Hi All,
I need some assistance with assigning IP addresses from a pool to certain
clients.
The way I have it setup is doing AUTH through a mysql database, this all
works briliantly. Now currently my NAS Server is actually giving out the IP
addresses to the clients, I can overwrite it using
--On Wednesday, 26 July 2006 18:39 -0700 Thai Duong [EMAIL PROTECTED]
wrote:
--- Josh Howlett [EMAIL PROTECTED] wrote:
Is there a RADIUS or EAP timer set on the switch?
If it's set too low, the switch might be ignoring
the Access-
Challenge from the server.
best regards, josh.
Yup
I have came thru a number of references which states that LDAP are
specialised database and optimized for read.
Would that make it a good idea to authenticate thru LDAP *but* the
accounting is handled thru mySQL ? Anybody have done this or am I
talking nonsense here?
(am 2 days old with RADIUS)
The alternative
query is there because if it fails to update the record (lets say the start
record never got logged) then it inserts a whole new record with both a start
and a stop.
From:
[EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
On Behalf Of ravi
Bubuk Gabrok wrote:
I have came thru a number of references which states that LDAP are
specialised database and optimized for read.
You should setup the system you're the most familiar with. Unless
you've *huge* RADIUS traffic on your site (more than 500 req/s) you
won't notice the performance
I've noticed very strange behavior of freeradius. After processing of
'digest' message I invoke 'authorize_reply_query'
that returns list of values in SIP-AVP parameter
In log it looks like this
[cut]
radius_xlat: 'SELECT * FROM
test.authorize_reply('SIP','[EMAIL PROTECTED]',
'sip:[EMAIL
On 7/27/06, Damon McDougald [EMAIL PROTECTED] wrote:
I have gotten this to work with ntradping and
radtest...just not windows ce client. It is an issue
with mschapv2 and ntlmv2.
As radtest doesn't know anything about peap (and a quick glance at
Novell's left me with the impression that
Quoting [EMAIL PROTECTED]:
I've noticed very strange behavior of freeradius. After processing of
'digest' message I invoke 'authorize_reply_query'
that returns list of values in SIP-AVP parameter
In log it looks like this
Well, probably I've found reason of bug :)
rlm_sql (sql): User [EMAIL
[EMAIL PROTECTED] wrote:
But still question remains, why authorize_reply_group cannot return several
values in the same attribute.
It can. You just have to set the operator correctly. See the
rlm_sql documentation.
Alan DeKok.
--
http://deployingradius.com - The web site of the
Duane Cox [EMAIL PROTECTED] wrote:
Wouldn't it be possible to have freeradius call different sql sections
depending on other attributes.
Yes.
But I get this error... Failed to link to module 'rlm_sql1': rlm_sql1.so:
cannot open shared object file: No such file or directory
See the
Hi,What the best FreeRadius with MYSQL databases FrontEnd for a Wireless ISP (Comercial, Freeware ou Open Source)?TksWagner
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Try FreeSide www.sisd.com/freeside
Jory Privett
WCCS
- Original Message -
From:
Wagner
To: freeradius-users@lists.freeradius.org
Sent: Thursday, July 27, 2006 12:35
PM
Subject: Freeradius FrontEmd
Hi,What the best FreeRadius with MYSQL databases FrontEnd
Hello,
My log is full of this kind of errors:
Wed Jul 26 02:55:54 2006 : Error:
Discarding duplicate request from client APMajur:2048 - ID: 27 due to
unfinished request 11$
Wed Jul 26 02:56:16 2006 : Error:
Discarding duplicate request from client APMajur:2048 - ID: 28 due to
Aleksandar Stojilkovic wrote:
Hello,
My log is full of this kind of errors:
Owww, my eyes! Please don't post to mailing lists using HTML, and do
everyone a favor, get rid off that yellow dot background from your email
template.
-
List info/subscribe/unsubscribe? See
Khoa Nguyen [EMAIL PROTECTED] wrote:
The radius message from a client has Event-Timestamp displayed as
local EDT time, but when Radiusd proccesses the message, the
Event-Timestamp was converted to UTC time (as shown in the radacct
detail log files). How can I disable this? I checked the
Ok, I'm new one to this...
And O Yellow dots are matter of personal taste... And ow, do
everyone a favor - keep your opinion for yourself... I am trying to get some
help here
-Original Message-
From:
[EMAIL PROTECTED]
org
[mailto:[EMAIL PROTECTED]
eradius.org]
Aleksandar Stojilkovic wrote:
Ok, I'm new one to this...
And O Yellow dots are matter of personal taste... And ow, do
everyone a favor - keep your opinion for yourself... I am trying to get some
help here
Follow the rules and you are more likely to get help:
Le Thu, Jul 27, 2006 at 09:30:06PM +0200, Aleksandar Stojilkovic ecrivait:
Ok, I'm new one to this...
And O Yellow dots are matter of personal taste... And ow, do
everyone a favor - keep your opinion for yourself... I am trying to get some
help here
And if you really want
Hi
My Freeradius has to receive and process digest and non-digest message but
when freeradius receives and process nondigest message (I have only one
such message) I've got message:
ERROR: You set 'Auth-Type = Digest' for a request that did not contain any
digest attributes!
Hello,
My log is full of this kind of errors:
Wed Jul 26 02:55:54 2006 : Error: Discarding duplicate request from client
APMajur:2048 - ID: 27 due to unfinished request 11$
Wed Jul 26 02:56:16 2006 : Error: Discarding duplicate request from client
APMajur:2048 - ID: 28 due to unfinished request
GlobeInPhotos wrote:
Hi
My Freeradius has to receive and process digest and non-digest message but
when freeradius receives and process nondigest message (I have only one
such message) I've got message:
ERROR: You set 'Auth-Type = Digest' for a request that did not contain any
digest
Aleksandar Stojilkovic wrote:
Hello,
My log is full of this kind of errors:
Wed Jul 26 02:55:54 2006 : Error: Discarding duplicate request from
client APMajur:2048 - ID: 27 due to unfinished request 11$
Don't post to the list in HTML. Awful HTML at that...
This is normally caused
Hi,
I'm trying to use rlm_dbm for authorization, and discovered that the
rlm_dbm_parser program won't allow an entry to have an empty
check-items list. You can't have, for instance:
foo ;
;
or
foo
;
You must have
foo some_junk == here
;
if foo is to be added
Aleksandar Stojilkovic wrote:
Hello,
My log is full of this kind of errors:
Wed Jul 26 02:55:54 2006 : Error: Discarding duplicate request from
client APMajur:2048 - ID: 27 due to unfinished request 11$
Don't post to the list in HTML. Awful HTML at that...
GlobeInPhotos [EMAIL PROTECTED] wrote:
Sorry I wrote wrong. I do not set Auth-Type, simply in config I have set
auth. Digest
What does that mean?
but beside digest message radius receives non digest message
that I have to handle. I do not know why radius claims that it is digest
So the conclusion is that you set Auth-Type = Digest somewhere.
Probably OpenSer which is a sender set Auth-Type=Digest in request.
By the way is it possible to make workaround for such situation to be honest
I do not need authorize message but only I have to send some values to
OpenSer -
GlobeInPhotos [EMAIL PROTECTED] wrote:
So the conclusion is that you set Auth-Type = Digest somewhere.
Probably OpenSer which is a sender set Auth-Type=Digest in request.
No. It is IMPOSSIBLE for Auth-Type to be in a RADIUS packet.
Go back and read the debug log. Check your
Go back and read the debug log. Check your configuration. YOU set
Auth-Type in YOUR configuration.
Are you talking about radius config?
In my config I have something like this.
authorize {
cut
Digest
cut
}
I can send
Stop arguing, and go check it.
For sure I'm not arguing but
I have also this in 'user' file
DEFAULT Auth-Type := Digest
Michal
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
g] On Behalf Of Alan DeKok
Sent: Friday, July 28, 2006 12:39 AM
To: FreeRadius users mailing list
Subject: Re: How to handle non digest messeg if
Quoting Nicolas Baradakis [EMAIL PROTECTED]:
This is common to use OpenLDAP for auth and MySQL for acct.
http://freeradius.org/radiusd/doc/ldap_howto.txt
In that howto on the 2nd para of OVERVIEW:
The radius servers will be accepting Radius auth packets and Radius
acct packets. The
Roger Thomas [EMAIL PROTECTED] wrote:
Question: My setup is rather simple. Just one server at the moment
that houses the LDAP, RADIUS and mySQL server. Would it be possible
to make mySQL accept the acct packets by default and thus making no
use of radrelay altogether?
Yes. radrelay is used
31 matches
Mail list logo