On Mon, Apr 30, 2012 at 07:07:27PM +0400, new...@qip.ru wrote:
> > You need to HUP the server to get it to re-open the logs. This is
> > normal daemon behavior.
> >
> > Alan DeKok.
>
> Thanks, but why I can clean logs via echo command without restart?
Truncating a file and changing its name ar
Hi,
On Mon, Apr 30, 2012 at 05:01:19PM +0200, Alan DeKok wrote:
> alan buxey wrote:
> > unfortunately this means we lose all the state-less stuff -
> > EAP sessions being the big one.
>
> Huh? The EAP module isn't re-loaded on HUP. So it's ignored.
> The sessions still exist after HUP.
Alan sa
> You need to HUP the server to get it to re-open the logs. This is
> normal daemon behavior.
>
> Alan DeKok.
Thanks, but why I can clean logs via echo command without restart?
Could the same behavior be implemented to auto-rotation of FR2 logs?
-
List info/subscribe/unsubscribe? See http://w
alan buxey wrote:
> unfortunately this means we lose all the state-less stuff - EAP sessions
> being the big one.
Huh? The EAP module isn't re-loaded on HUP. So it's ignored. The
sessions still exist after HUP.
Alan DeKok
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/li
Hi,
> "reload" command that does this for you (you don't have to know the
> pid). If your system supports reload it's the preferred method, if not
> send a HUP.
>
> With FreeRADIUS you can also do a reload from the admin console.
its also another reason to use SQL for eg user/NAS stuff...as yo
Hi,
> You need to HUP the server to get it to re-open the logs. This is
> normal daemon behavior.
its a behaviour that changed with i think 2.1.10 - before then you could rotate
a log and the daemon would start writing to the new logfile.
we had to adjust our logrotate script to do a restart
new...@qip.ru wrote:
> Hi all, something strange:
> I am trying to setup newsyslog to rotate logs of FreeRADIUS 2.1.11
> my setup string is looking like
> [code]
> /var/log/radius.log freeradius:freeradius 644 7 5 * Z
> [/code]
> but after rotation no logs are writing to /var/log/radius.log until
Hi all, something strange:
I am trying to setup newsyslog to rotate logs of FreeRADIUS 2.1.11
my setup string is looking like
[code]
/var/log/radius.log freeradius:freeradius 644 7 5 * Z
[/code]
but after rotation no logs are writing to /var/log/radius.log until restarting
freeradius
But if I jus
On 04/30/2012 09:10 AM, Sharad P wrote:
After the changes are made in config files (user.conf), Radius server needs
to be restarted.
Is there any way that Radius server will fetch the changed configurations
without restarting the Radius server?
The traditional technique is to send the process
Sharad P wrote:
> So there is no considerable memory usage when tens of thousands of user
> tries to authenticate with my Radius server?
Uh... data uses memory. The more data you have, the more memory you use.
This is 2012. If you care about memory usage, you're either (a)
caring about the
Sharad P wrote:
> Is there any way that Radius server will fetch the changed configurations
> without restarting the Radius server?
In 2.x, you can send it a HUP signal.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
After the changes are made in config files (user.conf), Radius server needs
to be restarted.
Is there any way that Radius server will fetch the changed configurations
without restarting the Radius server?
Thanks,
Sharad Panicker.
--
View this message in context:
http://freeradius.1045715.n5.n
Thanks for the reply.
Here I am not using any SQL server for for DB. I just use my config file for
user authentication. So in such a case, the memory usage will be very low, I
guess.
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/Maximum-limit-for-clients-tp5675649p567
Sharad P wrote:
> 1. I wanted to know whether, there is any limit for such configurations? How
> many user id's and password can be added to the file?
In 1.1.7, the "users" file entries are put into a linked list. It's slow.
2.x is better.
> 2. If we want to increase the limit, then what a
I think I found a reason. In the root and sub CA certificates there was
*Extended Key Usage* set to "OCSP Signing" what limited using of any user
certificate issued by those CAs to "OCSP Signing" purpose.
/
4.2.1.12. Extended Key Usage
This extension indicates one or more purposes for which the
Thanks a lot for the reply.
So there is no considerable memory usage when tens of thousands of user
tries to authenticate with my Radius server?
Also, I do not use any SQL server for any databases. I simply create an user
name and password in the user.conf file. The clients willing to authenticat
On 30/04/12 12:08, Sharad P wrote:
Hi,
I have been using Radius server downloaded from freeradius.net website from
quite a long time. For creating user id and password required for my clients
to authenticate with my radius server, I usually configure user id and
password using following command
Hi,
> We are trying to setup eap for different mobile devices. We don't need
> certificates for each user, we want to authorize againt the radius with
> username and password only.
>
> With self signed certificates its working if the mobile devices installs
> the root ca certifcate.
>
> We tried
Hi,
I have been using Radius server downloaded from freeradius.net website from
quite a long time. For creating user id and password required for my clients
to authenticate with my radius server, I usually configure user id and
password using following command in user.conf file present in radius s
Hi,
We are trying to setup eap for different mobile devices. We don't need
certificates for each user, we want to authorize againt the radius with
username and password only.
With self signed certificates its working if the mobile devices installs
the root ca certifcate.
We tried several 3rd par
On 04/30/2012 07:29 AM, jinx_20 wrote:
Phil, can you look at the certs I provided?
They look ok to me. There's no obvious reason they shouldn't verify, and
quick tests as the CLI all passed. Are you sure these are functionally
*identical* to the real ones you're using?
I've checked over th
21 matches
Mail list logo
