(RADIATOR) An issue with Ascend DSL Terminator 100

Hi, I have a little problem with my Ascend (Lucent) DSL Terminator 100. It currently has 38 connection profiles enabled for ATM VCCs, and it keeps on sending Accounting Packets for every one of those connections, including the Accounting Start packets, without any Authentication packets. So

Re: (RADIATOR) An issue with Ascend DSL Terminator 100

60.79.128.6 Wed Jun 14 10:02:21 2000: DEBUG: got On/Off from 160.79.128.6 Wed Jun 14 10:02:21 2000: DEBUG: Accounting accepted Wed Jun 14 10:02:21 2000: DEBUG: Packet dump: *** Sending to 160.79.128.6 port 1026 Code: Accounting-Response Identifier: 102 Authentic: <251>e<161

Re: (RADIATOR) An issue with Ascend DSL Terminator 100

a lot... On Thu, 15 Jun 2000, Hugh Irvine wrote: > > Hello Garry - > > On Thu, 15 Jun 2000, Garry Shtern wrote: > > Hi Hugh, > > > > Here is the output from DSL Terminatior: > > > > RADIF: radius type Acct ID = 100 > > RADIF: _radiusAcctRequest: ty

(RADIATOR) patch to 2.16.1

Hey, I ran accross an interesting issue. It seems as though Radiator never checks for the timeout of the connection to the database before trying to execute a delete query. So, what I did, is simply implemented the ping() check in the reconnect routine. Following is the patch to SqlDb.pm. ---

[RADIATOR] Ideas on group and reply attribs parsing

All, I am trying to accomplish the following goal and would love ideas on the best way to accomplish it... - Setup clients with identifiers. - In the user file specify multiple defaults, with Client-Identifier, Auth-Type and optional Group attributes in check replies, and di

Re: [RADIATOR] Ideas on group and reply attribs parsing

hrough all of the groups in User-Groups Thanks! -Original Message- From: radiator-boun...@open.com.au [mailto:radiator-boun...@open.com.au] On Behalf Of Heikki Vatiainen Sent: Thursday, April 04, 2013 3:53 PM To: radiator@open.com.au Subject: Re: [RADIATOR] Ideas on group and reply at

Re: [RADIATOR] Ideas on group and reply attribs parsing

at do you think? -Original Message- From: radiator-boun...@open.com.au [mailto:radiator-boun...@open.com.au] On Behalf Of Heikki Vatiainen Sent: Thursday, April 04, 2013 4:47 PM To: radiator@open.com.au Subject: Re: [RADIATOR] Ideas on group and reply attribs parsing On 04/04/2013 11:24 PM, Gar

Re: [RADIATOR] Ideas on group and reply attribs parsing

s the first Group= is matched and reject if none are matched... Thanks, -Original Message- From: Hugh Irvine [mailto:h...@open.com.au] Sent: Friday, April 05, 2013 3:30 AM To: Garry Shtern Cc: 'Heikki Vatiainen'; radiator@open.com.au Subject: Re: [RADIATOR] Ideas on group an

Re: [RADIATOR] Ideas on group and reply attribs parsing

AuthBy doesn't handle. As it stands now, if the AuthBY doesn't know how to handle Group attribute, it rejects instead of just ignoring that check. Thanks! -Original Message- From: Hugh Irvine [mailto:h...@open.com.au] Sent: Friday, April 05, 2013 5:55 PM To: Garry Shtern C

Re: [RADIATOR] Ideas on group and reply attribs parsing

iator-boun...@open.com.au [mailto:radiator-boun...@open.com.au] On Behalf Of Heikki Vatiainen Sent: Friday, April 05, 2013 4:53 PM To: radiator@open.com.au Subject: Re: [RADIATOR] Ideas on group and reply attribs parsing On 04/05/2013 11:17 PM, Garry Shtern wrote: > I am not quite clear on how th

Re: [RADIATOR] Radiator & Debian Wheezy = memory problem?

Hi Sami, I am experiencing similar memory leak issues with Wheezy but I am not using AuthByRADIUS at all. Thanks. -Original Message- From: radiator-boun...@open.com.au [mailto:radiator-boun...@open.com.au] On Behalf Of Sami Keski-Kasari Sent: Tuesday, July 02, 2013 3:39 PM To: Kurt Ba

Re: [RADIATOR] Radiator 4.11: WARNING: Could not find AuthBy clause with Identifier ...

When you have activate() in config checking some of the modules, namely all of the ones extending StreamServer will attempt to bind to a port. Obviously, if you have nothing running when doing config check, this is really not a big deal. However, if you simply want to check configuration before

[RADIATOR] PEAP from Radiator via Juniper switches

All, I ran into an interesting issue. I am trying to do PEAP/MSCHAPv2 via Juniper EX switch to Radiator. I am seeing the Access-Request come in, and Radiator responds with Access-Challenge which is dropped by the EX. However, I have the same switch pointing to Microsoft NPS and everything wo

Re: [RADIATOR] PEAP from Radiator via Juniper switches

EAP_PEAP_MSCHAP_Convert 1 # Deal with MPPE keys AutoMPPEKeys From: Alan Buxey [mailto:a.l.m.bu...@lboro.ac.uk] Sent: Saturday, July 27, 2013 7:22 AM To: Garry Shtern; 'radiator@open.com.au' Subject: Re: [RADIATOR] PEAP from Radiator via Juniper switches con

Re: [RADIATOR] PEAP from Radiator via Juniper switches

<225><243><247><16><206>C<22><178>F<231><252> Attributes: -Original Message- From: radiator-boun...@open.com.au [mailto:radiator-boun...@open.com.au] On Behalf Of Sami Keski-Kasari Sent: Monday, July 29, 2013 6:52 AM To: radiator@open.c

Re: [RADIATOR] PEAP from Radiator via Juniper switches

ssage- From: radiator-boun...@open.com.au [mailto:radiator-boun...@open.com.au] On Behalf Of Garry Shtern Sent: Monday, July 29, 2013 9:05 AM To: 'Sami Keski-Kasari'; radiator@open.com.au Subject: Re: [RADIATOR] PEAP from Radiator via Juniper switches Sure, here you go... Fri

Re: [RADIATOR] AuthAttrDef for multi-value Radius attribute check

Hi Heikki, Put me down for this feature as well... Thanks. -Original Message- From: radiator-boun...@open.com.au [mailto:radiator-boun...@open.com.au] On Behalf Of Heikki Vatiainen Sent: Tuesday, September 17, 2013 8:24 AM To: radiator@open.com.au Subject: Re: [RADIATOR] AuthAttrDef for

Re: [RADIATOR] AuthAttrDef for multi-value Radius attribute check

Heikki, I was under the impression that RquestOr is already supported if one lists values separated by a space. Are you proposing to change the separator character to pipe and offering explicit method? Thanks. Sent with Good (www.good.com) -Original Message- From: Heikki Vatiainen

Re: [RADIATOR] AuthAttrDef for multi-value Radius attribute check

iator-boun...@open.com.au [mailto:radiator-boun...@open.com.au] On Behalf Of Heikki Vatiainen Sent: Wednesday, September 18, 2013 9:33 AM To: 'radiator@open.com.au' Subject: Re: [RADIATOR] AuthAttrDef for multi-value Radius attribute check On 09/18/2013 02:51 PM, Garry Shtern wrote

Re: [RADIATOR] AuthAttrDef for multi-value Radius attribute check

[mailto:radiator-boun...@open.com.au] On Behalf Of Christian Kratzer Sent: Wednesday, September 18, 2013 11:26 AM To: Garry Shtern Cc: radiator@open.com.au Subject: Re: [RADIATOR] AuthAttrDef for multi-value Radius attribute check Hi, On Wed, 18 Sep 2013, Garry Shtern wrote: > That's

Re: [RADIATOR] AuthAttrDef for multi-value Radius attribute check

sage- From: radiator-boun...@open.com.au [mailto:radiator-boun...@open.com.au] On Behalf Of Alexander Hartmaier Sent: Wednesday, September 18, 2013 11:04 AM To: radiator@open.com.au Subject: Re: [RADIATOR] AuthAttrDef for multi-value Radius attribute check On 2013-09-18 16:53, Garry Shtern wrote:

Re: [RADIATOR] per-clause vs global Logs

Guys, What do you think about implementing an ability to log only specific transactions based on the request attributes. For example, I would love to have an ability to enable more verbose logging based on specific source-ip or username. This would allow me to leave debugging on for a long pe

Re: [RADIATOR] per-clause vs global Logs

Hi Heikki, I'll give this a shot. Thanks. -Original Message- From: Heikki Vatiainen [mailto:h...@open.com.au] Sent: Saturday, December 07, 2013 7:23 AM To: Garry Shtern; radiator@open.com.au Subject: Re: [RADIATOR] per-clause vs global Logs On 12/05/2013 07:23 PM, Garry Shtern

[RADIATOR] (P)EAP flow

I have noticed that if Radiator receives a midstream EAP exchange message, it responds back with a CHALLENGE. I am trying to understand what exactly happens at this point. Does the Supplicant respond to the challenge with a brand new exchange or just retransmits whatever packet it sent before?

Re: [RADIATOR] (P)EAP flow

d.com) -Original Message- From: Heikki Vatiainen [h...@open.com.au<mailto:h...@open.com.au>] Sent: Monday, February 17, 2014 02:22 PM Coordinated Universal Time To: radiator@open.com.au Subject: Re: [RADIATOR] (P)EAP flow On 02/14/2014 07:17 PM, Garry Shtern wrote: > I have n

Re: [RADIATOR] (P)EAP flow

because of certificate, negotiation or handshake errors. As for minimizing of unexpected messages, I am definitely with you on this one. -Original Message- From: Heikki Vatiainen [mailto:h...@open.com.au] Sent: Wednesday, February 19, 2014 9:35 AM To: Garry Shtern; 'radiator@open.c

Re: [RADIATOR] EAP TLS issues "routines:SSL3_READ_BYTES:tlsv1 alert access denied"

Try adding the entire chain to the server cert that Radiator presents. Make sure to list certificates in proper order - server, intermediate, root. Sent with Good (www.good.com) -Original Message- From: Jeffrey Smith [d...@neonova.net] Sent: Thursday, February

Re: [RADIATOR] EAP TLS issues "routines:SSL3_READ_BYTES:tlsv1 alert access denied"

ailto:d...@neonova.net> On Thu, Feb 20, 2014 at 12:12 PM, Garry Shtern mailto:garry.sht...@twosigma.com>> wrote: Try adding the entire chain to the server cert that Radiator presents. Make sure to list certificates in proper order - server, intermediate, root. Sent with Good (www.g

Re: [RADIATOR] add Attributes when retrying to a new Host in AuthROUNDROBIN (radiator Digest, Vol 63, Issue 14)

Heikki, That's a nice addition but one can simply add radiator user to winbindd_priv group on the system to accomplish the same thing if they are running without this patch. There is really no need to ever run as root. Thanks. -Original Message- From: radiator-boun...@open.com.au [mai

Re: [RADIATOR] Use FarmSize parameter

So what happens to the EAP/PEAP requests if one enables FarmSize? Do they simply get processed by the parent, or do they break completely? From: radiator-boun...@open.com.au [mailto:radiator-boun...@open.com.au] On Behalf Of Amândio Antunes Gomes Silva Sent: Thursday, September 24, 2015 4:43 AM

Re: [RADIATOR] Use FarmSize parameter

It would be helpful to have a sample configuration that includes all of this... -Original Message- From: a.l.m.bu...@lboro.ac.uk [mailto:a.l.m.bu...@lboro.ac.uk] Sent: Friday, September 25, 2015 11:44 AM To: Garry Shtern Cc: 'Amândio Antunes Gomes Silva' ; António Mendes