Hi
I use this line many years in the preacct_users file ( freeradius 2.1.X )
DEFAULT Called-Station-Id == orangewap
Called-Station-Id := %{Called-Station-Id}.%{3GPP-SGSN-Address}
It`s not work in freeradius-2.2.0, i got error message
[files] preproxy_users: Matched entry DEFAULT at
I read it before i sent email.
But my accounting radius servers receives packets from many devices ( each
packet contains different group of AVPs ).
Therefore Is it possible to configure linelog module to store all AVPs (
everytime, not only defined part of accounting packet ).
-Original
-X runs as a single thread
Is your perl multi-threaded? Does your PERL code deal with threads?
alan
--
This smartphone uses free WiFi around the world with eduroam, now that's what I
call smart.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Any one kindly reply.
Regards,
Arshad Ahmed Network Engineer
From: arshadkha...@hotmail.com
To: freeradius-users@lists.freeradius.org
Subject: Configure Huntgroups
Date: Tue, 27 Nov 2012 10:01:19 +0500
Hi,
I have configure multiple hunt groups for different purposes like VPN (VPN
Sounds like your old server had a local dictionary entry that your new server
doesn't have
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello Alan,
And thanks for the reply. If you mean that my customhooks perl scripts for
rlm_perl deals with any threads then no.
If you mean that our compilation of perl which was installed with from apt-get
is compiled in a strange way..Then I have no idea what.
Br
Alex
Från: Alan Buxey
Hi,
And thanks for the reply. If you mean that my customhooks perl scripts for
rlm_perl deals with any threads then no.
do you deal with all file handlers, database handlers etc in your code
cleanly...
or do you just ditch them? the PERL module will be called at the same time by
many
On 11/28/2012 04:28 AM, Alexander Silveröhrt wrote:
Hello,
Wondered if anyone have any idea about below. If started with flag –X
everything starts up ok but without –X then it crashes with these
messages in the log.(atleast most of the time if one is persistent then
it may well start up
On 11/28/2012 09:27 AM, ramakrishna wrote:
Hi,
I have been using freeradius 2.2 for a while now.
When i start the radius server in debug mode, I observed server creating
proxy sockets. please find the log below.
* ... adding new socket proxy address * port 61412
... adding new socket proxy
Thanks Phil.
That clarifies my doubt.
On Wed, Nov 28, 2012 at 3:23 PM, Phil Mayers p.may...@imperial.ac.ukwrote:
On 11/28/2012 09:27 AM, ramakrishna wrote:
Hi,
I have been using freeradius 2.2 for a while now.
When i start the radius server in debug mode, I observed server creating
On 2012/11/28 11:50 AM, Phil Mayers wrote:
root@itop0-db0:/scripts# LD_PRELOAD=/usr/lib/libperl.so.5.10
Why are you fiddling with LD_PRELOAD?
On my debian boxes FR cannot run without preload.
There is something on the mailing list about it a while back.
--
Johan Meiring
Cape PC
On 28/11/12 10:52, Johan Meiring wrote:
On 2012/11/28 11:50 AM, Phil Mayers wrote:
root@itop0-db0:/scripts# LD_PRELOAD=/usr/lib/libperl.so.5.10
Why are you fiddling with LD_PRELOAD?
On my debian boxes FR cannot run without preload.
Yuck. It's probably some libtool horror in 2.x. It
I use standard dictionary attribute 3GPP-SGSN-Address, which is located in ( in
old and new one version of freeradius )
/app/radius/freeradius-2.2.0/share/freeradius/dictionary.3gpp:ATTRIBUTE
3GPP-SGSN-Address6ipaddr
My accouting packet
hi,
..theres also an error in v2.2 policy.conf
#
# Realm begins with a dot
# e.g. u...@.site.com
#
if (User-Name !~ /@\\./) {
update reply {
Reply-Message+ =
hi,
if(User-Name =~ /@(.+)?@/i ) {
=
Would this not be simpler just by using '/@.*@/' ?
its good to get feedback.
yes, theres no need for case insensitive for this oneand also, we dont care
about feeding the results to a following processso no need
Hello,
Just taking a look at the FreeRadius 2.2 policy.conf file, and noticed
this section:
=
#
# reject Multiple @'s
# e.g. u...@site.com@site.com
#
if(User-Name =~ /@(.+)?@/i ) {
=
Would this not be simpler just by
Hello.
I have a short question:
Is it possible to send an authentication-request from a client to
multiple servers simultaneously ?
+--+
/-| radius A |
+++--+ / +--+
|
BALSIANOK, Peter wrote:
I read it before i sent email.
But my accounting radius servers receives packets from many devices ( each
packet contains different group of AVPs ).
Therefore Is it possible to configure linelog module to store all AVPs (
everytime, not only defined part of
Sorry, i didnt read doc/variables.txt carefully ( missed %Z ).
To have one packet in one line ( AVPs separated with delimiter ) from my point
of view is better (simple). Of course i can parse current detail file format :).
Last question. Is writing to detail file serialized ( paralel threads can
On Wed, Nov 28, 2012 at 01:09:44PM +, John Horne wrote:
#
if(User-Name =~ /@(.+)?@/i ) {
=
Would this not be simpler just by using '/@.*@/' ?
That's not quite the same, as it would match more than the original
regex. OK the parenthesis aren't needed,
BALSIANOK, Peter wrote:
Sorry, i didnt read doc/variables.txt carefully ( missed %Z ).
To have one packet in one line ( AVPs separated with delimiter ) from my
point of view is better (simple). Of course i can parse current detail file
format :).
I wouldn't agree with simpler. But it's
Stefan Kuegler wrote:
Is it possible to send an authentication-request from a client to
multiple servers simultaneously ?
Not really, no.
We now authenticate with HMAC-based One Time Password Token (aka
event-based token) from a Cisco ASA via radius to only one
freeradius-server. But we
BALSIANOK, Peter wrote:
I use standard dictionary attribute 3GPP-SGSN-Address, which is located
in ( in old and new one version of freeradius )
...
[radiusd@tdrad1 test]$ /app/radius/freeradius-2.2.0/bin/radclient -x -t
10 -r 1 -f wapgtw/acct.req -d
On 28/11/12 14:57, BALSIANOK, Peter wrote:
Last question. Is writing to detail file serialized ( paralel threads can
write data at the same time to one file ) ?
Yes. The detail writer (and reader) use locking.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Alexander Silveröhrt wrote:
Wondered if anyone have any idea about below. If started with flag –X
everything starts up ok but without –X then it crashes with these
messages in the log.
Older versions of rlm_perl didn't lock enough of the data structures.
So it could have threading issues.
Same here doesn't even start without LD_PRELOAD.
-Ursprungligt meddelande-
Från:
freeradius-users-bounces+alexander.silverohrt=itux...@lists.freeradius.org
[mailto:freeradius-users-bounces+alexander.silverohrt=itux...@lists.freeradius.org]
För Johan Meiring
Skickat: den 28 november
On 28/11/2012 1:07 π.μ., Arran Cudbard-Bell wrote:
I just did build on fresh ubuntu 12.10 VM and it looks fine to me
root@shinyhead-ldap:~/build/freeradius-server# ldd
debian/tmp/usr/sbin/freeradius
linux-vdso.so.1 = (0x7fffae945000)
libfreeradius-radius.so =
Hi,
That's not quite the same, as it would match more than the original
regex. OK the parenthesis aren't needed, however consider the following
username:
bob@@realm
that would be a wrong and illegal entry...so needs to be rejected too.
alan
-
List info/subscribe/unsubscribe? See
On 28 Nov 2012, at 15:05, Alan DeKok al...@deployingradius.com wrote:
BALSIANOK, Peter wrote:
Sorry, i didnt read doc/variables.txt carefully ( missed %Z ).
To have one packet in one line ( AVPs separated with delimiter ) from my
point of view is better (simple). Of course i can parse
On 28 Nov 2012, at 15:08, alan buxey a.l.m.bu...@lboro.ac.uk wrote:
Hi,
That's not quite the same, as it would match more than the original
regex. OK the parenthesis aren't needed, however consider the following
username:
bob@@realm
that would be a wrong and illegal entry...so needs
Hello,
Is there any way that freeradius act as WPA-PSK??
What i am trying to deploy is a wi-fi network with only one password
that is changed every week.
Right now I have a open wireless signal distributed over 20 wi-fi
routers. This signal is used by all the clients of the hotel, so there
is
Paulo wrote:
Is there any way that freeradius act as WPA-PSK??
What i am trying to deploy is a wi-fi network with only one password
that is changed every week.
Right now I have a open wireless signal distributed over 20 wi-fi
routers. This signal is used by all the clients of the hotel,
Some NASes can successfully use several servers. If the first one
doesn't respond, the request will be sent to the next RADIUS server
On 11/28/2012 4:07 PM, Alan DeKok wrote:
Stefan Kuegler wrote:
Is it possible to send an authentication-request from a client to
multiple servers
Hello mailing list.
What I'm actually trying to accomplish is this:
I already have a modified version of an OpenID server, that doesn't require
any user/password. The whole authentication is based on EAP-TLS between the
browser and the Apache server, using the certificate email to identify the
On 28 Nov 2012, at 14:02, Stefan Kuegler freerad...@kuegler.org wrote:
Hello.
I have a short question:
Is it possible to send an authentication-request from a client to multiple
servers simultaneously ?
+--+
You could also use rlm_replicate to duplicate the packet, but there's
currently no way of checking the aliveness of a realm at runtime, so you'd
end up sending duplicate requests to whatever the primary OTP server was.
and that wouldn't help if you were actually wanting to authenticate the
Why not just using EAP-TLS as the auth as-is, since you control the horizontal
and vertical if the certs and CA (CA can sign your RADIUS server cert). Then
just use some post-auth to pass request to your backend to work out what VLAN
to return?
alan
-
List info/subscribe/unsubscribe? See
-Ursprungligt meddelande-
On my debian boxes FR cannot run without preload.
On Wed, Nov 28, 2012 at 03:57:34PM +, Alexander Silveröhrt wrote:
Same here doesn't even start without LD_PRELOAD.
What versions of Debian and FreeRADIUS are these reports referring
to?
Are you using FR
in the mysql database, i would like only the 'nas' table, and not other tables
(radcheck, ...). Is it possible?
Regards
laurent
- Mail original -
De: Alan DeKok al...@deployingradius.com
À: FreeRadius users mailing list freeradius-users@lists.freeradius.org
Envoyé: Mardi 27 Novembre 2012
Hello,
Yes running perl hooks with DBI
But using both finish and disconnect properly.
Here is versions for people asking for it.
Linux version 2.6.32-5-amd64 (Debian 2.6.32-45) (da...@debian.org) (gcc version
4.3.5 (Debian 4.3.5-4)
freeradius: FreeRADIUS Version 2.1.10, for host
Versions:
Linux version 2.6.32-5-amd64 (Debian 2.6.32-45) (da...@debian.org) (gcc version
4.3.5 (Debian 4.3.5-4)
freeradius: FreeRADIUS Version 2.1.10, for host i486-pc-linux-gnu, built on Nov
14 2010 at 20:41:03
perl v5.10.1 (*) built for i486-linux-gnu-thread-multi
mysql Server version:
Alexander Silveröhrt wrote:
And again if not started with LD_PRELOAD then DBI will fail
root@itop1-db1:~# freeradius
Can't load '/usr/local/lib/perl/5.10.1/auto/DBI/DBI.so' for module DBI:
/usr/local/lib/perl/5.10.1/auto/DBI/DBI.so: undefined symbol: PL_memory_wrap at
42 matches
Mail list logo