Franks Andy (RLZ) IT Systems Engineer wrote:
I have a hopefully fairly straightforward question. We have a network
switch, a procurve 5406 that we’re doing mac based port authentication
on. The switch sends radius attributes including the NAS-Port-ID. I want
to be able to reply with tagged
On 25 Apr 2013, at 08:54, Alan DeKok al...@deployingradius.com wrote:
Franks Andy (RLZ) IT Systems Engineer wrote:
I have a hopefully fairly straightforward question. We have a network
switch, a procurve 5406 that we’re doing mac based port authentication
on. The switch sends radius
On 25 Apr 2013, at 10:37, Arran Cudbard-Bell a.cudba...@freeradius.org wrote:
On 25 Apr 2013, at 08:54, Alan DeKok al...@deployingradius.com wrote:
Franks Andy (RLZ) IT Systems Engineer wrote:
I have a hopefully fairly straightforward question. We have a network
switch, a procurve 5406
Hi All,
I have a hopefully fairly straightforward question. We have a network
switch, a procurve 5406 that we're doing mac based port authentication
on. The switch sends radius attributes including the NAS-Port-ID. I want
to be able to reply with tagged and untagged vlans for the ports once
/Authorising-Clients-by-Calling-Station-ID-Not-IP-tc4883866.html
Regards
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/multiple-NAS-behind-multiple-NAT-with-one-radius-server-tp5561001p5564209.html
Sent from the FreeRadius - User mailing list archive at Nabble.com.
-
List
it is really helpful,thank you very much.
Date: Wed, 14 Mar 2012 03:47:31 -0700
From: dirkvanderw...@gmail.com
To: freeradius-users@lists.freeradius.org
Subject: Re: multiple NAS behind multiple NAT with one radius server.
Hi,
You may want to look at this discussion that took place
Hello Dirk:
I read this article, it is really helpful, thank you very much.
Before reading it, my solution is set a single client entry in clients.conf
like this
client allAP
{
ipaddr=0.0.0.0
netmask=0
sercet=something
...
}
right now ,it works fine for multiple NAS.
I want
ZhenJoey wrote:
I want to know,ignore the security issues, does all clients use the same
single entry will effect the performance of the radius server?
No.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello Everybody:
Recently I am working on a project, it requires a radius server(which i use
freeradius for sure) that could be shared by multiple NASes which are behind
multiple NAT.(one NAS to one NAT)
But not really easy for me, i have the following problem.
I use freeradius+mysql, for
Hello all,
Does anyone know how to configure the users on the multiple nas/clients in
freeradius?
for example :
my nas type (client type) is chillispot access points.
my first nas ip address is 192.168.1.1
my second nas ip address is 192.168.1.2
my third nas ip address is 192.168.1.3
2011/10/4 Arran Cudbard-Bell a.cudba...@freeradius.org
On 4 Oct 2011, at 13:32, Alejandro Gandara wrote:
Hi list,
Im using freeradius 2.1.10 with ldap and I have a doubt.
Im testing radius with two NAS , first one an openvpn service and the
other one is a switch Procurve.
My question
Set simultaneous login limit to 1 for the account and add the NAS IP
address in there where clause of the simul_count_query.
Note that doing so require use of an rlm_sql module in the the session
section of freeradius config.
Regards.
Le 10/10/2011 04:48, Dagia Dorjsuren a écrit :
Hello,
Hello,
Anyone advise me for my below problem pls.
How to configure simultaneous login count for each NAS?
for example : there is one account and 2 NAS like NAS1 and NAS2. That
account's total simultaneous login count is 2.
So, there is that account's first simultaneous login
Hi list,
Im using freeradius 2.1.10 with ldap and I have a doubt.
Im testing radius with two NAS , first one an openvpn service and the other
one is a switch Procurve.
My question is the following:
Can I configure the openvpn nas to read some attribute from the ldap ( as
framedipaddress)
On 4 Oct 2011, at 13:32, Alejandro Gandara wrote:
Hi list,
Im using freeradius 2.1.10 with ldap and I have a doubt.
Im testing radius with two NAS , first one an openvpn service and the other
one is a switch Procurve.
My question is the following:
Can I configure the openvpn
Thanks very much for the fastest and efectivest answer.
2011/10/4 Arran Cudbard-Bell a.cudba...@freeradius.org
On 4 Oct 2011, at 13:32, Alejandro Gandara wrote:
Hi list,
Im using freeradius 2.1.10 with ldap and I have a doubt.
Im testing radius with two NAS , first one an openvpn
works out
of the box so I'm concerned that you're butchered the config
alan
--
Message may be brief as it has been sent from my mobile
- Reply message -
From: Dagia Dorjsuren dagmi...@yahoo.com
Date: Wed, Sep 21, 2011 03:08
Subject: Multiple NAS configuration
To: Fred fred.mai...@gmail.com
http://wiki.freeradius.org/Clients.conf
2011/9/20, Dagia Dorjsuren dagmi...@yahoo.com:
Hello all,
How to configure
multiple NAS (NAS-IP-Address) in freeradius? Which radius database's
table should I add NAS-IP-Address attributes?
Anyone advise me?
-
List info/subscribe/unsubscribe
To: Dagia Dorjsuren dagmi...@yahoo.com; FreeRadius users mailing list
freeradius-users@lists.freeradius.org
Sent: Wednesday, September 21, 2011 4:41 AM
Subject: Re: Multiple NAS configuration
http://wiki.freeradius.org/Clients.conf
2011/9/20, Dagia Dorjsuren dagmi...@yahoo.com:
Hello all
To: Dagia Dorjsuren dagmi...@yahoo.com; FreeRadius users mailing list
freeradius-users@lists.freeradius.org
Sent: Wednesday, September 21, 2011 4:41 AM
Subject: Re: Multiple NAS configuration
http://wiki.freeradius.org/Clients.conf
2011/9/20, Dagia Dorjsuren dagmi...@yahoo.com:
Hello all
Hello all,
How to configure
multiple NAS (NAS-IP-Address) in freeradius? Which radius database's
table should I add NAS-IP-Address attributes?
Anyone advise me?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Guyz,
I have FreeRADIUS Version 2.1.10 working with mysql to authenticate uses
connected to a number of NAS(s).
Now, I would like to authenticate NAS(s) which should connect to my freerad
from other networks (outside my lan) which have dynamic IPs.
Anyone with a trick on how to configure
On 26 Aug 2011, at 11:49, Grace M. wrote:
Guyz,
I have FreeRADIUS Version 2.1.10 working with mysql to authenticate uses
connected to a number of NAS(s).
Now, I would like to authenticate NAS(s) which should connect to my freerad
from other networks (outside my lan) which have
of puplic ips??
Don't know am making sense.
Grace
- Original Message -
From: Arran Cudbard-Bell
To: FreeRadius users mailing list
Sent: Friday, August 26, 2011 2:55 PM
Subject: Re: A trick for configuring freerad to authenticate multiple NAS
withdynamic IPs
On 26 Aug 2011
through some sort of encrypted tunnel.
-Arran
Don't know am making sense.
Grace
- Original Message -
From: Arran Cudbard-Bell
To: FreeRadius users mailing list
Sent: Friday, August 26, 2011 2:55 PM
Subject: Re: A trick for configuring freerad to authenticate multiple NAS
:
http://freeradius.1045715.n5.nabble.com/One-client-multiple-NAS-Port-Types-tp4445525p4448412.html
Sent from the FreeRadius - User mailing list archive at Nabble.com.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On 02/06/11 16:17, DaveA wrote:
Alan DeKok wrote:
Proxying. Set up a minimal virtual server that proxies to others.
Okay, this makes sense, but I am still unclear as to where to make the
differentiation between NAS-Port-Types.
What I envision is something like:
If (NAS-Port-Type ==
That looks great, thanks!
Last question...
Phil Mayers wrote:
authorize {
...
That is the authorize section from /sites-enabled/default, correct?
Thanks again,
Dave
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/One-client-multiple-NAS-Port-Types
On 06/02/2011 06:05 PM, DaveA wrote:
That looks great, thanks!
Last question...
Phil Mayers wrote:
authorize {
...
That is the authorize section from /sites-enabled/default, correct?
Well, whichever virtual server is receiving the packets. default
normally, yes,
-
List
have read through clients.conf and do not believe it can be done there.
Where is the most appropriate place to separate the requests?
Thank-you,
Dave
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/One-client-multiple-NAS-Port-Types-tp4445525p4445525.html
Sent from
DaveA wrote:
In this case, I would like to send CLI and 802.1x requests to different
virtual servers, because I accomplish #1 painlessly with ldap, and #2 gets
more complicated with ads and eduroam in the mix.
I have read through clients.conf and do not believe it can be done there.
Where
DaveA daldw...@uwaterloo.ca wrote:
I am looking for some guidance on configuring clients that will send
requests with different NAS-Port-Type???s.
Devices: HP Procurve, Cisco, Aruba wireless controllers
Possible NAS-Port-Types: Ethernet, Virtual, Wireless, Async
Ex., for an HP procurve
On Jun 1, 2011, at 10:53 AM, Alexander Clouter wrote:
DaveA daldw...@uwaterloo.ca wrote:
I am looking for some guidance on configuring clients that will send
requests with different NAS-Port-Type???s.
Devices: HP Procurve, Cisco, Aruba wireless controllers
Possible NAS-Port-Types:
Arran Cudbard-Bell wrote:
You can do an internal proxy, but last time I checked multiple chained
internal proxies were broken (I tried something very similar a few years ago).
You can proxy to one virtual server. But that request can't be
proxied again. It's too awkward to deal with that.
Rana Dhekial wrote:
How do I create conditional statement to uniquely identify differenent
NAS vendors to use its sql.conf ? Is it something like
if ( NAS-IP-Address = cisco's IP address )
$INCLUDE ${confdir}/sql1.conf
No. The configurations are static. You cannot use unlang in the
.conf
in the radiusd.conf file ?
thanks,
Date: Sat, 9 Aug 2008 10:45:10 +0200 From: [EMAIL PROTECTED] To:
freeradius-users@lists.freeradius.org Subject: Re: Multiple NAS Rana
Dhekial wrote: So the idea is to create multiple tables in the database
where Freeradius is writing and store
Rana Dhekial wrote:
So the idea is to create multiple tables in the database where
Freeradius is writing and store Cisco's accounting info to say
radacct_1, Asterisk's to radacct_2, OpenSER's to radacct_3 tables.
You can update the table name on the fly. In 2.0.5, set
SQL-Table-Name, and
Bonjour,
je suis actuellement en congés pour 3 semaines.
Je suis de retour le 1er septembre 2008.
En cas d'urgence, vous pouvez contacter Monsieur Tixier au 03 80 24 44 27 ou la
maintenance informatique au 03 80 24 45 84.
Cordialement.
-
List info/subscribe/unsubscribe? See
Hi, I use different type of VoIP GWYs and SIP servers ( like Cisco, Asterisk,
OpenSER ) in our VoIP network. They are writing detail accounting info to the
freeradius server fine. But I am having some issues writing the accounting info
to backend database like MySQL. For example the radius
Bonjour,
je suis actuellement en congés pour 3 semaines.
Je suis de retour le 1er septembre 2008.
En cas d'urgence, vous pouvez contacter Monsieur Tixier au 03 80 24 44 27 ou la
maintenance informatique au 03 80 24 45 84.
Cordialement.
-
List info/subscribe/unsubscribe? See
How I can configure multiples NAS-Identifier attributes in my users
file?
Thanks in advance
Germán P. Santillán
Administrador de Redes
Responsable Dpto. Técnico
DESETech Argentina S.A.
San Martín 133 - CP: B8000FIC
Bahía Blanca - Argentina
Tel/Fax: +54 (291) 456-5642
[EMAIL PROTECTED]
DESETech - German P. Santillan [EMAIL PROTECTED] wrote:
How I can configure multiples NAS-Identifier attributes in my users
file?
To do what?
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi, I am new to the list, and did a search before posting this question,
but I couldnt find anything related to this.
I have multiple NASs, all using a single FreeRadius server to validate
the users. Everything is working fine, if I create a user in mysql, you
can login to any of the NASs with
On Thu, 6 Jan 2005, James Feger wrote:
Okay,
So I am a newbie with just enough knowledge to know this should work, and have
spent a few hours reading all the different cool things
RADIUS does for me. However, I cant get it to do what we need, and I am sure
its lack of experience. I have read
On Fri, 7 Jan 2005, Dustin Doris wrote:
On Fri, 7 Jan 2005, Dustin Doris wrote:
Maybe you can do groups. For example, setup an unlimited group
and a read_only group. Then put the users into the appropriate group.
Have your users file say something like.
DEFAULT Huntgroup-Name == Juniper,
On Thu, 6 Jan 2005, Dustin Doris wrote:
Why don't you make some default entries up front and allow fall-through?
For example.
DEFAULT Huntgroup-Name == x
Reply-Attribute = X
Fall-Through = yes
DEFAULT Huntgroup-Name == y
Reply-Attribute = y
Fall-Through =
On Fri, 7 Jan 2005, Dustin Doris wrote:
Maybe you can do groups. For example, setup an unlimited group
and a read_only group. Then put the users into the appropriate group.
Have your users file say something like.
DEFAULT Huntgroup-Name == Juniper, Group == unlimited
Okay,
So I am a newbie with just enough knowledge to know this should work, and have
spent a few hours reading all the different cool things
RADIUS does for me. However, I cant get it to do what we need, and I am sure
its lack of experience. I have read the various FAQ's and
help files, but I
James Feger [EMAIL PROTECTED] wrote:
I have been able to create a basic users file and
authenticate logins for my differen vendor equipment. Logins work
flawlessly, but using the freeradius -X I notice the server is
sending all attributes, even if they arent for that vendor.
Is
Okay,
So I am a newbie with just enough knowledge to know this should work, and
have spent a few hours reading all the different cool things
RADIUS does for me. However, I cant get it to do what we need, and I am sure
its lack of experience. I have read the various FAQ's and
help files,
On Thu, 6 Jan 2005, Dustin Doris wrote:
Why don't you make some default entries up front and allow fall-through?
For example.
DEFAULT Huntgroup-Name == x
Reply-Attribute = X
Fall-Through = yes
DEFAULT Huntgroup-Name == y
Reply-Attribute = y
Fall-Through = yes
51 matches
Mail list logo
