Difan Zhao wrote:
So radiusd -X won't show whether a check attribute was updated or not?
No. There are a LOT of things that can happen when the server runs.
It doesn't print out all of them.
It’s supposed to update the “auth-type” value but nothing is shown
whether the value has been
First, please let me wish everyone a Happy New Year in the list. I've learned
a lot in the past 12 months and have a fairly stable installation of 2.1.6 on
CentOS 5.4.
The question, I would like to ask is how can I improve on this and use a DB
List/Table to Blacklist certain IP addresses.
I am also facing the same problem - Need to blacklist range of IPs
- Original Message -
From: Neville
To: freeradius-users@lists.freeradius.org
Sent: Tuesday, January 05, 2010 11:55 AM
Subject: Reject Calling-Station-Id
First, please let me wish everyone a Happy New Year
, version of virus
signature database 4704 (20091220) __
The message was checked by ESET Smart Security.
http://www.eset.com
__ Information from ESET Smart Security, version of virus signature
database 4744 (20100105) __
The message was checked by ESET Smart Security
Charles wrote:
I am also facing the same problem -
Need to blacklist range of IPs
-
Original Message -
From:
Neville
To:
freeradius-users@lists.freeradius.org
Sent:
Tuesday, January 05, 2010 11:55 AM
Subject:
Reject Calling-Station-Id
Craig Campbell wrote:
I'm running 2.1.8 and while I have some of those messages in my logs
(~70), the radiusd process seems totally fine.
Hmm... that shouldn't be happening. But without a test case, it's
hard to track down.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
... that shouldn't be happening. But without a test case, it's
hard to track down.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
__ Information from ESET Smart Security, version of virus
signature database 4745 (20100105) __
The message
I am attempting to configure freeradius to terminate an 802.1x EAP-TTLS
authentication, but forward/proxy the user/pass to another radius server. I
can get it to standard proxy, and I can get it to function as a standalone
radius server with EAP-TTLS, but can't seem to find any good
On 1/5/2010 5:58 AM, EasyHorpak.com wrote:
Charles wrote:
I am also facing the same problem - Need to blacklist range of IPs
- Original Message -
*From:* Neville mailto:n...@itsnev.co.uk
*To:* freeradius-users@lists.freeradius.org
Hi,
I think these may be valid (more or less) messages containing a
Acct-Session-Time = 0
certainly - some NAS kit sends such things.
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I am running RHEL 5.3 and FreeRADIUS Version 2.1.8.
When I install freeradius and attempt to start it for the first time using
the /etc/init.d/radiusd start script it always fails (only right after
freeradius is installed), once i run freeradius with -X (in debug mode) it
creates all the keys and
Hi,
I am running RHEL 5.3 and FreeRADIUS Version 2.1.8.
When I install freeradius and attempt to start it for the first time using
the /etc/init.d/radiusd start script it always fails (only right after
freeradius is installed), once i run freeradius with -X (in debug mode) it
creates all
Brian Carpio wrote:
I am running RHEL 5.3 and FreeRADIUS Version 2.1.8.
When I install freeradius and attempt to start it for the first time
using the /etc/init.d/radiusd start script it always fails (only right
after freeradius is installed), once i run freeradius with -X (in debug
mode)
Alan,
Yes thanks for the reply you are correct it probably should go into the RPM
I can rewrite the RHEL rpm to do this if I knew what to do? When I simply
run radiusd -X the keys are created is there a non interactive option I
can use to create the keys for the first time such as radiusd
On 01/05/2010 03:16 PM, Alan Buxey wrote:
Hi,
I am running RHEL 5.3 and FreeRADIUS Version 2.1.8.
When I install freeradius and attempt to start it for the first time using the
/etc/init.d/radiusd start script it always fails (only right after freeradius
is installed), once i run freeradius
On 01/05/2010 03:35 PM, Brian Carpio wrote:
Alan,
Yes thanks for the reply you are correct it probably should go into the
RPM I can rewrite the RHEL rpm to do this if I knew what to do? When I
simply run radiusd -X the keys are created is there a non interactive
option I can use to create the
Hi,
2) The certificates created are *temporary* and *not* intended for
production use. As such it's always a good idea to bring this crucial
fact to the attention of the person installing the server. No better way
yeah, explain the default install of Apache HTTPD with snakeoil
Hi
Could someone already compile pam_radius_auth.so (1.3.17 or any other
version) on AIX 5? I could compile the module but pam seems to ignore
it completely. Other pam modules are working fine together with sshd.
pam.conf:
(...)
sshdaccount sufficient
On Wed, Jan 6, 2010 at 3:37 AM, John Dennis jden...@redhat.com wrote:
2) The certificates created are *temporary* and *not* intended for
production use. As such it's always a good idea to bring this crucial fact
to the attention of the person installing the server. No better way to make
them
Hi,
I have Freeradius configured using a mysql backend. I want users to be
able to connect only if their Calling-Station-Id is the same as the
attribute I specify in the radcheck table in mysql. For example:
|312|t...@internet.quimefa.cu|Calling-Station-Id | == | phonenumber
On Tue, Jan 05, 2010 at 03:37:25PM -0500, John Dennis wrote:
I am running RHEL 5.3 and FreeRADIUS Version 2.1.8.
When I install freeradius and attempt to start it for the first time using
the /etc/init.d/radiusd start script it always fails (only right after
freeradius is installed), once i
From: Arran Cudbard-Bell arran.cudbard-b...@hp.com
Subject: Re: Reject Calling-Station-Id
if (Calling-Station-Id == %{sql: SELECT mac FROM `lrc_banlist` WHERE
mac='%{Calling-Station-Id}'}) {
update reply {
Reply-Message = Hello Hello Hello
}
reject
Osmany osm...@oc.quimefa.cu escribió:
Hi,
I have Freeradius configured using a mysql backend. I want users to be
able to connect only if their Calling-Station-Id is the same as the
attribute I specify in the radcheck table in mysql. For example:
Correct me if I am wrong.
As I read from http://www.faqs.org/rfcs/rfc2139.html, when Acct-Session-Time
is zero, user who is associated with such a session has no service:
+ The accounting start packet and stop packet are sent at nearly the same
time. It may be a result of an access denial or
Hi all,
I noticed that radius.log is filled with a lot of messages as follows:
Wed Jan 6 10:54:35 2010 : Info: rlm_radutmp: NAS ggsn-add1 restarted
(Accounting-On packet seen)
Wed Jan 6 10:54:35 2010 : Error: rlm_radutmp: Error accessing file
/srv/radius/var/log/radius/radutmp: No such file or
Dinh Pham Cong wrote:
Hi all,
I noticed that radius.log is filled with a lot of messages as follows:
Wed Jan? 6 10:54:35 2010 : Info: rlm_radutmp: NAS ggsn-add1 restarted
(Accounting-On packet seen)
Wed Jan? 6 10:54:35 2010 : Error: rlm_radutmp: Error accessing file
Thanks,
I already created a file named radutmp but I still see no message there. The
message Info: rlm_radutmp: NAS ggsn-add1 restarted (Accounting-On packet
seen) appears again and again. Does it mean that NAS server restarted
continuously or it is just rlm_radutmp behavior when its message can
27 matches
Mail list logo