And my questions are: How can I be sure where freeradius is
authenticating in? /passwd or users file ?
Debug will tell you. Why have them both enabled if you want just one?
Ivan Kalik
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Ivan, could you post an excerpt from debug where he is telling me that?
--
Wagner Pereira
PoP-SP/RNP - Ponto de Presença da RNP em São Paulo
CCE/USP - Centro de Computação Eletrônica da Universidade de São Paulo
http://www.pop-sp.rnp.br
f...@rnp 1015-8902
t...@kalik.net escreveu:
And my
Ivan, could you post an excerpt from debug where he is telling me that?
No. It's your machine, not mine. You post the debug and we will tell you
which password store is used.
Ivan Kalik
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Ivan, could you post an excerpt from debug where he is telling me that?
No. It's your machine, not mine. You post the debug and we will tell you
which password store is used.
Ivan Kalik
You bet! Here it is.
server1:~# freeradius -X
FreeRADIUS Version 2.0.4, for host
Ivan, could you post an excerpt from debug where he is telling me that?
rad_recv: Access-Request packet from host 10.0.0.1 port 21645, id=210,
length=81
NAS-IP-Address = 10.0.0.1
NAS-Port = 1
NAS-Port-Type = Virtual
User-Name = recover
Hi,
i get this message
Info: rlm_sql (sql): received Acct On/Off packet
??? your FR server received an accounting packet and
your system is configured to use sql in the accounting
section - whats the error?
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
thanks for the information,
i tougth that was a error beacause I never got this message
thank you
2009/10/13 Alan Buxey a.l.m.bu...@lboro.ac.uk
Hi,
i get this message
Info: rlm_sql (sql): received Acct On/Off packet
??? your FR server received an accounting packet and
your system is
Hi,
Our radius-server timeout is high enough: 4 minutes. Once again: I
suppose that what freeradius thinks of as Received conflicting packet
... are rather a bit delayed packets normally treated as Discarding
conflicting packet ..., i.e. they arrive at freeradius in maybe 1.01+
Alan Buxey wrote:
Hi,
Our radius-server timeout is high enough: 4 minutes. Once again: I
suppose that what freeradius thinks of as Received conflicting packet
... are rather a bit delayed packets normally treated as Discarding
conflicting packet ..., i.e. they arrive at freeradius in
Our radius-server timeout is high enough: 4 minutes. Once again: I
suppose that what freeradius thinks of as Received conflicting packet
... are rather a bit delayed packets normally treated as Discarding
conflicting packet ..., i.e. they arrive at freeradius in maybe 1.01+
second after the
Ivan Kalik wrote:
Our radius-server timeout is high enough: 4 minutes. Once again: I
suppose that what freeradius thinks of as Received conflicting packet
... are rather a bit delayed packets normally treated as Discarding
conflicting packet ..., i.e. they arrive at freeradius in maybe 1.01+
rihad wrote:
Trying for the third time:
Do you have any intention of reading the messages here?
there are many, many requests of the
Discarding conflicting packet kind, which for one reason or another
are dupped by our Cisco NASes in under one second (see the code). And
there are many,
Alan DeKok wrote:
rihad wrote:
Trying for the third time:
Do you have any intention of reading the messages here?
there are many, many requests of the
Discarding conflicting packet kind, which for one reason or another
are dupped by our Cisco NASes in under one second (see the code). And
rihad wrote:
Oh yeah? Isn't Cisco 7260 good enough for you?
Q: Hi, I have a RADIUS server that is slower than a 386, and a NAS that
violates the RADIUS protocol. What should I do?
A: Fix the server and the NAS.
Q: You bastards! How dare you tell me my equipment is broken!
While this
Alan DeKok wrote:
rihad wrote:
Oh yeah? Isn't Cisco 7260 good enough for you?
Q: Hi, I have a RADIUS server that is slower than a 386, and a NAS that
violates the RADIUS protocol. What should I do?
A: Fix the server and the NAS.
Q: You bastards! How dare you tell me my equipment is
rihad wrote:
Being 100% correct protocol-wise means nothing, if the software can't
fit well into an environment.
So you agree that the NAS is broken.
Just a recent example off the top of my
head: dnscache. Its security and DNS protocol support are astonishing.
But due to it being unable
Being 100% correct protocol-wise means nothing, if the software can't
fit well into an environment.
Exactly. The only problem being your inability to comprehend that
freeradius is not faulty but it is your perl script that can't cope. If
you are unwilling to alter it in order to speed things up
Ivan Kalik wrote:
Being 100% correct protocol-wise means nothing, if the software can't
fit well into an environment.
Exactly. The only problem being your inability to comprehend that
freeradius is not faulty but it is your perl script that can't cope.
Why do you not understand that even if I
rihad wrote:
Ivan Kalik wrote:
Exactly. The only problem being your inability to comprehend that
freeradius is not faulty but it is your perl script that can't cope.
Why do you not understand that even if I put sleep 1 right before
finishing a request in my auth/acct Perl scripts, meaning
Hi,
finishing a request in my auth/acct Perl scripts, meaning each request
would take at least 1 second to process, freeradius shouldn't care! It
okay...you have a daemon listening on port 1812 ... how many threads
or radiusd processes are you running - because , for example, if you have
Rihad,
Take your NAS, and throw it in the garbage. Buy a real NAS that
implements RADIUS.
Oh yeah? Isn't Cisco 7260 good enough for you?
Hmmm ... A few months ago I was working on a project with a Cisco 72XX
terminating PPoE connections from DSL modems. I was using custom SQL code
rihad wrote:
Sometimes when there are too many requests from a NAS, like right after
rebooting it and thus breaking current sessions, etc., freeradius 2.1.3
under FreeBSD begins loggin many many lines like this after the NAS
re-sends unanswered packets:
Error: Received conflicting packet
Alan DeKok wrote:
but aborting the current packet instead of
the new duplicate one can hardly be justified.
Nonsense. The duplicate one is an indication that the *NAS* has given
up on the first packet. Spending more time processing the current
packet is useless, because the NAS will ignore
rihad wrote:
Absurd. The Dell PowerEdge 2950 w/ 2 quad-cores cannot itself without
human intervention survive the NAS attack exactly due to having to
give up on hundreds of requests per second
Your dual quad-core box can't handle hundreds of packets a second?
Wow... your Perl script is
Alan DeKok wrote:
but aborting the current packet instead of
the new duplicate one can hardly be justified.
Nonsense. The duplicate one is an indication that the *NAS* has given
up on the first packet. Spending more time processing the current
packet is useless, because the NAS will
Ivan Kalik wrote:
That is, not many (if any) of our Receved ... lines are due to what
could be considered a NAS timeout, and they should be treated like
Discarding ..., that is, the new request should be dropped.
No, NAS qouldn't wait on your script to finish so it gave up and has tried
again
Hello Alan,
On Mon, Sep 28, 2009 at 11:24 PM, Alan Buxey a.l.m.bu...@lboro.ac.uk wrote:
are you doing authentication and accounting via MySQL? did you perform
a benchmark of the RADIUS server + MySQL (eg with dumb temp accounts)
to check what the loading could be? in my experience,
Hello Alan,
On Tue, Sep 29, 2009 at 12:35 AM, Alan DeKok al...@deployingradius.com wrote:
What does that mean? You kick all of the users off, and then allow
them back on?
Just bypass the router and the RADIUS servers to go straight to the Internet.
Well... if the MySQL server can't
Hello Ivan,
On Tue, Sep 29, 2009 at 3:14 AM, Ivan Kalik t...@kalik.net wrote:
Try using buffered-sql virtual server to separate accounting from
authentication. At busy time accounting will lag behind but it will catch
up when rush passes.
Noted. I will check this out then.
Thank you.
Hi,
Hello all,
I am continuously getting this error message on my
/var/log/radius/radius.log file:
Mon Sep 28 18:26:55 2009 : Error: WARNING: Unresponsive child (id
1094719808) for request 24026 (in component accounting module
rlm_exec)
In effect, I got a timeout on account start and
I am continuously getting this error message on my
/var/log/radius/radius.log file:
Mon Sep 28 18:26:55 2009 : Error: WARNING: Unresponsive child (id
1094719808) for request 24026 (in component accounting module
rlm_exec)
Your perl script isn't working.
Ivan Kalik
Kalik Informatika ISP
-
Hello Alan and all,
On Mon, Sep 28, 2009 at 6:43 PM, Alan Buxey a.l.m.bu...@lboro.ac.uk wrote:
this sort of message means that the child process is taking
ages to do what is asked of it. in this case, its accounting and
the accounting config is trying to run some external executable which
Hi,
Previously, this has been working smoothly. Then we changed some
configurations on the following devices which currently we are now
too many changes made at the same time.
- Retry Count from 3 to 10
- Timeout from 3 to 10
so the router now hits the RADIUS 10 times insteda of 3
but has
Hello Alan and all,
On Mon, Sep 28, 2009 at 10:30 PM, Alan Buxey a.l.m.bu...@lboro.ac.uk wrote:
so the router now hits the RADIUS 10 times insteda of 3
but has more casuallnes in timeout
Basically:
Retry Count is the maximum number of times that the router retransmits
a RADIUS packet to the
Hi,
Retry Count is the maximum number of times that the router retransmits
a RADIUS packet to the RADIUS server. In this case, this has been
increased from 3 times to 10 times.
Timeout is the interval (in seconds) before the router retransmits a
RADIUS packet to the RADIUS server. In this
muffin sk wrote:
Basically, the number of subscribers increased. If we do a maintenance
window where we swing back and forth the traffic to the router,
What does that mean? You kick all of the users off, and then allow
them back on?
all
the subscribers will hit the router which eventually
Basically, the number of subscribers increased. If we do a maintenance
window where we swing back and forth the traffic to the router, all
the subscribers will hit the router which eventually push all the
RADIUS Requests to the RADIUS server in one shot and on which the
MySQL backend is
I've been using FreeRadius for quite some time now, but after a recent
update (to 2.0.4, debian lenny variant) all users in a certain group
have stopped authenticating properly, with the above error -- even
though as far as I can tell the password transmitted (and logged) is
identical to the
On Fri, 2009-08-28 at 11:26 +0100, Ivan Kalik wrote:
Remove forcing of Auth-Type Local. Let the server set the auth type.
That resulted in a different error message:
++[sql] returns ok
++[pap] returns updated
rad_check_password: Found Auth-Type
auth: type PAP
+- entering group PAP
On Fri, 2009-08-28 at 11:51 +0100, Ivan Kalik wrote:
On Fri, 2009-08-28 at 11:26 +0100, Ivan Kalik wrote:
1. You are using 1.x queries in a 2.x server. Fix that.
2. That user was found as system user as well and unix module is enabled.
You likely have different password in /etc/passwd. Make
Alan DeKok wrote:
It's not processing the accounting section for some reason. Are you
sure it's loading the right file?
Sorry, I though I installed 2.1.6. It is 2.1.1.
I am not sure if the right files loads, to me it looks like it. I have
copied what radiusd -X loads:
FreeRADIUS Version
Danie J. Steenkamp wrote:
Alan DeKok wrote:
It's not processing the accounting section for some reason. Are you
sure it's loading the right file?
Sorry, I though I installed 2.1.6. It is 2.1.1.
I am not sure if the right files loads, to me it looks like it. I have
copied what radiusd -X
Have a look at the logs - what do you see there?
Post the last 50 or so lines if you like.
Glen
On Thu, Aug 13, 2009 at 12:28, Danie J. Steenkamp da...@gaap.co.za wrote:
Hi, I have loaded Freeradius 2.1.6 on a Centos 5.3 server with Mysql.
The server is responding perfectly to any
=gaap.co...@lists.freeradius.org] On
Behalf Of Glen Millard
Sent: 13 August 2009 18:39
To: FreeRadius users mailing list
Subject: Re: ERROR 734
Have a look at the logs - what do you see there?
Post the last 50 or so lines if you like.
Glen
On Thu, Aug 13, 2009 at 12:28, Danie J. Steenkamp da
Danie J. Steenkamp wrote:
Hi, I have loaded Freeradius 2.1.6 on a Centos 5.3 server with Mysql.
The server is responding perfectly to any Authentication.
From a Windows XP it connects, verifies the username, password
Calling-Station-ID. It then immediately disconnects with Error 734: The
PPP
Thanks for all,
I installed freeradius 2.1.6 and it seems that eap works correctly, Thanks!
2009/7/28 Rokkhan rokk...@gmail.com:
Ok, I'll try to update 2.1.6.
I have not found newer rpm packages than i installed in my server on
freeradius.org, because when I go to the download section and I
Heivilin, Jim wrote:
I'm seeing lots of
Wed Aug 5 10:40:28 2009 : Error: TLS_accept:error in SSLv3 read
client certificate A
Wed Aug 5 10:40:28 2009 : Error: rlm_eap: SSL error
error::lib(0):func(0):reason(0)
That was fixed some time *way* back in the 1.1 versions.
In
Rokkhan wrote:
I have a working Freedius 1.0.5 server since year 2005 and i want to
improve it, migrating a Freeradius 2.1.1-6 version, the latest version
i have found for my Sles10 Sp2 server.
See the freeradius.org web page. It has RPMs of the newer versions
for suse.
When i run server
Ok, I'll try to update 2.1.6.
I have not found newer rpm packages than i installed in my server on
freeradius.org, because when I go to the download section and I select
Binary packages for Suse, it sends me to the page where i took from
packages the first time
freeradius 2.1.1-6 crashes in a few minutes and
shows this error Error: rlm_eap: Failed to store handler.
There is documentation that describes what to do if FreeRadius crashes. Look
in the file doc/bugs in the distribution and it gives specific instructions for
using gdb to produce
Sorry but maybe i have not explained my problem very well, freeradius
doesn't falls down, when i say that crashes i mean that doesn't
validate more users, i get some login incorrect that should be correct
if the server will work fine. Server sitel receive some acess-request
and process them but
Tim Gustafson wrote:
I've had a FreeRADIUS 2.1.3 server running on FreeBSD 7.1 for a few months
now. I logged in today to add a new group to my users file, and then
re-started the RADIUS daemon. After re-starting, I'm getting this in my
error log:
Info: Ready to process requests.
Don't worry, the issue is fixed. A vrf congiguration was missing.
From: Issa Nkusi Karera [MTN Rwanda - MTN Centre]
Sent: Wednesday, July 15, 2009 6:10 PM
To: freeradius-users@lists.freeradius.org
Subject: error 734
Hello folks,
Below is log message after an attempt to authenticate.
RamonL wrote:
I configured a freeradius server and this did work well with one basedn. Now
I want to define multiple basedn. I modified the configuration as described
in the documentation found on the web
When i start freeradius i get the following error message
I configured a freeradius server and this did work well with one basedn.
Now
I want to define multiple basedn. I modified the configuration as
described
in the documentation found on the web
When i start freeradius i get the following error message
/etc/raddb/radiusd.conf[1915]: Line is
Ted Behling wrote:
In case the admin(s) of the FreeRADIUS download servers is on this list,
I thought I'd point out that I received an error just now when trying to
download 2.1.6. Following the links at
_http://freeradius.org/download.html_, the link to:
Run ldconfig on the path where the .so file is.
Am 30.04.2009 um 17:52 schrieb Xiaochen Jing:
Hello,
I newly installed 2.1.4. When I want to run radiusd –X, I get an
error saying
“radiusd: error while loading shared libraries: libfreeradius-
radius-2.1.5.so: cannot open shared
: Re: Error after installation
Run ldconfig on the path where the .so file is.
Am 30.04.2009 um 17:52 schrieb Xiaochen Jing:
Hello,
I newly installed 2.1.4. When I want to run radiusd X, I get an error
saying
radiusd: error while loading shared libraries:
libfreeradius
Open files 2048 ??
Man LSOF ??
Regards,
E:S
From: freeradius-users-bounces+edvin.seferovic=kolp...@lists.freeradius.org
[mailto:freeradius-users-bounces+edvin.seferovic=kolp...@lists.freeradius.or
g] On Behalf Of Angel Rivera
Sent: Dienstag, 28. April 2009 00:51
To:
Hi jon
I guess you forget set the ip in freeradius client.conf, but this ip do not
look like ip address.
Fabián Omar Franzotti
Resistencia - Chaco
Argentina
- Original Message -
From: jon jon
To: freeradius-users@lists.freeradius.org
Sent: Monday, April 20, 2009 4:45 PM
I did set the new IP address in the new client.conf.
jon
On Mon, Apr 20, 2009 at 3:10 PM, Fabián Omar Franzotti fofw...@gmail.comwrote:
Hi jon
I guess you forget set the ip in freeradius client.conf, but this ip do not
look like ip address.
Fabián Omar Franzotti
Resistencia - Chaco
:14 PM
Subject: Re: Error: Ignoring request from unknown client IP:32772
I did set the new IP address in the new client.conf.
jon
On Mon, Apr 20, 2009 at 3:10 PM, Fabián Omar Franzotti fofw...@gmail.com
wrote:
Hi jon
I guess you forget set the ip in freeradius client.conf, but this ip do
- Chaco - Argentina
Tel Arg.: 54-(372)-243-8710 / 54-(372)-257-0347
USA Phone: 1-(321)-284-3865
- Original Message -
From: jon jon
To: FreeRadius users mailing list
Sent: Monday, April 20, 2009 5:14 PM
Subject: Re: Error: Ignoring request from unknown client IP:32772
I did set the new IP
client.conf
-
Fabián Omar Franzotti
Resistencia - Chaco - Argentina
Tel Arg.: 54-(372)-243-8710 / 54-(372)-257-0347
USA Phone: 1-(321)-284-3865
-
- Original Message -
From: jon jon
To: FreeRadius users mailing list
Sent: Monday, April 20, 2009 5:14 PM
Subject: Re: Error
USA Phone: 1-(321)-284-3865
-
- Original Message -
From: jon jon
To: FreeRadius users mailing list
Sent: Monday, April 20, 2009 5:14 PM
Subject: Re: Error: Ignoring request from unknown client IP:32772
I did set the new IP address in the new client.conf.
jon
On Mon, Apr 20
-(321)-284-3865
- Original Message -
From: jon jon
To: FreeRadius users mailing list
Sent: Monday, April 20, 2009 5:26 PM
Subject: Re: Error: Ignoring request from unknown client IP:32772
No, I can't paste my client.conf file, what is it that you are looking
*Sent:* Monday, April 20, 2009 5:26 PM
*Subject:* Re: Error: Ignoring request from unknown client IP:32772
No, I can't paste my client.conf file, what is it that you are looking for
in this file? The error message is Error: Ignoring request form unkown
client myipaddress:32772
Jon
On Mon
No, I can't paste my client.conf file, what is it that you are looking for
in this file?
Source of your error. But if you are not willing to reveal relevant
information ... Feel free to come back when you are willing to post the
output of radiusd -X (as suggested in any peace of documentation
I really can't make it work on SUSE 11.0. I didn't find any information
about it and there are no attempts left for me.
I would like to know what destributions really handle freeRADIUS in a good
manner. I think of CentOS 5.2, but do I really need to download 7 iso images
to put it into work?
I think of CentOS 5.2, but do I really need to download 7 iso images to put
it into work?
Download the DVD version if you have a dvd drive ?
Did you do :
freeradius stop
killall freeradius
ps -fe | grep -i radius
kill -s 9 `ps -fe | grep -i radius`
updatedb
`locate radiusd | grep bin | grep
Bruno Noronha wrote:
I really can't make it work on SUSE 11.0. I didn't find any information
about it and there are no attempts left for me.
You were given exact instructions. If you follow them, they work.
Downloading a new OS will not help you.
Alan DeKok.
-
List
No, you haven't stopped radius then. Only one service per port. man
lsof if you're not sure which process is holding on to the port.
Sent from my iPhone
On 24 Mar 2009, at 20:12, Bruno Noronha bhnoro...@gmail.com wrote:
Dawgs,
I received the following error when starting debug mode or
I didn't understand what you meant... I issued lsof and verified only one
service running on 1812 port!
2009/3/24 Anders Holm anders.h...@sysadmin.ie
No, you haven't stopped radius then. Only one service per port. man lsof if
you're not sure which process is holding on to the port.
Sent from
I received the following error when starting debug mode or issuing
freeradius reload and catching the error in radius.log:
This is nothing to do with freeradius. People who made your distribution
made that reload script. Find out who maintains freeradius for your
distribution and ask them to
Unfortunately, your suggestion didn't have any result.
I'm using SUSE 11.0 OS...
Do I have to initiate freeRADIUS through freeradius -X ?
2009/3/24 t...@kalik.net
I received the following error when starting debug mode or issuing
freeradius reload and catching the error in radius.log:
This
Bruno Noronha wrote:
I didn't understand what you meant... I issued lsof and verified only
one service running on 1812 port!
Which means you can't run *another* server on the same port. This is
Unix 101.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
Yes.. But this port is used just for freeradius!! That's why I can't figure
out a solution for this...
2009/3/24 Alan DeKok al...@deployingradius.com
Bruno Noronha wrote:
I didn't understand what you meant... I issued lsof and verified only
one service running on 1812 port!
Which means
Unfortunately, your suggestion didn't have any result.
I'm using SUSE 11.0 OS...
So, find SuSE maintainer and ask him.
Do I have to initiate freeRADIUS through freeradius -X ?
That's not likely to work either. radiusd is already running. Try good
old:
killall radiusd
Then start it again (with
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Hi Alan,
I have found the problem with my radius authentication. My CA certificate had
expired, which was the root of the issue.
But its been sorted now.
Cheers,
JK
-BEGIN PGP SIGNATURE-
Version: PGP Universal 2.9.0 (Build 472)
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
My problem is that, I am not able to figure out, what wrong am I doing ? I
shall be highly thankful, if you can point me what part of config I need to
change?
Many Thanks,
JK
Jaswinder Kaur wrote:
I am using freeradius 2.1.1 on Suse 10 SP1. I
Jaswinder Kaur wrote:
My problem is that, I am not able to figure out, what wrong am I doing ? I
shall be highly thankful, if you can point me what part of config I need to
change?
Have you READ eap.conf? This is documented in all of the recent
versions of the server.
This is also in
Jaswinder Kaur wrote:
I am using freeradius 2.1.1 on Suse 10 SP1. I am trying to integrate
Freeradius with edirectory, but somehow, I am not able to achieve the desired
result, the client just sits while trying to authenticate, I can see the
Radius server reading the username and password,
Thx Alan
I coded a very simple script to check the mysl server latency:
#!/bin/sh
ExecQuery ()
{
echo select count(*) from radacct; | mysql -h mysqlserver -u
radiususer --password=radiuspassword radaccoutingdb
}
while [ -n 1 ]
do
echo -n starting query.
date
Executing this script during last 24h (with nohup), from the radius machine, I
got always latencies below 1 second
Below 1 second or below 1/100th of a second? Near 1 second for such a
simple query is *very* slow. Have in mind that insert into radacct is
going to take some 100 times
HI again Ivan
Do you know how can I modify the source code, in order to print in the error
message the exact time when the child was created/forked? If I want to find
errors in my sql backend server, I need to know the exact time when the
requests are lost.. checking the code, It looks
First, optimize your database, add indexes and use storage engines which
will give you the best performance... Increase interim-update interval
After that, try to add more handlers and see what will happen.
If you're using mysql, check tuning-primer.sh and mysqltuner.pl scripts.
On Thu, Feb 26,
magicboiz wrote:
Do you know how can I modify the source code, in order to print in the error
message the exact time when the child was created/forked? If I want to find
errors in my sql backend server, I need to know the exact time when the
requests are lost.. checking the code, It
I facing this problem with my Freeradius 2.1.3, and I don't know how to solve
it :(
My NAS is sending only accounting registers to my freeradius server. My
freeradius server, is configured to store these registers into a MySQL server.
I have configured max_request_time = 120, in the case of MySQL
Thx Ivan,
and do you know if the accouting registers is lost? or another child retries
the insert into the database?
thx
Regards
On Miércoles 25 Febrero 2009 14:09:44 t...@kalik.net wrote:
I facing this problem with my Freeradius 2.1.3, and I don't know how to
solve it :(
My NAS is
and do you know if the accouting registers is lost? or another child retries
the insert into the database?
They usually are - there are no handles to write to the database as the
whole server gets blocked. I haven't seen tha case where single handle
would dia and the rest of them would continue
I didn't enabled it but maybe the debian-build made it for me without
noticing it.
Anyway it's definetely the udpfromto problem. For debugging I just
forced the define of HAVE_AF_INET6 (that it was not defined and so made
udpfromto_init return -1) and now the code works.
Or better, there is a
Setting the flag --without-udpfromto inside debian/rules solved the
issue.
Probably debian/ubuntu testers added it in the default config because
they didn't test it with ipv6, I don't know.
Anyway now it works, thanks all for the help
-
List info/subscribe/unsubscribe? See
Thanks for the suggestion but of course I tried different ways to try to
grep the process :)
I just mentioned one of the command I used to make people understand
that I checked the process list :)
Still no clue about the problem anyway...
Try just 'ps -e|grep radius' that will catch
No problem :)
Maybe a shot in the dark but is selinux enabled? check your logs to see if
any policies are blocking it or type 'echo 0 /selinux/enforce' then try to
start it again.
--
Leigh
On Tue, Feb 10, 2009 at 3:19 AM, D'AVELLA STEFANO
stefano.dave...@alcatel-lucent.com wrote:
Thanks
I don't have selinux installed on the machine, the only installed
package about selinux is the shared library libselinux1, so
I don't think that is the problem. I am thinking that it is something
about the ipv6 config in ubuntu but I am not sure. What I am doing right
now is trying to backtrace
Ok I have traced where the problem is (of course it was in the actual
binding of the port).
Listen_init() calls listen_parse() that calls common_socket_parse().
Inside this function around line 510 of listen.c there is this line:
/*
* And bind it to the port.
*/
if (listen_bind(this) 0)
Exactly the problem is in the udpfromto_init() call inside the
listen_bind() function.
Inside this function the return value is set to be:
return setsockopt(s, proto, flag, opt, sizeof(opt));
with the ipv6 address, it returns -1 (and after a couple of calls and
error logs, the program exits)
D'AVELLA STEFANO wrote:
Exactly the problem is in the udpfromto_init() call inside the
listen_bind() function.
Then disable udpfromto. It is NOT enabled in the default build of the
server, so the only way you can run into this problem is if you enable a
non-standard feature.
Alan DeKok.
Am 09.02.2009 um 17:17 schrieb D'AVELLA STEFANO:
Hello,
I am new to Freeradius. I am running Freeradius 2.1.0 on Ubuntu
8.10, built from source.
I have already read all the documentation I could find in the
config files and in the wiki.
The machine has two network interfaces, eth0 and
Be sure that no other freeradius is running and also that you have
enough rights to open such a port.
Look in your inet.d or similar to avoid that another service is run
instead of the planned freeradius.
Thanks for the quick answer. I have thought the same because also some
old mailing list
201 - 300 of 620 matches
Mail list logo