NAS table

Nizar Zulmi siapa_bilang_emailku_panjang at yahoo.com
Wed Apr 15 13:56:11 CEST 2009 

this is result of 
freeradius -X
reread_config:  reading radiusd.conf
Config:   including file: /etc/freeradius/proxy.conf
Config:   including file: /etc/freeradius/clients.conf
Config:   including file: /etc/freeradius/snmp.conf
Config:   including file: /etc/freeradius/eap.conf
Config:   including file: /etc/freeradius/sql.conf
 main: prefix = "/usr"
 main: localstatedir = "/var"
 main: logdir = "/var/log/freeradius"
 main: libdir = "/usr/lib/freeradius"
 main: radacctdir = "/var/log/freeradius/radacct"
 main: hostname_lookups = no
 main: max_request_time = 30
 main: cleanup_delay = 5
 main: max_requests = 1024
 main: delete_blocked_requests = 0
 main: port = 0
 main: allow_core_dumps = no
 main: log_stripped_names = no
 main: log_file = "/var/log/freeradius/radius.log"
 main: log_auth = no
 main: log_auth_badpass = no
 main: log_auth_goodpass = no
 main: pidfile = "/var/run/freeradius/freeradius.pid"
 main: user = "freerad"
 main: group = "freerad"
 main: usercollide = no
 main: lower_user = "no"
 main: lower_pass = "no"
 main: nospace_user = "no"
 main: nospace_pass = "no"
 main: checkrad = "/usr/sbin/checkrad"
 main: proxy_requests = yes
 proxy: retry_delay = 5
 proxy: retry_count = 3
 proxy: synchronous = no
 proxy: default_fallback = yes
 proxy: dead_time = 120
 proxy: post_proxy_authorize = no
 proxy: wake_all_if_all_dead = no
 security: max_attributes = 200
 security: reject_delay = 1
 security: status_server = no
 main: debug_level = 0
read_config_files:  reading dictionary
read_config_files:  reading naslist
Using deprecated naslist file.  Support for this will go away soon.
read_config_files:  reading clients

but if i uncommnet this on clients.conf 
client 127.0.0.1  {
        secret          =  passwordradius
        shortname       =  localhost
        nastype     = other     #  localhost isn't usually a NAS...
}

the radius is running well and reply access-accept on radtest

where do i make missconfiguration.
clue please.




________________________________
From: Ivan Kalik <tnt at kalik.net>
To: FreeRadius users mailing list <freeradius-users at lists.freeradius.org>
Sent: Tuesday, April 14, 2009 7:25:02 PM
Subject: RE: NAS table

Message 
Post 
radiusd -X output of server startup. Is sql enabled anywhere in the 
configuration? It isn't by default.
 
Ivan 
Kalik
Kalik 
Informatika ISP
-----Original Message-----
From: freeradius-users-bounces+tnt=kalik.net at lists.freeradius.org  [mailto:freeradius-users-bounces+tnt=kalik.net at lists.freeradius.org] On  Behalf Of Nizar Zulmi
Sent: 14 April 2009 08:00
To: FreeRadius users mailing list
Subject: Re: NAS  table


i comment out this on clients.conf
#client 127.0.0.1  {
#        secret          =  passwordradius
#        shortname       =  localhost
#        nastype     = other     #  localhost isn't usually a NAS...
#}
and i add this to NAS table on  radius database.
insert into nas (nasname, shortname, secret) values  ("client 127.0.0.1","localhost","passwordradius");

i restart the  mysql server and then i perform test using radtest and got this  message:
radtest Nizar 123456 localhost 1812  passwordradius
Sending Access-Request of id 104 to 127.0.0.1 port  1812
        User-Name =  "Nizar"
        User-Password =  "123456"
        NAS-IP-Address =  255.255.255.255
        NAS-Port =  1812
....
Re-sending Access-Request of id 104 to 127.0.0.1 port  1812
        User-Name =  "Nizar"
        User-Password =  "123456"
        NAS-IP-Address =  255.255.255.255
        NAS-Port =  1812
radclient: no response from server for ID 104

why its  still dosn't work..??
clue plase...

--- On Tue, 4/14/09,  JDL <JDL at imaginenet.net> wrote:


From:  JDL <JDL at imaginenet.net>
Subject: Re: NAS table
To:  "FreeRadius users mailing list"  <freeradius-users at lists.freeradius.org>
Date: Tuesday, April  14, 2009, 11:42 AM


Nizar Zulmi wrote:
> i enable this on  sql.conf
> readclients = yes
> 
> do i have to  remove this :
> client 127.0.0.1 {
Do you have a "127.0.0.1"  client in your the nas table? If so, then yes, you will need to remove  it or else you will end up with a duplicate. If this client is not in  your nas table, then you can just leave the 127.0.0.1 client in the  clients.conf file.

BTW, I think the 127.0.0.1 client is just  there for testing purposes. I do not believe it will break anything if  it is completely removed (unless, of course, you are running also  running some sort of radius client on the same server as  FreeRADIUS).

Jim L.
-
List info/subscribe/unsubscribe?  See http://www.freeradius.org/list/users.html
 

No virus found in this incoming message.
Checked  by AVG - www.avg.com
Version: 8.0.238 / Virus Database: 270.11.53/2054 -  Release Date: 04/11/09 10:51:00



      
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20090415/00dc0acd/attachment.html>

More information about the Freeradius-Users mailing list