I use radius and mysql;
If someoane trys to login with a username that is already loged in, I want
this second user to have another ip address from a pool(regardless the
address from mysql).
But I can't do this.
The mysql address is always apearing.
How can I give a address from a pool to all dupli
Re: Freeradius and Alteon Problems
Victor Mira <[EMAIL PROTECTED]> wrote:
> Yes, that's what I also deduced. My problem is
that I really don't
> know how to tell the Radius server to send that info to the NAS. I
tried to
> put in the nastype file, the type "
doing NAT with these addresses. I
also administer those network elements.
Any other info would be very appreciated.
Thanks,
Victor.
martes, 02 de diciembre de 2003 20:18
To: [EMAIL PROTECTED]
cc:
From: "Alan DeKok" <[EMAIL PROTECTED]>
Subject: Re: Freeradius and Alteon Probl
the RADIUS seems to be sending the Alteon any kind of information that
it does not understand. It is supossed to send what kind of user is trying
to log on (standard telnet authentication in alteon is only checked by
password, without username. Kind of a Catalyst Switch).
I forgot to tell that I also sniffed
in the firewall between the Alteon and the RADIUS. Everything seems to
be fine overthere. If not, I would not work with the Nokia firewalls.
Thanks in advance, and sorry if the
explanation is a bit long :-)
Victor.
eproxy_users"
> files: compat = "no"
>/daemons/freeradius-0.9.3/etc/raddb/acct_users[17]: Parse error (check) for entry
>DEFAULT: Illegal regular expression in attribute:
>User-Name: Unmatched [ or [^
>Errors reading /daemons/freeradius-0.9.3/etc/raddb/acct_users
wh
regular expresion is bad
some error ?
and the 0.8.2 have me the same problem with log.
i will check all file config that is the error in other file. :(
thanks again.
Victor Sanchez
- Original Message -
From: "Alan DeKok" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]&g
PROBLEM
rlm_detail: /var/log/radius/radacct/%{Client-IP-Address}/detail expands to
/var/log/radius/radacct//detail<--PROBLEM
rlm_detail: Freeradius-Proxied-To set to 62.81.202.26
modcall[accounting]: module "detail" returns ok
some solutions ? i have the server running for 6
today i add more client to my system and when i have 70 simultaneos users acounting
with radius, i have this in logs.
All sockets are being used! Please increase the maximum number of sockets!
what i need to do ???
thnanks for all.
-
List info/subscribe/unsubscribe? See http://www.freeradius
i have this problem in a last time and now i can work fine with this config.
radius server user files.
jack Auth-Type := Accept
Service-Type = Framed-User,
Framed-Protocol = PPP,
Session-Timeout=1815,
Idle-Timeout = 1825
My nas is a mikrotik last version.
He sends always the same value as port(ether1 for me).
I also use simultaneous-use.
The problem is that radutmp make the sessions unique after port.
I modified the sources and I replaced nas-port-id with acct-session-id, but
acct-session-id is olways increasing.
If you have "service password-encryption" on your cisco
it will mismatch, this can be changed by "no service password-encryption"
and then re typing the radius-server key command
the secret must be the same on your Cisco as well as your clients.conf and
pro
NAS-Port-Id = "ether1"
User-Name = "victor"
MS-CHAP2-Response =
0x81008bd69f59e65d59c4c5f11c31fafdc1c4fd80c174db91b4b92eebf9a3ae762824eee13e50660f520b
MS-CHAP-Challenge = 0x2846e077175f48d97b1213b66f469f1f
NAS-IP-Address = 192.
(BHi all,
(B
(BIn my radd/users file I have one entree, everything else is pounded out
(B
(BHere it is:
(B
(Btest Auth-Type := Local, User-Password == "test"
(B Service-Type = NAS-Prompt-User,
(B Fall-Through = no
(B
(BBut when I run
(BHi all,
(B
(BDoes anyone have any sample configurations for
(Busing freeradius with Cisco ??
(B
(BI want to use the freeradius to authenticate access to the routers
(B
(BI am running version 0.8.1 on Solaris 8 and am having
(Btrouble with
2:11 AM
(B> To: [EMAIL PROTECTED]
(B> Subject: Re: Failed to link to module 'rlm_expr': file not found
(B
(B
(B>> "Victor Churchill" <[EMAIL PROTECTED]> wrote:
(B>> I got the following error even though the path to the modules is
(Bdefined
(B
I try to authenticate in windows98, from radius, with MSCHAP.
Radius says: Access-Accept
Windows 98 says: the computer you're dayling in does not suport the data
encription requirements specified.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
(BHi all,
(B
(BAfter finishing my compiling I tried to run radiusd in debug mode to
(Bcheck it out.
(B
(BI got the following error even though the path to the modules is defined
(Bin the
(Bradiusd.conf file
(B
(BI am running Solaris 8 with
(BHi I am having compile problems with Solaris 8.
(B
(Bfirst I tried to compile with ltdl enabled and then I tried with it
(Bdisabled
(BI tried with the default libtool and I tried with my libtool
(BAlways the same result.
(B
(BI am using version 0.8
can i execute a script after a user has logged in, and using his
account name as a parameter?
Yes
Is very simple.
Just look in the /usr/local/etc/raddb/acct_users file.
I made it work only the last radius version freeradius-snapshot-20021217 but
I belive it will work and with versio 0.8.1
You
this is imposible, because the AcctSessionId reset the counter every time that you
kill the server and lauch again.
for example for rotate the log.
Victor Sanchez
- Original Message -
From: "Kliment Toshkov" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Sunda
thanks again to Alan Dekok for you help.
i recompile with the modify of this file and now he work fine in my system.
very thanks.
Victor Sanchez.
- Original Message -
From: "Victor Sanchez" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Saturday, November 30
;Alan DeKok" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Saturday, November 30, 2002 4:03 PM
Subject: Re: problems with username user diferent in detail file and mysql
> "Victor Sanchez" <[EMAIL PROTECTED]> wrote:
> > Sat Nov 30 15:22:01 2002
> >
sorry, all character is below the 128.
my english is very poor.
sorry again.
- Original Message -
From: "Victor Sanchez" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Saturday, November 30, 2002 4:01 PM
Subject: Re: problems with username user diferent in
i see that this happen with all char with ascii number greater that 128.
any solution ?
o i need to downgrade to freeradius 0.4 ?
Victor Sanchez.
- Original Message -
From: "Victor Sanchez" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Saturday, November 30
i receive this packet from ras system.
Sat Nov 30 15:22:01 2002
User-Name = "[march]"
but in the mysql i can read the user "=5Bmarch=5D"
and this error is new when today i update the system from freeradius 0.4 to freeradius
0.8.
what char are afected ??
someone have the same proble
freeradius 0.4
2x P3-1000Mhz, 1.5Gb Ram
Suse Linux 7.3
Kernel 2.4.10
thanks to all.
Victor Sanchez
P.D: Escuse for my poor english
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
this is the detail file:
Sun Oct 27 17:54:45 2002
NAS-IP-Address = AAA.BBB.CCC.DDD
NAS-Port = 105
NAS-Port-Type = Async
User-Name = "paco@nowhere"
Called-Station-Id = "XXX"
Calling-Station-Id = "XXX"
Acct-Status-Type = Start
authentication failure
aaa accounting delay-start
aaa accounting update periodic 1
aaa accounting network default start-stop group radius
aaa nas port extended
i wish that this help you.
Victor Sanchez
- Original Message -
From: "Michael Fuller / Railnet" <[EMAIL PROTECTED]>
To: &
i have 2 cisco ( 3620 and AS5300) with freeradius 0.5 and accounting work fine.
the config of cisco are.
aaa accounting send stop-record authentication failure
aaa accounting delay-start
aaa accounting update periodic 1
aaa accounting network default start-stop group radius
radius-server host
- Original Message -
From: "Alan DeKok" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, August 20, 2002 8:37 PM
Subject: Re: conver a users file to mysq
> "Victor Sanchez" <[EMAIL PROTECTED]> wrote:
> > D
i have a cisco 3620 when 700 call in a day and 4 or 5 are similar that you say, but i
don't find any error o bug :(
Victor Sanchez
- Original Message -
From: "Fduch the Pravking" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, June 20, 2002
tray tu put in sql.conf
# Print all SQL statements when in debug mode (-x)
sqltrace = yes <<<<< CHANGE
sqltracefile = ${logdir}/sqltrace.sql
and run radiusd with debug mode -x and log all,
verify that the database in mysql exist and user and pass is correct
i need to update 2 database with the data of the radius.
y test to put this in the sql file:
accounting_start_query = "INSERT into radacct ;INSERT into
"
but don't work,
/etc/raddb/sql.conf[124]: Line is not in 'attribute = value' format
any idea to update, and insert in 2 diferent dat
i need to update 2 database with the data of the radius.
y test to put this in the sql file:
accounting_start_query = "INSERT into radacct ;INSERT into
"
when i use it with update work fine, but in a insert say
/etc/raddb/sql.conf[124]: Line is not in 'attribute = value' format
any idea to up
The user DEFAULT don't work, i need to change any more that the tables
usergroup and radcheck ??
i have 2 users
sin_pass
y
DEFAULT <- ¿it mean any user, isn't it?
the answer of the server is:
rlm_sql_authorize: no rows returned from query (no such user)
Login OK: [sin_pass/] (from nas UNKNOWN
How do I permit access to any user regardless of password?
>
>
> DEFAULT Auth-Type = Accept
>
>
> the solution in the faq.
>
> sorry for the email.
>
> - Original Message -
> From: "Victor Sanchez" <[EMAIL PROTECTED]>
> To: <[EMAIL
not found and DEFAULT not found
rlm_sql: Released sql socket id: 4
Login incorrect: [paco/] (from nas UNKNOWN-NAS
port 0)
if no have login y put the correct values for DEFAULT and work, but for a
user without pass don't work.
thanks
On Tue, Nov 27, 2001 at 08:49:36AM -0600, Chris Parker wrote:
> Please send this as a 'diff'. See the 'doc/DIFFS', or more simply:
>
> $ cvs diff -p configure.in
I knew I should provide a patch..
Index: configure.in
===
RCS file:
Hi all!
I recently updated using cvs and recompiled radiusd 0.4 on my freebsd 4.4
(a recent stable). When running radiusd, libc complained about the lack
of the FreeSec functions (setkey(3), des_cipher(3), etc).
I have added this check in configure.in, and it works for me:
dnl Check for libciph
- Original Message -
From: <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, October 16, 2001 7:59 PM
Subject: Re: Cut off session that reach the limit
> "Carlos Lerma" <[EMAIL PROTECTED]> wrote:
> > I would like to know how I can can cut off the user session that reach
> > the
Hi,
Is it posible to use Login-Time to describe larger time zone in which some
account can be used? For example I want to restrict the account so it can be
used for just 30 days.
If that is not posible with Login-Time, can you suggest me some way?
thanks
-
List info/subscribe/unsubscribe? See
Hi,
Is it posible to lock the account when somebody tries to connect with it and
there is already connected user with this account? Also I want to drop the
currently connected user.
thanks in advance.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
I've removed the unique constraints from radgroupcheck.groupname and
radgroupreply.groupname, and it seems that the radius goes fine.
Now I've another question. How can I make radius to read NAS table from the
oracle database? I've read in nas.c that NASLIST file is no longer needed
and its i
--
Vic
- Original Message -
From: "Henry Su" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday, October 12, 2001 12:19 AM
Subject: RE: an oracle authentication questions...
> Thanks Victor. I found the message:
>
http://lists.cistron.nl/pi
It seems to be the problem with the garbage in the rows returned in rlm_sql
module.
read the September message archive (25.09.2001). There you can find some
useful info.
Vic
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
I've build the schema with db_oracle.sql script.
I've tried to insert some values in the radgroupcheck and oracle said that
the groupname must be unique. My question is how can I insert multiple
attributes for some group if this field must be unique? or this is just some
mistake.
I thought tha
if the rlm_counter is the only way to specify the total time that some user
can use certain service?
...and if after the total time exceed and the user is still online, does it
get dropped???
regards.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi again,
I'm using oracle database with freeradius.
If I tri to use Login-Time and Simultaneous-Use (and there are probably
more) attributes in RADCHECK, nothing happens, I mean that they don't work.
Is there something special that I got to do to get them work.
another thing I've wanted to ask a
> > Hi,
> > I'm trying to use Simultaneous-Use parameter and in users file I have
the
> > only line:
> >
> > DEFAULT Simultaneous-Use := 1, Auth-Type := SQL
> >
> >
> > anyway it doesn't work. I've enabled the debug option in checkrad.pl but
> > this script, obviously, i
I've found the problem:
it's because this sql_free_result() function called by sql_finish_query in
sql_oracle.c file. I've comment it out and it works now.
- Original Message -
From: "victor" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday
Hi,
I'm trying to use Simultaneous-Use parameter and in users file I have the
only line:
DEFAULT Simultaneous-Use := 1, Auth-Type := SQL
anyway it doesn't work. I've enabled the debug option in checkrad.pl but
this script, obviously, is never called by radius (because i
Hi,
I have the following problem:
When my user disconnects from the client the radius server exits on SIGSEGV.
then I noticed that if I start the radius server with radiusd -xx and
hit ctrl-c the last child also exits on signal (11) (all other exits on
signal (2)).
The other thing is that I
Hi all,
I'm using freeradius with oracle db, and after a long fight I've succeeded
to run it.
The latest problem I have is that when the user disconnects from the client
radius server exits.
Here are the lines just before radiusd dies:
...
sql_escape in: 'radius'
sql_escape out: 'radius
The patch isn't working, but i tried to move the line
(inst->module->sql_finish_select_query)(sqlsocket, inst->config);
in rlm_sql.c after all checks are done. It's now look like:
...
release_and_return:
(inst->module->sql_finish_select_query)(sqlsocket, inst->config);
sql_r
After many tries to authenticate some user with freeradius using oracle 8i,
I've found out the problem with the garbage in row[0] and row[1] (in
rlm_sql). Actually when radius server wakes up in 6 sec row[1] is ok for the
next request (as is for the first one).
I've noticed also that this two vari
can somebody tell me - which version of oracle
server, freeradius is write for, or with exactly what version of oracle
OCI I must compile it?
thanks in
advance.
Hi all,
First of all I've wanted to ask, if somebody managed to authenticate
somebody through freeradius with oracle?
Well now, the steps that I've followed were:
1. create some user in my linux box an set ORACLE_HOME and LD_LIBRARY_PATH
as they were in the oracle user (I have installed oracle9i a
On Sun, Aug 19, 2001 at 12:04:54PM +0600, Nimal Ratnayake wrote:
>
> Hi,
>
> I am using Freeradius 0.2 on FreeBSD 4.3 (i386).
>
> I have some users defined in another file called users.slip. My users
> file looks like:
>
> $INCLUDE users.slip
> DEFAULT Auth-Type := System
> Fall-Throug
Hi all,
I'm trying to use freeradius-0.2 with oracle 8.1.7 database.
well my problem is as follows:
first I insert some user in RADCHECK table with it's password, and then try
to authenticate this user with radius server - it sends access_reject. When
I start to debug what is it doing I found out
59 matches
Mail list logo