<div class="gmail_quote">---------- Forwarded message ----------<br>From: <<a href="mailto:freeradius-users-owner@lists.freeradius.org">freeradius-users-owner@lists.freeradius.org</a>><br>Date: Apr 25, 2012 11:35 AM<br>
Subject: FreeRadius Dictionary Attributes<br>To: <<a href="mailto:cvjones360@gmail.com">cvjones360@gmail.com</a>><br><br type="attribution">You are not allowed to post to this mailing list, and your message has<br>
been automatically rejected. If you think that your messages are<br>
being rejected in error, contact the mailing list owner at<br>
<a href="mailto:freeradius-users-owner@lists.freeradius.org">freeradius-users-owner@lists.freeradius.org</a>.<br>
<br>
<br><br>---------- Forwarded message ----------<br>From: Corey Jones <<a href="mailto:cvjones360@gmail.com">cvjones360@gmail.com</a>><br>To: <a href="mailto:freeradius-users@lists.freeradius.org">freeradius-users@lists.freeradius.org</a><br>
Cc: <br>Date: Wed, 25 Apr 2012 11:34:21 -0400<br>Subject: FreeRadius Dictionary Attributes<br><br><div><br></div><div>I'm trying to get a freeradius server up and running but I'm having trouble with the attributes I've included in the master dictionary file showing up in the detail file:</div>
<div><br></div>
<div><div>ATTRIBUTE client-mac-address 9001 string</div><div>ATTRIBUTE connect-progress 9002 string</div><div>ATTRIBUTE v92-info 9003 string</div><div>ATTRIBUTE disc-cause-ext 9004 string</div>
</div><div><br></div><div>The output of the detail-<date> file of the non-functioning server:</div><div><br></div><div><div>Acct-Session-Id = "XXXXXXX"</div><div> Framed-Protocol = PPP</div><div> Framed-IP-Address = xx.xx.xx.xx</div>
<div> Cisco-AVPair = "ppp-disconnect-cause=Missed too many keepalives"</div><div> User-Name = "xxxxxxx"</div><div> Acct-Authentic = RADIUS</div><div> Cisco-AVPair = "connect-progress=LAN Ses Up"</div>
<div> Cisco-AVPair = "nas-tx-speed=1000000000"</div><div> Cisco-AVPair = "nas-rx-speed=1000000000"</div><div> Acct-Session-Time = 5529</div><div> Acct-Input-Octets = 25782</div>
<div> Acct-Output-Octets = 210206</div><div> Acct-Input-Packets = 642</div><div> Acct-Output-Packets = 1063</div><div> Acct-Terminate-Cause = Port-Error</div><div> Cisco-AVPair = "disc-cause-ext=TCP Foreign Host Close"</div>
<div> Acct-Status-Type = Stop</div><div> NAS-Port-Type = Ethernet</div><div> NAS-Port = 46868628</div><div> NAS-Port-Id = "0/0/0/0"</div><div> Cisco-AVPair = "client-mac-address=0018.xxxx.xxxx"</div>
<div> Service-Type = Framed-User</div><div> NAS-IP-Address = xxx.xx.xx.xxx</div><div> Acct-Delay-Time = 0</div><div> Acct-Unique-Session-Id = "xxxxxxxxxxx"</div><div> Timestamp = 1335285815</div>
<div> Request-Authenticator = Verified</div></div><div><br></div><div>The output of the detail-<date> file for the functioning server:</div><div><br></div><div><br></div><div><div>Acct-Session-Id = "02CB0837"</div>
<div> Framed-Protocol = PPP</div><div> Framed-IP-Address = xx.xx.xx.xx</div><div> Cisco-AVPair = "ppp-disconnect-cause=Received LCP TERMREQ from peer"</div><div> User-Name = "xxxx"</div>
<div> Acct-Authentic = RADIUS</div><div> Cisco-AVPair = "connect-progress=LAN Ses Up"</div><div> Cisco-AVPair = "nas-tx-speed=1000000000"</div><div> Cisco-AVPair = "nas-rx-speed=1000000000"</div>
<div> Acct-Session-Time = 49017</div><div> Acct-Input-Octets = 37883277</div><div> Acct-Output-Octets = 960510015</div><div> Acct-Input-Packets = 472496</div><div> Acct-Output-Packets = 700063</div>
<div> Acct-Terminate-Cause = User-Request</div><div> Cisco-AVPair = "disc-cause-ext=PPP Receive Term"</div><div> Acct-Status-Type = Stop</div><div> NAS-Port-Type = Ethernet</div><div>
NAS-Port = 46860343</div><div> NAS-Port-Id = "0/0/0/0"</div><div> Cisco-AVPair = "client-mac-address=0002.xxxx.xxxx"</div><div> Service-Type = Framed-User</div><div> NAS-IP-Address = xx.xx.xx.xx</div>
<div> Acct-Delay-Time = 0</div><div> connect-progress = "LAN Ses Up"</div><div> <span style="background-color:rgb(255,255,51)"> disc-cause-ext = "PPP Receive Term" <---------------HERE</span></div>
<div><span style="background-color:rgb(255,255,51)"> client-mac-address = "0002.xxxx.xxxx" <---------------HERE</span></div><div> Acct-Unique-Session-Id = "cec563d48a98e45c"</div>
<div> Timestamp = 1335326506</div><div> Request-Authenticator = Verified</div></div><div><br></div><div><br></div><div>If you compare the non-functioning server output file to the functioning server output file, there are two fields that are missing that are defined in the master dictionary file.</div>
<div><br></div><div><div><span style="background-color:rgb(255,255,51)">disc-cause-ext = "PPP Receive Term" <---------------HERE</span></div><div><span style="background-color:rgb(255,255,51)">client-mac-address = "0002.xxxx.xxxx" <---------------HERE</span></div>
</div><div><span style="background-color:rgb(255,255,51)"><br></span></div><div><span style="background-color:rgb(255,255,51)"><br></span></div><div>I am having trouble with a different part of the server setup where that file is pulled and those fields are read and needed by another application.</div>
<div><br></div><div>Does anyone know why those two fields are not pulled or processed on the non-functioning server's output file?</div><div><br></div><div><br></div><div>freeradius -X dump of non-functioning server:</div>
<div><br></div><div><div>FreeRADIUS Version 2.1.10, for host x86_64-pc-linux-gnu, built on Nov 14 2010 at 21:12:30</div><div>Copyright (C) 1999-2009 The FreeRADIUS server project and contributors. </div><div>There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A </div>
<div>PARTICULAR PURPOSE. </div><div>You may redistribute copies of FreeRADIUS under the terms of the </div><div>GNU General Public License v2. </div><div>Starting - reading configuration files ...</div><div>including configuration file /etc/freeradius/radiusd.conf</div>
<div>including configuration file /etc/freeradius/proxy.conf</div><div>including configuration file /etc/freeradius/clients.conf</div><div>including files in directory /etc/freeradius/modules/</div><div>including configuration file /etc/freeradius/modules/mac2ip</div>
<div>including configuration file /etc/freeradius/modules/exec</div><div>including configuration file /etc/freeradius/modules/radutmp</div><div>including configuration file /etc/freeradius/modules/attr_filter</div><div>including configuration file /etc/freeradius/modules/smbpasswd</div>
<div>including configuration file /etc/freeradius/modules/opendirectory</div><div>including configuration file /etc/freeradius/modules/cui</div><div>including configuration file /etc/freeradius/modules/files</div><div>including configuration file /etc/freeradius/modules/preprocess</div>
<div>including configuration file /etc/freeradius/modules/sradutmp</div><div>including configuration file /etc/freeradius/modules/ldap</div><div>including configuration file /etc/freeradius/modules/krb5</div><div>including configuration file /etc/freeradius/modules/realm</div>
<div>including configuration file /etc/freeradius/modules/smsotp</div><div>including configuration file /etc/freeradius/modules/perl</div><div>including configuration file /etc/freeradius/modules/checkval</div><div>including configuration file /etc/freeradius/modules/mac2vlan</div>
<div>including configuration file /etc/freeradius/modules/<a href="http://detail.example.com" target="_blank">detail.example.com</a></div><div>including configuration file /etc/freeradius/modules/detail.log</div><div>including configuration file /etc/freeradius/modules/digest</div>
<div>including configuration file /etc/freeradius/modules/linelog</div><div>including configuration file /etc/freeradius/modules/ippool</div><div>including configuration file /etc/freeradius/modules/sqlcounter_expire_on_login</div>
<div>including configuration file /etc/freeradius/modules/chap</div><div>including configuration file /etc/freeradius/modules/detail</div><div>including configuration file /etc/freeradius/modules/mschap</div><div>including configuration file /etc/freeradius/modules/expiration</div>
<div>including configuration file /etc/freeradius/modules/dynamic_clients</div><div>including configuration file /etc/freeradius/modules/echo</div><div>including configuration file /etc/freeradius/modules/etc_group</div>
<div>
including configuration file /etc/freeradius/modules/attr_rewrite</div><div>including configuration file /etc/freeradius/modules/always</div><div>including configuration file /etc/freeradius/modules/expr</div><div>including configuration file /etc/freeradius/modules/passwd</div>
<div>including configuration file /etc/freeradius/modules/otp</div><div>including configuration file /etc/freeradius/modules/counter</div><div>including configuration file /etc/freeradius/modules/wimax</div><div>including configuration file /etc/freeradius/modules/sql_log</div>
<div>including configuration file /etc/freeradius/modules/ntlm_auth</div><div>including configuration file /etc/freeradius/modules/pap</div><div>including configuration file /etc/freeradius/modules/policy</div><div>including configuration file /etc/freeradius/modules/logintime</div>
<div>including configuration file /etc/freeradius/modules/unix</div><div>including configuration file /etc/freeradius/modules/acct_unique</div><div>including configuration file /etc/freeradius/modules/pam</div><div>including configuration file /etc/freeradius/modules/inner-eap</div>
<div>including configuration file /etc/freeradius/eap.conf</div><div>including configuration file /etc/freeradius/sql.conf</div><div>including configuration file /etc/freeradius/sql/mysql/dialup.conf</div><div>including configuration file /etc/freeradius/policy.conf</div>
<div>including files in directory /etc/freeradius/sites-enabled/</div><div>including configuration file /etc/freeradius/sites-enabled/inner-tunnel</div><div>including configuration file /etc/freeradius/sites-enabled/default</div>
<div>main {</div><div> user = "xxxxx"</div><div> group = "xxxxx"</div><div> allow_core_dumps = no</div><div>}</div><div>including dictionary file /etc/freeradius/dictionary</div><div>
main {</div><div> prefix = "/usr"</div><div> localstatedir = "/var"</div><div> logdir = "/var/log/radius"</div><div> libdir = "/usr/lib/freeradius"</div>
<div> radacctdir = "/var/log/radius/radacct"</div><div> hostname_lookups = no</div><div> max_request_time = 30</div><div> cleanup_delay = 5</div><div> max_requests = 1024000</div>
<div> pidfile = "/var/run/freeradius/freeradius.pid"</div><div> checkrad = "/usr/sbin/checkrad"</div><div> debug_level = 0</div><div> proxy_requests = yes</div><div> log {</div>
<div> stripped_names = yes</div><div> auth = yes</div><div> auth_badpass = yes</div><div> auth_goodpass = yes</div><div> }</div><div> security {</div><div> max_attributes = 200</div><div>
reject_delay = 1</div><div> status_server = no</div><div> }</div><div>}</div><div>radiusd: #### Loading Realms and Home Servers ####</div><div> proxy server {</div><div> retry_delay = 5</div><div> retry_count = 3</div>
<div> default_fallback = no</div><div> dead_time = 120</div><div> wake_all_if_all_dead = no</div><div> }</div><div> home_server localhost {</div><div> ipaddr = 127.0.0.1</div><div> port = xxx</div>
<div> type = "auth"</div><div> secret = "xxxx"</div><div> response_window = 20</div><div> max_outstanding = 65536</div><div> require_message_authenticator = yes</div>
<div> zombie_period = 40</div><div> status_check = "status-server"</div><div> ping_interval = 30</div><div> check_interval = 30</div><div> num_answers_to_alive = 3</div><div> num_pings_to_alive = 3</div>
<div> revive_interval = 120</div><div> status_check_timeout = 4</div><div> irt = 2</div><div> mrt = 16</div><div><span style="white-space:pre-wrap"> </span>mrc = 5</div><div>
mrd = 30</div><div> }</div><div> home_server_pool my_auth_failover {</div><div> type = fail-over</div><div> home_server = localhost</div><div> }</div><div> realm <a href="http://example.com" target="_blank">example.com</a> {</div>
<div> auth_pool = my_auth_failover</div><div> }</div><div> realm LOCAL {</div><div> }</div><div>radiusd: #### Loading Clients ####</div><div> client localhost {</div><div> ipaddr = 127.0.0.1</div><div> require_message_authenticator = no</div>
<div> secret = "xxxxxxx"</div><div> nastype = "xxxxx"</div><div> }</div><div> client xxx.xxx.xxx.xxx {</div><div> require_message_authenticator = no</div><div> secret = "xxxxxxx"</div>
<div> shortname = "xxx"</div><div> nastype = "xxxx"</div><div> }</div><div> client xxx.xxx.xx.xxx {</div><div> require_message_authenticator = no</div><div> secret = "xxxxxxx"</div>
<div> shortname = "xxxxx"</div><div> nastype = "xxxx"</div><div> }</div><div> client xx.xxx.xxx.xx {</div><div> require_message_authenticator = no</div><div> secret = "xxxxxx"</div>
<div> shortname = "xxxx-c"</div><div> }</div><div> client xx.xx.xx.xx {</div><div> require_message_authenticator = no</div><div> secret = "xxxxxxx"</div><div> shortname = "xxxxxx"</div>
<div> }</div><div> client x.xx.xxx.xx {</div><div> require_message_authenticator = no</div><div> secret = "xxxxxxx"</div><div> shortname = "xxxxx"</div><div> }</div><div> client xx.xx.xx.xx {</div>
<div> require_message_authenticator = no</div><div> secret = "xxxxx"</div><div> shortname = "SmartFile_Develop"</div><div> }</div><div> client x.xx.xx.xx {</div><div> require_message_authenticator = no</div>
<div> secret = "xxxxxx"</div><div> shortname = "xxxx"</div><div> }</div><div> client xx.xx.xx.xx {</div><div> require_message_authenticator = no</div><div> secret = "xxxxx"</div>
<div> shortname = "xxxx"</div><div> }</div><div> client xxx.xxx.xx.xx {</div><div> require_message_authenticator = no</div><div> secret = "xxxxxx"</div><div> shortname = "xxxx"</div>
<div> }</div><div> client xx.xx.xx.xx {</div><div> require_message_authenticator = no</div><div> secret = "xxxxx"</div><div> shortname = "xxxxx"</div><div> }</div><div> client xx.xx.xxx.xx {</div>
<div> require_message_authenticator = no</div><div> secret = "xxxx"</div><div> shortname = "xxxx"</div><div> }</div><div> client xxx.xxx.xxx.xx {</div><div> require_message_authenticator = no</div>
<div> secret = "xxxxx"</div><div> shortname = "xxxx"</div><div> }</div><div> client xxx.xx.xx.xx {</div><div> require_message_authenticator = no</div><div> secret = "xxxxx"</div>
<div> shortname = "xxxxx"</div><div> }</div><div>radiusd: #### Instantiating modules ####</div><div> instantiate {</div><div> Module: Linked to module rlm_exec</div><div> Module: Instantiating module "exec" from file /etc/freeradius/modules/exec</div>
<div> exec {</div><div> wait = no</div><div> input_pairs = "request"</div><div> shell_escape = yes</div><div> }</div><div> Module: Linked to module rlm_expr</div><div> Module: Instantiating module "expr" from file /etc/freeradius/modules/expr</div>
<div> Module: Linked to module rlm_expiration</div><div> Module: Instantiating module "expiration" from file /etc/freeradius/modules/expiration</div><div> expiration {</div><div> reply-message = "Password Has Expired "</div>
<div> }</div><div> Module: Linked to module rlm_logintime</div><div> Module: Instantiating module "logintime" from file /etc/freeradius/modules/logintime</div><div> logintime {</div><div> reply-message = "You are calling outside your allowed timespan "</div>
<div> minimum-timeout = 60</div><div> }</div><div> }</div><div>radiusd: #### Loading Virtual Servers ####</div><div>server inner-tunnel { # from file /etc/freeradius/sites-enabled/inner-tunnel</div><div> modules {</div>
<div> Module: Checking authenticate {...} for more modules to load</div><div> Module: Linked to module rlm_pap</div><div> Module: Instantiating module "pap" from file /etc/freeradius/modules/pap</div><div> pap {</div>
<div> encryption_scheme = "auto"</div><div> auto_header = no</div><div> }</div><div> Module: Linked to module rlm_chap</div><div> Module: Instantiating module "chap" from file /etc/freeradius/modules/chap</div>
<div> Module: Linked to module rlm_mschap</div><div> Module: Instantiating module "mschap" from file /etc/freeradius/modules/mschap</div><div> mschap {</div><div> use_mppe = yes</div><div> require_encryption = no</div>
<div> require_strong = no</div><div> with_ntdomain_hack = no</div><div> }</div><div> Module: Linked to module rlm_unix</div><div> Module: Instantiating module "unix" from file /etc/freeradius/modules/unix</div>
<div> unix {</div><div> radwtmp = "/var/log/radius/radwtmp"</div><div> }</div><div> Module: Linked to module rlm_eap</div><div> Module: Instantiating module "eap" from file /etc/freeradius/eap.conf</div>
<div> eap {</div><div> default_eap_type = "md5"</div><div> timer_expire = 60</div><div> ignore_unknown_eap_types = no</div><div> cisco_accounting_username_bug = no</div><div> max_sessions = 4096</div>
<div> }</div><div> Module: Linked to sub-module rlm_eap_md5</div><div> Module: Instantiating eap-md5</div><div> Module: Linked to sub-module rlm_eap_leap</div><div> Module: Instantiating eap-leap</div><div> Module: Linked to sub-module rlm_eap_gtc</div>
<div> Module: Instantiating eap-gtc</div><div> gtc {</div><div> challenge = "Password: "</div><div> auth_type = "PAP"</div><div> }</div><div> Module: Linked to sub-module rlm_eap_tls</div>
<div> Module: Instantiating eap-tls</div><div> tls {</div><div> rsa_key_exchange = no</div><div> dh_key_exchange = yes</div><div> rsa_key_length = 512</div><div> dh_key_length = 512</div><div>
verify_depth = 0</div><div> CA_path = "/etc/freeradius/certs"</div><div> pem_file_type = yes</div><div> private_key_file = "/etc/freeradius/certs/server.key"</div><div> certificate_file = "/etc/freeradius/certs/server.pem"</div>
<div> CA_file = "/etc/freeradius/certs/ca.pem"</div><div> private_key_password = "xxxxxx"</div><div> dh_file = "/etc/freeradius/certs/dh"</div><div> random_file = "/dev/urandom"</div>
<div> fragment_size = 1024</div><div> include_length = yes</div><div> check_crl = no</div><div> cipher_list = "DEFAULT"</div><div> make_cert_command = "/etc/freeradius/certs/bootstrap"</div>
<div> cache {</div><div> enable = no</div><div> lifetime = 24</div><div> max_entries = 255</div><div> }</div><div> verify {</div><div> }</div><div> }</div><div> Module: Linked to sub-module rlm_eap_ttls</div>
<div> Module: Instantiating eap-ttls</div><div> ttls {</div><div> default_eap_type = "md5"</div><div> copy_request_to_tunnel = no</div><div> use_tunneled_reply = no</div><div> virtual_server = "inner-tunnel"</div>
<div> include_length = yes</div><div> }</div><div> Module: Linked to sub-module rlm_eap_peap</div><div> Module: Instantiating eap-peap</div><div> peap {</div><div> default_eap_type = "mschapv2"</div>
<div> copy_request_to_tunnel = no</div><div> use_tunneled_reply = no</div><div> proxy_tunneled_request_as_eap = yes</div><div> virtual_server = "inner-tunnel"</div><div> }</div><div>
Module: Linked to sub-module rlm_eap_mschapv2</div><div> Module: Instantiating eap-mschapv2</div><div> mschapv2 {</div><div> with_ntdomain_hack = no</div><div> }</div><div> Module: Checking authorize {...} for more modules to load</div>
<div> Module: Linked to module rlm_realm</div><div> Module: Instantiating module "suffix" from file /etc/freeradius/modules/realm</div><div> realm suffix {</div><div> format = "suffix"</div><div>
delimiter = "@"</div><div> ignore_default = no</div><div> ignore_null = no</div><div> }</div><div> Module: Linked to module rlm_files</div><div> Module: Instantiating module "files" from file /etc/freeradius/modules/files</div>
<div> files {</div><div> usersfile = "/etc/freeradius/users"</div><div> acctusersfile = "/etc/freeradius/acct_users"</div><div> preproxy_usersfile = "/etc/freeradius/preproxy_users"</div>
<div> compat = "no"</div><div> }</div><div> Module: Checking session {...} for more modules to load</div><div> Module: Linked to module rlm_radutmp</div><div> Module: Instantiating module "radutmp" from file /etc/freeradius/modules/radutmp</div>
<div> radutmp {</div><div> filename = "/var/log/radius/radutmp"</div><div> username = "%{User-Name}"</div><div> case_sensitive = yes</div><div> check_with_nas = yes</div><div>
perm = 384</div><div> callerid = yes</div><div> }</div><div> Module: Checking post-proxy {...} for more modules to load</div><div> Module: Checking post-auth {...} for more modules to load</div><div> Module: Linked to module rlm_attr_filter</div>
<div> Module: Instantiating module "attr_filter.access_reject" from file /etc/freeradius/modules/attr_filter</div><div> attr_filter attr_filter.access_reject {</div><div> attrsfile = "/etc/freeradius/attrs.access_reject"</div>
<div> key = "%{User-Name}"</div><div><span style="white-space:pre-wrap"> </span> }</div><div> } # modules</div><div>} # server</div><div>server { # from file /etc/freeradius/radiusd.conf</div>
<div> modules {</div><div> Module: Checking authenticate {...} for more modules to load</div><div> Module: Linked to module rlm_digest</div><div> Module: Instantiating module "digest" from file /etc/freeradius/modules/digest</div>
<div> Module: Checking authorize {...} for more modules to load</div><div> Module: Linked to module rlm_preprocess</div><div> Module: Instantiating module "preprocess" from file /etc/freeradius/modules/preprocess</div>
<div> preprocess {</div><div> huntgroups = "/etc/freeradius/huntgroups"</div><div> hints = "/etc/freeradius/hints"</div><div> with_ascend_hack = no</div><div> ascend_channels_per_line = 23</div>
<div> with_ntdomain_hack = no</div><div> with_specialix_jetstream_hack = no</div><div> with_cisco_vsa_hack = no</div><div> with_alvarion_vsa_hack = no</div><div> }</div><div> Module: Linked to module rlm_detail</div>
<div> Module: Instantiating module "auth_log" from file /etc/freeradius/modules/detail.log</div><div> detail auth_log {</div><div> detailfile = "/var/log/radius/radacct/%{Client-IP-Address}/auth-detail-%Y%m%d"</div>
<div> header = "%t"</div><div> detailperm = 384</div><div> dirperm = 493</div><div> locking = no</div><div> log_packet_header = no</div><div> }</div><div> Module: Linked to module rlm_sql</div>
<div> Module: Instantiating module "sql" from file /etc/freeradius/sql.conf</div><div> sql {</div><div> driver = "rlm_sql_mysql"</div><div> server = "localhost"</div><div> port = "xxx"</div>
<div> login = "xxxxx"</div><div> password = "xxxxxxx"</div><div> radius_db = "xxxxx"</div><div> read_groups = yes</div><div> sqltrace = no</div><div> sqltracefile = "/var/log/radius/sqltrace.sql"</div>
<div> readclients = no</div><div> deletestalesessions = yes</div><div> num_sql_socks = 10</div><div> lifetime = 0</div><div> max_queries = 0</div><div> sql_user_name = "%{User-Name}"</div>
<div> default_user_profile = ""</div><div> nas_query = "SELECT id, nasname, shortname, type, secret, server FROM nas"</div><div> authorize_check_query = "SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id"</div>
<div> authorize_reply_query = "SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id" </div><div><span style="white-space:pre-wrap"> </span>DER BY id"</div>
<div> authorize_group_check_query = "SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = '%{Sql-Group}' ORDER BY id"</div><div>
authorize_group_reply_query = "SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = '%{Sql-Group}' ORDER BY id"</div>
<div> accounting_onoff_query = " UPDATE radacct SET acctstoptime = '%S', acctsessiontime = unix_timestamp('%S') - unix_timestamp(acctstarttime), acctterminatecause = '%{Acct-Terminate-Cause}', acctstopdelay = %{%{Acct-Delay-Time}:-0} WHERE acctstoptime IS NULL AND nasipaddress = '%{NAS-IP-Address}' AND acctstarttime <= '%S'"</div>
<div> accounting_update_query = " UPDATE radacct SET framedipaddress = '%{Framed-IP-Address}', acctsessiontime = '%{Acct-Session-Time}', acctinputoctets = '%{%{Acct-Input-Gigawords}:-0}' << 32 | '%{%{Acct-Input-Octets}:-0}', acctoutputoctets = '%{%{Acct-Output-Gigawords}:-0}' << 32 | '%{%{Acct-Output-Octets}:-0}' WHERE acctsessionid = '%{Acct-Session-Id}' AND username = '%{SQL-User-Name}' AND nasipaddress = '%{NAS-IP-Address}'"</div>
<div> accounting_update_query_alt = " INSERT INTO radacct (acctsessionid, acctuniqueid, username, realm, nasipaddress, nasportid, nasporttype, acctstarttime, acctsessiontime, acctauthentic, connectinfo_start, acctinputoctets, acctoutputoctets, calledstationid, callingstationid, servicetype, framedprotocol, framedipaddress, acctstartdelay, xascendsessionsvrkey) VALUES ('%{Acct-Session-Id}', '%{Acct-Unique-Session-Id}', '%{SQL-User-Name}', '%{Realm}', '%{NAS-IP-Address}', '%{NAS-Port}', '%{NAS-Port-Type}', DATE_SUB('%S', INTERVAL (%{%{Acct-Session-Time}:-0} + %{%{Acct-Delay-Time}:-0}) SECOND), '%{Acct-Session-Time}', '%{Acct-Authentic}', '', '%{%{Acct-Input-Gigawords}:-0}' << 32 | '%{%{Acct-Input-Octets}:-0}', '%{%{Acct-Output-Gigawords}:-0}' << 32 | '%{%{Acct-Output-Octets}:-0}', '%{Called-Station-Id}', '%{Calling-Station-Id}', '%{Service-Type}', '%{Framed-Protocol}', '%{Framed-IP-Address}', '0', '%{X-Ascend-Session-Svr-Key}')"</div>
<div> accounting_start_query = " INSERT INTO radacct (acctsessionid, acctuniqueid, username, realm, nasipaddress, nasportid, nasporttype, acctstarttime, acctstoptime, acctsessiontime, acctauthentic, connectinfo_start, connectinfo_stop, acctinputoctets, acctoutputoctets, calledstationid, callingstationid, acctterminatecause, servicetype, framedprotocol, framedipaddress, acctstartdelay, acctstopdelay, xascendsessionsvrkey) VALUES ('%{Acct-Session-Id}', '%{Acct-Unique-Session-Id}', '%{SQL-User-Name}', '%{Realm}', '%{NAS-IP-Address}', '%{NAS-Port}', '%{NAS-Port-Type}', '%S', NULL, '0', '%{Acct-Authentic}', '%{Connect-Info}', '', '0', '0', '%{Called-Station-Id}', '%{Calling-Station-Id}', '', '%{Service-Type}', '%{Framed-Protocol}', '%{Framed-IP-Address}', '%{%{Acct-Delay-Time}:-0}', '0', '%{X-Ascend-Session-Svr-Key}')"</div>
<div> accounting_start_query_alt = " UPDATE radacct SET acctstarttime = '%S', acctstartdelay = '%{%{Acct-Delay-Time}:-0}', connectinfo_start = '%{Connect-Info}' WHERE acctsessionid = '%{Acct-Session-Id}' AND username = '%{SQL-User-Name}' AND nasipaddress = '%{NAS-IP-Address}'"</div>
<div><span style="white-space:pre-wrap"> </span> accounting_stop_query = " UPDATE radacct SET acctstoptime = '%S', acctsessiontime = '%{Acct-Session-Time}', acctinputoctets = '%{%{Acct-Input-Gigawords}:-0}' << 32 | '%{%{Acct-Input-Octets}:-0}', acctoutputoctets = '%{%{Acct-Output-Gigawords}:-0}' << 32 | '%{%{Acct-Output-Octets}:-0}', acctterminatecause = '%{Acct-Terminate-Cause}', acctstopdelay = '%{%{Acct-Delay-Time}:-0}', connectinfo_stop = '%{Connect-Info}' WHERE acctsessionid = '%{Acct-Session-Id}' AND username = '%{SQL-User-Name}' AND nasipaddress = '%{NAS-IP-Address}'"</div>
<div> accounting_stop_query_alt = " INSERT INTO radacct (acctsessionid, acctuniqueid, username, realm, nasipaddress, nasportid, nasporttype, acctstarttime, acctstoptime, acctsessiontime, acctauthentic, connectinfo_start, connectinfo_stop, acctinputoctets, acctoutputoctets, calledstationid, callingstationid, acctterminatecause, servicetype, framedprotocol, framedipaddress, acctstartdelay, acctstopdelay) VALUES ('%{Acct-Session-Id}', '%{Acct-Unique-Session-Id}', '%{SQL-User-Name}', '%{Realm}', '%{NAS-IP-Address}', '%{NAS-Port}', '%{NAS-Port-Type}', DATE_SUB('%S', INTERVAL (%{%{Acct-Session-Time}:-0} + %{%{Acct-Delay-Time}:-0}) SECOND), '%S', '%{Acct-Session-Time}', '%{Acct-Authentic}', '', '%{Connect-Info}', '%{%{Acct-Input-Gigawords}:-0}' << 32 | '%{%{Acct-Input-Octets}:-0}', '%{%{Acct-Output-Gigawords}:-0}' << 32 | '%{%{Acct-Output-Octets}:-0}', '%{Called-Station-Id}', '%{Calling-Station-Id}', '%{Acct-Terminate-Cause}', '%{Service-Type}', '%{Framed-Protocol}', '%{Framed-IP-Address}', '0', '%{%{Acct-Delay-Time}:-0}')"</div>
<div> group_membership_query = "SELECT groupname FROM usergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority"</div><div> connect_failure_retry_delay = 60</div>
<div> simul_count_query = ""</div><div> simul_verify_query = "SELECT radacctid, acctsessionid, username, nasipaddress, nasportid, framedipaddress, callingstationid, framedprotocol FROM radacct WHERE username = '%{SQL-User-Name}' AND acctstoptime IS NULL"</div>
<div> postauth_query = "INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( '%{User-Name}', '%{%{User-Password}:-%{Chap-Password}}', '%{reply:Packet-Type}', '%S')"</div>
<div> safe-characters = "@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-_: /"</div><div> }</div><div>rlm_sql (sql): Driver rlm_sql_mysql (module rlm_sql_mysql) loaded and linked</div><div>
rlm_sql (sql): Attempting to connect to xxxxx@localhost:xxxx/xxxxx</div><div>rlm_sql (sql): starting 0</div><div>rlm_sql (sql): Attempting to connect rlm_sql_mysql #0</div><div>rlm_sql_mysql: Starting connect to MySQL server for #0</div>
<div>rlm_sql (sql): Connected new DB handle, #0</div><div>rlm_sql (sql): starting 1</div><div>rlm_sql (sql): Attempting to connect rlm_sql_mysql #1</div><div>rlm_sql_mysql: Starting connect to MySQL server for #1</div><div>
rlm_sql (sql): Connected new DB handle, #1</div><div>rlm_sql (sql): starting 2</div><div>rlm_sql (sql): Attempting to connect rlm_sql_mysql #2</div><div>rlm_sql_mysql: Starting connect to MySQL server for #2</div><div>rlm_sql (sql): Connected new DB handle, #2</div>
<div>rlm_sql (sql): starting 3</div><div>rlm_sql (sql): Attempting to connect rlm_sql_mysql #3</div><div>rlm_sql_mysql: Starting connect to MySQL server for #3</div><div>rlm_sql (sql): Connected new DB handle, #3</div><div>
rlm_sql (sql): starting 4</div><div>rlm_sql (sql): Attempting to connect rlm_sql_mysql #4</div><div>rlm_sql_mysql: Starting connect to MySQL server for #4</div><div>rlm_sql (sql): Connected new DB handle, #4</div><div>rlm_sql (sql): starting 5</div>
<div>rlm_sql (sql): Attempting to connect rlm_sql_mysql #5</div><div>rlm_sql_mysql: Starting connect to MySQL server for #5</div><div>rlm_sql (sql): Connected new DB handle, #5</div><div>rlm_sql (sql): starting 6</div><div>
rlm_sql (sql): Attempting to connect rlm_sql_mysql #6</div><div>rlm_sql_mysql: Starting connect to MySQL server for #6</div><div>rlm_sql (sql): Connected new DB handle, #6</div><div>rlm_sql (sql): starting 7</div><div>rlm_sql (sql): Attempting to connect rlm_sql_mysql #7</div>
<div>rlm_sql_mysql: Starting connect to MySQL server for #7</div><div>rlm_sql (sql): Connected new DB handle, #7</div><div>rlm_sql (sql): starting 8</div><div>rlm_sql (sql): Attempting to connect rlm_sql_mysql #8</div><div>
rlm_sql_mysql: Starting connect to MySQL server for #8</div><div>rlm_sql (sql): Connected new DB handle, #8</div><div>rlm_sql (sql): starting 9</div><div>rlm_sql (sql): Attempting to connect rlm_sql_mysql #9</div><div>rlm_sql_mysql: Starting connect to MySQL server for #9</div>
<div>rlm_sql (sql): Connected new DB handle, #9</div><div> Module: Checking preacct {...} for more modules to load</div><div> Module: Linked to module rlm_acct_unique</div><div> Module: Instantiating module "acct_unique" from file /etc/freeradius/modules/acct_unique</div>
<div> acct_unique {</div><div> key = "User-Name, Acct-Session-Id, NAS-IP-Address, Client-IP-Address, NAS-Port"</div><div> }</div><div> Module: Checking accounting {...} for more modules to load</div><div>
Module: Instantiating module "detail" from file /etc/freeradius/modules/detail</div><div> detail {</div><div> detailfile = "/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d"</div><div>
header = "%t"</div><div> detailperm = 384</div><div> dirperm = 493</div><div> locking = no</div><div> log_packet_header = no</div><div> }</div><div> Module: Linked to module rlm_sql_log</div>
<div> Module: Instantiating module "sql_log" from file /etc/freeradius/modules/sql_log</div><div> sql_log {</div><div> path = "/var/log/radius/radacct/sql-relay"</div><div> Post-Auth = "INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ('%{User-Name}', '%{User-Password:-Chap-Password}', '%{reply:Packet-Type}', '%S');"</div>
<div> sql_user_name = "%{%{User-Name}:-DEFAULT}"</div><div> utf8 = no</div><div> safe-characters = "@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-_: /"</div><div>
}</div><div> Module: Instantiating module "attr_filter.accounting_response" from file /etc/freeradius/modules/attr_filter</div><div> attr_filter attr_filter.accounting_response {</div><div> attrsfile = "/etc/freeradius/attrs.accounting_response"</div>
<div> key = "%{User-Name}"</div><div> }</div><div> Module: Checking session {...} for more modules to load</div><div> Module: Checking post-proxy {...} for more modules to load</div><div> Module: Checking post-auth {...} for more modules to load</div>
<div> } # modules</div><div>} # server</div><div>radiusd: #### Opening IP addresses and Ports ####</div><div>listen {</div><div> type = "auth"</div><div> ipaddr = xx.xx.xxx.xxx</div><div> port = 0</div>
</div><div><br></div><div><br></div><div><br></div><div><br></div><div><br></div><div><br></div><div><br></div><div><br></div>
<br></div>