Logging client IP address
Ian Chard
ian.chard at ict.ox.ac.uk
Tue Aug 25 11:06:59 CEST 2009
On 25/08/09 09:50, Alan Buxey wrote:
> [Ian Chard wrote:]
>> I also want to have a syslogged record of each login attempt, which I
>> can do, but I can't figure out how to log the client's IP address
>> without having to specify every client individually in freeradius's
>> config. As it is, I just get
>>
>> Login OK: [username] (from client big-netblock port 0)
>>
>> Is there a way around this without having to maintain a huge list of
>> clients?
>
> the single line log can be chaged to give more details...but the detail
> logs give more information - like explicit NAS-IP-Address etc - so if
> you want more detail, use the detail module....not the linelog.
I'm more inclined to use the linelog because I want the messages to end
up on my syslog server along with all my other auth events. Can the
linelog be changed without recompiling freeradius?
> alternatively, use SQL to hold the clients and have each one defined...
> you can then use dynamic_clients so new entries can be added on the fly
> without server rebooting
If modifying the linelog isn't possible then I like the sound of this.
Is there some documentation on the dynamic_clients option? I can't seem
to find any reference to it on freeradius.org.
- Ian
--
Ian Chard, Senior Unix and Network Gorilla | E: ian.chard at sers.ox.ac.uk
Systems and Electronic Resources Service | T: 80587 / (01865) 280587
Oxford University Library Services | F: (01865) 242287
More information about the Freeradius-Users
mailing list