Hi,
Not sure about it but I think you might be able to use regex to do that.
It may be something like:
if("%{NAS-Port-Id}" =~ / \b[1-4][0-9]{3}/) { #this to extract the vlan
switch "%{1}" { #this to refer to the matched vlan tag substring
Hi,
I'm receiving from SE100:
NAS-Port-Id = "2/2 vlan-id 1001 clips 132019"
How to extract number 1001 which will be used in code:
switch "extracted vlan-id" {
case 1000 {
...
}
case 1001 {
..
It works perfectly, thanks alot Alan for the fast and useful answer.
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/Nas-Port-Id-as-username-tp5664812p5666952.html
Sent from the FreeRadius - User mailing list archive at Nabble.com.
-
List info/subscribe/unsubscribe? See
Hehe, yes i know... :) That became a little bit wrong... ;)
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/Re-We-are-using-the-Cisco-ACS-5-3-as-a-RADIUS-for-database-authentication-and-authorization-The-purp-tp5664867p5665034.html
Sent from the FreeRadius - User maili
> This is what we want:
>
> User --> [SR] --> User-Name = “MAC:xx.xx.xx.xx” Password = “secret”
> NAS-Port-Id = 1/1/4.1001.129 --> [FR] --> User-Name = “1/1/4.1001.129”
> Password = “secret” --> [ACS 5.3]
>
> Is there a solution for this option in the Free
Next time put something in subject so we can know something about your
problem... :)
On 25.4.2012 15:03, Xbert_badstuber wrote:
We are using the Cisco ACS 5.3 as a RADIUS for database authentication and
authorization. The purpose is to authenticate incoming users based on the
NAS-PORT-ID. The
We are using the Cisco ACS 5.3 as a RADIUS for database authentication and
authorization. The purpose is to authenticate incoming users based on the
NAS-PORT-ID. The problem is that we cannot find any solution for the Service
Router (Alcatel 7750) to send the NAS-PORT-ID to act as USERNAME. The
We are using the Cisco ACS 5.3 as a RADIUS for database authentication and
authorization. The purpose is to authenticate incoming users based on the
NAS-PORT-ID. The problem is that we cannot find any solution for the Service
Router (Alcatel 7750) to send the NAS-PORT-ID to act as USERNAME. The
Louis Arsenault wrote:
> I have a managed network switch that support MAC authentication and
> will send requests to Radius. The issue is I do not wish to keep a
> list of customer device MAC addresses for authentication. I would like
> to enforce activation by port.
>
> My first attempt was chang
Hello,
I have a managed network switch that support MAC authentication and
will send requests to Radius. The issue is I do not wish to keep a
list of customer device MAC addresses for authentication. I would like
to enforce activation by port.
My first attempt was changing the username & password
illed with different Integers.
>
> I've read the sources of ppp, but i didn't found out anything. :-(
>
Best place to look is in the actual RFC's to be honest:
http://tools.ietf.org/html/rfc2865#section-5.41 - NAS-Port-Type
http://tools.ietf.org/html/rfc2869#section-5.17
hi,
i've a question about the database fileds "NASPortId" and "NASPortType"
for radius in radacct.
what's the meaning oder those fields?
NASPortType is always filled with "Async" ...
NASPortId is filled with different Integers.
I've read the sources of ppp, but i didn't found out anything. :
Hi!
I have a freeradius(2.0.4+dfsg-6) using postgresql and running on Debian
Lenny.
Everything works great.
Now I'm in the position to where I need to insert or update the User-name,
NAS-Port-id, NAS-Port-type and NAS-Identiifier to a table in the database
each time freeradius recei
Amr el-Saeed wrote:
> Can i log the NAS-PORT-ID in the log file instead of the NAS-PORT?
> Thu Sep 3 10:53:10 2009 : Auth: Login OK: [627...@tedata.net.eg] (from
> client MNSREST port *4060295476)
In 2.1.7 you can customize that message to include anything you want.
Alan DeKok.
-
Hi All,
Can i log the NAS-PORT-ID in the log file instead of the NAS-PORT?
Thu Sep 3 10:53:10 2009 : Auth: Login OK: [627...@tedata.net.eg] (from
client MNSREST port 4060295476)
thanks
Amr
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Piero Giobbi wrote:
> Im using freeradius 1.1.7 with Proxim AP4000 and it works. But i get
> this in my syslog.
>
> /Error: rlm_radutmp: Logout entry for NAS ap-serverummet port 9 has
> wrong ID/
It just means that the server missed a logout packet for that port.
Alan DeKok.
-
List info/sub
Hi all.
Im using freeradius 1.1.7 with Proxim AP4000 and it works. But i get
this in my syslog.
Error: rlm_radutmp: Logout entry for NAS ap-serverummet port 9 has
wrong ID
What does this mean? Can i ignore it? Can't really find anything
useful on the net..
client-conf:
client 10.0.5.
Thank you very much! Great job Peter !
This problem was solved using de rlm_sqlipool with sql postgres instance.
All other radius database transctions was made with another sql mysql
instance.
Thank for all
Toledo
>
> On Wed 08 Aug 2007, Toledo, Luis Carlos wrote:
> > > > Hey all,
> > > >
> >
On Wed 08 Aug 2007, Toledo, Luis Carlos wrote:
> > > Hey all,
> > >
> > > I have a serius problem with non valid Nas-port received
> >
> > from NASes,
> >
> > > because a need to provide a dynamic IP (rlm_ippool).
> > >
> > > Have anyone any suggestion?
> >
> > http://wiki.freeradius.org/Rlm_sqlipp
> > Hey all,
> >
> > I have a serius problem with non valid Nas-port received
> from NASes,
> > because a need to provide a dynamic IP (rlm_ippool).
> >
> > Have anyone any suggestion?
>
> http://wiki.freeradius.org/Rlm_sqlippool
>
I am use mysql for all radius operations and data storage, is
On Wed 08 Aug 2007, Toledo, Luis Carlos wrote:
> Hey all,
>
> I have a serius problem with non valid Nas-port received from NASes,
> because a need to provide a dynamic IP (rlm_ippool).
>
> Have anyone any suggestion?
http://wiki.freeradius.org/Rlm_sqlippool
--
Peter Nixon
http://peternixon.net
Hey all,
I have a serius problem with non valid Nas-port received from NASes, because
a need to provide a dynamic IP (rlm_ippool).
Have anyone any suggestion?
Thx
Toledo, Luis Carlos
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
lto:[EMAIL PROTECTED]
org] On Behalf Of Geoffrey Cauchi
Sent: 06 September 2006 09:25
To: 'FreeRadius users mailing list'
Subject: RE: How to restrict pppoe users on nas-port-id
Use the check-item variable to restrict port id's
Gef
-Original Message-
From:
[EMAIL PROTECTED]
[m
Use the check-item variable to restrict port id's
Gef
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
rg] On Behalf Of [EMAIL PROTECTED]
Sent: 05 September 2006 21:04
To: freeradius-users@lists.freeradius.org
Subject: How to restrict pppoe users on nas-po
I'm using FreeRADIUS Version 1.0.4 with Dialup_admin and mysql and I
would like to know if anyone can direct me in the right place to find
out how to restrict pppoe users from logging in from multiple NAS port
IDs. I would like to restrict them to logging on to only a specific set
of port IDs th
Hi all,
could you help me? I am using freeradius version 1.0.2. There is some
possibilities, how to do proxing based on attribute Nas-Port-Id (no only
based on realm)?
Thanks
Martin
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On 02/08/06, Colm Ennis <[EMAIL PROTECTED]> wrote:
hiya,does anyone know if users/sql authentication based on the NAS-Port-Idfield possible? and if so how?Colm,What are you going to authenticate? If they can use any username/password, then are you just checking whether a port is active or inactive?
hiya,
does anyone know if users/sql authentication based on the NAS-Port-Id
field possible? and if so how?
thanks for your help,
colm
> -Original Message-
> From: Colm Ennis
> Sent: 26 July 2006 15:00
> To: freeradius-users@lists.freeradius.org
> Subject: authenticati
-Id rather than User-Name. (the dslams/basen we use
support populating NAS-Port-Id with the dslam/frame/slot/port).
i am also working on migrating to a mysql authentication backend.
so, does anyone have any tips on setting up NAS-Port-Id based
authentication with users/fastusers/sql? i hope to
Silent Man <[EMAIL PROTECTED]> wrote:
> radclient: dict_init: /usr/local/etc/radiusclient-ng/dictionary[33]:
> dict_addattr: Duplicate attribute name NAS-Port-Id
You are having radclient, from the FreeRADIUS source, read a
dictionary file from the "radiusclient" pac
or message :
radclient: dict_init: /usr/local/etc/radiusclient-ng/dictionary[33]:
dict_addattr: Duplicate attribute name NAS-Port-Id
I've checked in the file /usr/local/etc/radiusclient-ng/dictionary,
but the "NAS-Port-Id" attribute exists only once.
Could you help please ? I'm new to F
On Tue, 15 Mar 2005, [iso-8859-1] Ernesto Freyre Ramírez wrote:
> Hi, Please I would want to consult about the use of NAS-Port-Id parameter
> coming from the NAS, my NAS Server is not sending this parameter, I would
> want to know If I could to replace this with the NAS-Port for usin
Hi, Please I would want to consult about the use of NAS-Port-Id parameter
coming from the NAS, my NAS Server is not sending this parameter, I would
want to know If I could to replace this with the NAS-Port for using this in
the Key for identifying an accounting record as unique, i.e :
Replace
33 matches
Mail list logo