Hi, I am using FreeRADIUS 2.0.0 ; $Date: 2006/08/15 20:46:48 Will this server work on a host configured with IPV6 address and clients will still be able to authenticate using this server? I am currently not able to use this radius server. Using tcpdump I could see the radius packets reaching the server, but the packet is not reaching the radiusd daemon. Do I need to do any configuration changes for the same? Should I use some other version? Thanks, Sujata The information contained in this electronic message and any attachments to this message are intended for the exclusive use of the addressee(s) and may contain proprietary, confidential or privileged information. If you are not the intended recipient, you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately and destroy all copies of this message and any attachments. WARNING: Computer viruses can be transmitted via email. The recipient should check this email and any attachments for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by this email. www.wipro.com
Am Donnerstag, 5. Oktober 2006 15:39 schrieb sujata.gaddemane@wipro.com:
Hi,
I am using FreeRADIUS 2.0.0 ; $Date: 2006/08/15 20:46:48
Will this server work on a host configured with IPV6 address and clients will still be able to authenticate using this server?
I am currently not able to use this radius server. Using tcpdump I could see the radius packets reaching the server, but the packet is not reaching the radiusd daemon.
Do I need to do any configuration changes for the same? Should I use some other version?
Thanks, Sujata
See: http://wiki.freeradius.org/index.php/FreeRADIUS_Wiki:FAQ#Does_FreeRADIUS_Sup... -- Dr. Michael Schwartzkopff MultiNET Services GmbH Bretonischer Ring 7 85630 Grasbrunn Tel: (+49 89) 456 911 - 0 Fax: (+49 89) 456 911 - 21 mob: (+49 174) 343 28 75 PGP Fingerprint: F919 3919 FF12 ED5A 2801 DEA6 AA77 57A4 EDD8 979B Skype: misch42
Hi,
Hi,
I am using FreeRADIUS 2.0.0 ; $Date: 2006/08/15 20:46:48
Will this server work on a host configured with IPV6 address and clients will still be able to authenticate using this server?
I am currently not able to use this radius server. Using tcpdump I could see the radius packets reaching the server, but the packet is not reaching the radiusd daemon.
Do I need to do any configuration changes for the same? Should I use some other version?
you need to configure your freeradius radiusd.conf to use IPv6. eg listen { ipv6addr = ::1 # any. ::1 == localhost port = 0 type = auth # interface = eth0 } PLEASE read the example radiusd.conf in raddb for more info - for example, one freeradius daemon CANNOT run ipv4 and ipv6 at the same time (currently) and ALSO there is a bug. :: (listen on any address) causes a segmentation fault. ::1 (listen localhost only) works fine - I'm _supposing_ that setting the systems IPv6 address as the value would work, but I dont have any remote tools to test against. its not like IPv6 is going anywhere anyway........ ;-) you can tell its working (as much as it currently does) by looking att he debug logs when you run 'radiusd -X'...you should see something like main: port = 1812 listen: type = "auth" listen: ipv6addr = ::1 IPv6 address [::1] listen: port = 0 and see the listening process using 'netstat' tool (for example) alan
A.L.M.Buxey@lboro.ac.uk wrote:
time (currently) and ALSO there is a bug. :: (listen on any address) causes a segmentation fault.
WTF? <types madly> Ah. 'struct sockaddr' isn't big enough to hold IPv6 addresses. We have to use 'struct sockaddr_storage'. Thanks, it's now fixed. Alan DeKok. -- http://deployingradius.com - The web site of the book http://deployingradius.com/blog/ - The blog
Hi,
time (currently) and ALSO there is a bug. :: (listen on any address) causes a segmentation fault.
WTF? <types madly>
:-) ah. wasnt reported.
Ah. 'struct sockaddr' isn't big enough to hold IPv6 addresses. We have to use 'struct sockaddr_storage'.
Thanks, it's now fixed.
great. it was late when i was quickly testing that so didnt have time to research if it was a reported bug. guess I dont have to report now. glad to have been of testing service to you. alan
participants (4)
-
A.L.M.Buxey@lboro.ac.uk -
Alan DeKok -
Michael Schwartzkopff -
sujata.gaddemane@wipro.com