On 07/31/2013 07:06 AM, Matthew Schumacher wrote:
> List,
>
> This is odd, I can't seem to figure out what the deal is with this.
>
> This works:
>
> As root user; /usr/sbin/radius -X
> As root user; /usr/sbin/radius (when user= and group= is commented out
>
List,
This is odd, I can't seem to figure out what the deal is with this.
This works:
As root user; /usr/sbin/radius -X
As root user; /usr/sbin/radius (when user= and group= is commented out
and running as root)
As radius user; /usr/sbin/radius -X
As radius user; /usr/sbin/radius (when user=rad
List,
This is odd, I can't seem to figure out what the deal is with this.
This works:
As root user; /usr/sbin/radius -X
As root user; /usr/sbin/radius (when user= and group= is commented out
and running as root)
As radius user; /usr/sbin/radius -X
As radius user; /usr/sbin/radius (when user=rad
db (using nas_query) which I am.
Thanks for your help.
schu
On 07/20/2013 04:58 AM, Alan DeKok wrote:
> Matthew Schumacher wrote:
>> When I have a session that didn't get expired in a SQL database, and the
>> user tries to connect then freeradius correctly checks the nas using
List,
I'm bumping this odd issue with Simultaneous-Use:
When I have a session that didn't get expired in a SQL database, and the
user tries to connect then freeradius correctly checks the nas using the
checkrad script *UNLESS* the nas is no longer defined in the clients.
If the nas is missing, ra
Alan DeKok wrote:
Matthew Schumacher wrote:
I see that there is a Virtual-Server internal attribute so I thought I
could do something like this:
DEFAULT Virtual-Server == 'dsl'
...
DEFAULT Virtual-Server == 'dialup'
Why? The whole point of virtual servers is that y
List,
I'm getting some config together to implement virtual servers with
freeradius 2.0.3 and I need to offer different attributes when the
request comes from different servers.
I see that there is a Virtual-Server internal attribute so I thought I
could do something like this:
DEFAULT Virtual-
Alan DeKok wrote:
>>I have 2 services running on this machine one which uses
>>Simultaneous-Use and one that doesn't. So when a user logs onto the
>>second service these accounting messages are generated (for the wrong NAS).
>
>
> I'm not sure what you mean by that. Are you sharing databases
Matthew Schumacher wrote:
> I'm getting accounting messages like these that seem to be coming from
> the loopback interface, but `tcpdump -i lo` doesn't see them so they are
> not coming from a local client. If they are not coming from a local
> client then how can I fig
Lewis Bergman wrote:
> Matthew Schumacher wrote:
>
>> Lewis Bergman wrote:
>>
>>> Matthew Schumacher wrote:
>>>
>>>
>>>> I'm getting accounting messages like these that seem to be coming from
>>>> the loopback interface, bu
Dusty Doris wrote:
>> But it looks like it always comes from request->packet->src_ipaddr which
>> leads me to believe that I'm getting a packet sourced from 127.0.0.1
>> even though tcpdump doesn't see it.
>>
>> I also noticed that the udpfromto source could generate packets from
>> 127.0.0.1 but i
Matthew Schumacher wrote:
> Lewis Bergman wrote:
>
>>Matthew Schumacher wrote:
>>
>>
>>>I'm getting accounting messages like these that seem to be coming from
>>>the loopback interface, but `tcpdump -i lo` doesn't see them so they are
>&g
Lewis Bergman wrote:
> Matthew Schumacher wrote:
>
>> I'm getting accounting messages like these that seem to be coming from
>> the loopback interface, but `tcpdump -i lo` doesn't see them so they are
>> not coming from a local client. If they are not coming fro
I'm getting accounting messages like these that seem to be coming from
the loopback interface, but `tcpdump -i lo` doesn't see them so they are
not coming from a local client. If they are not coming from a local
client then how can I figure out where they are coming from?
Thu Jan 12 07:19:58 2006
Matthew Schumacher wrote:
Can someone look at my query and tell me what is wrong?
---
db=> select id, username, attribute, value, op from radstart('username');
id | username |attribute|
Can someone look at my query and tell me what is wrong?
---
db=> select id, username, attribute, value, op from radstart('username');
id | username |attribute| value | op
+--+-+--+
1 | user
Breeze P. Howard wrote:
Hello,
I searched throught the list archives, but didn't find anything pertaining
to this issue (or I just didn't search on the correct phrases).
I'm running freeRadius 1.0.1 on RedHat 2.4.21-20.ELsmp (Enterprise ES
3.0). I've got it authenticating against my LDAP servers (s
Lew A wrote:
I'm trying to set it up so, when a connection comes in from a certain
NAS-IP-Address, and the user trying to connect has a specific Ldap
Attribute set they won't be able to connect. I haven't been able to
successfully figure out how to do this. I'm using FreeRadius 0.98. It
matches def
Matthew Schumacher wrote:
Or does it drop it altogether causing the nas to resend the packet?
Sorry, I noticed you answered this question just after I sent this post:
For others this missed it and for the archive:
>> Are you sure? My understanding is that radius replys but finds that
Or does it drop it altogether causing the nas to resend the packet?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Alan DeKok wrote:
Kostas Kalevras <[EMAIL PROTECTED]> wrote:
You don't need to do code changes. Just use configurable failover
with the sql and detail modules.
In 1.0.0, very true. The only problem then comes in having an
external program read the "detail" file, and add the information to
the d
Kostas Kalevras wrote:
radrelay will send packets as fast as possible but will slow down if it does not
get responses.
The algorithm:
if (r->retrans_num > 20)
r->retrans = now + 70;
else
r->retrans = now + 3 + (3 * r->retrans_num);
so if your db is no
Alan DeKok wrote:
"Gary McKinney" <[EMAIL PROTECTED]> wrote:
From following this thread I am wondering how many transactions a
second can a DB handle successfully perform before the system starts
to lose information???
That depends on the DB. Oracle is fast, PostGreSQL is fast, MySQL
is less fa
Alan DeKok wrote:
I know how to feed the detail file back to the server with the radrelay
util, but wouldn't that require me to run two radius servers?
I don't see why. You should be able to do both.
Log to the DB, unless the rate is too high. If it's too high, log
to a "detail" file, and r
Alan DeKok wrote:
Matthew Schumacher <[EMAIL PROTECTED]> wrote:
...
http://lists.freeradius.org/pipermail/freeradius-users/2004-June/032678.html
Alan DeKok.
I never saw that and assumed my message never made it... After fighting
with the list trying to make it work I subscribed with a
List,
Is there a way to rate limit radius requests in the freeradius server?
Whenever the router guy kicks a router full of DSL connections we get a
flood of radius accounting messages which overloads the database server
causing "There are no DB handles to use!" error messages. While the DB
ca
this is a test
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I haven't been seeing the messages I have posted to the list, so I
figure I'll do a little testing
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
List,
Is there a way to rate limit radius requests? Whenever the router guy
kicks a router full of DSL connections we get a flood of radius
accounting messages which overloads the database server causing "There
are no DB handles to use!" error messages. While the DB can handle the
current loa
List,
I have been getting a lot of
There are no DB handles to use! skipped 0, tried to connect 0
errors on 1.0.0-pre1 even though I have 32 connections to the database.
The database server is not having performance problems from what I can
tell. I am only using simple insert queries from radius
30 matches
Mail list logo