from >DEFAULT in users. >I think, it's not good. Set 'Fall-Through = Yes' in the profile for 'usrpass' if you want it to also use the DEFAULT profile reply items. -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker

RE: RFC2868 Tunnel attributes?

e rfc. It means that tags are not used, so there is no 'grouping' of attributes by tag. -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless!\ Director, Engineering | @ @ |\ http://www.starnetwx.n

Re: Radius crazy

Kill radiusd and start radiusd -X, the user authnticate perfectly... :-/ > >I have no ideia about what can make this happen. >Does anyone of you would have any idea about it? http://www.mail-archive.com/freeradius-users@lists.cistron.nl/msg04154.html -Chris -- \\\|||/// \ Sta

Re: Proxy requests on criteria other than realms?

sible to do with the latest version >of FreeRADIUS, or is it at least possible to write a module to accomplish >this? Yes, use the 'Proxy-To-Realm' attribute in your users/sql/ldap store. -Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \

Re: Removal of Proxy-State

Why did this fix get removed from the June 4th CVS snapshot? auth.c is version 1.103 in those snapshots. Chris - Original Message - From: "Alan DeKok" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Friday, May 31, 2002 12:06 PM Subject: Re: Removal of Proxy-Sta

RE: Dialup Admin question

nd that entry isn't added to the database. It doesn't display any active accounts even though I'm currently logged on right now. Thanks, Chris DeRamus HQ VPN Administrator Verizon 301-903-2093

Dialup Admin question

ny a times and short of the basic configuration changes are there any major changes that any of you had to make before this would begin to work.   Thanks,   Chris DeRamus HQ VPN Administrator Verizon 301-903-2093  

Re: Removal of Proxy-State

At 02:45 PM 5/31/2002 -0400, Alan DeKok wrote: >Chris Parker <[EMAIL PROTECTED]> wrote: > > This assumes we are sending to a NAS, which we can't. Consider a two > > stage proxy: > > The proxy state returned to the client MUST be exactly the same as >what cli

Re: Removal of Proxy-State

At 01:50 PM 5/31/2002 -0400, eric wrote: >Apparently, freeradius maintains the proxy-state elsewhere because I ran a >test and it worked. H. Interesting, I don't see where it's getting it from, but your test shows it there... My bad if I jumped the

Re: Removal of Proxy-State

; The reply going back to ISP1 should be: Blah = "blah", Proxy-State = "foo" Blah = "blah" I'm working on a patch to do this, unless you want to take a stab at it. :) -Chris -- \\

<    1   2   3   4   5   6   7   8   9   10   >