Alan DeKok schrieb:
Norbert Wegener wrote:
That configuration can be added manually, by doing internal proxying
to the virtual server.
Will this also be possible, when freeradius gets its information out of
a mysql database?
Of course!
The only place to modify addre
One more question..
How to support these attributes ...Disc-Cause-Ext, PPP-Disconnect-Cause. Are
they supported in freeradius version 1.1.6?
Do i need to import any dictionary files if this version doesn't supports?
PLease kindly give suggestions...
Regards,
Ramesh.
On Thu, Jan 8, 2009 at 7:36
Hi,
Another approach you may wish to try is using the hotspot firmware on the
hotspot router to help you in conjunction with the freeradius server.
Coovachilli seems to have a solution, based on freeradius, jradius and
coovachilli (maintained branch of chillispot, as I understand). Have a look
her
Alan DeKok wrote:
Johan Meiring wrote:
Any idea when?
There is no defined time frame.
What is generating the CoA packets?
It will also be freeradius (on a different machine), the actual radius
server.
In the short term, alternatives are things like shell scripts.
Looking at the s
Norbert Wegener wrote:
>> That configuration can be added manually, by doing internal proxying
>> to the virtual server.
>>
> Will this also be possible, when freeradius gets its information out of
> a mysql database?
Of course!
> The only place to modify addresses I found is the preproxy_
Christopher Byrd wrote:
> What I am looking for a way to replace open, clear text WiFi at public
> hotspots (and possibly newly installed home WiFi routers) with
> something more secure.
This is network layer security.
> That's where WPA-Enterprise comes in, with it's
> support for 802.1x and
>Will this also be possible, when freeradius gets its information out of
>a mysql database?
>The only place to modify addresses I found is the preproxy_users file,
>which seems to be used by the rlm_files module only.
>
You can change server in authorize too.
Ivan Kalik
Kalik Informatika ISP
-
L
Alan DeKok schrieb:
Norbert Wegener wrote:
freeradius 2.1.1, configured to use multiple virtual servers, seems to
select the server to use depending on the host sending the request, not
depending on the NAS-IP-Address in the request.
Yes. See raddb/sites-available/README. When a
>>> If i have only one Called-Station-Id in the check pairs line, i get the
>>> Access-Accept with the reply data.
>>>
>>> But since one route can have a lot of numbers i need to be able to have
>>> several Called-Station-Id Entrys. From the description of the checkval
>>> attribute it appeared to
>I use FreeRadius for authenticate my IPSEC VPN User on a Cisco ASA.
>
>I search to know if it's possible:
>
>- Get Accounting for know:
> Login connection Start
> Login stop and time connected
> and if possible the number of Ko used
>
Yes. You have example configurati
>While WPA and WPA2 does provide for
>data-link encryption, it needs keying material to encrypt the
>communication. It can use a pre-shared key (PSK) for this purpose,
>but this has the drawbacks of communicating the key to the user and
>configuration on the end users part.
So they don't want PSK
Alan DeKok schrieb:
Tobias Wolf wrote:
i am using FreeRadius 1.1.3 and want to use it for Call Routing.
Upgrade to 2.1.3.
I think i will do this ;)
If i have only one Called-Station-Id in the check pairs line, i get the
Access-Accept with the reply data.
But since one route can have a
Hi,
Luciano Afranllie schrieb:
Some questions:
SIP proxies are not making authentication, the authentication is being
done only by B2BUA?
For granting access you don't care if the caller is authorized to make
the call, you only care if destination is valid?
This is correct. All incoming voip
Hi
I use FreeRadius for authenticate my IPSEC VPN User on a Cisco ASA.
I search to know if it's possible:
- Get Accounting for know:
Login connection Start
Login stop and time connected
and if possible the number of Ko used
- Use FreeRadius for IP Pool:
In trying to be brief for the list, I realize now that I
oversimplified my question.
What I am looking for a way to replace open, clear text WiFi at public
hotspots (and possibly newly installed home WiFi routers) with
something more secure. As you know, open WiFi presents security risks
to the u
On Thu, Jan 8, 2009 at 1:28 PM, Alan DeKok wrote:
> Johan Meiring wrote:
>> Any idea when?
>
> There is no defined time frame.
>
>>> What is generating the CoA packets?
>>>
>>
>> It will also be freeradius (on a different machine), the actual radius
>> server.
>
> In the short term, alternativ
Norbert Wegener wrote:
> freeradius 2.1.1, configured to use multiple virtual servers, seems to
> select the server to use depending on the host sending the request, not
> depending on the NAS-IP-Address in the request.
Yes. See raddb/sites-available/README. When a client is tied to a
virtu
Johan Meiring wrote:
> Any idea when?
There is no defined time frame.
>> What is generating the CoA packets?
>>
>
> It will also be freeradius (on a different machine), the actual radius
> server.
In the short term, alternatives are things like shell scripts.
> Looking at the source, I s
freeradius 2.1.1, configured to use multiple virtual servers, seems to
select the server to use depending on the host sending the request, not
depending on the NAS-IP-Address in the request.
When using radtest I get:
norb...@suse:~$ radtest 0002 0002 psucoll 0 secret dummy
it of radius -X
-
radius/radacct/accounting-20090108
expand: %t -> Thu Jan 8 16:41:57 2009
++[detail] returns ok
Invalid Accounting Packet
++[perl] returns invalid
} # server amobia_hotspot
Unknown packet type 40
[event.c:1691] Unknown packet type
--
Johan Meiring wrote:
> The first idea I came up with was to try and get freeradius to receive
> the packet, then using rlm_perl do whatever I want after examining the
> packet.
Unfortunately, FreeRADIUS doesn't currently receive CoA packets. This
functionality is expected to be added this year.
Hi,
This might be slightly off topic, but hoping I could get a pointer here.
I am trying to use an openvpn talking to radius.
I want the openvpn server to be able to receive a COA/DISCONNECT packet.
The first idea I came up with was to try and get freeradius to receive
the packet, then using r
Thank you.
On Thu, Jan 8, 2009 at 7:23 PM, wrote:
> >How to start supporting Tunnel attributes for freeradius vers 1.1.6. Any
> >document references??
>
> No documentation. They are supported just like any other attribute.
>
> >Which will be the starting point for this. Do i need to change
> con
On Wed, Jan 7, 2009 at 11:51 AM, Tobias Wolf wrote:
> Hello,
>
> i am using FreeRadius 1.1.3 and want to use it for Call Routing.
>
> The Sippy B2BUA will send AAA Requests to RADIUS and i want the routing
> based on the Called-Station-Id Attribute.
>
> For the beginning i would like to configure
ramesh p wrote:
> How to start supporting Tunnel attributes for freeradius vers 1.1.6. Any
> document references??
They are just normal attributes like any other.
> Which will be the starting point for this. Do i need to change
> configuration of mysql.conf file? Or directly creating database h
>How to start supporting Tunnel attributes for freeradius vers 1.1.6. Any
>document references??
No documentation. They are supported just like any other attribute.
>Which will be the starting point for this. Do i need to change configuration
>of mysql.conf file? Or directly creating database hel
How to start supporting Tunnel attributes for freeradius vers 1.1.6. Any
document references??
Which will be the starting point for this. Do i need to change configuration
of mysql.conf file? Or directly creating database helps?
some of the attributes to be highlighted..
Tunnel Type, Tunnel-Server-
Tobias Wolf wrote:
> i am using FreeRadius 1.1.3 and want to use it for Call Routing.
Upgrade to 2.1.3.
> If i have only one Called-Station-Id in the check pairs line, i get the
> Access-Accept with the reply data.
>
> But since one route can have a lot of numbers i need to be able to have
> s
>This may sound like a strange request, but I'd like to know if it is
>possible to use FreeRADIUS to perform EAP-TLS without asking for a
>client certificate. The purpose is to allow for a secure connection
>to an access point without client authentication.
EAP has nothing to do with "secure conn
>Ok, I have upgraded to Freeradius version 2.1.3 (following the
>suggestion above). I have configured and gotten everything to work
>except for the domain name stripping at the front of the username (eg:
>HTN/josh). If I dont supply the domain name, authentication succeeds
>perfectly. I am still ge
please unscribe from list
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
31 matches
Mail list logo