response
time (3 seconds)
Many thanks
Thomas
Le 29/03/2012 23:04, Thomas Fagart a écrit :
Many thanks, I will test it when available.
Thomas
Le 28/03/2012 17:15, Alan DeKok a écrit :
Thomas Fagart wrote:
Here's the debug output this happens specialy when we add a virtual
server
Hello,
Did you have the opportunity to push this patch ?
The crash does not occur very soon (around once a month).
Many thanks
Regards
Thomas
On 28.03.2012 17:15, Alan DeKok wrote:
Thomas Fagart wrote:
Here's the debug output this happens specialy when we add a virtual
server
Many thanks, we took Option 1 which is the most embedded one :-).
It works great, I didn't know we could change sql module use in another
part of the AAA process.
Thomas
On 20.04.2012 13:21, Phil Mayers wrote:
On 20/04/12 11:39, Thomas Fagart wrote:
When we use SQL module, in accounting
Many thanks, I will test it when available.
Thomas
Le 28/03/2012 17:15, Alan DeKok a écrit :
Thomas Fagart wrote:
Here's the debug output this happens specialy when we add a virtual
server as a fallback server.
OK... it looks like the proxy_reply doesn't exist. I'll push a patch
Hello,
As we've got some bad ISPs or maybe because they use other radius than
freeradius :-), we would like, when their home server does not work
properly (bad response time or completely down), to continue
authenticating wimax users on our proxy. (So that users does not get
disconnected
0x0008036e05dd in eapttls_postproxy (handler=0x802964800,
data=0x804017000) at ttls.c:816
rcode = Variable rcode is not available.
Hope that help
Regards
Thomas
Le 06/03/2012 10:29, Alan DeKok a écrit :
Thomas Fagart wrote:
Last week we've migrate Motorola authentication on freeradius
Hello,
Since more than a year we're doing EAP-TTLS to authenticate Wimax Users
on Alcatel and Huawei NASes.
Last week we've migrate Motorola authentication on freeradius. (no more
radiator :-) ).
But then we've experienced freeradius crash.
Informations :
Software : Freeradius 2.1.12
OS :
, Alan DeKok wrote:
Thomas Fagart wrote:
Then I would wait for 2.1.11, or do you thing it's ok to use git
release in Production
Yes. Use the v2.1.x branch from git. It's fine.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-
List info/subscribe
Thomas Fagart wrote:
The server where it is located has two IP interfaces and even worse on
one of the interface we're using IP aliasing :-)
I've notice that freeradius always use the same IP to proxy from inner
tunnel.
I know that I could use the listen directive in radiusd.conf (and that's
Hello,
We're using freeradius 2.1.6 as a proxy server.
It receives authentication/accounting from Wimax NAS/ASN Gateway,
(EAP/TTLS), send it to inner tunnel, and then proxy to customer home
server.
The server where it is located has two IP interfaces and even worse on
one of the interface
Hum I don't get it I've got this bug in 2.1.10. This means I should get
the latest git ?
Thomas
Le 19/11/2010 07:43, Alan DeKok a écrit :
Thomas Fagart wrote:
I've enable develloper mode, now I've got the following output :
...
ASSERT FAILED event.c[1181]: We do not have threads
or running in a child thread == NULL
Abort
Do I need to to something more with gdb (I don't have the feeling
there's a core dump).
Thomas
Le 18/11/2010 06:15, Alan DeKok a écrit :
Thomas Fagart wrote:
...
WARNING: Internal sanity check failed in event handler for request 6:
Discarding the request
Hello,
We're having the following authentication scenario for Wimax User
Authentication :
ASN -- EAP/TTLS --- 2 freeradius used as proxy -- 2 freeradius home
server.
AAA is fine when both home servers are up,but when one of them or both
of them are dead, we're having the following logs
Hello,
Here's two questions about radius statistics (status server)
1. By looking at the freeradius-snmp.pl from sky networks, I notice
something :
- It uses FreeRADIUS-Statistics-Type = 63, and I haven't found
documentation about it in status virtual server. By the way, it allows
to list
Hello,
I've managed to configure freeeradius to do static dhcp assignement with
the dhcp virtual server and the mac2ip module.
Could we use any module inside dhcp server ? I wanted to use sql but
doesn't seems to work.
server dhcp {
modules {
Module: Checking dhcp DHCP-Discover {...}
Thanks for you answer, as I'm not very good to code, I was wondering wether
the following setup could also be a good answer to my question.
I would setup freeradius to do post-auth sql logging for request 1, and
then setup request 2 to authenticate by looking at the post-auth sql tables
in
Hello,
I would like to know if this is possible to do the following with
Freeradius. eg to ask him to have memory.
Description
I've got one authentication request (called request 1) coming from an ASN
GW that will contain the mac adress of the CPE in some attribute.
Freeradius will send an
Hello,
I use it in production, and it produces nice statistics that we display in
cacti.
We would like now to get better statistics (per home server and per
client), and we will soon work on this script to get that.
We'll provide an updated script when this will be done.
Regards
Thomas
Hello,
We use freeradius as a proxy server successfuly with many home server. But
Today with a new customer we're having an issue with shared key.
Here are some debugs.
srv-orhy# radiusd -v
radiusd: FreeRADIUS Version 2.1.3, for host x86_64-unknown-freebsd6.1,
built on Dec 16 2008 at 23:42:12
Files module supports use of files in post-auth and post-proxy. Add this
to raddb/modules/files:
postproxy_usersfile = ${confdir}/postproxy_users
Then create postproxy_users in raddb directory (where other users files
are) and list that DEAFAULT entry there.
Ivan Kalik
Kalik Informatika ISP
On Sun, 26 Apr 2009 00:18:29 +0100 (BST), Ivan Kalik t...@kalik.net
wrote:
I am trying to use freeradius as AAA server with ASNGW to authenticate
WiMAX
device. Would you be kind enough to provide details on how to configure
freeradius for this? I saw that you were successful in getting it
On Thu, 9 Apr 2009 07:37:38 +0100, Ivan Kalik t...@kalik.net wrote:
Compare attrs entries with users file entries. Then read what do
operators := and += do.
I've read man unlang and I correct my configuration, and I finally
succeed to do what I want but not as I thought.
I just
Compare attrs entries with users file entries. Then read what do
operators := and += do.
I've read man unlang and I correct my configuration, and I finally
succeed to do what I want but not as I thought.
I just notice the following :
In users file you can do
Attribute_A = foo
Hello,
Sorry to post again for the same subject, but I guess I haven't been
very clear in my last question to the list, so I'm trying to ask it
differently.
I've done some drawing that illustrate the settings I've tried and also
provide the whole log, that could be seen here
Thanx for your answer, Freeradius is now able to do local authentification
for this Wimax Solution, which is great.
Now I'm trying to do the following
ASN EAP/TTLS -- Radius A (Proxy) Inner CHAP Request
Radius A
The idea would be that Radius B only do simple authentication (ie
Thanks for the hint, it works well now.
I've got another question for my setup to work.
I've notice using Wireshark that Freeradius will break the TLV Attribut
into two attributes parts.
For sample when I configure this in users file
#ATTRIBUTE WiMAX-Packet-Flow-Descriptor
Hello,
I would use radmin (available from 2.1.3)
www1# radmin
radmin 2.1.5 - FreeRADIUS Server administration tool.
Copyright (C) 2008 The FreeRADIUS server project and contributors.
There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A
PARTICULAR PURPOSE.
You may redistribute
-Traffic-Rate=512000,
WiMAX-QoS-Id=02,
WiMAX-Media-Flow-Type=Robust-Browser,
WiMAX-Schedule-Type=BEST-EFFORT,
WiMAX-Traffic-Priority=0,
WiMAX-Maximum-Sustained-Traffic-Rate=512000
Maybe using perl module in the post-auth ?
Thanks
Thomas Fagart
-
List info
Aldo Zavala a écrit :
Hello, I just would like to know if there are some hints for compiling the FreeRADIUS 2.1.4 on the FreeBSD 7.0,
should I compile it with the GNU gmake? what tips can share with me on this?
Thanks,
Aldo
-
List info/subscribe/unsubscribe? See
Alan DeKok a écrit :
Thomas Fagart wrote:
1. Using radmin and the debug and even after reading man unlang, i'm
still not able to filter requests based on client IP (this is easier
then I'll be able to get only requests coming from the BS)
What have you tried? Why hasn't it worked
Hello,
After being able to produce great statistics with the new status server
feature, being able to do nice debug on production server with radmin,
(thanks again for this great features !), i'm also trying to do wimax
authentication with freeradius 2.1.3.
Here are some questions :
1.
Hello,
Using the latest stable git release, I've noticed the following.
radmin debug file /usr/home/tfa/radius.log
radmin debug condition '(User-Name == bob)'
At that time the file radius.log begins to be written by radiusd, but
it seems to log each request without taking care about the
On Wed, 22 Oct 2008 18:00:56 -0400, John Dennis [EMAIL PROTECTED] wrote:
Thomas Fagart wrote:
socket(PF_LOCAL,SOCK_STREAM,0) = 3 (0x3)
connect(3,{ AF_UNIX
/usr/local/var/run/radiusd/radiusd.sock(ô(Dì¿¿8X(Ê( },40) ERR#2
'No
such file or directory'
radmin: Failed
under the terms of the
GNU General Public License v2.
radmin
Thomas
On Thu, 23 Oct 2008 11:59:32 +0200, Alan DeKok [EMAIL PROTECTED]
wrote:
Thomas Fagart wrote:
Hum this is not very clear for me, then what should I do for radmin to
work, wait for new releases or bug corrections in FR
On Wed, 22 Oct 2008 10:24:32 +0200, Alan DeKok [EMAIL PROTECTED]
wrote:
Thomas Fagart wrote:
Ok now it creates properly radiusd.sock, thank you ,but I still can't
get connected through the socket
...
Listening on command file /usr/local/var/run/radiusd/radiusd.sock
Ok, so the file
Andrew Hood wrote:
Alan DeKok wrote:
Thomas Fagart wrote:
I though it was a question of rights, but even when I chmod/chown it with
more rights I still get the following error.
radmin: Failed connecting to /usr/local/var/run/radiusd/radiusd.sock: No
such file or directory
Alan DeKok wrote:
Zoltan Ori wrote:
I have installed version 2.1.1 on FreeBSD 7.0 from source obtained at download
link on www.freeradius.org. The server just works! Thank you Mr. DeKok
et. al.
You're welcome. That's the goal...
I wanted to try radmin, so I copied
Alan DeKok wrote:
Thomas Fagart wrote:
I look at this thread, because I also would like to use radmin on
Freebsd 7.0, and have had the same type of issue. Did you had time to
commit a fix or will that be available in future releases.
Grab the stable tar file from github. See
Hello,
Seems to work for me,
portable-bsd# snmpbulkwalk -On -v2c -cpublic localhost .1.3.6.1.2.1.67
.1.3.6.1.2.1.67.1.1.1.1.1 = STRING: snmp(over)radius
.1.3.6.1.2.1.67.1.1.1.1.2 = Timeticks: (5369900) 14:54:59.00
.1.3.6.1.2.1.67.1.1.1.1.3 = Timeticks: (5369900) 14:54:59.00
On Mon, 21 Jul 2008 14:29:42 +0200, Alan DeKok [EMAIL PROTECTED]
wrote:
Thomas Fagart wrote:
Seems to work for me,
That's good to hear.
Yes it also work on 64 bit OSes
I'll test that on 64 bits OS, and then we'll be very impatient for the
2.0.6 to come out.
Adding a little more
Alan DeKok wrote:
Thomas Fagart wrote:
Do you think I can report a bug about that issue ?
Please don't. The SMUX code is old, and is deprecated by the the
net-snmp people. It will NOT be fixed.
It's much better to write new code against the AgentX API, which is
supported
Hi
On Wed, 28 May 2008 19:47:09 +0100, [EMAIL PROTECTED] wrote:
Hi,
Those patches should be in 2.0.
Then this does not work for me using FR 2.0.3 and UCD-SNMP 4.2.7 on 64
bits
FreeBSD.
there are a couple of small patches which arent in 2.0 - i have
a small collection of diffs that
Hello,
On Wed, 21 May 2008 14:15:29 +0100, [EMAIL PROTECTED] wrote:
Hi,
Do you know if this is a know bug ? Or I missed something. I've tested
this
behaviour on differents releases (6.3, 6.1 and 7.0) of Freebsd. Seems
this
is always the same issue (non complete value on 64 bits OS, and
[EMAIL PROTECTED] wrote:
Hi,
Those patches should be in 2.0.
Then this does not work for me using FR 2.0.3 and UCD-SNMP 4.2.7 on 64 bits
FreeBSD.
there are a couple of small patches which arent in 2.0 - i have
a small collection of diffs that i was goign to go through to
Alan DeKok wrote:
Thomas Fagart wrote:
A better solution is to allow the server to put the statistics into
RADIUS packets. That way any SNMP interaction can be in a separate
program, which simplifies life enormously.
I don't understand properly, do you mean that you could proxy
Hello, I've got several Freeradius servers running on Freebsd. I'd like to
get them discuss with SNMP agent for statistics (using SMUX). I've notice
that this is working on 32 bits Freebsd
portable-taf# snmpwalk -v 1 -m
/usr/local/share/snmp/mibs/RADIUS-AUTH-SERVER-MIB.txt
Hello,
Do you know if this is a know bug ? Or I missed something. I've tested
this
behaviour on differents releases (6.3, 6.1 and 7.0) of Freebsd. Seems
this
is always the same issue (non complete value on 64 bits OS, and
behaviour
ok on 32 bits.
there are a couple of small SNMP
47 matches
Mail list logo