testing which client initiated request ? Client-shortname ... FreeRADIUS-Client-Shortname

Robert Roll Robert.Roll at utah.edu
Tue Mar 29 21:28:13 CEST 2011 

 The  "Use Packet-Src-IP-Address" does appear to work..

 However, I would really like to have a "set" of clients behave the same way.

 I would really like to do something like:

     client 1.2.3.4 {
          secret XXXXXX
          shortname  mgmtStation

          Identical-client  1.2.3.5, 1.2.3.6, 1.2.3,7 
     }

   Then later on simply test on shortname mgmtStation  ?

  If there is nothing like "Identical-client"... I did notice while debugging that
doing something like:

    client 1.2.3.4 {
        secret XXXXXX
        shortname stMgt
    }

    client 1.2.3.5 {
        secret XXXXXX
        shortname stMgt
    }

 Assigning two different IP number clients the same shortname ? I noticed that when I looked at 
some logs, the shortname was used in the log text for BOTH clients.. This could
be exploited for what I want, if only the testing client based on shortname worked ?


Thanks,

Robert


________________________________________
From: freeradius-users-bounces+robert.roll=utah.edu at lists.freeradius.org [freeradius-users-bounces+robert.roll=utah.edu at lists.freeradius.org] On Behalf Of Robert Roll [Robert.Roll at utah.edu]
Sent: Tuesday, March 29, 2011 12:16 PM
To: FreeRadius users mailing list
Subject: RE: testing which client initiated request ?  Client-shortname  ...    FreeRADIUS-Client-Shortname

Still does not seem to be working.. Still looks like
its expanding to "nothing" ?

++? if ("%{client: shortname}" == WCSmgmt )
        expand: %{client: shortname} ->
? Evaluating ("%{client: shortname}" == WCSmgmt ) -> FALSE
++? if ("%{client: shortname}" == WCSmgmt ) -> FALSE
 }

Yet in clients.conf:

client 155.97.142.192 {
        secret          = doesntmatter
        shortname       = WCSmgmt
}


The request does seem to be coming from the correct client ?

rad_recv: Access-Request packet from host 155.97.142.192 port 55567, id=0, length=124


Thanks,

Robert

________________________________________
From: freeradius-users-bounces+robert.roll=utah.edu at lists.freeradius.org [freeradius-users-bounces+robert.roll=utah.edu at lists.freeradius.org] On Behalf Of Alan DeKok [aland at deployingradius.com]
Sent: Tuesday, March 29, 2011 12:00 PM
To: FreeRadius users mailing list
Subject: Re: testing which client initiated request ?  Client-shortname  ...    FreeRADIUS-Client-Shortname

Robert Roll wrote:
>  I'd like to test and see which particular client was responsible for a request.
> I found two attributes Client-Shortname  and FreeRADIUS-Client-Shortname, but
> when I try and use this in unlang they do not seem to have values ? Any suggestions...

  Use Packet-Src-IP-Address

  Or, %{client: shortname}, if it's configured in clients.conf.

  Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

More information about the Freeradius-Users mailing list