Sql log

Lucas Diaz lucasdiaz at eternet.cc
Tue Jan 26 14:28:23 CET 2016


Below is my "/usr/local/etc/raddb/mods-enabled/sql" file.
I'm using freeradius 3.0.11 now, the server works very well, but still 
can't log queries to a file.
I would appreciate any thoughts.
Thanks.


# -*- text -*-
##
## sql.conf -- SQL modules
##
##      $Id: e1431d634a28f20a0e5deaeedd66a161deb88eb7 $

######################################################################
#
#  Configuration for the SQL module
#
#  The database schemas and queries are located in subdirectories:
#
#       sql/<DB>/main/schema.sql        Schema
#       sql/<DB>/main/queries.conf      Authorisation and Accounting queries
#
#  Where "DB" is mysql, mssql, oracle, or postgresql.
#
#

sql {
         # The sub-module to use to execute queries. This should match
         # the database you're attempting to connect to.
         #
         #    * rlm_sql_mysql
         #    * rlm_sql_mssql
         #    * rlm_sql_oracle
         #    * rlm_sql_postgresql
         #    * rlm_sql_sqlite
         #    * rlm_sql_null (log queries to disk)
         #
         driver = "rlm_sql_firebird"

#
#       Several drivers accept specific options, to set them, a
#       config section with the the name as the driver should be added
#       to the sql instance.
#
#       Driver specific options are:
#
#       sqlite {
#               # Path to the sqlite database
#               filename = "/my/sqlite/database.db"
#
#               # If the file above does not exist and bootstrap is set
#               # a new database file will be created, and the SQL 
statements
#               # contained within the file will be executed.
#               bootstrap = "/my/sqlite/schema.sql"
#       }
#
#       mysql {
#               # If any of the below files are set tls encryption is 
enabled
#               tls {
#                       ca_file = "/etc/ssl/certs/my_ca.crt"
#                       ca_path = "/etc/ssl/certs/"
#                       certificate_file = 
"/etc/ssl/certs/private/client.crt"
#                       private_key_file = 
"/etc/ssl/certs/private/client.key"
#                       cipher = "DHE-RSA-AES256-SHA:AES128-SHA"
#               }
#       }
#

         # The dialect of SQL you want to use, this should usually match
         # the driver you selected above.
         #
         # If you're using rlm_sql_null, then it should be the type of
         # database the logged queries are going to be executed against.
         dialect = "firebird"

         # Connection info:
         #
         server = "localhost"
         port = 3050
         login = "sysdba"
         password = "passdbq"

         # Database table configuration for everything except Oracle
         radius_db = "/eternet/DB/RADIUS.FDB"

         # If you are using Oracle then use this instead
#       radius_db = 
"(DESCRIPTION=(ADDRESS=(PROTOCOL=TCP)(HOST=localhost)(PORT=1521))(CONNECT_DATA=(SID=your_sid)))"

         # If you're using postgresql this can also be used instead of 
the connection info parameters
#       radius_db = "dbname=radius host=localhost user=radius 
password=raddpass"

         # If you want both stop and start records logged to the
         # same SQL table, leave this as is.  If you want them in
         # different tables, put the start table in acct_table1
         # and stop table in acct_table2
         acct_table1 = "radacct"
         acct_table2 = "radacct"

         # Allow for storing data after authentication
         postauth_table = "radpostauth"

         # Tables containing 'check' items
         authcheck_table = "radius_check"
         groupcheck_table = "radgroupcheck"

         # Tables containing 'reply' items
         authreply_table = "radius_reply"
         groupreply_table = "radgroupreply"

         # Table to keep group info
         usergroup_table = "radusergroup"

         # If set to 'yes' (default) we read the group tables
         # If set to 'no' the user MUST have Fall-Through = Yes in the 
radreply table
         read_groups = no

         # Remove stale session if checkrad does not see a double login
         delete_stale_sessions = yes

         # Write SQL queries to a logfile. This is potentially useful 
for tracing
         # issues with authorization queries.
         logfile = ${logdir}/sqllog.sql
         #logfile = /usr/local/var/log/radius/sqllog.sql

         #  As of version 3.0, the "pool" section has replaced the
         #  following configuration items:
         #
         #  num_sql_socks
         #  connect_failure_retry_delay
         #  lifetime
         #  max_queries

         #
         #  The connection pool is new for 3.0, and will be used in many
         #  modules, for all kinds of connection-related activity.
         #
         # When the server is not threaded, the connection pool
         # limits are ignored, and only one connection is used.
         #
         pool {
                 # Number of connections to start
                 start = 20

                 # Minimum number of connections to keep open
                 min = 3

                 # Maximum number of connections
                 #
                 # If these connections are all in use and a new one
                 # is requested, the request will NOT get a connection.
                 #
                 # Setting 'max' to LESS than the number of threads means
                 # that some threads may starve, and you will see errors
                 # like "No connections available and at max connection 
limit"
                 #
                 # Setting 'max' to MORE than the number of threads means
                 # that there are more connections than necessary.
                 #
                 max = ${thread[pool].max_servers}

                 # Spare connections to be left idle
                 #
                 # NOTE: Idle connections WILL be closed if "idle_timeout"
                 # is set.
                 spare = 6

                 # Number of uses before the connection is closed
                 #
                 # 0 means "infinite"
                 uses = 0

                 # The lifetime (in seconds) of the connection
                 lifetime = 0

                 # idle timeout (in seconds).  A connection which is
                 # unused for this length of time will be closed.
                 idle_timeout = 300

                 # NOTE: All configuration settings are enforced.  If a
                 # connection is closed because of "idle_timeout",
                 # "uses", or "lifetime", then the total number of
                 # connections MAY fall below "min".  When that
                 # happens, it will open a new connection.  It will
                 # also log a WARNING message.
                 #
                 # The solution is to either lower the "min" connections,
                 # or increase lifetime/idle_timeout.
         }

         # Set to 'yes' to read radius clients from the database ('nas' 
table)
         # Clients will ONLY be read on server startup.
         read_clients = yes

         # Table to keep radius client info
         client_table = "get_svr_nas"

         # Read database-specific queries
         $INCLUDE ${modconfdir}/${.:name}/main/${dialect}/queries.conf
}

LUCAS DIAZ | DPTO. REDES
_______________________________________________________
Istilart 255 | Tel.: 02983 513040
C.P. B7500EGE | Tres Arroyos | Bs As | Argentina
www.eternet.cc | ETERNET SISTEMAS


-- 

*LUCAS DIAZ | DPTO. REDES*
_______________________________________________________
Istilart 255 | Tel.: 02983 513040
C.P. B7500EGE | Tres Arroyos | Bs As | Argentina *
*www.eternet.cc <http://www.eternet.cc/> | *ETERNET SISTEMAS *




More information about the Freeradius-Users mailing list