thanks Alan
On Fri, Sep 20, 2013 at 9:44 PM, Alan DeKok wrote:
> Mehdi Ravanbakhsh wrote:
> > *i can not find any detailed document on this.*
>
> doc/rlm_sql. It's on the Wiki, and distributed with the server "tar"
> file.
>
> Alan DeKok.
> -
>
thanks
On Sep 20, 2013 5:54 PM, "Arran Cudbard-Bell"
wrote:
>
> On 20 Sep 2013, at 14:00, Mehdi Ravanbakhsh wrote:
>
> > Hi all
> >
> > I need the algorithm that use to create acct_unique ID that use in
> radacct table.
> >
> > a
Hi all
I need the algorithm that use to create acct_unique ID that use in radacct
table.
any one can help on this ?
Best regards.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi All
*
*
*for some reason (change database structure and limitation on sql module
for sql connection and ...) i need to develop something like SQL module
to exchange check data in all section on my database .*
*
*
*so in need to know what exactly sql module do in each section ( such
as authoriz
thanks Arran
It is solved
Best regards.
On Wed, Sep 11, 2013 at 3:03 PM, Arran Cudbard-Bell <
a.cudba...@freeradius.org> wrote:
>
> On 11 Sep 2013, at 11:03, Mehdi Ravanbakhsh wrote:
>
> > Hi All
> >
> > I have this Error when using radclient:
>
Hi All
I have this Error when using radclient:
radclient: Nothing to send.
radclient:: Expected end of line or comma
I do not know what is means ?
(radclient is run by PlPerl script in my postgresql database engine)
Best regards.
-
List info/subscribe/unsubscribe? See http://www.freeradius.o
thanks for your replay
On Sep 2, 2013 12:36 AM, "Alan DeKok" wrote:
> Mehdi Ravanbakhsh wrote:
> > i have some problem in Understanding of capability of Rlm_perl
> > in authenticate ...
> >
> > if i use this :
> >
> > DEFAULT Auth-Type = Perl
Hi All
i have some problem in Understanding of capability of Rlm_perl
in authenticate ...
if i use this :
DEFAULT Auth-Type = Perl
Fall-Through = yes
then all user authenticate be done with this Auth-Type ?
So what is happen to PAP , CHAP module ?
and what is the relation of all mod
Hello All
If i remove SQL module in default (site enable) in any section then
"%RAD_CHECK"
hashes is still available in rlm_perl ?
In my plan i need to transfer all policy mechanism to my database
(PostgreSQL) function but we have some limitation in xlat , so i need to
pass all value pairs from
Dear Phil Mayers
thanks for your reply
i am finally do this in my PostgreSQL function before importing to database
.
Best regards.
On Mon, May 6, 2013 at 6:07 PM, Phil Mayers wrote:
> On 04/28/2013 09:14 PM, Mehdi Ravanbakhsh wrote:
>
> i have tow Cisco-AVPair attribute in reque
Hi All
i have some error in log file and i do not know what is the cause of this
error ?
Error: WARNING: Unresponsive child for request 10785, in component
authorize module
WARNING: Module rlm_sql became unblocked for request 10526
Error: WARNING: Unresponsive child for request 10583, in compo
and even if i found any information about
that question and it not work in my test. something like multiply
Cisco-AVpair in request .*
*
*
*and thanks for your suggestion .*
*
*
*Best regards.*
*
*
* *
*
*
*
*
* *
On Mon, Apr 29, 2013 at 6:58 PM, Alan DeKok wrote:
> Mehdi Ravanbakhsh wr
dear A.L.M.Buxe
first one that is not huge that is one NAS in local network . and i have
just 4 question in general and in all of them i read , test and try by any
document that be available for freeradius first.
but if my question nuisance you , i apologize for that .
On Mon, Apr 29, 2013
Hi Alll
i need to Grab request password to insert in database if
Cleartext-Password is "import" so i write this unlang script in
authenticate section :
Auth-Type PAP {
pap {
reject = 1
}
if (reject) {
if ("%{control:Cleartext-Password}"=
Dear Olivier
thanks for your information
On Mon, Apr 29, 2013 at 11:36 AM, Olivier Beytrison
wrote:
> On 28.04.2013 23:30, Mehdi Ravanbakhsh wrote:
> > DearOlivier
> >
> > I am try to test it but why first one is working ?!!! do you check my
> > regular expressi
Dear A.L.M.Buxey
you still havent said what you actually want as values. you just say it
doesnt work. you also ignore my
request for debug output to see what/where.
I need "*Azadegan-1 atm 2/16:251:0.35*" from this attribute
:Cisco-AVPair = "circuit-id-tag=Azadegan-1 atm 2/16:251:0.35"
serve
avr. 2013, at 22:58, Mehdi Ravanbakhsh wrote:
>
> Dear
> A.L.M.Buxey
>
> i have 2 Cisco-AVPair in request attribute :
>
> Cisco-AVPair = "client-mac-address=90f6.52d2.384f"
>
> and
>
> Cisco-AVPair = "circuit-id-tag=Azadegan-1 atm 2/16:251:0.35"
>
Dear
A.L.M.Buxey
i have 2 Cisco-AVPair in request attribute :
Cisco-AVPair = "client-mac-address=90f6.52d2.384f"
and
Cisco-AVPair = "circuit-id-tag=Azadegan-1 atm 2/16:251:0.35"
for first one i use :
if (Cisco-AVpair =~ /^client-mac-address=([a-f0-9]
[a-f0-9])([a-f0-9][a-f0-9])
Hi All
I have one Cisco 1 NAS inmy network and this is the authenticate
request :
Packet-Type = Access-Request
Cisco-AVPair = "client-mac-address=f43e.6166.dba0"
Framed-Protocol = PPP
User-Name = "7727221873"
NAS-Port-Type = Ethernet
NAS-Port = 71468299
NAS-Port-Id
Dear Arran Cudbard-Bell
thanks for your reply
can i use it in hint file ?
best regards
On Sat, Apr 27, 2013 at 10:03 PM, Arran Cudbard-Bell <
a.cudba...@freeradius.org> wrote:
>
> On 27 Apr 2013, at 12:11, Mehdi Ravanbakhsh wrote:
>
> > Dear All
> >
> >
&
Dear All
I need to remove "m" character in end of all username
i think i should use hint but i can not find how ?
Best regrads
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
password ...!!!
i think i should change Cleartext-Password to lower case in other section
update control {
Cleartext-Password :=
"%{tolower:%{control:Cleartext-Password}}"
}
Best regards
On Wed, Apr 24, 2013 at 7:17 PM, Alan DeKok wrote
how i could check case insensitive password for user..
many of users use wring password based on Caps Lock , so i need to check
password insensitive
and it is better if i could limit this kind of password check for some
nas-ip-adress.
which part of config file should be modified for this pr
Called-Station-Id := "%{NAS-Port-Id}"
> }
>
> }
> }
>
>
>
>
> Il 23/04/13 23.49, Mehdi Ravanbakhsh ha scritto:
>
>> Hi All
>>
>> i use Cisco and mikrotik as Access server in my network
Hi All
i use Cisco and mikrotik as Access server in my network and i need to
limit user access by MAC address.
in this case i can use Calling-Station-Id , it works for mikrotik :
AUTH Detail
Packet-Type = Access-Request
Service-Type = Framed-User
Framed-Protocol = PPP
I get something like
'aolnet/aol.dsl.newuser.10A50001000300010001US92C1..prod' in
User-Name attribute .
I think it should be connect-info attribute !
and In this case all %{connect-info} is empty (not null) .
i increase the connect-info to 150 character but nothing happens.
I am
thanks
On Tue, Apr 23, 2013 at 11:12 AM, Fajar A. Nugraha wrote:
> On Tue, Apr 23, 2013 at 1:27 PM, Mehdi Ravanbakhsh
> wrote:
> > Dear Fajar A. Nugraha
> >
> > thanks for your reply. and your guide
> >
> > i reduce the database connection and it solve
Dear Fajar A. Nugraha
thanks for your reply. and your guide
i reduce the database connection and it solved :)
Best regards.
On Mon, Apr 22, 2013 at 11:43 AM, Fajar A. Nugraha wrote:
> On Mon, Apr 22, 2013 at 12:59 PM, Mehdi Ravanbakhsh wrote:
>
>> i get this error in log file
i get this error in log file when server load is increase .
Request 55318 has been waiting in the processing queue for 30 seconds.
Check that all databases are running properly!
it means that database not respond to request or freeradius engine ?
how can i solve this problem ?
-
List info/subs
Hi All
my radius server is running well but %{Connect-Info} in start query
of dial-up.conf is empty for all NAS
NAS is work fine by other radius server , i do not know that it may be
related to witch part of freeradius ...
Please hellp
-
List info/subscribe/unsubscribe? See http://www.freer
Dear All
If i use some character such as " !& " in Cleartext-Password when
access that attribute in site-enable by %{User-Password} or
%{control:Cleartext-Password} it change to "=21=26"
for example : mgMG17!& > mgmg17=21=26
Best regards
-
List info/subscribe/unsubscribe? See http://www.
Dear Aran
i use it but i get somthing like " 0x01d05f68bae38dd2c96c5ede1b62a15efc"
I need password that user input in connection... what is that parameter ?
Best regards
On 4/20/13, Mehdi Ravanbakhsh wrote:
> many thanks aran
>
> On 4/20/13, Arran Cudbard-Bell wrote:
&
many thanks aran
On 4/20/13, Arran Cudbard-Bell wrote:
>
> On 19 Apr 2013, at 16:30, Mehdi Ravanbakhsh wrote:
>
>> Hi All
>>
>> how i can access chap password in site-available ?
>>
>> i use %{%{User-Password}:- Chap-Password} but if user use chap
Hi All
how i can access chap password in site-available ?
i use %{%{User-Password}:- Chap-Password} but if user use chap for
AUTH i just get "Chap-Password" .
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi All
how i can access chap password in site-available ?
i use %{%{User-Password}:- Chap-Password} but if user use chap for
AUTH i just get "Chap-Password" .
Best regards.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
thanks ARRAN
On 4/12/13, Arran Cudbard-Bell wrote:
>
> On 12 Apr 2013, at 11:01, Mehdi Ravanbakhsh wrote:
>
>> how we can detect cues of reject in any section of default(site enable) ?
>>
>> do we have any internal attribute or any source that can be use for
>
how we can detect cues of reject in any section of default(site enable) ?
do we have any internal attribute or any source that can be use for
determine cues of rejecting user ?
best regards.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
SQL, Please check if
> enabled under session section. Thanks
> RM --
>
>
> On Friday, April 5, 2013, Mehdi Ravanbakhsh wrote:
>
>> Hi All
>>
>> my Session Section in site enable in not woking ! i do not have any log
>> about that section in my radius.
Hi All
my Session Section in site enable in not woking ! i do not have any log
about that section in my radius.log file .
Do you have any Ideas why?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
hi all
freeradius 2.2 can support COA (for something like changing bandwidth)
or just can handel POD?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi all
i configure all config file to use COA .
i can use update disconnect and it work will in all section , but update
coa is not working.
i read all file for 10 times but can not find where is the problem.
in log file i can not find any message that related to update COA in any
section.
my
Acct-Session-Id}"
NAS-IP-Address = "%{NAS-IP-Address}"
Session-Timeout := "5"
}
}
On Wed, Apr 3, 2013 at 12:23 AM, Mehdi Ravanbakhsh wrote:
> Hi All :
>
> i have get this error in log after setup COA-originate in site-enable :
>
>
Hi All
do we need separated originate-coa in site enable for each NAS ?
Do we need to define "coa_server = coa " in client.conf for each client?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi All
we can use Update control in unlang? so if that possible in witch file or
tables parameter of coa such as port and ip address is set?
i read orginate COA but it not be clear that how i can use coa for
disconnect user in unlang .
can explane step of work to use update coa in unlang.. p
which attribute on cisco work like this attribute in mikrotik to limit data
transfer of user?
Mikrotik-Xmit-Limit
Mikrotik-Xmit-Limit-Gigawords
i can limit user band with by Cisco-AVPair but i can not find any way to
limit user volume.
Best regrads.
-
List info/subscribe/unsubscribe? See http:/
Can use control attribute in sql.conf (sql module config file) query ?
if yes so
what about a new control attribute that define dictionary ?
Best regards.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Can i use :
sql
if (notfound) {
update control {
Auth-Type := "Accept"
User-Profile = "Bad-User-Profile"
}
}
is User-Profile is changeable in unlang or i just can change Pool name by :
Pool-Name := "Bad-User-Pool"
Best regards.
On Sat, Mar 30, 2013 at 9:
can i use Sql-Group in unlang?
i use sql module and in sql database i can relate user to group, can i
change user group in unlang ?
On Sat, Mar 30, 2013 at 8:58 PM, Alan DeKok wrote:
> Mehdi Ravanbakhsh wrote:
> > I can change Pool-Name in unlang after if condition but if i use
>
I can change Pool-Name in unlang after if condition but if i use Group-Name
for change the group of user it not work !!!
in
authorize {
sql
if (notfound) {
update control {
Auth-Type := "Accept"
Group-Name := "Bad-User"
}
}
In rad group check table i define " Bad-User := Pool-N
quot;
}
ok
}
}
best regards.
On Sat, Mar 30, 2013 at 5:31 PM, Russell Mike wrote:
> Debian, Ubuntu: freeradius -XXX
>
> Redhat CentOS: radiusd -XXX
>
> Thank / RM --
>
>
> On Sat, Mar 30, 2013 at 9:12 AM, Mehdi Ravanbakhsh wrote:
>
>> Hi All
>>
>> i
Hi All
if password in request is not correct wich module handele this and reject
the client?
where i can check if password is not correct ? and what the module return
when password is not match ?
Best regards.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Dear Arran
It works ... :)
many thanks.
On 3/30/13, Arran Cudbard-Bell wrote:
>
> On 29 Mar 2013, at 14:57, Mehdi Ravanbakhsh wrote:
>
>> Hi all
>>
>> How can i check MODULE RETURN CODES in unlang?
>>
>> for example if SQL module in authorize section
Hi all
How can i check MODULE RETURN CODES in unlang?
for example if SQL module in authorize section return notfound
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi ALL
i need to accept all incoming request and pool name should be
"Baduser" even if user not define in sql database .( i change the
pool-name if user was define in sql databasen in later steps).
I test it client by any user and password can connect to NAS
and if user was define it wor
rewrite policy to not reject the and just
change ip pool but if user not define what should i do ?
:)
On 3/29/13, Fajar A. Nugraha wrote:
> On Fri, Mar 29, 2013 at 7:13 PM, Mehdi Ravanbakhsh
> wrote:
>
>> Hi ALL
>>
>> I need to allow all user to be connected even if use
Hi ALL
I need to allow all user to be connected even if user not define in database .
But if user not define it should get some specified replay atribute .
I think i should use DEFAULT in user file but i not sure .
do he have any other way? can i use DEFAULT user in user file( I use
SQL modul
many thanks ... :)
On 3/26/13, Iliya Peregoudov wrote:
> Correct syntax is "%{sql:...}", not "{%sql:...}".
>
> On 26.03.2013 2:20, Mehdi Ravanbakhsh wrote:
>> Hi All
>>
>> I am create stored persedure in postgresql database named
>> "
i dont have any information in session section in radius.log just one line:
# Executing section session from file
/usr/local/etc/raddb/sites-enabled/default
# Executing section post-auth from file
/usr/local/etc/raddb/sites-enabled/default
On Tue, Mar 26, 2013 at 3:47 AM, wrote:
> Hi,
>
> >
Hi All
I am create stored procedure in postgresql database named
"findout_cuncurrent_session_for_a_user_result" that return "Deny" or
"Permit" .
I need to call this procedure in session section but it not working i check
all policy that be explaned in unlang man page but this is not working :
s
Hi All
I am create stored persedure in postgresql database named
"findout_cuncurrent_session_for_a_user_result" that return "Deny" or
"Permit" .
I need to call this persidure in session section but it not working i check
all policy that be explaned in unlang man page but this cod is not working
thanks
On Mon, Mar 25, 2013 at 4:40 PM, Phil Mayers wrote:
> On 25/03/13 11:16, Mehdi Ravanbakhsh wrote:
>
>> You means that if modules such as SQL module in session section return
>> reject i can not change that to accept and then update some control
>> attribute ?
PM, Phil Mayers wrote:
> On 03/25/2013 09:14 AM, Mehdi Ravanbakhsh wrote:
>
>> Dear ALL
>>
>> How change Access-Reject output of module with unlang in sites-enable
>> to Access-Accept and do some update control ?
>>
>
> I don't think you can. And as Al
Dear ALL
How change Access-Reject output of module with unlang in sites-enable to
Access-Accept and do some update control ?
I can not find what is the replay attribute of reject or accept to check
in "If condition" and change them in "update replay".
and Do we have any reference for such v
Thanks i am find correct name .
On Sat, Mar 23, 2013 at 5:35 PM, Phil Mayers wrote:
> On 03/23/2013 10:31 AM, Mehdi Ravanbakhsh wrote:
>
>> Dear ALL
>>
>> I use this query by calling stored procedure in database :
>>
>> simul_count_query = "SELECT
&g
Dear ALL
I use this query by calling stored procedure in database :
simul_count_query = "SELECT
findout_cuncurrent_sessions_for_a_user('%{User-Name}','%{NAS-IP-Address}','%{CalledStationId}','%{CallingStationId}')"
but I can not access to the value of CallingStationId and CalledStationId.
my r
can i send multiple Parameter to stored procedure ( function) in database
by SQL xlat?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello ALL
I have Some problem in using Unlang.
I need to call some function in PostgreSQL database send some parameter
from request attribute to it , get replay from function and then change
some check attribute item (such as Pool-Name).or replay attribute
Unlang :
cuncurrent-session-status
ess = '78.39.54.132' AND AcctStopTime IS NULL
rlm_sql_postgresql: Status: PGRES_COMMAND_OK
rlm_sql_postgresql: query affected rows = 1
rlm_sql (sql): Released sql socket id: 4
Ready to process requests.
On Sun, Mar 3, 2013 at 8:30 PM, Arran Cudbard-Bell <
a.cudba...@freeradius.org&g
If in section of sites-enabled file ( such as : authorize - authenticate
- preacct - accounting - checksimul - post_auth and ..) i update some
RAD_CHECK control attribute such as Pool-Name it is take effect on
Framed -ip address replay attribute ?
Is it matter that in which section i update
in schema.sql for PostgreSQL we do not have any primary key for raduser
group table.
Is that normal or we have some problem ?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
in schema.sql for PostgreSQL we do not have any primary key for raduser
group table.
Is that normal or we have some problem ?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Many thanks for your replay.
How i can call stored procedure in unlang ?
On Tue, Mar 5, 2013 at 1:50 AM, Arran Cudbard-Bell <
a.cudba...@freeradius.org> wrote:
>
> On 4 Mar 2013, at 16:36, Mehdi Ravanbakhsh wrote:
>
> > I need to transfer one radacc Table record to
Best reghards.
On Tue, Mar 5, 2013 at 12:41 AM, Arran Cudbard-Bell <
a.cudba...@freeradius.org> wrote:
>
> On 4 Mar 2013, at 15:56, Mehdi Ravanbakhsh wrote:
>
> > Dear All
> >
> > I can use Unlang script and/or Perl module Script to do some select -
> up
Dear All
I can use Unlang script and/or Perl module Script to do some select -
update or insert in database BUT i need to know witch one is faster Perl
module or UnLang ???
This is important because i have to many stress on database query .
I use PostgreSQL by p5-DBI and p5-DBD-Pg .
13, at 11:32, Mehdi Ravanbakhsh wrote:
>
> > Hello everyone
> >
> > I need to update some check and replay attribute in database when get
> stop in accounting and the session is finish
> >
> > i need to know in which section of virtual server file (
> site
Hello everyone
I need to update some check and replay attribute in database when get stop
in accounting and the session is finish
i need to know in which section of virtual server file (
sites-enabled/default) i need to put unlang script (and/or perl script) ?
and
how i can check in script
Hi,
I am running a Debain server on the domain "haskell-solutions.com". I
installed freeradius 2.1.11 on that. As the tutorial suggested I added a
user account to the top of users file "bob Cleartext-Password :=
"hello"" and on the seperated terminal "connecting throw SSH to the
haskel ser
Hi all
I have a Cisco AS5350 and I writed a custom TCL IVR script for voice
application. When a call occures, then my script collects a 10 digit
number and sends it to my freeRadius for authorization. my freeRadius
configured with MySql db. I inserted (VENDOR: CISCO) and (ATTRIBUTE:
Cisco-AVPair)
Hi;
I'm student and I'm new to freeRadius, actually I'm new to Radius!
I just need some help for installing and running a Radius client.
Thanks
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
79 matches
Mail list logo