I resolved this. Thanks.
On Wed, Sep 22, 2010 at 2:59 PM, Marlon Duksa wrote:
> Hi - we recently upgraded to version 2.1.8 (freeradius) and my
> authentication does not work any more.
>
> This used to work (configured in Radius):
>
> basic-a User-Password == "csetestp&q
st 2 for 1 seconds
Going to the next request
Waking up in 0.9 seconds.
Sending delayed reject for request 2
Sending Access-Reject of id 63 to 114.0.1.11 port 50633
Waking up in 4.9 seconds.
Cleaning up request 2 ID 63 with timestamp +1009
Ready to process requests.
On Wed, Sep 22, 2010 at 2:59 PM, M
Hi - we recently upgraded to version 2.1.8 (freeradius) and my
authentication does not work any more.
This used to work (configured in Radius):
basic-a User-Password == "csetestp"
User-Name =~ "^([aA-zZ]+)-([aA-zZ]+)$",
Framed-Pool := "21",
Class := 2,
Hi everyone -
Can anyone think of a reason why the NAS-IP and the scr-IP of the access-req
packet should not be the same?
If the NAS-IP is configurable in the NAS, then the NAS-IP can be set to the
IP address other than the src-ip of the NAS that is used in reqular
FreeRadius accounting/authorizat
Thanks Alan.
Why do you think that anything longer than 64bytes would be hard to
implement in NASes?
Marlon
On Tue, Mar 30, 2010 at 3:37 PM, Alan DeKok wrote:
> Marlon Duksa wrote:
> > The acct-session-id attribute has the length defined as =>3 in RFC
> 2059.
>
> See
Hi -
The acct-session-id attribute has the length defined as =>3 in RFC 2059.
Is anyone aware of any practical limitations on the length of this
attribute?
Does FreeRadius support the length of this attribute to be let say 300bytes,
and are you aware of any other Radius servers that may have pro
Hi,
I have redundant NAS nodes and they obviously have two different NAS-IP. If
one NAS fails, the entity for which I'm accounting traffic is automatically
switched over to the redundant NAS which can keep sending accounting
records to Radius. However, the records will have different NAS-IP,
NAS-
Also the problem is that the most recent FR source code for Ubuntu is 1.1.7,
just checked.
On Fri, Aug 7, 2009 at 2:10 PM, Marlon Duksa wrote:
> you two Alans crack me up :)
> Anyways - you're right, I'm running 1.1.7, just checked. So I'll upgrade
> before I proceed wit
you two Alans crack me up :)
Anyways - you're right, I'm running 1.1.7, just checked. So I'll upgrade
before I proceed with this, then I hope I'll have mode documentation
available to tell me how to run this.
On Fri, Aug 7, 2009 at 1:21 PM, Alan DeKok wrote:
> Marlon Duks
Is all this explained anywhere?
On Fri, Aug 7, 2009 at 12:03 PM, Alan Buxey wrote:
> Hi,
>
> > And here is mu unlang section:
> >
> > DEFAULT User-Name =~ "^([aA-zZ]+)-([aA-zZ]+)$", Cleartext-Password
> :=
> > "csetestp"
> > Alc-Subsc-ID-Str := "%{NAS-Port-Id}",
> >
Timeout := 600,
if (Alc-Subsc-Prof-Str == basic) {
Framed-IP-Address := 21.0.0.1,
}
Fall-Through = Yes
DEFAULT NAS-Port-Id =~ "^([^:]+):"
Alc-MSAP-Interface := "port-%{1}"
On Fri, Aug 7, 2009 at 11:17 AM, Alan D
of half a minute to find)
>
>
> http://freeradius.org/radiusd/man/unlang.html
>
>
> ~c
>
>
>
> On Fri, Aug 7, 2009 at 2:36 AM, Alan DeKok > al...@deployingradius.com>> wrote:
>>
>>Marlon Duksa wrote:
>> > Hi - if there
I can't run man unlang:
/etc/freeradius$ man unlang
No manual entry for unlang
On Fri, Aug 7, 2009 at 2:36 AM, Alan DeKok wrote:
> Marlon Duksa wrote:
> > Hi - if there any way to conditionally assign returned variables in
> > users file?
>
> $ man unlang
>
>
Hi - does anyone know why this does not work:
basic-TPUser-Password == "csetestp"
User-Name =~ "^([aA-zZ]+)-([aA-zZ]+)$",
Alc-Subsc-ID-Str := "%{NAS-Port-Id}",
Alc-Subsc-Prof-Str := "%{1}",
Alc-SLA-Prof-Str := "%{2}",
Alc-MSAP-Serv-Id
Hi - if there any way to conditionally assign returned variables in users
file? For example:
DEFAULT User-Name =~ "^([aA-zZ]+)-([aA-zZ]+)$", Cleartext-Password :=
"csetestp"
Alc-Subsc-ID-Str := "%{NAS-Port-Id}",
Alc-Subsc-Prof-Str := "%{1}",
Now I want to
ok, thanks.
It is more clear now.
Marlon
On Thu, Aug 6, 2009 at 9:42 AM, Alan DeKok wrote:
> Marlon Duksa wrote:
> > Thanks. But how do you invoke 'man' for the users? If I type what you
> > did above in Ubuntu, I get some other 'users' :
> > NAME
&
pages for freeradius
but very little said about the DEFAULT keyword.
On Thu, Aug 6, 2009 at 2:01 AM, Alan DeKok wrote:
> Marlon Duksa wrote:
> > I've been reading through WiKi pages but still not clear. I need to
> > evaluate two attributes and I'm doing this with the =~ oper
I put 'fall-through' before DEFAULT NAS-Port-Id and now it works.
But I still do not understand what does the DEAFULT keyword do?
Thanks,
Marlon
On Wed, Aug 5, 2009 at 3:51 PM, Marlon Duksa wrote:
> Hi - I've been reading through WiKi pages but still not clear. I need
Hi - I've been reading through WiKi pages but still not clear. I need to
evaluate two attributes and I'm doing this with the =~ operator. But the
second attribute is not evaluated but instead returned as reg expr (exactly
as stated below)
DEFAULT *User-Name =~ "^([aA-zZ]+)-([aA-zZ]+)$", Aut
to do more research into radclient usage.
>
> Cheers
> Simon
>
> Marlon Duksa wrote:
>
> - Show quoted text -
> I thought that this can already be done with radclient , no? : radclient
> -x -t 20 -c 1 -f /home/coa.txt 114.0.1.1:3799 coa test
>
>
> On Tue, Ma
ok. I see. Thanks.The NAS did exactly what I wanted it to do in my case
(disconnect a user and also change the SLA parameters)
Marlon
On Wed, Mar 4, 2009 at 7:55 AM, Alan DeKok wrote:
> Marlon Duksa wrote:
> > I thought that this can already be done with radclient , no?
>
&
I thought that this can already be done with radclient , no?:radclient -x -t
20 -c 1 -f /home/coa.txt 114.0.1.1:3799 coa test
On Tue, Mar 3, 2009 at 11:43 PM, Alan DeKok wrote:
> Simon Herriotts wrote:
> > New user to freeradius, nice little bit of work.
> > Wondering if anyone knows how/if you
Hi - does anyone know how send taged attributes from FreeRadius. I'm
including the tag number with a colon after the attribute but not sure if
this is correct (the last two attributes):
DEFAULT User-Name =~ "([a-z]+):([0-9]+)[^a-z]+([a-z]+):([0-9]+)$",
Auth-Type := Local, User-Password == "
23 matches
Mail list logo
