hello
i have do that :
Proxy freeradius -- Primary Freeradius
|
-- Secondary Freeradius
i want to put on the same pc primary radius and proxy freeradius ?
is it possible ?
if yes, how i can do that please ?
My first idea was to run two freeradius
All,
I read the HowTos on http://www.frontios.com/freeradius.html and the FAQ,
but couldn't find any infomation, on how to put Request Attributes/Values
into the Reply, using MySQL instaed of users file.
Is there an example to read?
Thanks.
Stefan
-Original Message-
From: [EMAIL
Hello list,
i want to set up a pix 525 with Cisco PIX Firewall Version 6.3(4) to
authenticate vpn-users against a freebsd-radius.
This step already works fine, the users get authenticated.
Now we want to give the user via radius an ip-address, but this doesnt
work.
At this moment i only can
Hi.
I'm a student of the Polytechnic Instituite of Tomar, and i am
working in one project with PEAP authentication over 802.11b wireless
LANS. One of my cenarios to test the authentication, result in one error
reported by the RADIUS server (in this case FreeRadius 1.0.1). I don't
know how i
Hi,
I am trying to assign different VLANs based on realms.
I use rlm_attr_filter and attrs file to acomplish
this.
I have done the following setting in attrs file
labtest.de
Tunnel-Type:1 := VLAN
Tunnel-Medium-Type:1 := IEEE-802
Tunnel-Private-Group-Id:1 := labtest
Hi,
I'm wondering whether we can exclude certain IP
addresses from an IP POOL to be assigned to the client
?
for example, the ippool in radiusd.conf has been
defined as following:
range-start = 192.168.167.90
range-stop = 192.168.167.100
This means that IP address between 192.168.167.90 to
does someone figured this error out?
radiusd.conf[1191] Failed to link to module 'rlm_expr':
/usr/local/lib/rlm_expr.a: invalid ELF header
After commenting that expr module in the radiusd.conf, got the following:
ERROR: Cannot find a configuration entry for module expr.
Any suggestions on this?
Look at
http://campuswide.cofc.edu/PEAP%20with%20Windows%20XP%20Service%20Pack%202.pdf
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Yes.
On Tue, 18 Jan 2005 12:14:17 +1100, Paul Hampson [EMAIL PROTECTED] wrote:
On Mon, Jan 17, 2005 at 09:49:48AM -0600, Justin Guidroz wrote:
I'm running Freeradius on the same server that also serves as my LDAP
server, DHCP server, and DNS server, and I have had no problems
getting DHCP
Hi,
I would like to authenticate poptop users in /etc/passwd ..is it
possible?
[ ] 's
Bruno Ricci
[]'s
Bruno Ricci
smime.p7s
Description: S/MIME Cryptographic Signature
Hi Everyone
I'm still struggling with radwtmp. I wouldn't worry so much about it but
it's critical for my business. Hopefully someone has seen this before, as
Googling isn't being real productive.
On Redhat ES 3, Freeradius 1.0.1 is producing the radwtmp file, but as
best I can tell, isn't
I would think so. You'll need them to have different installation
directories. And of course they need to be configured to use different
ports. One should use 1812, the other 1645 (i think)
On Jan 18, 2005, at 7:04 AM, Nans Delrieu wrote:
hello, i want to run two daemon (sercice) freeradius on
Hi,
I have figured out the real problem was. Actually the attr_filternot considerall other a/v pairs from proxy request and just builts a new proxy reply containing only the tunnel attributes I have set in attrs file.
Now the question arises if it is possible to let attr_filter add required
Paulo Alexandre Caceres Ferreira [EMAIL PROTECTED] wrote:
radiusd: relocation error: /usr/local/lib/rlm_eap_tls-1.0.1.so: undefined
symbol: SSL_set_msg_callback
You are using an old version of OpenSSL. Use a newer version.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
Lara Adianto [EMAIL PROTECTED] wrote:
I'm wondering whether we can exclude certain IP
addresses from an IP POOL to be assigned to the client
No, sorry.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Lara Adianto [EMAIL PROTECTED] wrote:
Does it mean FreeRadius read the Login-Time attribute in users file,
then calculate the time left based on current time and set the value
in the session-timeout attribute ?
Yes, that's what the text says.
If that's the case what happens if the users
I'm attempting to do a global dial-up solution and they're requiring
me to use the ascend-data-filter to open up outbound port 25. Simple
enough.
I've configured my users file to include the attributes they
provided and it seems to be accepting the data. However when I query
the radius with
This one is a bit above my head, trying to set up accelleration and our
vendor has advised that I need to do the following...
your radius must be setup with the custom authentication reply. Defining
this attribute in your dictionary may vary depending on your radius
software. The attribute is:
Hi! I have configured my wlan in this way:
ethernet card- - access point client - - Authenticator - - Freeradius
Server 1.0.0-1
I am trying to validate with EAP-TLS, but the requests never reach the
server.
When I sniff on the client side(Windows 2000) with windump, I have the
following:
On Tue, 18 Jan 2005, Scott Baker wrote:
I'm attempting to do a global dial-up solution and they're requiring me to
use the ascend-data-filter to open up outbound port 25. Simple enough.
I've configured my users file to include the attributes they provided and it
seems to be accepting the data.
Hi all,
I've well read the doc/rlm_expiration and I applied it but it doesn't
work anymore...
So why could I solve it ?
I tried all of those syntaxes :
Expiration := 2004-01-01
Expiration := 01-01-2004
Expiration := 1 Jan 2004
Expiration := 1 January 2004
Anyone ? Any idea ?
-
List
On Tue, 18 Jan 2005, EROS wrote:
Hi all,
I've well read the doc/rlm_expiration and I applied it but it doesn't
work anymore...
So why could I solve it ?
I tried all of those syntaxes :
Expiration := 2004-01-01
Expiration := 01-01-2004
Expiration := 1 Jan 2004
Expiration := 1 January 2004
You don't
Mike Cisar [EMAIL PROTECTED] wrote:
How would I set that up in Freeradius... would I create a
dictionary.slipstream containing the following???
VENDOR slipstream7000
BEGIN-VENDOR slipstream
ATTRIBUTESlipstream-Auth 1 string
END-VENDOR slipstream
Pretty much, yes.
It's only one attribute X-Ascend-Data-Filter and it's defined just
fine. I turned on debugging mode and this is what I get. It doesn't
really tell me what I didn't already know. There has to be some
configuration error in my users file? I'm just not sure where to
start looking.
You need a space in the destination port value line.
i.e.
X-Ascend-Data-Filter += ip in forward tcp est,
X-Ascend-Data-Filter += ip in forward dstip 65.182.224.0/26,
X-Ascend-Data-Filter += ip in drop tcp dstport = 25,
X-Ascend-Data-Filter += ip in forward,
Yep I have tried this with and without and this is the same
In debug mode I don't see some expiration lines in log
I've compiled freeradius with experimental modules...
Is this something to do in some *.conf files ?
-Message d'origine-
De : [EMAIL PROTECTED]
[mailto:[EMAIL
Excellent! It's returning all the data I expected now! I'm still
getting that trailling 0 on the ip in forward dstip and ip in
forward.
Is that normal? Some fluke in radtest?
-
[EMAIL PROTECTED] ~]$ radtest bakers scottb localhost 10 localhost
hello,
I have a NAS witch sends an accounting request with Acct-Status-Type =
15 and the sql module says:
rlm_sql (sql): Unsupported Acct-Status-Type = 15
is it possible to send this type of requests to the sql server ?
thanks
Razvan Radu
-
List info/subscribe/unsubscribe? See
I am having problems authenticating to my freeradius server remotely. Here is
my current configuration:
SuSE 9.1 default rpm-based install and then an upgrade through YOU to
freeradius-0.9.3-106.6
Files modified:
/etc/raddb/radiusd.conf:
Around line 720:
ldap {
# server
On Mon, 17 Jan 2005, Robert Tarrall wrote:
HOWEVER - we're now accepting everyone, even when the authorize
module returns notfound. That's not what we want.
From radiusd.conf:
authorize {
preprocess
suffix
autztype ecentralldap {
ecentralldap
}
Many times I wanted a simple script to check a users
password or to see if a radius server is working.
The output of radclient and radtest need to be parsed to
figure out what you want to know.
The script I put together provides output on stdout
for simple command line use, and also uses exit
On Tue, 18 Jan 2005, Lara Adianto wrote:
Hi,
I'm wondering whether we can exclude certain IP
addresses from an IP POOL to be assigned to the client
?
for example, the ippool in radiusd.conf has been
defined as following:
range-start = 192.168.167.90
range-stop = 192.168.167.100
This means that IP
Scott Baker [EMAIL PROTECTED] wrote:
Excellent! It's returning all the data I expected now! I'm still
getting that trailling 0 on the ip in forward dstip and ip in
forward.
Is that normal? Some fluke in radtest?
It's an artifact of printing. It doesn't affect anything.
Alan DeKok.
[EMAIL PROTECTED] [EMAIL PROTECTED] wrote:
I have a NAS witch sends an accounting request with Acct-Status-Type =
15 and the sql module says:
rlm_sql (sql): Unsupported Acct-Status-Type = 15
is it possible to send this type of requests to the sql server ?
It would appear not.
What do
Excellent. I think I'm good then! Thanks for all the help everyone.
Alan DeKok wrote:
Scott Baker [EMAIL PROTECTED] wrote:
Excellent! It's returning all the data I expected now! I'm still
getting that trailling 0 on the ip in forward dstip and ip in
forward.
Is that normal? Some fluke in
35 matches
Mail list logo