RE: Freeradius-Users Digest, Vol 25, Issue 68



Hi all

Me in trouble I m implementing RADIUS <---> Diameter Translation Agent for which I need a

Diameter Server implemented in java, If there is any then let me tell so that I could implement

Translation Agent

Ahmed

mailto:khursheedahmedqau@hotmail.com
+92346-5099331

From: freeradius-users-request@lists.freeradius.org
Reply-To: freeradius-users@lists.freeradius.org
To: freeradius-users@lists.freeradius.org
Subject: Freeradius-Users Digest, Vol 25, Issue 68
Date: Wed, 16 May 2007 05:41:58 +0200
>Send Freeradius-Users mailing list submissions to
> freeradius-users@lists.freeradius.org
>
>To subscribe or unsubscribe via the World Wide Web, visit
> http://lists.freeradius.org/mailman/listinfo/freeradius-users
>or, via email, send a message with subject or body 'help' to
> freeradius-users-request@lists.freeradius.org
>
>You can reach the person managing the list at
> freeradius-users-owner@lists.freeradius.org
>
>When replying, please edit your Subject line so it is more specific
>than "Re: Contents of Freeradius-Users digest..."
>
>
>Today's Topics:
>
> 1. RE: Pool-Name from Called-Station-Id (Hugh Messenger)
> 2. Re: Server IP changed and "FreeRADIUS+MySQL" does not work
> (Kevin Bonner)
> 3. RE: no session showed by radwho, but user still could not
> login (Trio)
> 4. Attributes mapping between LDAP and RADIUS (Jian Wang)
> 5. Re: Server IP changed and "FreeRADIUS+MySQL" does not work
> (yao guoxian)
> 6. Re[5]: (NikulinAS)
>
>
>----------------------------------------------------------------------
>
>Message: 1
>Date: Tue, 15 May 2007 16:39:47 -0500
>From: "Hugh Messenger" <hugh@alaweb.com>
>Subject: RE: Pool-Name from Called-Station-Id
>To: <freeradius-users@lists.freeradius.org>
>Message-ID: <007a01c79739$8fc0dd60$010210ac@DELLBOY>
>Content-Type: text/plain; charset="us-ascii"
>
>
>
>Ala DeKok said:
>
> > DEFAULT Called-Station-Id =~ "^(\w+_pppoe_\d+)$", Pool-Name :=
>`%{1}`
> >
> > \w && \d may not be supported by the regex library on your system. You
> > may have to use [a-fA-F] etc. explictely.
>
>I don't seem to be able to get this to work. This is my DEFAULT entry:
>
>DEFAULT Called-Station-Id =~ "^([A-z0-9]+_pppoe_[0-9]+)$", Pool-Name :=
>`%{1}`
> Framed-IP-Netmask = 255.255.0.0,
> Fall-Through = 1
>
>... and it seems to be matching on authentication requests, as per this -X
>fragment:
>
> users: Matched entry DEFAULT at line 162
>
>... where line 162 is the above DEFAULT. And I've triple checked my regexp
>using my IDE's RX toolkit. But sqlippool isn't picking up that pattern
>match as the pool name:
>
>rlm_sql_mysql: query: SELECT FramedIPAddress FROM radippool WHERE
>pool_name = '' AND expiry_time < NOW() ORDER BY pool_name, (UserName <>
>'radiustest'), (CallingStationId <> '00:60:B3:45:6A:98'), expiry_time
>LIMIT 1 FOR UPDATE
>sqlippool_query1: SQL query did not return any results
>
>If I replace the regexp version with a specific one, like ...
>
>DEFAULT Called-Station-Id == "brantley_pppoe_141", Pool-Name :=
>"brantley_pppoe_141"
>
>... it all works fine.
>
> >
> > Alan DeKok.
>
> -- hugh
>
>
>
>
>------------------------------
>
>Message: 2
>Date: Tue, 15 May 2007 17:49:52 -0400
>From: Kevin Bonner <keb@pa.net>
>Subject: Re: Server IP changed and "FreeRADIUS+MySQL" does not work
>To: FreeRadius users mailing list
> <freeradius-users@lists.freeradius.org>
>Message-ID: <200705151749.56538.keb@pa.net>
>Content-Type: text/plain; charset="utf-8"
>
>On Tuesday 15 May 2007 09:39:55 yao guoxian wrote:
> > I have installed FreeRADIUS and MySQL on the same machine.
> > "FreeRADIUS + MySQL" had worked well before Server IP changed. For
> > some reason the server had to be carried to a new place and its IP must be
> > changed.
> > After the server IP changed, "FreeRADIUS + MySQL" does not work.
> > I have edited sql.conf and changed IP to the new correct IP . I
> > also edited the table "user" in the database "mysql" and altered
> > the Host field from the old IP to the new correct IP. However these
> > mendings do not work.
>
>As Alan stated, try connecting to MySQL from the command line to confirm that
>it works. You updated the IPs in mysql.user, but that doesn't affect the
>MySQL permissions. To apply any changes to the mysql privilege tables, you
>must either restart the MySQL service or run "FLUSH PRIVILEGES".
>
>Kevin Bonner
>-------------- next part --------------
>A non-text attachment was scrubbed...
>Name: not available
>Type: application/pgp-signature
>Size: 189 bytes
>Desc: not available
>Url : https://lists.freeradius.org/pipermail/freeradius-users/attachments/20070515/0f109f61/attachment-0001.bin
>
>------------------------------
>
>Message: 3
>Date: Wed, 16 May 2007 08:19:28 +0800
>From: Trio <trioy99@gmail.com>
>Subject: RE: no session showed by radwho, but user still could not
> login
>To: "'FreeRadius users mailing list'"
> <freeradius-users@lists.freeradius.org>
>Message-ID: <464a4e17.37555d38.6ef7.ffffd0c6@mx.google.com>
>Content-Type: text/plain; charset="iso-8859-2"
>
>Im using nas with 'nas' table in my sql here the data
>mysql> select * from nas;
>+----+----------------+--------------+----------+-------+-----------+-------
>----+---------------+
>| id | nasname | shortname | type | ports | secret |
>community | description |
>+----+----------------+--------------+----------+-------+-----------+-------
>----+---------------+
>| 1 | 129.47.26.224 | ap-cisco | cisco | 1812 | aironet03 |
>| RADIUS Client |
>| 2 | 129.47.26.111 | mikrotik | mikrotik | 1812 | free |
>| RADIUS Client |
>| 6 | 202.152.57.137 | mikrotik | mikrotik | 1812 | free | NULL
>| RADIUS Client |
>| 5 | 129.47.26.123 | kelapa-sawit | mikrotik | 1812 | utama | NULL
>| RADIUS Client |
>| 7 | 129.47.26.222 | linksys | linksys | 1812 | linksys | NULL
>| RADIUS Client |
>| 8 | 127.0.0.1 | localhost | other | 1812 | chilli | NULL
>| RADIUS Client |
>| 9 | 202.152.4.220 | utama | mikrotik | 1812 | utama | NULL
>| RADIUS Client |
>| 10 | 129.47.26.122 | apbaru | mikrotik | 1812 | free | NULL
>| RADIUS Client |
>+----+----------------+--------------+----------+-------+-----------+-------
>----+---------------+
>
>And this is my session section in my radiusd.conf
>session {
> radutmp
>
> #
> # See "Simultaneous Use Checking Querie" in sql.conf
> sql
>}
>
>Whats wrong with that my conf ?
>
>
>Trio
>
>-----Original Message-----
>From: freeradius-users-bounces+trioy99=gmail.com@lists.freeradius.org
>[mailto:freeradius-users-bounces+trioy99=gmail.com@lists.freeradius.org] On
>Behalf Of tnt@kalik.co.yu
>Sent: Wednesday, May 16, 2007 3:02 AM
>To: FreeRadius users mailing list
>Subject: RE: no session showed by radwho, but user still could not login
>
>Yes. You haven't set up session control properly. Check the nastype
>entry in clents.conf and make sure that sql is not commented out in
>session {} part of radiusd.conf.
>
>Ivan Kalik
>Kalik Informatika ISP
>
>
>Dana 15/5/2007, "Trio" <trioy99@gmail.com> pi?e:
>
> >I change the sql now
> >This is my sql now..
> >mysql> select * from radcheck where username='rsa@idola';
> >+----+-----------+------------------+----+----------+
> >| id | UserName | Attribute | op | Value |
> >+----+-----------+------------------+----+----------+
> >| 57 | rsa@idola | Simultaneous-Use | := | 1 |
> >| 42 | rsa@idola | Password | == | denpasar |
> >+----+-----------+------------------+----+----------+
> >But I try with 2 pc, both using username rsa@idola, guess what happen?
> >All pc can connect perfectly :(
> >1 username can used by 2 pc in the same time.....
> >
> >Any one can explain this ?
> >thanks
> >trio
> >-----Original Message-----
> >From: freeradius-users-bounces+trioy99=gmail.com@lists.freeradius.org
> >[mailto:freeradius-users-bounces+trioy99=gmail.com@lists.freeradius.org] On
> >Behalf Of Dennis Skinner
> >Sent: Tuesday, May 15, 2007 8:51 PM
> >To: FreeRadius users mailing list
> >Subject: Re: no session showed by radwho, but user still could not login
> >
> >Trio wrote:
> >> :)
> >> Please read my 1st email,there is a words
> >> "I want only 1 session for every user"
> >
> >It is not a boolean option. 0 means you want 0 sessions for every user
> >(i.e. they cannot login). 1 means 1 session, 2 means 2 sessions, etc...
> >
> >--
> >Dennis Skinner
> >Systems Administrator
> >BlueFrog Internet
> >http://www.bluefrog.com
> >-
> >List info/subscribe/unsubscribe? See
> >http://www.freeradius.org/list/users.html
> >
> >-
> >List info/subscribe/unsubscribe? See
>http://www.freeradius.org/list/users.html
> >
> >
>
>-
>List info/subscribe/unsubscribe? See
>http://www.freeradius.org/list/users.html
>
>
>
>
>------------------------------
>
>Message: 4
>Date: Wed, 16 May 2007 09:35:49 +0800
>From: "Jian Wang" <jwang@a10networks.com.cn>
>Subject: Attributes mapping between LDAP and RADIUS
>To: "freeRadius Mailing List - users"
> <freeradius-users@lists.freeradius.org>, "freeRadius Mailing List -
> dev" <freeradius-devel@lists.freeradius.org>
>Message-ID:
> <a96f63770705151835g22212c06ibe80437553bc5d6a@mail.gmail.com>
>Content-Type: text/plain; charset="utf-8"
>
>Is there an RFC standardizing the attribute mapping between LDAP and RADIUS?
>
>Thanks.
>-------------- next part --------------
>An HTML attachment was scrubbed...
>URL: https://lists.freeradius.org/pipermail/freeradius-users/attachments/20070516/5132bb58/attachment-0001.html
>
>------------------------------
>
>Message: 5
>Date: Wed, 16 May 2007 10:15:28 +0800
>From: "yao guoxian" <yaoguoxian@gmail.com>
>Subject: Re: Server IP changed and "FreeRADIUS+MySQL" does not work
>To: "FreeRadius users mailing list"
> <freeradius-users@lists.freeradius.org>
>Message-ID:
> <77f387490705151915r23e3088at14911a0fe0cae694@mail.gmail.com>
>Content-Type: text/plain; charset="gb2312"
>
>Thanks to all of you.
> I can connect to MySQL using MySQL command-line program.
> The problem seems having been resolved , yet not completely. I logined
>as super user "ygx" other than "root". And "FreeRADIUS ? MySQL" works
>again. I didnt make any other changes except editing sql.conf to
>login as user "ygx".
> The problem maybe exist in the table "user " of the database "mysql",
>which is as follow:
>mysql> select Host,User,Password from user;
>+-------------------------------+--------+-----------------------------------------------------------------------------------+
>| Host | User |
>Password |
>+-------------------------------+--------+-----------------------------------------------------------------------------------+
>| localhost | root |
>*639C78D0EC361EE7FBD5E7B2EE7D4356079DB335 |
>| 202.117.54.251 | root |
>*639C78D0EC361EE7FBD5E7B2EE7D4356079DB335 |
>| % | ygx | *
>95FF347796503B19B351447515672881EB314534 |
>| % | root |
>*81F5E21E35407D884A6CD4A731AEBFB6AF209E1B |
>+------------------------------+---------+-----------------------------------------------------------------------------------+
>Note that user 'root' has different Password .
>
>Regards
>Guoxian.
>
>2007/5/15, Alan Dekok <aland@deployingradius.com>:
> >
> > yao guoxian wrote:
> > ...
> > > rlm_sql_mysql: Couldn't connect socket to MySQL server
> > > root@202.117.54.251:radius
> > > rlm_sql_mysql: Mysql error 'Access denied for user
> > > 'root'@'202.117.54.251'
> >
> > Can you connect from that IP to MySQL using the MySQL command-line
> > program? If not, check the ACL's on the machine running MySQL.
> >
> > Alan DeKok.
> > --
> > http://deployingradius.com - The web site of the book
> > http://deployingradius.com/blog/ - The blog
> > -
> > List info/subscribe/unsubscribe? See
> > http://www.freeradius.org/list/users.html
> >
>-------------- next part --------------
>An HTML attachment was scrubbed...
>URL: https://lists.freeradius.org/pipermail/freeradius-users/attachments/20070516/85307965/attachment-0001.html
>
>------------------------------
>
>Message: 6
>Date: Wed, 16 May 2007 10:41:50 +0700
>From: NikulinAS <NikulinAS@mail.ru>
>Subject: Re[5]:
>To: FreeRadius users mailing list
> <freeradius-users@lists.freeradius.org>
>Message-ID: <345157984.20070516104151@mail.ru>
>Content-Type: text/plain; charset=iso-8859-2
>
>I tried, but unsuccessfully. I read
>http://osdir.com/ml/freeradius.devel/2005-04/msg00034.html and tried
>also, but unsuccessfully.
>I have freeradius-0.9.3 on Linux RedHat 9
>
>Ideas ?
>
> > I am not sure how cisco-vsa-hack works (have you enabled it in
> > radiusd.conf). You should be able to get them as %{faxrelay-start-time}.
> > One of the programmers will confirm/deny this.
>
> > Ivan Kalik
> > Kalik Informatika ISP
>
>
> > Dana 15/5/2007, "NikulinAS" <NikulinAS@mail.ru> pi?e:
>
> >>
> >>Indeed! But I have %{Cisco-AVpair} that have multiple values, and I
> >>want all them comes to my database
> >>
> >>> Sorry. I didn't read your post well. I thought you wanted to send it
> >>> FROM radius TO NAS. You will need to write your own accounting queries
> >>> if you want fax accounting as well. Example for voip accounting:
> >>
> >>> http://www.freeradius.org/radiusd/raddb/pgsql-voip.conf
> >>
> >>> Ivan Kalik
> >>> Kalik Informatika ISP
> >>
> >>
> >>> Dana 15/5/2007, "????????? ???????" <nikulinas@mail.ru> pi?e:
> >>
> >>>>where should I use operator += ?
> >>>>-
> >>>>List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
> >>>>
> >>>>
> >>
> >>
> >>
> >>
> >>--
> >>? ?????????,
> >> NikulinAS mailto:NikulinAS@mail.ru
> >>
> >>
> >>-
> >>List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
> >>
> >>
>
> > -
> > List info/subscribe/unsubscribe? See
> > http://www.freeradius.org/list/users.html
>
>
>
>--
>? ?????????,
> NikulinAS mailto:NikulinAS@mail.ru
>
>
>
>
>------------------------------
>
>-
>List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
>
>End of Freeradius-Users Digest, Vol 25, Issue 68
>************************************************

Express yourself instantly with MSN Messenger! MSN Messenger Download today it's FREE!
This archive was generated by a fusion of Pipermail (Mailman edition) and MHonArc.