On Wed 20 Sep 2006 05:49, Guilherme Franco wrote:
I need to thank you again and congratulate you guys for such a great
support.
You're welcome. Thanks for helping us make FreeRADIUS better :-)
Question: Even with freeradius-snapshot-20060920.tar.gz I will need to
use ./configure
do you have an access-list attached on vty lines?
Jean-Francois Fortin wrote:
The radius server only has one interface and we do see the reply being
sent by the server to the switch. An ip has been set to VLAN 1 and the
radius server is part of that vlan. Switch ip is 10.9.19.5 and server
ip
Hi,
We are currently using
freeradius with users file configuration for our Wireless system, authenticating
through ldap and rlm_eap which is working fine, but wed like to use a
sql database to store login/password for guest accounts. This seems to us the
easiest way to
Hi,
firstly, we are using Freeradius for all kind of authentications - and
It works very good!! - Good Job to all of you.
But, lately we have some EAP-Problems mostly with windows-clients.
If a user authenticated correctly, after some time he gets disconnected
and tries to reauthenticate,
I seem to have a conceptual misunderstanding of the radcheck and
radreply tables - and all my googling has given me nothing solid to
correct myself on.
Can someone explain the difference of the 2 and what their purpose in
the system is.
My understanding it the radcheck is used to decide
On Wed 20 Sep 2006 11:21, Benoît Bianchi wrote:
Hi,
We are currently using freeradius with users file configuration
for our Wireless system, authenticating through ldap and rlm_eap which is
working fine, but wed like to use a sql database to store login/password
for guest
Hi!
I have followed this excellent tutorial: http://homepages.lu/charlesschwartz/radius/freeRadius_AD_tutorial.pdf and it works perfect!!
I have checked the option automatically use my windows logon name and password... on my XP Clients, but only users who has been logged in before can log
With modern
operating systems we have various server task scheduling options available to
use.
We can either use
OSes modified to provide soft real-time such as versions of Linux. We can also
ask the task schedulers to give certain processes either higher priority or to
give
On Wed 20 Sep 2006 14:09, Tariq Rashid wrote:
With modern operating systems we have various server task scheduling
options available to use.
We can either use OSes modified to provide soft real-time such as versions
of Linux. We can also ask the task schedulers to give certain processes
On 9/20/06, Florian Prester [EMAIL PROTECTED] wrote:
Also I have some questions about eap at all. How should it work
correctly. because I see up to 10 Authentication-Requests until the
client is authenticated correctly. For example the client wants to do
EAP-PEAP (Windows-client), but the radius
yes - realtime scheduling won't be of too much help for throughput-bound
services buy may improve the performance characteristics of latency-bound
services, especially in small size transaction services.
consider clusters of proxying freeradius - no database backend - these servers
merely
You should be able to do this through the users file:
...
Just change the check and reply items where necessary.
If you don't expect to use the NetSensory huntgroup after
these lines, you may want to add the following after all
users file entries related to the NetSensory huntrgroup.
I
Tariq Rashid [EMAIL PROTECTED] wrote:
consider clusters of proxying freeradius - no database backend - these
servers merely proxy radius requests onto other servers (possibly other
organisations)... would real-time scheduling improve the jitter at this
layer which sees large numbers of
Artur Hayne [EMAIL PROTECTED] wrote:
The freeradius is comunicate with the IAS through a proxy, but dont
authenticate.
The windows show me this error:
Event type: Error
Source: IAS
A malformed request was received from client . The data is the packet.
IAS doesn't implement
Hello,
Unfortunately, even with freeradius-snapshot-20060920.tar.gz and
using the ./configure --with-modules=rlm_sqlippool option, the
module did not install.
I needed again, to compile it manually from
freeradius-snapshot-20060920/src/modules/rlm_sqlippool/
And then, the same problem
You should be able to do this through the users file:
...
Just change the check and reply items where necessary.
If you don't expect to use the NetSensory huntgroup after
these lines, you may want to add the following after all
users file entries related to the NetSensory huntrgroup.
HI,
Please, this is a very important problem that is affecting thousands
of customers of mine:
I have 2 realms for send proxy requests (foo.com and bar.net)
If the proxy server foo.com goes down (for whatever reason) this happens:
rad_recv: Access-Request packet from host 192.168.1.1 port
We have a freeradius server working and we want it to forward all accounting
packets to another server. I seems to do this for all accounts that have
realm. But anyone who logs in with just a username it does not get proxied.
I can't seem to find anyway to specify how to handle non realm users.
Guilherme Franco [EMAIL PROTECTED] wrote:
If the proxy server foo.com goes down (for whatever reason) this happens:
...
Sending duplicate proxied request to home server foo.com port 1645 - ID: 16
Assertion failed in listen.c, line 558
Are you sure you're not HUP'ing the server? I asked that
Sorry Mr. Alan, for not answering the HUP question before.
No, I'm not HUP'ing the server.
The server is a minimal RHEL AS 4 r3 installation, only with gcc added.
Nothing installed except freeradius-snapshot-20060920.
Is there any other way to generate core dumps without reinstalling
In the tuning guide, where it states Tune the num_sql_socks to be larger than
the number
of simultaneous authentication/accounting requests does this mean if I have
6700 user
accounts, I would want to set the num_sql_socks to be larger than that since it
is
possible that all will try to connect
Hi,
Nothing installed except freeradius-snapshot-20060920.
critical service for thousands of users and you're using
a developmental snapshot version? What about using
a standard release, eg 1.1.3 ?
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello,
I have a freeradius 1.0.X server setup with ppp and pptp using a mysql
DB for user authentication.
Here I assign static IP's and users to groups. We wish to use rlm_perl
instead of the sql module so we can authenticate the users against a in
house application.
I have build
Hi,
In the tuning guide, where it states Tune the num_sql_socks to be larger
than the number
of simultaneous authentication/accounting requests does this mean if I have
6700 user
accounts, I would want to set the num_sql_socks to be larger than that since
it is
possible that all will try
Hello,
It seems that it is not using rlm_perl for authentication. I would
assume that this is because according the document I was following, it
had me add:
Auth-Type Perl {
perl
}
To the authentication section, which means if the Auth-Type is set to
perl then using
back here to ask.
Thanks a lot!
On 9/20/06, Tuyan Ozipek [EMAIL PROTECTED] wrote:
On Wed, 2006-09-20 at 14:14 -0300, Guilherme Franco wrote:
Hello,
Unfortunately, even with freeradius-snapshot-20060920.tar.gz and
using the ./configure --with-modules=rlm_sqlippool option, the
module did
one.
Thanks.
On 9/20/06, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote:
Hi,
Nothing installed except freeradius-snapshot-20060920.
critical service for thousands of users and you're using
a developmental snapshot version? What about using
a standard release, eg 1.1.3 ?
alan
-
List info
Hello,
Does anyone have a working rlm_perl module I can test with ? I have
just started out and at this point can not determine if it is my perl
module that is having a problem or my radius configuration.
--
Michael Gale
Red Hat Certified Engineer
Network Administrator
Pason Systems Corp.
Michael Gale [EMAIL PROTECTED] wrote:
To the authentication section, which means if the Auth-Type is set to
perl then using the module perl. However I think that since the client
or server is setting the auth type to MS-CHAP since that is what the
client is using, it is trying to use the
On Wed 20 Sep 2006 23:32, Guilherme Franco wrote:
Thanks, that's ok now.
I removed the block as you said and now it shows the queries. I had
added those block earlier because I've seen this configuration from
another post as a working sqlippool configuration...
OK. Well, if you had just used
Hello,
I think I used some of the wrong terms before ...
So currently we have a freeradius server with the default setup except I
have enabled the SQL module. I have then placed users in a mysql db
according to the schema.
In the DB I setup static IP's for the users.
Now the
Michael Gale [EMAIL PROTECTED] wrote:
I would like to move away from the SQL DB, since all the users exist in
another place. So I was hoping to use the rlm_perl module to check the
username and passwords of the people connecting and if valid assign them
a static IP.
And again, my
Hey,
I do not want to write MS-CHAP is perl, I guess I do not understand how
to add stuff to the RAD_CHECK list.
I will look into this, is that how the SQL module works since the
passwords are currently in clear text in the DB ?
Michael
Alan DeKok wrote:
Michael Gale [EMAIL PROTECTED]
Never mind ... I should of paid closer attention to the wiki doc.
Michael
Alan DeKok wrote:
Michael Gale [EMAIL PROTECTED] wrote:
I would like to move away from the SQL DB, since all the users exist in
another place. So I was hoping to use the rlm_perl module to check the
username and
Michael Gale wrote:
Hello,
Does anyone have a working rlm_perl module I can test with ? I have
just started out and at this point can not determine if it is my perl
module that is having a problem or my radius configuration.
An example comes with the freeradius source code in
Hello, some time is so hard to understand the mean of everything, but I
can't find the mean and why is so important, example: The doc toll about how
config NAS, Proxy, etc, but I can't understand what is that and why I must
config that...Please... exist any reference?
Thanks any way...
-
List
Thanks,
I used that broken config because it was stated in freeradius user
list as Sucsessfully installed rlm_sqlippool from Alfred H. Dahl in
Tue, 8 Feb 2005 20:58:34 +0100.
I did read the docs.
I only didn't know how could I specify 192.168.1.1/28, if I do not
have inet, but that's ok.
Hello, some time is so hard to understand the mean of everything, but I
can't find the mean and why is so important, example: The doc toll about how
config NAS, Proxy, etc, but I can't understand what is that and why I must
config that...Please... exist any reference?
Thanks any way...
-
Hello!!
I want to get FreeRadius 2.0.0 pre version.
$ cvs -d :pserver:[EMAIL PROTECTED]:/source checkout module-name
what is module-name??
☞ 카트라이더가 지겹다면? 이제는 인라인 레이싱게임 Xplay! ☜
I have install freeradius and linux , but not yet also succeed. user of in windows 2000 ( LDAP )
as which/such ?
helping my sending mail is settinganya?
thanks
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Does the latest version (1.1.3) have the experimental modules that you had to
compile with in the old version 1.03
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On Thu 21 Sep 2006 03:03, Guilherme Franco wrote:
Thanks,
I used that broken config because it was stated in freeradius user
list as Sucsessfully installed rlm_sqlippool from Alfred H. Dahl in
Tue, 8 Feb 2005 20:58:34 +0100.
At that time rlm_sqlippool did not exist as part of FreeRADIUS. You
On Wed 20 Sep 2006 20:37, Abel Monzon wrote:
Hello, some time is so hard to understand the mean of everything, but I
can't find the mean and why is so important, example: The doc toll about
how config NAS
http://wiki.freeradius.org/index.php/NAS
, Proxy
On Thu 21 Sep 2006 04:50, LeRoy DeVries wrote:
Does the latest version (1.1.3) have the experimental modules that you had
to compile with in the old version 1.03
I suggest you use my SUSE packages:
http://software.opensuse.org/download/network:/aaa/
Which modules are you looking for? If needed
Just as a follow up, this has solved my issue.
Alan DeKok wrote:
Robert Myers [EMAIL PROTECTED] wrote:
I got the following when running radiusd -X with openssl .0.9.7c on
gentoo, radius 1.1.1-r1
1.1.3 was released a few weeks go. Try it.
Alan DeKok.
--
45 matches
Mail list logo