[RADIATOR] Radiator Web Interface

2010-12-13 Thread sergio 
Hello list

Someone already made or used a web interface to manage the Radiator?
___
radiator mailing list
radiator@open.com.au
http://www.open.com.au/mailman/listinfo/radiator

Re: [RADIATOR] Radiator Web Interface

2010-12-13 Thread sergio 
It helped, thank you.

> -Original Message-
> From: h...@open.com.au
> Sent: Tue, 14 Dec 2010 13:44:05 +1100
> To: ser...@inbox.com
> Subject: Re: [RADIATOR] Radiator Web Interface
> 
> 
> Hello Sergio -
> 
> Its included with Radiator.
> 
>   http://www.open.com.au/radiator/ref.pdf
> 
> See section 5.88.
> 
> regards
> 
> Hugh
> 
> 
> On 14 Dec 2010, at 13:31, sergio wrote:
> 
>> Hello list
>> 
>> Someone already made or used a web interface to manage the Radiator?
>> ___
>> radiator mailing list
>> radiator@open.com.au
>> http://www.open.com.au/mailman/listinfo/radiator
> 
> 
> 
> NB:
> 
> Have you read the reference manual ("doc/ref.html")?
> Have you searched the mailing list archive
> (www.open.com.au/archives/radiator)?
> Have you had a quick look on Google (www.google.com)?
> Have you included a copy of your configuration file (no secrets),
> together with a trace 4 debug showing what is happening?
> 
> --
> Radiator: the most portable, flexible and configurable RADIUS server
> anywhere. Available on *NIX, *BSD, Windows, MacOS X.
> Includes support for reliable RADIUS transport (RadSec),
> and DIAMETER translation agent.
> -
> Nets: internetwork inventory and management - graphical, extensible,
> flexible with hardware, software, platform and database independence.
___
radiator mailing list
radiator@open.com.au
http://www.open.com.au/mailman/listinfo/radiator

[RADIATOR] Radiator Snmp

2010-12-13 Thread sergio 
Hello list

I'm needing to build graphs MRTG / CACTI (snmp) to monitor endorsements for 
Radiator

Best Regards
___
radiator mailing list
radiator@open.com.au
http://www.open.com.au/mailman/listinfo/radiator

[RADIATOR] Application like radclient

2011-12-15 Thread sergio 
Hello

Radiator has some application like (radclient) of freeradius ?


___
radiator mailing list
radiator@open.com.au
http://www.open.com.au/mailman/listinfo/radiator

Re: [RADIATOR] Application like radclient

2011-12-16 Thread sergio 
Hello Hugh,

Thank you for your help.

Can you tell which similar syntax:

echo User-Name=test,Framed-IP=192.168.2.199 | radclient -x 192.168.2.1:1700 
disconnect mysecret

Regards.

> -Original Message-
> From: h...@open.com.au
> Sent: Fri, 16 Dec 2011 14:11:14 +1100
> To: ser...@inbox.com
> Subject: Re: [RADIATOR] Application like radclient
> 
> 
> Hello Sergio -
> 
> Yes - its called "radpwtst".
> 
> You will find it in the main Radiator distribution directory.
> 
> See also section 8 in the Radiator 4.9 reference manual ("doc/ref/pdf").
> 
> Here is the "help":
> 
> 
> TiTi:Radiator-4.9 hugh$ perl radpwtst -h
> 
> usage: radpwtst [-h] [-time] [-iterations n]
>   [-trace [level]] [-s server] [-secret secret] [-retries n]
>   [-noauth] [-noacct][-nostart] [-nostop] [-alive] [-status]
>   [-chap] [-mschap] [-mschapv2] [-eapmd5] [-eapotp] [-eapgtc]
> [-sip] [-leap]
>   [-motp_secret ] [-eaphex x]
>   [-accton] [-acctoff] [-framed_ip_address address]
>   [-auth_port port] [-acct_port port] [-identifier n]
>   [-user username] [-password password]
>   [-nas_ip_address address] [-nas_identifier string]
>   [-nas_port port] [-nas_port_type type] [-service_type service]
>   [-calling_station_id string] [-called_station_id string]
>   [-session_id string] [-interactive]
>   [-delay_time n] [-session_time n] [-input_octets n]
>   [-output_octets n] [-timeout n] [-dictionary file,file]
>   [-gui] [-class string] [-useoldascendpasswords]
>   [-code requestcode] [-raw data] [-rawfile filename]
> [-rawfileseq filename]
>   [-outport port] [-bind_address dotted-ip-address]
>   [-options optionfile]
>   [attribute=value]...
> 
> 
> regards
> 
> Hugh
> 
> 
> On 16 Dec 2011, at 12:35, sergio wrote:
> 
>> Hello
>> 
>> Radiator has some application like (radclient) of freeradius ?
>> 
>> 
>> ___
>> radiator mailing list
>> radiator@open.com.au
>> http://www.open.com.au/mailman/listinfo/radiator
> 
> 
> --
> 
> Hugh Irvine
> h...@open.com.au
> 
> Radiator: the most portable, flexible and configurable RADIUS server
> anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
> Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
> TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP,
> DIAMETER etc.
> Full source on Unix, Windows, MacOSX, Solaris, VMS, NetWare etc.


___
radiator mailing list
radiator@open.com.au
http://www.open.com.au/mailman/listinfo/radiator

Re: [RADIATOR] Application like radclient

2011-12-19 Thread sergio 
Thank you for help.

> -Original Message-
> From: h...@open.com.au
> Sent: Sat, 17 Dec 2011 17:11:22 +1100
> To: ser...@inbox.com
> Subject: Re: [RADIATOR] Application like radclient
> 
> 
> Hello Sergio -
> 
> Something like this (you will need to test of course):
> 
> 
> TiTi:Radiator-4.9 hugh$ perl radpwtst -noauth -noacct -s 192.168.2.1
> -auth_port 1700 -secret mysecret -user test -code Disconnect-Request
> -trace 4 User-Name=test Framed-IP-Address=192.168.2.199
> 
> Sat Dec 17 17:07:42 2011: DEBUG: Reading dictionary file './dictionary'
> 
> sending Disconnect-Request…
> 
> Sat Dec 17 17:07:42 2011: DEBUG: Packet dump:
> *** Sending to 192.168.2.1 port 1700 
> Code:   Disconnect-Request
> Identifier: 27
> Authentic:  <179><215><14><169><216><245>Zs><12><180>KE<174>4<192>
> Attributes:
>   User-Name = "test"
>   Framed-IP-Address = 192.168.2.199
> 
> 
> regards
> 
> Hugh
> 
> 
> On 17 Dec 2011, at 13:45, sergio wrote:
> 
>> Hello Hugh,
>> 
>> Thank you for your help.
>> 
>> Can you tell which similar syntax:
>> 
>> echo User-Name=test,Framed-IP=192.168.2.199 | radclient -x
>> 192.168.2.1:1700 disconnect mysecret
>> 
>> Regards.
>> 
>>> -Original Message-
>>> From: h...@open.com.au
>>> Sent: Fri, 16 Dec 2011 14:11:14 +1100
>>> To: ser...@inbox.com
>>> Subject: Re: [RADIATOR] Application like radclient
>>> 
>>> 
>>> Hello Sergio -
>>> 
>>> Yes - its called "radpwtst".
>>> 
>>> You will find it in the main Radiator distribution directory.
>>> 
>>> See also section 8 in the Radiator 4.9 reference manual
>>> ("doc/ref/pdf").
>>> 
>>> Here is the "help":
>>> 
>>> 
>>> TiTi:Radiator-4.9 hugh$ perl radpwtst -h
>>> 
>>> usage: radpwtst [-h] [-time] [-iterations n]
>>>  [-trace [level]] [-s server] [-secret secret] [-retries n]
>>>  [-noauth] [-noacct][-nostart] [-nostop] [-alive] [-status]
>>>  [-chap] [-mschap] [-mschapv2] [-eapmd5] [-eapotp] [-eapgtc]
>>> [-sip] [-leap]
>>>  [-motp_secret ] [-eaphex x]
>>>  [-accton] [-acctoff] [-framed_ip_address address]
>>>  [-auth_port port] [-acct_port port] [-identifier n]
>>>  [-user username] [-password password]
>>>  [-nas_ip_address address] [-nas_identifier string]
>>>  [-nas_port port] [-nas_port_type type] [-service_type service]
>>>  [-calling_station_id string] [-called_station_id string]
>>>  [-session_id string] [-interactive]
>>>  [-delay_time n] [-session_time n] [-input_octets n]
>>>  [-output_octets n] [-timeout n] [-dictionary file,file]
>>>  [-gui] [-class string] [-useoldascendpasswords]
>>>  [-code requestcode] [-raw data] [-rawfile filename]
>>>   [-rawfileseq filename]
>>>  [-outport port] [-bind_address dotted-ip-address]
>>>  [-options optionfile]
>>>  [attribute=value]...
>>> 
>>> 
>>> regards
>>> 
>>> Hugh
>>> 
>>> 
>>> On 16 Dec 2011, at 12:35, sergio wrote:
>>> 
>>>> Hello
>>>> 
>>>> Radiator has some application like (radclient) of freeradius ?
>>>> 
>>>> 
>>>> ___
>>>> radiator mailing list
>>>> radiator@open.com.au
>>>> http://www.open.com.au/mailman/listinfo/radiator
>>> 
>>> 
>>> --
>>> 
>>> Hugh Irvine
>>> h...@open.com.au
>>> 
>>> Radiator: the most portable, flexible and configurable RADIUS server
>>> anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
>>> Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
>>> TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP,
>>> DIAMETER etc.
>>> Full source on Unix, Windows, MacOSX, Solaris, VMS, NetWare etc.
>> 
>> 
> 
> 
> --
> 
> Hugh Irvine
> h...@open.com.au
> 
> Radiator: the most portable, flexible and configurable RADIUS server
> anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
> Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
> TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP,
> DIAMETER etc.
> Full source on Unix, Windows, MacOSX, Solaris, VMS, NetWare etc.


___
radiator mailing list
radiator@open.com.au
http://www.open.com.au/mailman/listinfo/radiator

[RADIATOR] Automatic block wrong password

2011-12-19 Thread sergio 
Hello,

I need to put an automatic block of User for users who type the wrong password 
five times.

Would let something like locked for 30 minutes or until someone manually unlock.

Regards.


___
radiator mailing list
radiator@open.com.au
http://www.open.com.au/mailman/listinfo/radiator

Re: [RADIATOR] Automatic block wrong password

2011-12-22 Thread sergio 
Thank you for your response.

Today I use Radiator with Mysql and all users are within the database.

How can we save the LOG Radiator in Mysql?

> -Original Message-
> From: h...@open.com.au
> Sent: Wed, 21 Dec 2011 23:24:39 +0200
> To: ser...@inbox.com
> Subject: Re: [RADIATOR] Automatic block wrong password
> 
> On 12/20/2011 04:46 AM, sergio wrote:
> 
>> I need to put an automatic block of User for users who type the wrong
>> password five times.
>> 
>> Would let something like locked for 30 minutes or until someone manually
>> unlock.
> 
> Radiator does not have this kind of module, so you would need to
> implement the required behaviour.
> 
> For me this sounds like a SQL database would be needed for storing
> records of bad password tries and information about if and when the
> account is locked.
> 
> An alternative might be e.g. LDAP server that locks the account after 5
> incorrect logins. The LDAP server would then implement 30 minute or
> infinite locking. In other words, if your authentication backend
> supports this, you would not need to do it with Radiator.
> 
> Heikki
> 
> --
> Heikki Vatiainen 
> 
> Radiator: the most portable, flexible and configurable RADIUS server
> anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
> Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
> TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP,
> DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS,
> NetWare etc.


___
radiator mailing list
radiator@open.com.au
http://www.open.com.au/mailman/listinfo/radiator

[RADIATOR] Radiator high Availability

2012-08-26 Thread sergio 
I use Radiator 4.10 and I need to place a second radiator and I use FreeBSD, 
but I need a solution to the sessions (SessionDatabase SQL) is well 
synchronized since I use mysql. A mysql replication via resolves or is there a 
better solution?

I also thought about using FreeBSD with CARP.

Thanks


GET FREE SMILEYS FOR YOUR IM & EMAIL - Learn more at 
http://www.inbox.com/smileys
Works with AIM®, MSN® Messenger, Yahoo!® Messenger, ICQ®, Google Talk™ and most 
webmails


___
radiator mailing list
radiator@open.com.au
http://www.open.com.au/mailman/listinfo/radiator

Re: [RADIATOR] Radiator high Availability

2012-08-27 Thread sergio 
Thank you for answers.

What is the safest way to have 2 servers for high availability with Radiator.

Thanks

> -Original Message-
> From: h...@open.com.au
> Sent: Mon, 27 Aug 2012 15:17:59 +0300
> To: radiator@open.com.au
> Subject: Re: [RADIATOR] Radiator high Availability
> 
> On 08/26/2012 03:00 PM, sergio wrote:
>> I use Radiator 4.10 and I need to place a second radiator and I use
>> FreeBSD, but I need a solution to the sessions (SessionDatabase SQL) is
>> well synchronized since I use mysql. A mysql replication via resolves or
>> is there a better solution?
> 
> Here are some thoughts:
> 
> You should consider cases where the replication master becomes
> unreachable. If radiusd switches to secondary DB server, what happens
> when the primary comes back?  I am assuming there are two DB servers,
> master that replicates to secondary server.
> 
> If there's a network connectivity problem with one radiusd and the DB
> master server and radiusd decides to switch to the secondary DB. What
> happens when there are writes to both DB server.
> 
> If the writes can happen to both DB servers, how fast should the
> replication be? Assuming you have two radius servers and there's a very
> short lived session where the accounting start and stop messages go to
> different RADIUS servers which talk to different DB servers, is the DB
> synchronised when the session ends? Could session stop be recorded after
> session start?
> 
> If you try to make replication quicker, how soon will the database start
> having load problems.
> 
> Note: I'm not very familiar with MySQL synchronisation. There are likely
> many other things to consider too.
> 
>> I also thought about using FreeBSD with CARP.
> 
> CARP seems to allow hosts to share the same IP address. RADIUS requires
> certain amount of state to handle e.g., retries and knowing which reply
> is related to which request. Sharing an address can lead to problems
> when related RADIUS messages are sent to multiple different RADIUS
> servers.
> 
> Thanks,
> Heikki
> 
> --
> Heikki Vatiainen 
> 
> Radiator: the most portable, flexible and configurable RADIUS server
> anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
> Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
> TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP,
> DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS,
> NetWare etc.
> ___
> radiator mailing list
> radiator@open.com.au
> http://www.open.com.au/mailman/listinfo/radiator


FREE 3D MARINE AQUARIUM SCREENSAVER - Watch dolphins, sharks & orcas on your 
desktop!
Check it out at http://www.inbox.com/marineaquarium


___
radiator mailing list
radiator@open.com.au
http://www.open.com.au/mailman/listinfo/radiator

[RADIATOR] AccountingTable Database Very big

2013-06-28 Thread sergio 
Hello list

I use mysql database and my AccountingTable has more than 40 million records 
per month. Does anyone here have any policy purge? I have an extract of CGI 
access for my users and is very slow because the bank is getting too big. Does 
anyone have any recommendation what I should do to have a page extract access 
working well with a huge amount of data like this?

Regards!


GET FREE SMILEYS FOR YOUR IM & EMAIL - Learn more at 
http://www.inbox.com/smileys
Works with AIM®, MSN® Messenger, Yahoo!® Messenger, ICQ®, Google Talk™ and most 
webmails


___
radiator mailing list
radiator@open.com.au
http://www.open.com.au/mailman/listinfo/radiator

Re: [RADIATOR] AccountingTable Database Very big

2013-06-30 Thread sergio 
I use mysql database, elterei from MyISAM to InnoDB but I wonder if another 
database would not help.

Very good idea to use your tables YEAR-MES. What database do you use?

you have some script to extract such data in the Browser?

Thanks

> -Original Message-
> From: ri...@vianet.ca
> Sent: Sat, 29 Jun 2013 14:02:27 -0400
> To: ser...@inbox.com
> Subject: Re: [RADIATOR] AccountingTable Database Very big
> 
> I use monthly tables.  that really helped. Then use the year-month
> attributes in your insert statements.  And of course anything that reads
> this data will have to be altered to support year-month tables. Also an
> external process that runs monthly to make sure that the tables get
> created ahead of time.
> 
> 
> 
> On 28/06/13 10:08 PM, sergio wrote:
>> Hello list
>> 
>> I use mysql database and my AccountingTable has more than 40 million
>> records per month. Does anyone here have any policy purge? I have an
>> extract of CGI access for my users and is very slow because the bank is
>> getting too big. Does anyone have any recommendation what I should do to
>> have a page extract access working well with a huge amount of data like
>> this?
>> 
>> Regards!
>> 
>> 
>> GET FREE SMILEYS FOR YOUR IM&  EMAIL - Learn more at
>> http://www.inbox.com/smileys
>> Works with AIM®, MSN® Messenger, Yahoo!® Messenger, ICQ®, Google Talk™
>> and most webmails
>> 
>> 
>> ___
>> radiator mailing list
>> radiator@open.com.au
>> http://www.open.com.au/mailman/listinfo/radiator


FREE 3D EARTH SCREENSAVER - Watch the Earth right on your desktop!
Check it out at http://www.inbox.com/earth


___
radiator mailing list
radiator@open.com.au
http://www.open.com.au/mailman/listinfo/radiator

Re: [RADIATOR] AccountingTable Database Very big

2013-07-01 Thread sergio 
Thank you for the information, I'll switch to postgress. Someone on the list 
that uses Postgress has the structure of the tables?

Or does the radiator have any examples of this?

Thanks

> -Original Message-
> From: a.l.m.bu...@lboro.ac.uk
> Sent: Mon, 1 Jul 2013 08:29:22 +0100
> To: ser...@inbox.com
> Subject: Re: [RADIATOR] AccountingTable Database Very big
> 
> Hi,
> 
>> I use mysql database and my AccountingTable has more than 40 million
>> records per month. Does anyone here have any policy purge? I have an
>> extract of CGI access for my users and is very slow because the bank is
>> getting too big. Does anyone have any recommendation what I should do to
>> have a page extract access working well with a huge amount of data like
>> this?
> 
> firstly use InnoDB rather than MyISAM (InnoDB has been in MySQL for ages
> now...no default
> installs should not have InnoDB support...and no tools should want to
> slap MyISAM tables
> into the DB..should be InnoDB by default)
> 
> secondly, edit the my.cnf to fully utilise your hostthere are plenty
> of docs
> for each InnoDB option...but..like MyISAM.there are also quite a few
> tools that will
> give you a fairly good start on the way down the path eg
> http://mysqltuner.com/
> 
> thirdly, look at what your tool is doing (in this case RADIATOR) with the
> DB to find
> out if there are any local query bottlenecks eg use the EXPLAIN command
> to find out
> what the queries are doing and where it cannot find quick answers. then
> look at adding
> required INDEXes to the tables
> 
> finally, move from MySQL to PostgreSQL - psql doesnt have so many nasty
> locking events
> on each row/column - MySQL will cause limits whenever an update/insert is
> occuring
> (from experience, default install speed of psql is similar to that of
> MySQL after
> you've spent some time optimising the MySQL environment! - and THEN you
> can tweak
> psql even further )
> 
> alan


FREE 3D MARINE AQUARIUM SCREENSAVER - Watch dolphins, sharks & orcas on your 
desktop!
Check it out at http://www.inbox.com/marineaquarium


___
radiator mailing list
radiator@open.com.au
http://www.open.com.au/mailman/listinfo/radiator

Re: [RADIATOR] AccountingTable Database Very big

2013-07-01 Thread sergio 
OK, thanks for the help!

> -Original Message-
> From: ri...@vianet.ca
> Sent: Sun, 30 Jun 2013 23:59:02 -0400
> To: ser...@inbox.com
> Subject: Re: [RADIATOR] AccountingTable Database Very big
> 
> i use mysql. no i don't have anything that reads the data with a
> browser. sorry.
> 
> 
> On 30/06/13 11:33 PM, sergio wrote:
>> I use mysql database, elterei from MyISAM to InnoDB but I wonder if
>> another database would not help.
>> 
>> Very good idea to use your tables YEAR-MES. What database do you use?
>> 
>> you have some script to extract such data in the Browser?
>> 
>> Thanks
>> 
>>> -Original Message-
>>> From: ri...@vianet.ca
>>> Sent: Sat, 29 Jun 2013 14:02:27 -0400
>>> To: ser...@inbox.com
>>> Subject: Re: [RADIATOR] AccountingTable Database Very big
>>> 
>>> I use monthly tables.  that really helped. Then use the year-month
>>> attributes in your insert statements.  And of course anything that
>>> reads
>>> this data will have to be altered to support year-month tables. Also an
>>> external process that runs monthly to make sure that the tables get
>>> created ahead of time.
>>> 
>>> 
>>> 
>>> On 28/06/13 10:08 PM, sergio wrote:
>>>> Hello list
>>>> 
>>>> I use mysql database and my AccountingTable has more than 40 million
>>>> records per month. Does anyone here have any policy purge? I have an
>>>> extract of CGI access for my users and is very slow because the bank
>>>> is
>>>> getting too big. Does anyone have any recommendation what I should do
>>>> to
>>>> have a page extract access working well with a huge amount of data
>>>> like
>>>> this?
>>>> 
>>>> Regards!
>>>> 
>>>> 
>>>> GET FREE SMILEYS FOR YOUR IM&   EMAIL - Learn more at
>>>> http://www.inbox.com/smileys
>>>> Works with AIM®, MSN® Messenger, Yahoo!® Messenger, ICQ®, Google Talk™
>>>> and most webmails
>>>> 
>>>> 
>>>> ___
>>>> radiator mailing list
>>>> radiator@open.com.au
>>>> http://www.open.com.au/mailman/listinfo/radiator
>> 
>> FREE 3D EARTH SCREENSAVER - Watch the Earth right on your desktop!
>> Check it out at http://www.inbox.com/earth
>> 
>> 
>> 
>>


TRY FREE IM TOOLPACK at http://www.imtoolpack.com/default.aspx?rc=if5
Capture screenshots, upload images, edit and send them to your friends
through IMs, post on Twitter®, Facebook®, MySpace™, LinkedIn® – FAST!


___
radiator mailing list
radiator@open.com.au
http://www.open.com.au/mailman/listinfo/radiator

Re: [RADIATOR] AccountingTable Database Very big

2013-07-02 Thread sergio 
I use mysql to be very fast, but as I am with a lot of data I was wondering if 
mysql will endure.

> -Original Message-
> From: ri...@vianet.ca
> Sent: Mon, 01 Jul 2013 12:48:24 -0400
> To: a.l.m.bu...@lboro.ac.uk
> Subject: Re: [RADIATOR] AccountingTable Database Very big
> 
> are you saying postgresql is really that much better with regards to
> performance, and worth switching to?
> 
> 
> On 01/07/13 03:29 AM, a.l.m.bu...@lboro.ac.uk wrote:
>> Hi,
>> 
>>> I use mysql database and my AccountingTable has more than 40 million
>>> records per month. Does anyone here have any policy purge? I have an
>>> extract of CGI access for my users and is very slow because the bank is
>>> getting too big. Does anyone have any recommendation what I should do
>>> to have a page extract access working well with a huge amount of data
>>> like this?
>> firstly use InnoDB rather than MyISAM (InnoDB has been in MySQL for ages
>> now...no default
>> installs should not have InnoDB support...and no tools should want to
>> slap MyISAM tables
>> into the DB..should be InnoDB by default)
>> 
>> secondly, edit the my.cnf to fully utilise your hostthere are plenty
>> of docs
>> for each InnoDB option...but..like MyISAM.there are also quite a few
>> tools that will
>> give you a fairly good start on the way down the path eg
>> http://mysqltuner.com/
>> 
>> thirdly, look at what your tool is doing (in this case RADIATOR) with
>> the DB to find
>> out if there are any local query bottlenecks eg use the EXPLAIN command
>> to find out
>> what the queries are doing and where it cannot find quick answers. then
>> look at adding
>> required INDEXes to the tables
>> 
>> finally, move from MySQL to PostgreSQL - psql doesnt have so many nasty
>> locking events
>> on each row/column - MySQL will cause limits whenever an update/insert
>> is occuring
>> (from experience, default install speed of psql is similar to that of
>> MySQL after
>> you've spent some time optimising the MySQL environment! - and THEN you
>> can tweak
>> psql even further )
>> 
>> alan
>> ___
>> radiator mailing list
>> radiator@open.com.au
>> http://www.open.com.au/mailman/listinfo/radiator
>> 
>>


GET FREE SMILEYS FOR YOUR IM & EMAIL - Learn more at 
http://www.inbox.com/smileys
Works with AIM®, MSN® Messenger, Yahoo!® Messenger, ICQ®, Google Talk™ and most 
webmails


___
radiator mailing list
radiator@open.com.au
http://www.open.com.au/mailman/listinfo/radiator

Re: [RADIATOR] AccountingTable Database Very big

2013-07-02 Thread sergio 
Got it.

Thank you

> -Original Message-
> From: a.l.m.bu...@lboro.ac.uk
> Sent: Mon, 1 Jul 2013 19:11:51 +0100
> To: ri...@vianet.ca
> Subject: Re: [RADIATOR] AccountingTable Database Very big
> 
> Hi,
> 
>> are you saying postgresql is really that much better with regards to
>> performance, and worth switching to?
> 
> really depends on what you are doing and how your database is structured.
> IMHO
> the answer is yes..(or even YES!) in many use cases. of course, you may
> get the
> speed benefits but its a new thing to learn and people will need to get a
> little
> reskilled (and you need the latest release to have native replication)
> 
> alan
> ___
> radiator mailing list
> radiator@open.com.au
> http://www.open.com.au/mailman/listinfo/radiator


FREE 3D MARINE AQUARIUM SCREENSAVER - Watch dolphins, sharks & orcas on your 
desktop!
Check it out at http://www.inbox.com/marineaquarium


___
radiator mailing list
radiator@open.com.au
http://www.open.com.au/mailman/listinfo/radiator

[RADIATOR] Custom Error PPPoE

2013-10-06 Thread sergio 
How do I return an ERROR COD customized for PPPoE authentication? I can make 
PostAuthHook.pl?

The error User and password is 691 how to spawn another COD error for Locked 
User?

Thanks


FREE 3D MARINE AQUARIUM SCREENSAVER - Watch dolphins, sharks & orcas on your 
desktop!
Check it out at http://www.inbox.com/marineaquarium


___
radiator mailing list
radiator@open.com.au
http://www.open.com.au/mailman/listinfo/radiator

[RADIATOR] Usage quotas

2014-03-03 Thread sergio 
We are wanting to implement traffic share by users. Ie, the user would have a 
bandwidth of 10Mbps but with monthly limit of 5Gbps of traffic, as you reach 
5Gbps of traffic we would reduce the speed to 1Mbps

Thanks


FREE 3D EARTH SCREENSAVER - Watch the Earth right on your desktop!
Check it out at http://www.inbox.com/earth


___
radiator mailing list
radiator@open.com.au
http://www.open.com.au/mailman/listinfo/radiator

Re: [RADIATOR] Radiator+Mikrotik

2015-01-22 Thread sergio 
hello

It is possible to create a package for the Mikrotik? MikrotikSessionMIB.pm


> -Original Message-
> From: nath...@fsr.com
> Sent: Mon, 8 Dec 2014 05:30:26 -0800
> To: m.abdelsa...@wimd.com.kw, radiator@open.com.au
> Subject: Re: [RADIATOR] Radiator+Mikrotik
> 
> On Monday, December 08, 2014 12:16 AM, Mahmoud Abdelsalam wrote:
> 
>> Hello all,
>> 
>> As Mikrotik doesn't support COA for PPPoE, so I used Disconnect-Request,
>> the hook script will send Disconnect-Request to Mikrotik once the
>> session
>> exceeds the quota, here is how i send Disconnect-Request:
> 
> [snip]
> 
>> This works fine but the problem is that user can't re-authenticate again
>> because it reaches Maxsessions although I have this in my config file:
> 
> [snip]
> 
>> The user would successfully authenticate again when I manually remove
>> the
>> session from RADONLINE by executing the DeleteQuery.
> 
> It has been a while since I have had to look at/think about this, but as
> I recall, this is how it works:
> 
> DeleteQuery doesn't get executed unless the Radiator server receives
> Accounting-Stop from the MikroTik.
> 
> PoD/Disconnect-Request may or may not cause Accounting-Stop to be issued
> by MikroTik RouterOS; I can't remember and I will have to simulate this
> later and run a packet capture to see what happens.  (Maybe if you are
> running an older version of RouterOS, try upgrading?  It could be a bug
> that got fixed later, and they have definitely had their share of RADIUS
> client bugs in the past.)
> 
> In any case, you can work around a problem where Radiator does not
> receive Accounting-Stop by having Radiator verify that any active
> sessions for the user that are recorded in the RADONLINE table are valid
> at the moment that the user tries to authenticate again.  Radiator does
> this by executing an SNMP query to the NAS that is on record for each
> session to see if the Session-ID for that row in the table is still
> valid.  If the NAS does not return anything for the OID, then Radiator
> assumes the session is dead and purges that entry from RADONLINE,
> reducing MaxSessions count by 1.
> 
> To enable this functionality, you need to make sure that SNMP is enabled
> and configured on each MikroTik NAS, you need to make sure that Net-SNMP
> is installed and configured on the Radiator server, and you need to add
> these options to your Client clause in your Radiator config file:
> 
> 
> [...]
> # MikroTik supports this MIB
> NasType CiscoSessionMIB
> SNMPCommunity public
> 
> 
> Replace 'public' with the SNMP community string that you have configured
> on the MikroTik.
> 
> We also made a slight change to the Radiator code, because by default, if
> Radiator does not get a response back from its SNMP "get" to the
> MikroTik, it gives the benefit of the doubt to RADONLINE.  We have found
> that more often than not, it is better to give the benefit of the doubt
> to the user.  That way, a user is not unfairly punished by problems with
> our NAS or problems on our network that might make it impossible for
> Radiator to communicate with our NAS.  Here is the patch to make that
> change in behavior:
> 
> diff -r -d -u -N Radius/Nas/CiscoSessionMIB.pm
> Radius-patched/Nas/CiscoSessionMIB.pm
> --- Radius/Nas/CiscoSessionMIB.pm 2009-10-26 15:23:55.0 -0700
> +++ Radius-patched/Nas/CiscoSessionMIB.pm 2014-12-08 05:20:02.0
> -0800
> @@ -39,7 +39,7 @@
>$client->{SNMPCommunity},
>"$Radius::Nas::CiscoMIB.9.150.1.1.3.1.2.$session_id");
> 
> -return 1 if (!$result || $result =~ /no response/i); # Could not
> SNMP. Assume still there
> +return 0 if (!$result || $result =~ /no response/i); # Could not
> SNMP. Give benefit of doubt to user.
>  return 0 if $result =~ /no such variable/i;  # Not in the MIB means
> no such session
>  return uc($1) eq uc($name)
>   if ($result =~ /^.*\"([^"]+)".*$/);
> 
> Hope this helps,
> 
> --
> Nathan Anderson
> First Step Internet, LLC
> nath...@fsr.com
> ___
> radiator mailing list
> radiator@open.com.au
> http://www.open.com.au/mailman/listinfo/radiator


Can't remember your password? Do you need a strong and secure password?
Use Password manager! It stores your passwords & protects your account.
Check it out at http://mysecurelogon.com/password-manager


___
radiator mailing list
radiator@open.com.au
http://www.open.com.au/mailman/listinfo/radiator

(RADIATOR) Need to log reject-reason.

2003-10-03 Thread Sergio Gonzalez 
Hello.

I'm trying to log the reject-reason when a user can't login. I use AuthLog 
SQL and this is the failure query:

FailureQuery insert into RADAUTHLOG (TIME_STAMP, USERNAME, TYPE, REASON) 
values (%t, '%U', 0, %1)

Every time a user mistype his pasword, the entry is inserted into the 
RADAUTHLOG table as "Bad Password" reason, but; ¿how do I log the entry 
when the user exceeds his simultaneous use or when a portlimit is reached? 
(I have DefaultSimultaneousUse 1 in the AuthBy, and ? want to use the same 
AuthLog for another realms which use portlimits.

Thanks a lot in advance.

Regards

Sergio Alejandro Gonzalez
Director Operativo
Network and Services Field Manager
SkyNet de Colombia.
Calle 100 No. 8A-55 Of. 711
Bogota, Cundinamarca
Colombia, South America.
Tel: 57 (+1) 6 422 020
Cel: 57 (+3)/(03315) 3551034
Pager: 540, 346 Cod 2010
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) Radiator througt Firewall

2001-11-02 Thread Sergio Gonzalez 

*This message was transferred with a trial version of CommuniGate(tm) Pro*
Hello there:


I been working in an ipchains rule set to allow radius clients to access 
radius server (Radiator) that is behind the FW.

I did this:

allow from any 1024:65535 to radius.server 1645 bidirectional proto udp
allow from any 1024:65535 to radius.server 1646 bidirectional proto udp

Here I have 2 kinds of RASes. One is a Hiper-ARC based one and the other is 
a Patton. The weird thing is patton doesn't send authentication or 
accounting packets above 1024 port, it does from 513 causing users not to 
get connected. So, I tailored that into my rule set like this

allow from any 513 to radius.server 1645 bidirectional proto udp
allow from any 513 to radius.server 1646 bidirectional proto udp

But, I'm still having problems. When I applied the rule set, the patton 
cease to authenticate users again.

Any body knows what should be the problem?. Is patton using any other port 
to connect to Radius server?. Or is radius server using another port 
different from 1645:1646?

Thanks in advance


Sergio Alejandro Gonzalez
Director Operativo
SkyNet de Colombia.
Bogota, Colombia, South America.
57 (+1) 6 422 020
57 (+3) 7 285 094

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

Fwd: RE: (RADIATOR) Radiator througt Firewall

2001-11-02 Thread Sergio Gonzalez 

*This message was transferred with a trial version of CommuniGate(tm) Pro*
thanks... i think it worked

:-)

>I've used IPFW which has similarly formatted rules..
>
>Try:
>
>1st.. allow all from radius to target
>2nd.. allow all from target to radius
>
>
>
> > -Original Message-
> > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On
> > Behalf Of Sergio Gonzalez
> > Sent: Friday, November 02, 2001 09:29
> > To: [EMAIL PROTECTED]
> > Subject: (RADIATOR) Radiator througt Firewall
> >
> >
> > *This message was transferred with a trial version of CommuniGate(tm) Pro*
> > Hello there:
> >
> >
> > I been working in an ipchains rule set to allow radius clients to access
> > radius server (Radiator) that is behind the FW.
> >
> > I did this:
> >
> > allow from any 1024:65535 to radius.server 1645 bidirectional proto udp
> > allow from any 1024:65535 to radius.server 1646 bidirectional proto udp
> >
> > Here I have 2 kinds of RASes. One is a Hiper-ARC based one and
> > the other is
> > a Patton. The weird thing is patton doesn't send authentication or
> > accounting packets above 1024 port, it does from 513 causing users not to
> > get connected. So, I tailored that into my rule set like this
> >
> > allow from any 513 to radius.server 1645 bidirectional proto udp
> > allow from any 513 to radius.server 1646 bidirectional proto udp
> >
> > But, I'm still having problems. When I applied the rule set, the patton
> > cease to authenticate users again.
> >
> > Any body knows what should be the problem?. Is patton using any
> > other port
> > to connect to Radius server?. Or is radius server using another port
> > different from 1645:1646?
> >
> > Thanks in advance
> >
> >
> > Sergio Alejandro Gonzalez
> > Director Operativo
> > SkyNet de Colombia.
> > Bogota, Colombia, South America.
> > 57 (+1) 6 422 020
> > 57 (+3) 7 285 094
> >
> > ===
> > Archive at http://www.open.com.au/archives/radiator/
> > Announcements on [EMAIL PROTECTED]
> > To unsubscribe, email '[EMAIL PROTECTED]' with
> > 'unsubscribe radiator' in the body of the message.
> >

Sergio Alejandro Gonzalez
Director Operativo
SkyNet de Colombia.
Bogota, Colombia, South America.
57 (+1) 6 422 020
57 (+3) 7 285 094

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) Prepaid users.

2001-12-05 Thread Sergio Gonzalez 

*This message was transferred with a trial version of CommuniGate(tm) Pro*
Hello There.

I'm testing Platypus billing system because I need to implement prepaid 
accounts. I know Radiator can "talk" to platypus, but is it possible to 
make platypus (or Radiator) to hangup users when they are connected if they 
exceed the amount of prepaid connected time?


Thanks.


Sergio Alejandro Gonzalez
Director Operativo
SkyNet de Colombia.
Bogota, Colombia, South America.
57 (+1) 6 422 020
57 (+3) 7 285 094

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) check attributes

2001-12-27 Thread Sergio Gonzalez 

*This message was transferred with a trial version of CommuniGate(tm) Pro*
Hello there:


I got the next realm config in my radius.cfg file:



  RejectHasReason
  
 DBSourcedbi:mysql:radius
 DBUsername  XX
 DBAuth  XX

 DefaultSimultaneousUse 1

 AuthSelect select PASSWORD, TIMELEFT, CHECKATTR from SUBSCRIBERS 
where USERNAME = '%n'  and TIMELEFT > 0
 AuthColumnDef   0,User-Password,check
 AuthColumnDef   1,Session-Timeout,reply
 AuthColumnDef   2,GENERIC,check

 AccountingStopsOnly
 AcctSQLStatement update SUBSCRIBERS set 
TIMELEFT=TIMELEFT-0%{Acct-Session-Time} where USERNAME='%n'

 



I want to set into the CHECKATTR database field for a user this:

Service-Type = Framed-User, NAS-Port-Type = Async, Expiration="Dic 29 2001"

but I think I'm doing something wrong. No matter what date I set in the 
Expiration attribute, radiator always said:

 Reply-Message = "Request Denied"
 Reply-Message = "Expiration date has passed"

What am I doing wrong?




Sergio Alejandro Gonzalez
Director Operativo
SkyNet de Colombia.
Bogota, Colombia, South America.
57 (+1) 6 422 020
57 (+3) 7 285 094

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

Re: (RADIATOR) check attributes

2001-12-27 Thread Sergio Gonzalez 

*This message was transferred with a trial version of CommuniGate(tm) Pro*

Just forget what I said.

there is a hole difference between Dic (from Diciembre in spanish) and Dec 
(from December in english)

that was my prob.


Best regards


>Hello there:
>
>
>I got the next realm config in my radius.cfg file:
>
>
>
>  RejectHasReason
>  
> DBSourcedbi:mysql:radius
> DBUsername  XX
> DBAuth  XX
>
> DefaultSimultaneousUse 1
>
> AuthSelect select PASSWORD, TIMELEFT, CHECKATTR from SUBSCRIBERS 
> where USERNAME = '%n'  and TIMELEFT > 0
> AuthColumnDef   0,User-Password,check
> AuthColumnDef   1,Session-Timeout,reply
> AuthColumnDef   2,GENERIC,check
>
> AccountingStopsOnly
> AcctSQLStatement update SUBSCRIBERS set 
> TIMELEFT=TIMELEFT-0%{Acct-Session-Time} where USERNAME='%n'
>
> 
>
>
>
>I want to set into the CHECKATTR database field for a user this:
>
>Service-Type = Framed-User, NAS-Port-Type = Async, Expiration="Dic 29 2001"
>
>but I think I'm doing something wrong. No matter what date I set in the 
>Expiration attribute, radiator always said:
>
> Reply-Message = "Request Denied"
> Reply-Message = "Expiration date has passed"
>
>What am I doing wrong?
>
>
>
>
>Sergio Alejandro Gonzalez
>Director Operativo
>SkyNet de Colombia.
>Bogota, Colombia, South America.
>57 (+1) 6 422 020
>57 (+3) 7 285 094
>
>===
>Archive at http://www.open.com.au/archives/radiator/
>Announcements on [EMAIL PROTECTED]
>To unsubscribe, email '[EMAIL PROTECTED]' with
>'unsubscribe radiator' in the body of the message.

Sergio Alejandro Gonzalez
Director Operativo
SkyNet de Colombia.
Bogota, Colombia, South America.
57 (+1) 6 422 020
57 (+3) 7 285 094

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

Re: (RADIATOR) Fwd: BOUNCE radiator@open.com.au: Non-member submission from ["Alex Fritz" ]

2001-12-28 Thread Sergio Gonzalez 

*This message was transferred with a trial version of CommuniGate(tm) Pro*

>Hi

As far as I know, ODBC is the Only type of perl Connecto to SQL 7 or 2000. 
The little think you have to have in count is that the efficiency can't be 
entirely responsability of ODBC connector, it's the driver you use.

I did some test with Radiator+OpenLink+SQL 2000+Platypus and everything 
worked well.



best regards

>Hey guys,
>   Just a quick question about the different data sources that I have the
>ability to use Radiator with.  I need to connect Radiator to SQL Server 2000
>and I saw on the Technical features on the website that it had the ability
>to connect to SQL 6.5 & 7 but I'm not sure which perl package goes with it
>from what I can tell.  I realize that I could just use ODBC but I'm not
>particularly fond of its efficiency.  Could you let me know whether I have
>the ability to connect directly to SQL Server 2000 without using an ODBC
>connection with Radiator?  Thank you for your time and if you could please
>treat this question with urgency because we have a deadline to meet.  Thank
>you again.
>
>Alex Fritz
>Kerdaino Enterprises
>---
>Outgoing mail is certified Virus Free.
>Checked by AVG anti-virus system (http://www.grisoft.com).
>Version: 6.0.307 / Virus Database: 168 - Release Date: 12/11/2001
>
>---
>
>--
>Mike McCauley   [EMAIL PROTECTED]
>Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW
>24 Bateman St Hampton, VIC 3188 Australia   http://www.open.com.au
>Phone +61 3 9598-0985   Fax   +61 3 9598-0955
>
>Radiator: the most portable, flexible and configurable RADIUS server
>anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
>Platypus, Freeside, TACACS+, PAM, external, Active Directory etc etc
>on Unix, Win95/8, 2000, NT, MacOS 9, MacOS X
>===
>Archive at http://www.open.com.au/archives/radiator/
>Announcements on [EMAIL PROTECTED]
>To unsubscribe, email '[EMAIL PROTECTED]' with
>'unsubscribe radiator' in the body of the message.

Sergio Alejandro Gonzalez
Director Operativo
SkyNet de Colombia.
Bogota, Colombia, South America.
57 (+1) 6 422 020
57 (+3) 7 285 094

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) Silly question.

2002-01-17 Thread Sergio Gonzalez 

*This message was transferred with a trial version of CommuniGate(tm) Pro*

Hi there.

I been testing a network monitoring program. It cans test radius servers, 
but I neet to "talk" to radiator to be able to see if it's down or not.

For example you can test if a certain server has the http service up just 
"teleneting" it in the 80 port like this:

telnet machine.at.some.domain 80

then you write

HEAD / HTTP1.0^^

and if the service is up it will tell you something like:

HTTP/1.1 200 OK

how can I achieve almos the same behavior talking with radiator?.

PD: I know (of course) radiator is UDP based, but I still think maybe there 
is a way to talk to it.


Thanks in advance for the help.





Sergio Alejandro Gonzalez
Director Operativo
SkyNet de Colombia.
Bogota, Colombia, South America.
57 (+1) 6 422 020
57 (+3) 7 285 094

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) Need some help with Cisco 2500 series

2002-04-11 Thread Sergio Gonzalez 

*This message was transferred with a trial version of CommuniGate(tm) Pro*
Hi there.


I have a Cisco 2509 Router with async interfaces to make a little RAS. It 
does correctly the authentication with radiator, but cisco isn't taking the 
things I send in the radius reply. I'm trying to make the cisco router to 
hangup the async interface with Session-Timeout atttribute (this works 
perfectly in other RASes), but doesn't work with it.

Anybody here has a working cisco 2500 series that accept the attribute or a 
working config?. Because I think is kind of a bad config.


Thanks a lot for the help.


Regards.


Sergio Alejandro Gonzalez
Director Operativo
SkyNet de Colombia.
Calle 100 No. 8A-55 Of. 711
Bogota, Cundinamarca
Colombia, South America.
57 (+1) 6 422 020
57 (+3) 7 285 094

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) Question about AcctSQLStatement.

2002-10-23 Thread Sergio Gonzalez 
*This message was transferred with a trial version of CommuniGate(tm) Pro*
Hello.

I'm having problems with the next SQL statement for accounting

AcctSQLStatement update TABLENAME set VALUE=0%{Acct-Session-Time} where 
ROW='%n' and
DATE_FORMAT(FROM_UNIXTIME(0%{Timestamp},'%d-%m-%y') = 'mm-dd-yy'

where mm-dd-yy is a date value in that format. Well, if I do in mysql 
(obviously replacing %0{Timestamp} for a valid value):

SELECT DATE_FORMAT(FROM_UNIXTIME('01035767266','%d-%m-%y') = 'mm-dd-yy';

it works well. The format of the 
FROM_UNIXTIME(0%{Timestamp}-0%{Acct-Session-Time}) is rewrited like 
mm-dd-yy and then I can compare them, but the problem is when I try to do 
the same SQL statement with radius;  the %d, %m and the %y don't mean the 
same. Those "wildcards" are being interpreted like the actual day month and 
year of the box running radius.

How do I escape or make radius send to mysql the string "%d-%m-%y" without 
interpret them?.


Sergio Alejandro Gonzalez
Director Operativo
Network and Services Field Manager
SkyNet de Colombia.
Calle 100 No. 8A-55 Of. 711
Bogota, Cundinamarca
Colombia, South America.
Tel: 57 (+1) 6 422 020
Cel: 57 (+3)/(03315) 3551034
Pager: 540, 346 Cod 2010

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) What is the order?

2002-11-26 Thread Sergio Gonzalez 
*This message was transferred with a trial version of CommuniGate(tm) Pro*
Hello everyone.

Can some one tell me what happens first when an Stop Accounting-Request 
arrives to radiator?

First the different AcctSQLStatement statements are executed, then the 
DeleteQuery statement is excuted, or

First the DeleteQuery statement is executed, then the different 
AcctSQLStatement statements.

I need to know this because I want some info stored in the RADONLINE table 
to update another table at the Stop event, but before the entry be deleted.

Thanks a lot.



Sergio Alejandro Gonzalez
Director Operativo
Network and Services Field Manager
SkyNet de Colombia.
Calle 100 No. 8A-55 Of. 711
Bogota, Cundinamarca
Colombia, South America.
Tel: 57 (+1) 6 422 020
Cel: 57 (+3)/(03315) 3551034
Pager: 540, 346 Cod 2010

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) Fwd: Dynamic DBSource

2003-01-29 Thread Sergio Gonzalez 
*This message was transferred with a trial version of CommuniGate(tm) Pro*


From: "Oscar L. Garzón" <[EMAIL PROTECTED]>
To: "Sergio González" <[EMAIL PROTECTED]>
Subject: Dynamic DBSource
Date: Tue, 28 Jan 2003 05:10:03 -0500
X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0)
Importance: Normal

What would be the best way to implement dynamic dbsource specifications 
based on run-time variables, what I actually need is what the following 
sentence says, but as you my guess, the do not work because sql 
connections are handled at startup.  ( %R would be realm )

DBSource DBI:Pg:dbname=%R
DBUsername %R



Sergio Alejandro Gonzalez
Director Operativo
Network and Services Field Manager
SkyNet de Colombia.
Calle 100 No. 8A-55 Of. 711
Bogota, Cundinamarca
Colombia, South America.
Tel: 57 (+1) 6 422 020
Cel: 57 (+3)/(03315) 3551034
Pager: 540, 346 Cod 2010

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) Reload the configuration file on run-time

2003-03-10 Thread Sergio Robles 

Hi Everyone,

We are currently evaluating Radiator.

Some form exists to reload the radiator configuration,
without having to make stop/start complete of the service.
I create that is something related with send the signal "SIGHUP"
to the service.

Exists some way to automate it? (config file... or manual entry on
cron/schedule)

As utility of the system those signals can be sent... kill.exe?
>From where i can download (microsoft, cygwin...)?

We would appreciate some help.
Thanks.

Robles

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) rotate logs signal!

2000-03-10 Thread Sergio Gonzalez 

*This message was transferred with a trial version of CommuniGate(tm) Pro*
Hello there.


Somebody know if there is som signal I can send to radiator to automaticaly 
rotate logs?. I been using the method:


shutdown
recycle logs
start

Thanks

:)


/Sergio

Sergio Gonzalez
Director Operativo -- Operative Manager
Skynet de Colombia S.A.
Santafé de Bogotá, Colombia, South America.
57(+1) 6 422 020

ÿ
Archive at http://www.starport.net/~radiator/
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

Re: (RADIATOR) CGI/Perl scripts to change passwords in MySQL database

2000-05-15 Thread Sergio Gonzalez 

*This message was transferred with a trial version of CommuniGate(tm) Pro*
Asif:

> Let me tell u first, I am not a pro in Perl or CGIs. I would like to
> know whether anyone knows about any CGI/Perl scripts available to
> change passwords in the MySQL database.

I'm using mSQL (similar with MySQL, but less powerful) with radiator
2.14.1 too. Well the CGI I have were wrote by me. I sugest you do the
same thing. I'm not a Perl CGI pro neither, but is too easy to learn
perl to make cgi and other cool stuff (maybe this is one of the reasons
radiator was writen with). :) 

there is a little example how to make a password change via CGI

#!/usr/bin/perl

use DBI;
use CGI;

q= new CGI;

$newpass = $q->param("newpassword");
$username = $q->param("loginname");

$dbhandler = DBI->connect('DBI:mSQL:radius')
  or die "Couldn't make connection because: ".DBI->errstr;

# you will need also a password to access MySQL.

$sthandler = $dbhandler->prepare("UPDATE SUBSCRIBERS SET PASSWORD = ?
WHERE USERNAME = ?")
or die "Couldn't prepare query because: ".$dbh->errstr;

$sthandler->execute($newpass,$username);

$sthandler->finish;
$dbhandler->disconnect;


of course you have to receive via cgi post the loginname and the
newpassword variables from a html form.


> I think a brief introduction of the setup would be useful to u.. I am
> using Radiator 2.14 which interacts with MySQL database. In a table
> inside a MySQL database usernames and passwords are stored. We are
> running Apache webserver where I would like the CGI/Perl script to
> reside and work. And yes.. one more thing, if possible can this script
> have some kind of encryption, so that the username and passwords are
> encrypted during the transfer.

Well in Perl 5.003 (i'm not sure about older ones), there is a function
called crypt that receives a salt, a string and returns the string
encrypted with the salt (usually to alpha-numeric caracters). I think
this will be useful to you to acomplish the crypt task you need. In fact
radiator can receive either plain or ecrypted password to make the
authentication. It's up to you to realice what method to use.

> Any help on the above issue would be highly appreciated.
> 
> Thanks in advance for your help..


hth
-- 
Sergio Gonzalez
Calle 100 #8A-55 Torre C oficina 711 
[EMAIL PROTECTED]
NOC- SkyNet de Colombia.
(57) +1 6422020
(57) +3 2277871

===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) What is the meaning of this?

2000-07-18 Thread Sergio Gonzalez 

*This message was transferred with a trial version of CommuniGate(tm) Pro*
Hi. I got a little problem with a pair of netserver and Radiator 2.15.
The netserver does not send authentication request, only accounting, and
when I log the login and password of the dial-up users I found this:

Tue Jul 18 06:25:20 2000:963883520:luzyamil:UNKNOWN:luzyamil:FAIL
Tue Jul 18 06:25:59 2000:963883559:luzyamil:UNKNOWN:luzyamil:PASS

What that means?

Thanks.

-- 
Sergio Gonzalez
Calle 100 #8A-55 Torre C oficina 711 
[EMAIL PROTECTED]
Senior Network Operations Engineer - SkyNet de Colombia.
+57 (1) 6422020
+57 (3) 2277871

===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

Re: (RADIATOR) no reply problem!

2000-08-15 Thread Sergio Gonzalez 

*This message was transferred with a trial version of CommuniGate(tm) Pro*
> Hi!
>
> I'm having the follow problem. My radiator is running okay, with some
> ports to authenticate and accounting. But sometimes one of theses ports
> lock I dont know why and It doesnt say anything in the logs (trace 4).
> When I test with radpwtst I just receive a No Reply in the Access
> Request but I see the open port with netstat.
>
> Why radiator dont authenticate now if it was authenticating without
> problems before ???
>
> ps: I need to edit the cfg file and change the ports to another, start
> radiator and then change in my NAS to the new port to radiator start
> authenticating again!!!
>
> Please, If anyone can help me why this problem occurs sometime I will be
> happy!
>
> Thanks in advance.
> Felipe Salum
>

Hi  Felipe.

Is your Radiator running on a Multi-homed system?. I had the same problem
before, but just setting the BindAddress to an specific IP address I just
fixed the prob.


/Sergio


===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

Re: (RADIATOR) radius authentication to Apache

2000-08-18 Thread Sergio Gonzalez 

*This message was transferred with a trial version of CommuniGate(tm) Pro*
> I followed the instructions written in the FAQ of radiator but it wont
> work. Upon accessing the directory it would ask for the username and
> password but it will deny your access, upon checking the logs of apache
> error logs here's what it says...

Are you trying to authenticate users for web pages with radiator?... Pretty nice
way!!

> access to /testdirectory failed for  127.0.0.1 Apache::AuthenRadius
> failed
>

Maybe the problem is you have to set te appropiate rights for that directory (see
chmod if your machine runs some flavor of Unix). Maybe the authentication is well
done, but the directions for that directory into the apache conf file don't match
what you want.

Hmmm why you don't use the .htaccess file into the directory you want to protect?.
It is an easier way to handle access to directories into the htdocs tree. There
are several ways to authenticate via this kind of "special" file. See the apache
configuration for detail.

> Grace M. Garcia <[EMAIL PROTECTED]>
> Hosting Center Engineer
> PSINet Philippines
>

hth

/Sergio


===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) Password log problem.

2000-09-06 Thread Sergio Gonzalez 

*This message was transferred with a trial version of CommuniGate(tm) Pro*
Hi there.

I'm having problems trying to see whats going on with the decryted
password the dial-up users send to radiator.

I got these line on my config.

PasswordLogFileName %L/password.log

but when I try to see whats on this log file, I found in all entries... 


Thu Aug 10 04:53:14
2000:965865194:nameoftheuser:UNKNOWN:realplaintextpassword:PASS

but only this kind of thing occurs when a Netserver card tries the
authentication (it works of course), but whe a line like the above (at
the end) says FAIL... this log file tell me what the user typed instead
of his correct password... How can I tell radiator to put the typed
password the user sent? or how can I tell the netserver to send the
password data the way radiator can understand it?


PD: When I use a Hiper ARC, the UNKNOWN part dissapears, and instead of
it... the user's typed password appers.


Thanks in advance for the hlp.

-- 
Sergio Gonzalez
Director Operativo. Node Chief
Skynet de Colombia S.A.
(57) (+1) 6422 020
Santa FE de BogotA, Colombia, South AmErica

===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) Handler Problem.

2000-09-18 Thread Sergio Gonzalez 

*This message was transferred with a trial version of CommuniGate(tm) Pro*
Hi folks.

I have a little problem and I wonder some can help me.

I have here Radiator 2.14 with mSQL database to authenticate dial-up
users. 
Now I want to make roaming with another ISP, so I added the handler for
this into my radius config. This is what I have now


Trace 4
DbDir   /usr/local/etc/raddb/db
LogDir  /usr/local/etc/raddb/log
LogFile /usr/local/etc/raddb/log/Radiator.log
DictionaryFile /usr/local/etc/dictionary.usr
SnmpgetProg /usr/local/bin/snmpget
 
 

Secret  
NasType TotalControlSNMP
SNMPCommunity public

 

   Identifier SDB1
   DBSource dbi:mSQL:radius
   DBUsername
   DBAuth

 

RewriteUsername s/^([^@]+).*/$1/

Host aaa.bbb.ccc.ddd
Secret 
RetryTimeout 20

AcctLogFileName %L/another_isp.acct

 
 

 
 DBSource dbi:mSQL:noauth
 DBUsername x
 DBAuth  yy
 AccountingStopsOnly
 AccountingTableACCOUNTING
 AcctColumnDef  CALLINGSTID,Calling-Station-Id,string
 AcctColumnDef  CALLEDSTID,Called-Station-Id,string
 AcctColumnDef  ACCTTERMCAUSE,Acct-Terminate-Cause,intege
 AcctColumnDef  CONNTERMCAUSE,Connect-Term-Reason,integer
 AcctColumnDef  FAILCONNREASON,Failure-to-Connect-Reason,integer
 AcctColumnDef  DISCONNREASON,Disconnect-Reason,integer
 AcctColumnDef  CONNECTSPEED,Connect-Speed,integer
 AcctColumnDef  SERVICETYPE,Service-Type,integer
 AcctColumnDef  MODULATYPE,Modulation-Type,integer
 

 
 

 SessionDatabase SDB1
 
 DefaultSimultaneousUse 1
 DBSource dbi:mSQL:radius
 DBUsername  xx
 DBAuth  yyy
 AuthSelect select PASSWORD,CHECKATTR,REPLYATTR \
from SUBSCRIBERS where USERNAME = '%n' and STATUS=1
 
 AccountingStopsOnly
 AccountingTableACCOUNTING
 AcctColumnDef  USERNAME,User-Name
 AcctColumnDef  TIME_STAMP,Timestamp,integer
 AcctColumnDef  ACCTSESSIONID,Acct-Session-Id
 AcctColumnDef  ACCTSESSIONTIME,Acct-Session-Time,integer
 AcctColumnDef  ACCTTERMINATECAUSE,Acct-Terminate-Cause,integer
 AcctColumnDef  ACCTCONNECTSPEED,Connect-Speed,integer
 AcctColumnDef  ACCTCALLINGSTATIONID,Calling-Station-Id,string
 AcctColumnDef  ACCTCALLEDSTATIONID,Called-Station-Id,string
 
 AcctLogFileName  %L/%c
 PasswordLogFileName %L/password.log




Both the my users and the users from another_isp.com can authenticate,
but my own users can't connect the usual way, so they had to use the
terminal window before dialing (in win 9x), to get connected. Why is
this happening?



Thanks!
-- 
Sergio Gonzalez
Director Operativo. Node Chief
Skynet de Colombia S.A.
(57) (+1) 6422 020
Santa FE de BogotA, Colombia, South AmErica

===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) Radiator slow authentication answer.

2000-10-05 Thread Sergio Gonzalez 

*This message was transferred with a trial version of CommuniGate(tm) Pro*
Hi there. I made a little test on my radiator (2.14), as follows.



$ while true; do
> radpwtst -user username -password xx -noacc;
> done;
sending Access-Request...
OK
sending Access-Request...
No reply
sending Access-Request...
OK
sending Access-Request...
No reply
sending Access-Request...
OK
sending Access-Request...
OK
sending Access-Request...
No reply
sending Access-Request...
OK
sending Access-Request...
OK
sending Access-Request...
No reply
sending Access-Request...
OK
sending Access-Request...
OK

and so on well, I made this test because sometimes dial up users
just get no response for authentication. I use a mSQL database to hold
users info.

What should be the problem?... and How can I make radiator responds
faster?



Thanks a lot in advance.


-- 
Sergio Gonzalez
Director Operativo. Node Chief
Skynet de Colombia S.A.
(57) (+1) 6422 020
Santa FE de BogotA, Colombia, South AmErica

===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) Lost entries in RADONLINE table via SQL

2001-01-29 Thread Sergio Gonzalez 

*This message was transferred with a trial version of CommuniGate(tm) Pro*
Hi,

I got a little problem. Recently I had to reboot one of my Hiper DSP cards 
(3com chassis), but I couldn't hangup all the users that were online on 
that PRI. I (saddly) had to hard reset the DSP. The problem is that some of 
the entries on the RADONLINE table of my radiator doesn't fit the reality. 
For example, I lost some of the users that were online, and others just 
look to be online, but obviously they're not!. Now i have some users that 
can't log in because the DefaultSimultaneousUse 1 I use in muy radius.cfg 
file, and others (the worst part) can log in more than once!

How can I make radiator to re-check the online users on my NASes, to make 
the RADONLINE table reflects the real online users?



Thanks in advance!!

/Sergio
Sergio Gonzalez
Director Operativo
SkyNet de Colombia S.A.
57 (+1) 6422020
57 (+3) 2277871
57 (+3) 7285094


===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) Problem with DefaultSimultaneousUse

2001-02-13 Thread Sergio Gonzalez 

*This message was transferred with a trial version of CommuniGate(tm) Pro*
Hi every one.

I got a little problem and I hope some one can give me an idea what should 
be happening.

Here I've a 3Com chassis with Hiper DSP cards and Hiper ARC router. I been 
looking at the online dial-up users list, and I found that sometimes there 
are some users that can connect twice. This is not what I want.

In my radius.cfg file I got DefaultSimultaneousUse = 1, so the only way to 
get connected more than 1 time is when the CHECKATTR check attribute says 
another thing (in fact the only way to connect more than once is when 
Simultaneous-Use is set to 2 for some users who bring ISDN 128K links up).

Well, those users I found connected more than once, have not any 
Simultaneous-Use attribute set, so they should not be connected twice. I 
keep all the users attributes in a MySQL tables.

I thought that maybe those users were not into the RADONLINE table (should 
be a good reason for radiator to let pass those users more than once), but 
(saddly) I found they were on the table.


What should be happening?. Why Radiator is gettting OK PASS to those 
users who are already connected?.


Thanks in advance for the help!

:-)

/Sergio




===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) Problems with Bay 8000 RAC

2001-07-06 Thread Sergio Gonzalez 

*This message was transferred with a trial version of CommuniGate(tm) Pro*
Hi there.


I got some problems trying to make a bay 8000 RAC to receive and send the 
appropriate data from/to the radius radiator server. First problem, when a 
ppp session starts for a particular user in radiator (that has a static IP 
address, sent via Frame-IP-Address), the bay 8000 RAC doesn't care about 
it, and just puts an IP address from its own dynamic pool. I got the same 
radiator listening and serving to other 2 RASes without problems when using 
that specific user. The other problem I've is when the session stops, the 
bay 8000 RAC doesn't send the speed used by the user ( the receive speed 
used by the user). Instead of that info, the bay RAC doesn't send anything 
(I got just nulls).


Somebody has an example of the particular attributes I've to use in order 
to make the Bay 8000 RAC to take care about the
Framed-IP-Address and send back to radiator - in accounting stop packets - 
the speed used?.



PD: Sombody here in this list has a good example of a config.annex file?. 
If someone, please send me a copy to my email address. I really appreciate 
if someone can give a hand with that file.


Thanks.

Sergio Alejandro Gonzalez
Director Operativo
SkyNet de Colombia.
Bogota, Colombia, South America.
57 (+1) 6 422 020
57 (+3) 7 285 094

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) Need help with accounting packets of Bay again.

2001-07-09 Thread Sergio Gonzalez 

*This message was transferred with a trial version of CommuniGate(tm) Pro*
Hi there.

I made the corresponding changes in the radius settings of the Bay 8000. 
Now it applies the correct access settings sent by radiator. The problem 
know is that the RAS doesn't send the Annex-Transmit-Speed (or 
Annex-Receive-Speed). It sends other VSA stuff, but I need the speed 
(accounting log history per user). Someone here in the list can give me a 
hand with the Bay RAS, because I'm positively sure there is no problem with 
radiator but with the RAS.

Thanks a lot.



Sergio Alejandro Gonzalez
Director Operativo
SkyNet de Colombia.
Bogota, Colombia, South America.
57 (+1) 6 422 020
57 (+3) 7 285 094

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) Simultaneous-Use Freezes!

1999-11-02 Thread Sergio Gonzalez 

*This message was transferred with a trial version of CommuniGate(tm) Pro*
Hi there. Somebody can tell me how to make a flush of the internal user 
table radiator maintains when using simultaneous-use?.. I got someone 
hooked and I can't make it hang up...

Exists some method to hang up someone without flushing the entire table?


Thanks


/Sergio

===
Archive at http://www.thesite.com.au/~radiator/
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) Little config advice needed

2001-09-13 Thread Sergio Alejandro Gonzalez 

Hello there.

I recently had a problem with a config that makes me handle
dynamic address allocation. The problem is I have to
different RASes (3com and Patton). For admin purposes, some
dialup clients need to have another ip address pool
different from the RAS can assign. To do the trick, 3com
fortunately handles more than one ip pool, but Patton
doesn't. The config I've now looks like:


Identifier myallocator

DBSourcedbi:mysql:radius
DBUsername  X
DBAuth  X
 

Subnetmask  255.255.255.0
DNSServer aaa.bbb.ccc.ddd
Range   192.168.2.1 192.168.2.254

 

 

 RejectHasReason
 AccountingHandled
 AuthByPolicy ContinueWhileAccept
 
 
 DefaultSimultaneousUse 1
 DBSource dbi:mysql:radius
 DBUsername 
 DBAuth 
 
 AuthSelect select PASSWORD,CHECKATTR,REPLYATTR \
from SUBSCRIBERS where USERNAME = '%n'
and STATUS = 1
 
 AccountingStopsOnly
 AccountingTableACCOUNTING%Y%m
 AcctColumnDef  USERNAME,User-Name
 AcctColumnDef  TIME_STAMP,Timestamp,integer
 AcctColumnDef  ACCTSESSIONID,Acct-Session-Id
 AcctColumnDef  ACCTSESSIONTIME,Acct-Session-Time,integer
 AcctColumnDef  ACCTTERMINATECAUSE,Acct-Terminate-Cause,integer
 AcctColumnDef  ACCTCONNECTSPEED,Ascend-Xmit-Rate,integer
 AcctColumnDef  ACCTCONNECTSPEED,USR-Connect-Speed,integer
 AcctColumnDef  ACCTCALLINGSTATIONID,Calling-Station-Id,string
 AcctColumnDef  ACCTCALLEDSTATIONID,Called-Station-Id,string
 AcctColumnDef  FRAMEDIPADDRESS,Framed-IP-Address
 
 
 
 Allocator myallocator
 PoolHint %{Reply:Framed_IP_Address_Pool_Name}
 MapAttributeyiaddr,Framed-IP-Address
 MapAttributesubnetmask,Framed-IP-Netmask
 
 PasswordLogFileName %L/password.log
 




Ok, that works, but I only the Auth DYNADDRESS work for the
Patton request. How can I achieve this?


Thanks in adevance for the help
Sergio Gonzalez
Direcctor Operativo
SkyNet de Colombia S.A.
Ph: 57 (+1) 6422 020
Fax: 57 (+1) 6113 781
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) Found the problem with DefaultSimultaneousUse

2001-02-16 Thread Sergio Alejandro Gonzalez 

Hello everybody.

I found the problem with DefaultSimultaneousUse I posted few
days ago. The problem was that snmpget program got a

(geError) general failure occure.

I saw that somebody before (in sept. 2000) got the same
problem. I took a look into the mail list database but I
didn't find what that user of radiator did for fix the
problem. Well I took a look into the Nas.pm file and I found
the next "curious" thing. In the radiator version. 2.15 (the
version I was using before upgrading to 2.17.1), the
TotalControlSNMP sub routine use the next code:

sub isOnlineTotalControlSNMP
{
my ($name, $nas_id, $nas_port, $session_id, $client) =
@_;

return 1 unless &Radius::SNMP::snmpgetprogExists();

my $portidx = 1256 + $nas_port;
my $result = &Radius::SNMP::snmpget($nas_id,
 $client->{SNMPCommunity},
 "$Radius::Nas::TCMIB.4.10.1.1.18.$portidx");
if ($result =~ /^.*\"([^"]+)".*$/)
{
return $1 eq $name;
}
return 0;
}

well, that version of TotalControlSNMP worked for me pretty
well.

I just imagined that maybe the problem wasn't the snmpget
program itself, but the OID radiator is asking for, so I
took a look into the Nas.pm from radiator 2.17.1 (the
version I'm using now). This is what I found:

sub isOnlineTotalControlSNMP
{
my ($name, $nas_id, $nas_port, $session_id, $client) =
@_;
 
return 1 unless &Radius::SNMP::snmpgetprogExists();

# Adjusted algorithm contributed by Aaron Nabil
<[EMAIL PROTECTED]>
my $oid = length $session_id;
my $x;
foreach $x (unpack('C*', $session_id))  
{
$oid .= ".$x";
}
 
my $result = &Radius::SNMP::snmpget   
($nas_id, $client->{SNMPCommunity},
 "$Radius::Nas::TCMIB.4.2.1.140.1.2.$oid");

return ($result =~ /^.*\"([^"]+)".*$/ && $1 eq $name);
}


as you can see, the OID used in 2.17.1 is different from the
OID used in 2.15.

Can somebody tell me why those sub routines changed?,
because I took a look into the revision history from
radiator's page but I didn't find any reference for that
change.


Thanks in advance for the help.


/Sergio

===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) Accounting Local and forwarding using rewriteusername problems

2003-10-09 Thread Sergio Gómez \(E-mail\) 
Hi everybody,

I have problems using Local and forwarding accounting. First of all here
you have a piece of mi cfg file for the 'test' realm:



Identifier  authBySQL_InsertCallAcct

DBSource dbi:ODBC:radius_databasex
DBUsername testuser
DBAuth  testpass

AccountingTable TestCalls

AcctColumnDef NASIdentifier,NAS-IP-Address
AcctColumnDef NasPort,NAS-Port,integer
AcctColumnDef AcctSessionID,Acct-Session-Id
AcctColumnDef AcctStatusType,Acct-Status-Type,integer
AcctColumnDef UserName,User-Name
AcctColumnDef AcctSessionTime,Acct-Session-Time,integer
AcctColumnDef NASPortDNIS,Called-Station-Id
AcctColumnDef CallingStationId,Calling-Station-Id



Identifier authByRADIUS_Realm_Test

#IgnoreAccountingResponse
Host111.111.111.111
Secret  testsecret
AuthPort1812
AcctPort1813
Retries 3
RetryTimeout10



AcctLogFileName %L/radiusd_auth-%Y%m%d.log
RewriteUsername s/^([EMAIL PROTECTED]).*/$1/
AuthBy  authByRADIUS_Realm_Test



AuthByPolicyContinueAlways
AuthBy  authBySQL_InsertCallAcct
AcctLogFileName %L/radiusd_acct-%Y%m%d.log
RewriteUsername s/^([EMAIL PROTECTED]).*/$1/
AuthBy  authByRADIUS_Realm_Test



I have a DB where I want to store all accounting as my cisco gives me, but
my client wants to recieve Auth and Acct forwarding without realm in the
usernames.
When I use this configuration, the username field in my DB is stored without
realm... I don't know why... Please I need HELP

Thanks to all,
Sergio Gómez de Travesedo Rojas.
Baytechnologies

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) Correct system hour in log files

2003-10-17 Thread Sergio Gómez \(E-mail\) 



Hi to all,
 
    I have a 
little problem with my log files... I have been checking my log files and I can 
see that the hour is stored with -1 hour of my system hour.
 
    How I can 
fix it?
 
    There are 
any kind of command to set GMT or time zone?
 
    Please I 
need help.
 
Thanks to all and for 
all.
Sergio Gómez de Travesedo Rojas. Baytechnologies 
 

(RADIATOR) Hiper ARC authentication problem

1999-10-16 Thread Sergio Alejandro Gonzalez Z 


 
Hello, I been working on radiator over IRIX 6.2. I got no problems
with it. But now I'm using
a linux box to make authentication and Accountig. I copy the radius.cfg
file from IRIX to linux
and I expected no problems. But I got one. The radiator seems not to
understand what the NAS
tell to him. My NAS is a Hiper ARC with 4.1.72. I only got this output
from radiator.
*** Received from 208.143.244.19 port 1645 
Code:   Access-Request
Identifier: 15
Authentic:  <241>DSv<220><174>4]<247>9<170><24>`z&<151>
Attributes:
    User-Name = "jimy"
    User-Password = "<149>i!<156><181><155><193>O<223><163>on<3><138><249><164>"
    Client-Id = 208.143.244.19
    NAS-Port = 10
    Acct-Session-Id = "590566"
    USR-Interface-Index = 1266
    Service-Type = Login-User
    Chassis-Call-Slot = 1
    Chassis-Call-Span = 1
    Chassis-Call-Channel = 10
    Calling-Station-Id = "16211831"
    Called-Station-Id = "5922000"
    NAS-Port-Type = Async
Sat Oct 16 15:18:20 1999: DEBUG: Handling request with Handler 'Realm='
Sat Oct 16 15:18:20 1999: DEBUG: Deleting session for jimy, 208.143.244.19,
10
Sat Oct 16 15:18:20 1999: DEBUG: Handling with Radius::AuthFILE
Sat Oct 16 15:18:20 1999: DEBUG: Radius::AuthFILE looks for match with
jimy
Sat Oct 16 15:18:20 1999: DEBUG: Radius::AuthFILE looks for match with
DEFAULT
Sat Oct 16 15:18:20 1999: DEBUG: Handling with Radius::AuthUNIX
Sat Oct 16 15:18:20 1999: DEBUG: Radius::AuthUNIX looks for match with
jimy
Sat Oct 16 15:18:20 1999: DEBUG: Radius::AuthUNIX REJECT_IMMEDIATE:
Rejected explicitly by Auth-Type=Reject
Sat Oct 16 15:18:20 1999: DEBUG: Radius::AuthFILE REJECT_IMMEDIATE:
Rejected explicitly by Auth-Type=Reject
Sat Oct 16 15:18:20 1999: INFO: Access rejected for jimy: Rejected
explicitly by Auth-Type=Reject
Sat Oct 16 15:18:20 1999: DEBUG: Packet dump:
*** Sending to 208.143.244.19 port 1645 
Code:   Access-Reject
Identifier: 15
Authentic:  <241>DSv<220><174>4]<247>9<170><24>`z&<151>
Attributes:
    Port-Message = "Request
Denied"
What should be the problem?
Thanks.
-- 
Sergio A. Gonzalez
Director Operativo
Skynet de Colombia S.A.
Calle 100 #8A-55 piso 7 oficina 711 World Trade Center
57 (+1) 642 2020
[EMAIL PROTECTED]
 




Hello, I been working on radiator over IRIX 6.2. I got no problems with it. But now I'm using

a linux box to make authentication and Accountig. I copy the radius.cfg file from IRIX to linux

and I expected no problems. But I got one. The radiator seems not to understand what the NAS

tell to him. My NAS is a Hiper ARC with 4.1.72. I only got this output from radiator.



*** Received from 208.143.244.19 port 1645 
Code:   Access-Request
Identifier: 15
Authentic:  <241>DSv<220><174>4]<247>9<170><24>`z&<151>
Attributes:
    User-Name = "jimy"
    User-Password = "<149>i!<156><181><155><193>O<223><163>on<3><138><249><164>"
    Client-Id = 208.143.244.19
    NAS-Port = 10
    Acct-Session-Id = "590566"
    USR-Interface-Index = 1266
    Service-Type = Login-User
    Chassis-Call-Slot = 1
    Chassis-Call-Span = 1
    Chassis-Call-Channel = 10
    Calling-Station-Id = "16211831"
    Called-Station-Id = "5922000"
    NAS-Port-Type = Async

Sat Oct 16 15:18:20 1999: DEBUG: Handling request with Handler 'Realm='
Sat Oct 16 15:18:20 1999: DEBUG: Deleting session for jimy, 208.143.244.19, 10
Sat Oct 16 15:18:20 1999: DEBUG: Handling with Radius::AuthFILE
Sat Oct 16 15:18:20 1999: DEBUG: Radius::AuthFILE looks for match with jimy
Sat Oct 16 15:18:20 1999: DEBUG: Radius::AuthFILE looks for match with DEFAULT
Sat Oct 16 15:18:20 1999: DEBUG: Handling with Radius::AuthUNIX
Sat Oct 16 15:18:20 1999: DEBUG: Radius::AuthUNIX looks for match with jimy
Sat Oct 16 15:18:20 1999: DEBUG: Radius::AuthUNIX REJECT_IMMEDIATE: Rejected explicitly by Auth-Type=Reject
Sat Oct 16 15:18:20 1999: DEBUG: Radius::AuthFILE REJECT_IMMEDIATE: Rejected explicitly by Auth-Type=Reject
Sat Oct 16 15:18:20 1999: INFO: Access rejected for jimy: Rejected explicitly by Auth-Type=Reject
Sat Oct 16 15:18:20 1999: DEBUG: Packet dump:
*** Sending to 208.143.244.19 port 1645 
Code:   Access-Reject
Identifier: 15
Authentic:  <241>DSv<220><174>4]<247>9<170><24>`z&<151>
Attributes:
    Port-Message = "Request Denied"





What should be the problem?



Thanks.

-- 
Sergio A. Gonzalez
Director Operativo
Skynet de Colombia S.A.
Calle 100 #8A-55 piso 7 oficina 711 World Trade Center
57 (+1) 642 2020
[EMAIL PROTECTED]
 

(RADIATOR) Bad Encrypt-Password Problem

1999-10-19 Thread Sergio Alejandro Gonzalez Z 


Hello, I been testing radiator to authenticate with the /etc/shadow file.
Well. when I do a radpwtest with the client localhost, everything goes
well. When I use the radpwtest but simulating the NAS, I got "Bad Encrypted
Password" . I think something is wrong with the encryption or with the
/etc/shadow reading at starting. The version of radiator I use is 2.14.1
and the shadow file is of a linux box running slackware.
Any Ideas what could be happening?
 
Thanks.
-- 
Sergio A. Gonzalez
Director Operativo
Skynet de Colombia S.A.
Calle 100 #8A-55 piso 7 oficina 711 World Trade Center
57 (+1) 642 2020
[EMAIL PROTECTED]