Hi,
Is anyone out there load balancing RADIUS with an F5 load balancer? We're doing
it here, but I can't help thinking that the actual load balancing algorithm
need some tweaking.
As far as I'm aware ( systems section support the F5 boxes)
1). We're using round robin to spread the load over
On Wed, Oct 9, 2013 at 3:41 PM, Alex Sharaz alex.sha...@york.ac.uk wrote:
While we have 900 switches doing mac and 802.1x based auth, we can have
6000+ users on our wireless network all authenticating to RADIUS via 3 RAS
clients. Looking at the back end server log files, it does look
Am Mittwoch, 9. Oktober 2013, 09:41:19 schrieb Alex Sharaz:
Hi,
Is anyone out there load balancing RADIUS with an F5 load balancer? We're
doing it here, but I can't help thinking that the actual load balancing
algorithm need some tweaking.
As far as I'm aware ( systems section support
On 09.10.2013 10:41, Alex Sharaz wrote:
Hi,
Is anyone out there load balancing RADIUS with an F5 load balancer? We're
doing it here, but I can't help thinking that the actual load balancing
algorithm need some tweaking.
I have f5 loadbalancers but atm I don't use them for our RADIUS
On 9 Oct 2013, at 10:16, Fajar A. Nugraha l...@fajar.net wrote:
On Wed, Oct 9, 2013 at 3:41 PM, Alex Sharaz alex.sha...@york.ac.uk wrote:
While we have 900 switches doing mac and 802.1x based auth, we can have 6000+
users on our wireless network all authenticating to RADIUS via 3 RAS clients
On 09.10.2013 11:25, Olivier Beytrison wrote:
On 09.10.2013 10:41, Alex Sharaz wrote:
I was wondering if there's a way off having a bit more granularity in terms
of how the f5 load balances incoming RADIUS requests.
Another nice thing to do is to do persistence based on radius AVP
https
address for server).
Everything works fine with the following config :
The Virtual Server ( IP is A.B.C.D has it's public for external DC ...)
ltm virtual /Common/VS-RADIUS-AUTH {
destination /Common/A.B.C.D:1812
ip-protocol udp
mask 255.255.255.255
pool /Common/POOL-RADIUS-AUTH
of how the f5 load balances incoming RADIUS requests.
Another nice thing to do is to do persistence based on radius AVP
https://devcentral.f5.com/questions/radius-load-bnalancing-persistence
So you can load balance incoming requests based on any standard AVP
(User-Name, NAS-IP-Address, Calling
Hello,
We have been having strange experiences with our RADIUS service lately and we
thought it would be a good idea to run RADIUS in debug mode permanently to
enable us effectively troubleshoot user complaints.
How can we run radiusd -x logname such that we have different logname for
each
xxx'
Where + args xx is the date string format you require
alan
Clement Ogedengbe c.ogeden...@worc.ac.uk wrote:
Hello,
We have been having strange experiences with our RADIUS service
lately and we thought it would be a good idea to run RADIUS in debug
mode permanently to enable us effectively
How can we run radiusd -x logname such that we have different
logname for each day?
Clement, may I suggest a cron job?
At midnight, move the log, kill and restart the radius server with a new log in
the name? Of course you run the risk of possibly killing any authentication
attempts
On 3 Oct 2013, at 10:14, stefan.pae...@diamond.ac.uk wrote:
How can we run radiusd -x logname such that we have different
logname for each day?
Clement, may I suggest a cron job?
At midnight, move the log, kill and restart the radius server with a new log
in the name? Of course you
Hi,
this is FreeRADIUS list, not general Linux lsit - I'd suggest looking at some
guides for
the EXACT thing you need eg
http://www.cyberciti.biz/faq/linux-unix-formatting-dates-for-display/
(and ensure your escape quotes are the right way around)
alan
-
List info/subscribe/unsubscribe? See
I changed all instances of the password testing123, to a random password on
both the StrongSwan server and the Radius server, and restarted the strongswan
and radiusd services. However, this broke the connection to authenticate to
the LDAP server, so I had to put it back to testing123 to get
Clint Petty wrote:
How can I change the radius default testing123 password? Is there a
command I need to run to do this?
Edit raddb/clients.conf. Look for testing123.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi Alan,
Thanks for your reply. However, I have already changed the instances of the
password testing123 in the following files:
StrongSwan:/etc/strongswan/strongswan.conf
Radius:/etc/raddb/proxy.conf
Radius:/etc/raddb/sites-available/dynamic-clients
Radius:/etc/raddb/sites-available/originate
Clint Petty wrote:
Hi Alan,
Thanks for your reply. However, I have already changed the instances of the
password testing123 in the following files:
StrongSwan:/etc/strongswan/strongswan.conf
That's good.
Radius:/etc/raddb/proxy.conf
That's not good. The secret there is for home
Hi Alan,
Ok, I just changed the StrongSwan:/etc/strongswan/strongswan.conf the
Radius:/etc/raddb/clients.conf files, and left the other files with reference
to testing123 alone. Restarted the strongswan radiusd services, and get
the same error from my iphone, VPN Connection - User
this is storngswan.conf for you
2) the shared secret in the clients.conf file - this is whats used to reference
the incoming request from the NAS
all other parts are system components eg proxy.conf has a default internal one
- and
if you were proxying to OTHER RADIUS servers, then you would
[mailto:freeradius-users-bounces+cpetty=luthresearch@lists.freeradius.org]
On Behalf Of Alan DeKok
Sent: Wednesday, October 02, 2013 2:02 PM
To: FreeRadius users mailing list
Subject: Re: how to change the radius default testing123 password
Clint Petty wrote:
Hi Alan,
Thanks for your reply
hi,
pretty definitive. incorrect shared secret - are you SURE that you havent got
any white spaces
etc lurking around? keep the shared secret in quotes if in doubt
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
=luthresearch@lists.freeradius.org]
On Behalf Of Alan Buxey
Sent: Wednesday, October 02, 2013 3:31 PM
To: FreeRadius users mailing list
Subject: RE: how to change the radius default testing123 password
hi,
pretty definitive. incorrect shared secret - are you SURE that you havent got
any white
follwong error in our radius log when ipad trying to
connect to our WIFI network , our WIFI network using EAP-TTLS + LDAP
authentication ,
All other devices (linux , windows, mac os 10.8 , Suse , android )
are working fine apart from ipads ..
Error
===
Tue Sep 17 13:36:25 2013 : Error
val john wrote:
Tue Sep 17 13:36:25 2013 : Error: TLS Alert read:warning:close notify
This means that the *other* end shut down the TLS connection. To be
polite, it sent a notification that it was doing so.
Do you guys any idea what cause this issue
Maybe there's something in the CA /
us.org] On Behalf Of val john
Sent: 19 September 2013 05:28
To: FreeRadius users mailing list
Subject: ipad ssl error in free radius
hi guys
we are getting follwong error in our radius log when ipad trying to connect
to our WIFI network , our WIFI network using EAP-TTLS + LDAP authentication
hi guys
we are getting follwong error in our radius log when ipad trying to
connect to our WIFI network , our WIFI network using EAP-TTLS + LDAP
authentication ,
All other devices (linux , windows, mac os 10.8 , Suse , android ) are
working fine apart from ipads ..
Error
===
Tue Sep 17 13
The alternative is getting your users to install something like
SecureW2 (which I believe requires a license now), and using EAP-TTLS-
PAP which submits the users password in plaintext, or I believe more
recent flavours of Windows support EAP-TTLS too.
If I remember correctly, when using
On 11/09/13 12:05, stefan.pae...@diamond.ac.uk wrote:
The alternative is getting your users to install something like
SecureW2 (which I believe requires a license now), and using
EAP-TTLS- PAP which submits the users password in plaintext, or I
believe more recent flavours of Windows support
That's because EAP-TTLS/PAP doesn't use EAP on the inner tunnel. Just
PAP. So default_eap_type is irrelevant.
You support EAP-TTLS/PAP by ensuring PAP is working in the inner tunnel
- by populating a cleartext or hashed password and calling the pap
module in the authorize/authenticate
On 10 Sep 2013, at 19:15, Swenson, Chris cswen...@curry.edu wrote:
I understand a bit more why people were bring up plain text passwords now.
My radius server is being presented with peap ms-chapV2 credentials and I
want it to receive authentication from my openldap server.
What happened
On 09/10/2013 02:15 PM, Swenson, Chris wrote:
I understand a bit more why people were bring up plain text passwords now.
My radius server is being presented with peap ms-chapV2 credentials and
I want it to receive authentication from my openldap server.
It seems that the credentials
I understand a bit more why people were bring up plain text passwords now.
My radius server is being presented with peap ms-chapV2 credentials and I want
it to receive authentication from my openldap server.
It seems that the credentials in this format cannot be digested by openldap
Yes, I already saw that and this is why I am stuck.
I am using Aruba 3000 Wireless controllers running the 6.2.X.X code.
As I understand it when the laptop user selects the secure SSID they should be
prompted for a username and password.
This username and password will be presented to radius
and password.
This username and password will be presented to radius as peap MS-CHAPV2.
Radius then needs to authenticate this against my Openldap where the
passwords are encrypted as SHA, thus bad end.
I could not find an encryption type in open ldap that would satisfy the
chart
: free radius setup
On 10 Sep 2013, at 19:15, Swenson, Chris cswen...@curry.edu wrote:
I understand a bit more why people were bring up plain text passwords now.
My radius server is being presented with peap ms-chapV2 credentials and I
want it to receive authentication from my openldap server
Lists) on the password
attributes so that only the admin and the radius process can read them.
--
John
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-bounces+cswenson=curry@lists.freeradius.org] On
Behalf Of Arran Cudbard-Bell
Sent: Monday, September 09, 2013 6:54 PM
To: FreeRadius users mailing list
Subject: Re: my Radius goal radius and openldap.
On 9 Sep 2013, at 23:00, Swenson, Chris cswen...@curry.edu wrote:
I already have functioning
On 9 Sep 2013, at 23:00, Swenson, Chris cswen...@curry.edu wrote:
I already have functioning openldap with SSL. (actually a neat little multi
master setup.)
I would like to get this radius to authenticate against the openldap.
You have plaintext passwords then?
I have dug around Google
I already have functioning openldap with SSL. (actually a neat little multi
master setup.)
I would like to get this radius to authenticate against the openldap.
I have dug around Google and found some useful looking pages, but I wonder if
anybody has any hot tips on this so I don't feel like I
On 10 Sep 2013, at 00:19, Swenson, Chris cswen...@curry.edu wrote:
No, they are encrypted in the ldap database in md5 hash.
Right, but you have the plaintext version from the user?
I might be too old to do bleeding edge stuff like 3.0 RC1
I will take a look and a poke at it though.
Fair
from my Verizon Wireless 4GLTE smartphone
- Reply message -
From: Arran Cudbard-Bell a.cudba...@freeradius.org
To: FreeRadius users mailing list freeradius-users@lists.freeradius.org
Subject: my Radius goal radius and openldap.
Date: Mon, Sep 9, 2013 7:34 pm
On 10 Sep 2013, at 00:19
: my Radius goal radius and openldap.
Date: Mon, Sep 9, 2013 7:34 pm
On 10 Sep 2013, at 00:19, Swenson, Chris cswen...@curry.edu wrote:
No, they are encrypted in the ldap database in md5 hash.
Right, but you have the plaintext version from the user?
I might be too old to do bleeding
is:
- manage radius profiles completely in ldap with replyItems
- return reply Items of multiple profiles to a user if he belongs to
multiple profiles
Example RADIUS Profiles:
dn: uid=aosReadWrite,ou=profiles,ou=radius,dc=example,dc=com
cn: AOS Read-Write
objectClass: radiusObjectProfile
=radius,dc=example,dc=com) {
update reply {
Alcatel-Access-Priv = Alcatel-Read-Priv
Alcatel-Access-Priv += Alcatel-Write-Priv
Alcatel-Access-Priv += Alcatel-Admin-Priv
, that's the point of RADIUS profile in LDAP.
You need to set the profile_attribute configuration item to
radiusGroupName. IIRC you also need to use full DNs for the radiusGroupName
values.
That was the missing hint. Thank you Arran!
It is working as expected.
Kind regards,
Tobias Hachmer
-
List info
On 08/14/2013 09:25 PM, McNutt, Justin M. wrote:
One other thing with multiple interfaces: RHEL 6 comes with some
anti-spoofing features in the kernel enabled by default. I'm afraid
As I noted elsewhere in the thread, the terms to google for this are
martians and rp filter, and you are
RADIUS traffic on eth1 -
tcpdump shows it coming in, but radiusd -X shows no indication of
this traffic (but is reporting all of the traffic on eth0).
Anyone know what I'm missing here?
--
Dr. Kurt Hillig
UMNet AdministrationI always tell the (734)647-8778 desk
{
type = acct
ipaddr = *
port = 1813
interface = eth1
}
But radiusd isn't seeing any of the inbound RADIUS traffic on eth1 -
tcpdump shows it coming in, but radiusd -X shows no indication of
this traffic (but is reporting all of the traffic on eth0).
Anyone know what I'm
Kurt Hillig wrote:
radiusd.conf includes these listen sections (omitting comments):
listen {
type = auth
ipaddr = *
port = 1812
interface = eth0
}
Why not just bind it to the IP of the interface? And remove the
interface line?
Alan DeKok.
-
List
On 14/08/13 15:07, Kurt Hillig wrote:
But radiusd isn't seeing any of the inbound RADIUS traffic on eth1 -
tcpdump shows it coming in, but radiusd -X shows no indication of
this traffic (but is reporting all of the traffic on eth0).
If radiusd -X isn't reporting *anything*, then it's
Before running radius in debug mode, try iptables -F with root privileges, it
disables iptables default rules
Phil Mayers p.may...@imperial.ac.uk ha scritto:
On 14/08/13 15:07, Kurt Hillig wrote:
But radiusd isn't seeing any of the inbound RADIUS traffic on eth1 -
tcpdump shows it coming
@lists.freeradius.org] On
Behalf Of Matteo Vocale
Sent: Wednesday, August 14, 2013 2:32 PM
To: FreeRadius users mailing list
Subject: Re: How to accept RADIUS traffic on multiple interfaces?
Before running radius in debug mode, try iptables -F with root privileges, it
disables iptables default rules
Phil Mayers
: freeradius-users-bounces+mcnuttj=missouri@lists.freeradius.org
[mailto:freeradius-users-bounces+mcnuttj=missouri@lists.freeradius.org] On
Behalf Of Matteo Vocale
Sent: Wednesday, August 14, 2013 2:32 PM
To: FreeRadius users mailing list
Subject: Re: How to accept RADIUS traffic
Hi.
Your approach (use an external script) finally worked
It's definitely a hack, as I discovered that Linuxes don't do any
DHCP-Release (and I expected to send a radius acct stop at this point).
Nevertheless, it will help me to emulate a mobile operator network
behaviour, when a machine
On 9 Aug 2013, at 15:35, Fabrice-externe SEGURA
fabrice-externe.seg...@erdfdistribution.fr wrote:
Hi.
Your approach (use an external script) finally worked
It's definitely a hack, as I discovered that Linuxes don't do any
DHCP-Release (and I expected to send a radius acct stop
Fabrice-externe SEGURA wrote:
A word on documentation however : It's quite an understatement to say
that it can be improved.
We've had ~15 years of people complaining about this. So far,
contributions have been sporadic.
Doing documentation takes a concerted effort, and commitment. It's
Hi.
I'm trying to use Freeradius 2.2.0 to catch DHCP request on a local
network (a specific interface and physical network of my machine), and
forward it to another radius server (through another interface), using the
radius protocol, to get authorized, and get the IP address to respond
Fabrice-externe SEGURA wrote:
I'm trying to use Freeradius 2.2.0 to catch DHCP request on a local
network (a specific interface and physical network of my machine), and
forward it to another radius server (through another interface), using
the radius protocol, to get authorized, and get the IP
Am Donnerstag, 8. August 2013, 09:19:30 schrieb Fabrice-externe SEGURA:
Hi.
I'm trying to use Freeradius 2.2.0 to catch DHCP request on a local
network (a specific interface and physical network of my machine), and
forward it to another radius server (through another interface), using
Hi.
I was afraid this would come out that wayThanks for the response
anyway, it prevent me to further useless research. I will have to
hand-knit me this piece of code.
A suggestion for v3 : It should be possible then to turn the simple dhcp
request into 2 radius request : the auth request
Fabrice-externe SEGURA wrote:
A suggestion for v3 : It should be possible then to turn the simple dhcp
request into 2 radius request : the auth request + the acct start
request. Icing on the cake : dhcp-release should also transform into an
acct stop.
That's a lot harder.
As always
On 8 Aug 2013, at 16:45, Alan DeKok al...@deployingradius.com wrote:
Fabrice-externe SEGURA wrote:
A suggestion for v3 : It should be possible then to turn the simple dhcp
request into 2 radius request : the auth request + the acct start
request. Icing on the cake : dhcp-release should also
As a hack just use exec and radclient to generate the packets and feed
them back into the server.
Interesting. That suggest there might be a way to make it work after
all...(I merely need a hack, it's for the purpose of simulating behavior
of an operators's GGSN towards a system that
Matthew Schumacher wrote:
Any quick ideas before I start really digging?
Nope. NSS is weird...
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
List,
This is odd, I can't seem to figure out what the deal is with this.
This works:
As root user; /usr/sbin/radius -X
As root user; /usr/sbin/radius (when user= and group= is commented out
and running as root)
As radius user; /usr/sbin/radius -X
As radius user; /usr/sbin/radius (when user
List,
This is odd, I can't seem to figure out what the deal is with this.
This works:
As root user; /usr/sbin/radius -X
As root user; /usr/sbin/radius (when user= and group= is commented out
and running as root)
As radius user; /usr/sbin/radius -X
As radius user; /usr/sbin/radius (when user
On 07/31/2013 07:06 AM, Matthew Schumacher wrote:
List,
This is odd, I can't seem to figure out what the deal is with this.
This works:
As root user; /usr/sbin/radius -X
As root user; /usr/sbin/radius (when user= and group= is commented out
and running as root)
As radius user; /usr
Hi,
I want to download free radius version 3.0.0 rco. Please let me know the
downlaod link.
Also wanted to know whether free radius version 3.0.0 rco is officially
released or not.
If not when it will be ready for official release.
Thanks amp; Regards
Manjunath
nbsp;-
List info/subscribe
On 07/23/2013 05:28 AM, manjunath uthappa ponnachana wrote:
Hi,
I want to download free radius version 3.0.0 rco. Please let me know the
downlaod link.
The tarball is available here:
https://github.com/FreeRADIUS/freeradius-server/archive/release_3_0_0_beta1.tar.gz
Also wanted to know
On 07/23/2013 08:29 AM, John Dennis wrote:
On 07/23/2013 05:28 AM, manjunath uthappa ponnachana wrote:
Hi,
I want to download free radius version 3.0.0 rco. Please let me know the
downlaod link.
The tarball is available here:
https://github.com/FreeRADIUS/freeradius-server/archive
On 23 Jul 2013, at 13:38, John Dennis jden...@redhat.com wrote:
On 07/23/2013 08:29 AM, John Dennis wrote:
On 07/23/2013 05:28 AM, manjunath uthappa ponnachana wrote:
Hi,
I want to download free radius version 3.0.0 rco. Please let me know the
downlaod link.
The tarball is available
Hi,
Can i know the reason why SNMP support in Free Radius was broken.
Which is the last version of Free radius having SNMP support.
Also want to know which version of Free Radius has trigger.conf enabled.
Please help for the above information
Thanks amp; Regards
Manjunath-
List info
Am Donnerstag, 18. Juli 2013, 07:43:24 schrieb manjunath uthappa ponnachana:
Hi,
Can i know the reason why SNMP support in Free Radius was broken.
SMUX was a old interface between the ucd-snmp Master Agent. Since ucd-snmp
became net-snmp and the modern interface is AgentX, it seems
On 18 Jul 2013, at 08:43, manjunath uthappa ponnachana
pu_manjun...@rediffmail.com wrote:
Hi,
Can i know the reason why SNMP support in Free Radius was broken.
Kittens! They attacked the source code with their tiny claws and gnashing teeth.
Which is the last version of Free radius
...@rediffmail.com wrote:
Hi,
Can i know the reason why SNMP support in Free Radius was broken.
Kittens! They attacked the source code with their tiny claws and gnashing
teeth.
Which is the last version of Free radius having SNMP support.
There's a script in scripts to proxy between snmp and status
Am Donnerstag, 18. Juli 2013, 06:30:19 schrieb Bruce Nunn:
To get by the work of those kittens I set up a remote login to run radmin
commands and parse the output so it is suitable for mrtg. It has worked
well for me.
Ever tried the extend config option of the net-snmp agent?
It executes
Hi,
To get by the work of those kittens I set up a remote login to run radmin
commands and parse the output so it is suitable for mrtg. It has worked well
for me.
I use the munin plugin to graph auths/accts
alan
-
List info/subscribe/unsubscribe? See
When I start freeradius
/usr/local/sbin/radiusd -X
it displayes the error that
radiusd: symbol lookup error: /usr/local/lib/rlm_perl-2.2.0.so: undefined
symbol: Perl_Gthr_key_ptr
I have googled it but could not resolved it.
-
List
radiusd: symbol lookup error: /usr/local/lib/rlm_perl-2.2.0.so: undefined
symbol: Perl_Gthr_key_ptr
I have googled it but could not resolved it.
You can't of googled very hard...
https://ask.fedoraproject.org/question/10205/why-is-the-perl_gthr_key_ptr-symbol-missing/
Arran
Analyser Great wrote:
I am trying to setup a configuration where network admins have access to
all devices and users have only access to cisco vpn. I don't wanna use
local user database since I already have Ldap to authorize and Kerberos
to authenticate.
How do you do this in your domain
I am not sure what I am doing wrong but I am just banging my head on a
simple problem.
I am trying to upgrade from radius 1 to radius 2 and will be using an
entire set of new configuration.
Currently, I am checking an Ldap attribute dialupaccess to allow users to
get access to vpn / network
Hello!
We have a Cisco Wireless Controller 5508 with Aironet 1041 APs.
To make the AP authenticate with RADIUS we need to set the following
command manually in the AP:
- radius-server vsa send
Which as explained by cisco does the following:
Command
Purpose
Router(config)# *radius
Gustavo Vieira Oliveira wrote:
We have a Cisco Wireless Controller 5508 with Aironet 1041 APs.
To make the AP authenticate with RADIUS we need to set the following
command manually in the AP:
This isn't a Cisco support list.
The thing is, the APs can only authenticate if this command
On 4 Jul 2013, at 13:12, Gustavo Vieira Oliveira gusta...@sc.senai.br wrote:
Hello!
We have a Cisco Wireless Controller 5508 with Aironet 1041 APs.
To make the AP authenticate with RADIUS we need to set the following command
manually in the AP:
- radius-server vsa send
Which
authenticate with RADIUS we need to set the following
command manually in the AP:
- radius-server vsa send
That is odd, and I would guess that you have something not set up
correctly on the controller (I assume your APs are all lightweight
and correctly joined to the controller).
It all works
Yeah, i'm not saying it's a problem with RADIUS.
I'm just asking trying to understand why it's happening and if there may
be any workaround for this.
Matthew, we have some remote places that we chose to authenticate
locally with Radius.
I'm guessing the configuration (radius-server vsa
Those are VSA that you are getting from the NAS. You're WiFi kit is centrally
managed so config is pushed from the controller
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
Can i know the reason why SNMP support was broken in Free Radius version 2 and
later.
Thanks amp; Regards
ManjunathFrom: Alan DeKok lt;al...@deployingradius.comgt;Sent: Sat, 01 Jun
2013 04:13:03 To: pu_manjun...@rediffmail.com, FreeRadius users mailing list
lt;freeradius-users
Hi,
How to define free radius attribute as output when used as a variable in SQL
statement.
Thanks amp; Regards
Manjunath-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On 10/06/13 10:43, manjunath uthappa ponnachana wrote:
Hi,
How to define free radius attribute as output when used as a variable in
SQL statement.
The SQL module doesn't support that kind of use case.
At the moment, you need to make your stored procedure return a single
value, and split
Hi Alan,
But my concern why free radius is not sending access-reject response.
Thanks amp; Regards
ManjunathFrom: Alan DeKok lt;al...@deployingradius.comgt;Sent: Fri, 07 Jun
2013 19:12:02 To: pu_manjun...@rediffmail.com, FreeRadius users mailing list
lt;freeradius-users
manjunath uthappa ponnachana wrote:
But my concern why free radius is not sending access-reject response.
I answered your question. Did you bother to read my message?
Fix your database. Nothing else will solve the problem.
If your car is out of gas, pushing on the gas pedal won't work
Hi
For specific testing requirements ...
I want my FR to send response that does not match any request to client
(i.e response with modified request no. )
or if the RADIUS message code is not Access-Accept or Access -Reject
Any help!
--
br,
Navodit Bhardwaj
Hughes Systique Corporation
-
List
Navodit Bhardwaj wrote:
Hi
For specific testing requirements ...
I want my FR to send response that does not match any request to client
(i.e response with modified request no. )
or if the RADIUS message code is not Access-Accept or Access -Reject
Write C code.
Alan DeKok.
-
List
Hi,
There is a parameter max_request_time defined in file radiusd.conf which
indicates the maximum time free Radius takes to handle a request. Request which
take more time than this will be killed and reject message is sent by Free
radius. This problem is most often seen when using an SQL
manjunath uthappa ponnachana wrote:
I am trying to test this and trying to execute SQL query from free
radius which will take more time than max_request_time. But free radius
is not sending reject message instead it comes out with an error no
response from the server.
That's how it works
On 31 May 2013, at 01:46, manjunath uthappa ponnachana
pu_manjun...@rediffmail.com wrote:
Hi,
As per freeradius website freeradius.org, Native SNMP support in FreeRADIUS
version 2 and later is broken.
I wanted to know whether in newer/latest versions of free radius SNMP support
manjunath uthappa ponnachana wrote:
As per freeradius website freeradius.org
Native SNMP support in FreeRADIUS version 2 and later is broken.
Version 2 does support SNMP via a Perl script. It's not perfect, but
it works.
I wanted to know whether in newer/latest versions of free radius SNMP
Hi,
As per freeradius website freeradius.org, Native SNMP support in FreeRADIUS
version 2 and later is broken.I wanted to know whether in newer/latest versions
of free radius SNMP support will be there. Also wanted to know whether using
free Radius traps can be send to NMS. If possible what
Hi,
I am not interested in any argument, i wanted to check what may be the
problem with my radius server as accounting is successful with free radius
on other server.
..and as per response to emails you are sending me directly, this is nothing to
do with the
RADIUS server config
1 - 100 of 4877 matches
Mail list logo