Lemaster, Rob wrote:
> I revewed raddb/sites-available/default and found Post-Proxy "fail";
> Post-Proxy-Type Fail {detail}
> This appears to be to write Accounting logs locally if the remote proxy is
> down.
Yes.
> I'm not clear if this will be enabled if only ONE of the remote proxies are
T Kid82 wrote:
> First I added a files sub-section the modules section within radiusd.conf
>
> files {
> Auth-Type := Exec
> }
There is already a "files" subsection. It configures the "users"
file. You should put the "Auth-Type" entry there, instead of in
radiusd.conf.
Oh, and read th
Charlie B wrote:
> I'm really surprised at this issue. Something like this really puts me
> on the spot to have to bring up an IAS in order to deal with the
> password issue. I hate windoze but I though more than a handful of us
> would be running into this issue since I see there are a lot of
>
Hi Ivan,
I tried two variations.
First I added a files sub-section the modules section within radiusd.conf
files {
Auth-Type := Exec
}
and in the authorize section I put in
authorize {
preprocess
files
}
This is what I saw in the radius logs
User-Name = "tkid"
User-Passw
Thanks Alan,
I'm really surprised at this issue. Something like this really puts me on
the spot to have to bring up an IAS in order to deal with the password
issue. I hate windoze but I though more than a handful of us would be
running into this issue since I see there are a lot of freeradius +
I revewed raddb/sites-available/default and found Post-Proxy "fail";
Post-Proxy-Type Fail {detail}
This appears to be to write Accounting logs locally if the remote proxy is
down.
I'm not clear if this will be enabled if only ONE of the remote proxies are
down, or if ALL proxies are down. It
Hi,
> authorize {
> preprocess
> exec
> }
>
> authenticate {
> Auth-Type Exec {
> exec
> }
> }
remove all those 'exec' and replace them with 'perl', then
read experimental.conf and edit accordingly to activate
the perl module you've written. dont worry a
Add files to authorize and put DEFAULT Auth-Type := Exec in it.
Ivan Kalik
Kalik Informatika ISP
Dana 13/4/2008, "T Kid82" <[EMAIL PROTECTED]> piše:
>Hi everyone,
>
>I am trying to accomplish a very simple task using RADIUS as an
>authentication proxy.
>All I need it to do is use the username
Hi,
> That would be the magical mythical network of one mask I was talking about
> at NW. It's valid for any range of IPs and allows communication only via
> the default root.
but it only works if all your clients on the L2 layer are dumb.
any student worth their name would run eg IPX or decnet
Hi everyone,
I am trying to accomplish a very simple task using RADIUS as an
authentication proxy.
All I need it to do is use the username/password combo sent in, run a
perl script to validate those credentials and return a pass or fail.
I have my perl script setup to return all the right codes as
-ASUS-laptop(SuSE 10 and WinXP),HP-laptop(Win-Vista
only),ACER-laptop(WinXP only),HPC-workstation(SLED Novell-SuSE and
WinXP).
-Dlink DIR-635 router
-Zyxel Prestige 600 ADSL modem
-FreeRADIUS Version 1.0.4
Q: Could anybody tell me what kind of password is to be set on the
router configuration t
[EMAIL PROTECTED] wrote:
Hi,
/usr/local/etc/raddb/radiusd.conf
ippool main_pool {
# range-start,range-stop: The start and end ip
# addresses for the ip pool
range-start = 192.168.1.1
range-stop = 192.168.3.254
Hi,
> /usr/local/etc/raddb/radiusd.conf
>
> ippool main_pool {
>
> # range-start,range-stop: The start and end ip
> # addresses for the ip pool
> range-start = 192.168.1.1
> range-stop = 192.168.3.254
>
>
http://www.freeradius.org/radiusd/doc/bugs
Ivan Kalik
Kalik Informatika ISP
Dana 13/4/2008, "Joel @ Gmail" <[EMAIL PROTECTED]> piše:
>Hi Ivan,
>
>As per your mail, I have modified the subnet mask to 255.255.255.255 and below
>is other config.
>
>/usr/local/etc/raddb/radiusd.conf
>
>ipp
Hi Ivan,
As per your mail, I have modified the subnet mask to 255.255.255.255 and below
is other config.
/usr/local/etc/raddb/radiusd.conf
ippool main_pool {
# range-start,range-stop: The start and end ip
# addresses for the ip pool
ran
hi,
post the full debug log. that would help. you arent
doing something crazy in eg users file such as a plain
Access-Accept are you?
as for addresses - the laptop would get its address
via DHCP - you're running a dhcp server on that network
the client gets put on?
alan
-
List info/subscribe/un
Arran Cudbard-Bell wrote:
> New identifiers are assigned when forwarding RADIUS packets anyway (i'm
> guessing), so there's no problem with conflicts between remotely
> generated and locally generated CoA messages.
Yes.
> So in your implementation, we'll be able to fork off a CoA request on
> r
banga wrote:
> Alan it seems that this is some kind of bug.
OK. It happens only in CVS head, due to some other recent changes.
I've committed a fix.
> Do you recomend include Default and NULL in proxy.conf?
If you need them.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.f
18 matches
Mail list logo
