Hi Liran
Thanks alot, I got quite exited when I saw the "other approach", however I
don't think that it would for because if the users is using his voucher at a
Nomadix and uses lets say 100mb that won't reflect in mikrotik attribute and
vice-versa.
I will have a look at unlang.
Thanks for the h
ree...@gmail.com wrote:
> This behavior not seen when logging to files or syslog, only when set to
> stdout/stderr. So, my best guess after looking the source is that logging to
> stdout/err does not go to same processing flow as the others.
>
> I have searching for this issue but still no luck
I am aiming to get daloradius working with freeradius. I want to get
freeradius in a state of usefulness. To be honest I may have forgotten
the 'normal' state it was in when it worked using the users file. I am
having an issue with the sites-enabled file.. a matter of global
permissions. I don
On 25/05/2010 06:30, Robert Wilkinson wrote:
I feel defeated. I was able to get an access-accept result. During my
attempt to use MySQL it appears that I broke my configuration.
I am using freeradius 2.1.8 on ubuntu 10.4 server.
Here is my freeradius -X debug output:
> WARNING: Empty section.
I feel defeated. I was able to get an access-accept result. During my
attempt to use MySQL it appears that I broke my configuration.
I am using freeradius 2.1.8 on ubuntu 10.4 server.
Here is my freeradius -X debug output:
freeradius -X
FreeRADIUS Version 2.1.8, for host i486-pc-linux-gnu, buil
weiwei fang wrote:
> Now our company has bought the WiMAX products. We want to use freeradius
> as the AAA server.
It should work without a problem.
> However, the vendor told us that we need to return back the user's qos
> service level back to AGW after authenticating this user. I looked up
>
Thanks for your kindly reply.
Now our company has bought the WiMAX products. We want to use freeradius as
the AAA server.
However, the vendor told us that we need to return back the user's qos
service level back to AGW after authenticating this user. I looked up the
documents and found this attri
Hi,
All i'd like to execute an external program when receiving an
Accounting-Request.
I've try
exec ipoque {
wait = yes
program = "/bin/sh /opt/mytest %{User-Name}"
input_pairs = request
output_pairs = reply
shell_esca
The HTTPS link below did not work, however this HTTP link does.
http://koji.fedoraproject.org/koji/packageinfo?packageID=298
> -Original Message-
> From: freeradius-users-bounces+dale=top.net...@lists.freeradius.org
> [mailto:freeradius-users-bounces+dale=top.net...@lists.freeradius.org
unsubscribe Magusero09= c.diegoraffae...@gmail.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Thanks, Alan!
Gina Zhang
-Original Message-
From:
freeradius-users-bounces+gina.zhang=alcatel-lucent@lists.freeradius.org
[mailto:freeradius-users-bounces+gina.zhang=alcatel-lucent@lists.freeradius.org]
On Behalf Of Alan Buxey
Sent: Monday, May 24, 2010 4:02 PM
To: FreeRadius
Hi,
> Does freeradius support EAP-TLS as defined in RFC 5216?
some part of me wants to say that if it did it'd be in large lit letters in the
feature documentation.
there again, that'd be too obvious. nope... unless it sneaked in
at some point since July, I think the answer is the same as bac
On May 24, 2010, at 1:36 PM, Alexandre Chapellon wrote:
> I personnally use it for QoS definition. It works as expected but i can't
> garantee this is the regular use for this attribute.
>
> What's special with the class attribute is that if you send It in
> Access-Accept, It should be added i
I personnally use it for QoS definition. It works as expected but i can't
garantee this is the regular use for this attribute.
What's special with the class attribute is that if you send It in
Access-Accept, It should be added in later accounting packets. This can be very
usefull and if you don
Hi All,
Does freeradius support EAP-TLS as defined in RFC 5216?
Thanks,
Gina Zhang
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Jeff Stockett wrote:
> I'm using CentOS 5.4 and freeradius1.3 with a mysql backend with a
> redback se800 access device. Nearly everything has been working great,
> but I have a problem periodically, where DSL modems will receive the
> wrong static IP. It appears that if a customer power cycles th
Let me see if I can beat Alan to the punch….
Upgrade to v 2.1.9 (preferably) as 1.3 is old and decrepit.
David
From: freeradius-users-bounces+david.peterson=acc-corp@lists.freeradius.org
[mailto:freeradius-users-bounces+david.peterson=acc-corp@lists.freeradius.org]
On Behalf O
I'm using CentOS 5.4 and freeradius1.3 with a mysql backend with a redback
se800 access device. Nearly everything has been working great, but I have a
problem periodically, where DSL modems will receive the wrong static IP.
It appears that if a customer power cycles their DSL modem, the modem
com
FreeRADIUS version 2.1.9 has been built for the following versions of Fedora
* devel (aka rawhide)
* Fedora 13
* Fedora 12
The packages for Fedora 12 and Fedora 13 have been submitted to the
*testing* distribution channel (you will need to have the testing repo
enabled in your yum configuratio
Nicola Iotti wrote:
> Hi All,
>we have a problem with some Radius Client that, cause of
> malfunction, sometimes re-send a specific stop RADIUS messages several
> times, it just change the stop time but all the other attribute and data
> are the same (so it easy to find it).
> We use freeradius
Damion Alexander wrote:
> Greetings,
>
> Short version: Could someone look through the debug logs below and verify
> that freeradius (2.1.8 lenny backport) is NOT authenticating the user? We
> believe the issues we are facing (random successful authentication with
> invalid passwords) are with
Ahmed Munir wrote:
> I've successfully using table sip_buddies instead of radcheck
> table(which is used by default by FreeRadius). The problem I'm facing is
> that I can not call more than 5 attribute in table sip_buddies in
> dialup.conf i.e. id, name, attribute, secret and op. But when I call
>
Fred MAISON wrote:
> Yes, JUAC is an inner EAP protocol, inside ttls or peap.
Then you should be able to proxy it by just proxying the inner tunnel
data.
> I have proposed to replace SteelBelted by freeradius, and I succeed to
> pass initial testings, but my current setup was without inner-tunn
Johan Meiring wrote:
> debian/changelog still contains "+git"..
> Dont know if it is supposed to be fixed.
It's minor enough that it doesn't matter. Upstream Debian packages
change things anyways.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.htm
Hi All,
we have a problem with some Radius Client that, cause of
malfunction, sometimes re-send a specific stop RADIUS messages several
times, it just change the stop time but all the other attribute and data
are the same (so it easy to find it).
We use freeradius v.2 as proxy so all these mess
Hi,
> Yes, JUAC is an inner EAP protocol, inside ttls or peap. In our setup,
> It must be prefered because I have powerfull client-side host-checking
> features allowing to deeply control a lot of things mainly on Microsoft
> and Apple workstations (update level, antivirus, and so on ...)
> Custom
Greetings,
Short version: Could someone look through the debug logs below and verify that
freeradius (2.1.8 lenny backport) is NOT authenticating the user? We believe
the issues we are facing (random successful authentication with invalid
passwords) are with our Cisco devices, but I want to ga
Hi,
I've successfully using table sip_buddies instead of radcheck table(which is
used by default by FreeRadius). The problem I'm facing is that I can not
call more than 5 attribute in table sip_buddies in dialup.conf i.e. id,
name, attribute, secret and op. But when I call more than 5 attributes i
On 05/24/2010 06:56 AM, Fred MAISON wrote:
Pull update spec files, etc. from RedHat into the redhat/ directory.
Does this mean freeradius 2.1.9 can now been rebuild again from your
standard 2.1.9 source tree, thus making Freeradius RedHat FAQ a bit
obsolete ?
Not really. At best it just repla
Jens Link writes:
> I have a working VMPS installation, radiusd -X shows me the relevant
> information ( MAC - VLAN assignments) but how do I log these information
> to a file or syslog?
Here is an example of a working config using linelog:
/usr/local/etc/raddb/modules/linelog:
linelog {
It's actually easier than all that. I assume you need to send back to the
NAS a particular string in order to provision the CPE to a particular
service flow or set of service flows. Simply use a reply or group reply
attribute. Most WiMax base stations can read Framed-Filter-ID or
Filter-ID="serv
On 2010/05/24 12:28 PM, Alan DeKok wrote:
This is a "stable" release, which is intended to fix outstanding bugs.
We suggest reading the changelog below, to see if any issues you have
encountered are fixed in this release.
debian/changelog still contains "+git"..
Dont know if it is su
Dear Users,
We are in the process migrating our production server running 2.1.3 version and
testing the pre 2.1.9. All running well so far except the logging output
generated by radiusd.
We set logging to stderr or stdout, when started with debug_level = 0, no log
generated except the first "
Pull update spec files, etc. from RedHat into the redhat/ directory.
Does this mean freeradius 2.1.9 can now been rebuild again from your
standard 2.1.9 source tree, thus making Freeradius RedHat FAQ a bit
obsolete ?
Best regards,
Fred MAISON
-
List info/subscribe/unsubscribe? See http://www.f
Le lundi 24 mai 2010 à 11:49 +0200, Alan DeKok a écrit :
> Fred MAISON wrote:
> > Is there any way to proxy freeradius unsupported eap-type to an external
> > radius ?
>
> EAP does not allow this.
>
> By the time EAP has decided on an EAP type, the EAP conversation is
> well underway. Changi
This is a "stable" release, which is intended to fix outstanding bugs.
We suggest reading the changelog below, to see if any issues you have
encountered are fixed in this release.
Feature improvements
* Add radmin command "stats detail " to see what
is going on inside of a detail file rea
Fred MAISON wrote:
> Is there any way to proxy freeradius unsupported eap-type to an external
> radius ?
EAP does not allow this.
By the time EAP has decided on an EAP type, the EAP conversation is
well underway. Changing it mid-stream to another server won't work.
> I have a working setup
weiwei fang wrote:
> Hello, all!
>
> I noticed that RFC 2865 defined an attribute called "Class", but I don't
> know its meaning and usage. Can I use it as the QoS classfication for
> the user?
No.
See your NAS documentation for how to configure QoS.
The Class attribute is for something e
Hello freeradius-users,
Is there any way to proxy freeradius unsupported eap-type to an external
radius ?
I have a working setup using inner-tunnel.
If I understand correctly, in this case, inner-eap are tunneled to
localhost on port 1814 by default.
My goal is to have eap-juac (Juniper/Funk Soft
Hello, all!
I noticed that RFC 2865 defined an attribute called "Class", but I don't
know its meaning and usage. Can I use it as the QoS classfication for the
user?
Thanks!
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Miguel Pérez wrote:
> Hi, I'm testing openvpn with freeradius and mysql to store users. I'm
> using dialupadmin to manage users. All is more or less ok, but I haven't
> found (I have search in google in several ways) an application to allow
> users to change their passwords (or any other data rel
Hi, I'm testing openvpn with freeradius and mysql to store users. I'm
using dialupadmin to manage users. All is more or less ok, but I haven't
found (I have search in google in several ways) an application to allow
users to change their passwords (or any other data related to them).
Do you kno
42 matches
Mail list logo
