(RADIATOR) radius stops during 15 minutes
Hugh Irvine
hugh at open.com.au
Thu Sep 13 14:13:57 CDT 2007
Hello Carlos -
I have seen this sort of thing when there is a firewall between the
RADIUS server and the SQL database that drops inactive sessions.
Otherwise I have also seen problems with the Oracle client libraries
not timing out properly.
Can you give me more detail on your setup and configuration?
regards
Hugh
On 13 Sep 2007, at 03:24, onrubia carlos wrote:
> Hello,
>
> I have read several messages in the mailing list on similar
> problems but I do not have a clear view of the reasons
> and what to to!
>
> I have configured radiator on linux servers (debian).
> When I send traffic, I see that sometimes the radius request are
> not treated by radiator at all (nothing on the log files).
>
> Here what I see on the authentication log file: the treatment stops
> during about 15 minutes after a delete in the oracle online
> database; after that the treatment goes on.
> How can this be possible?
> In my authentication configuration file I have a timeout of 2
> seconds and a FailureBackoffTime of 5 seconds.
> If I am not wrong...if no answer of the online DB after 2 seconds,
> the flow must go on.
>
> Please, can you help?
>
> Version is Radiator 3.11
>
> <SessionDatabase SQL>
>
> Identifier SkynetOnline
>
> DBSource dbi:Oracle:RADONL.SKYNET.BE
> DBUsername radius
> DBAuth kerguelen
>
> DBSource dbi:Oracle:RADONL2.SKYNET.BE
> DBUsername xxx
> DBAuth xxx
>
> Timeout 2
> FailureBackoffTime 5
>
> AddQuery INSERT into onlineusers (login, \
> nas_id, \
> session_id, \
> time_stamp, \
> framed_ip, \
> nas_port_type, \
> service_type, \
> called_id, \
> caller_id, \
> nasidport, \
> radsrv, \
> status_type) \
> VALUES ('%n', \
> '%N', \
> '%{Acct-Session-
> Id}', \
> (to_date('01-
> JAN-1970','DD-MON-YYYY')+%{Timestamp}/86400), \
> '%{Framed-IP-
> Address}', \
> '%{NAS-Port-Type}', \
> '%{Service-Type}', \
> '%{Calling-Station-
> Id}', \
> '%{Calling-Station-
> Id}', \
> '%N %{NAS-Port}', \
>
> 'radius501.isp.belgacom.be', \
> '%{Acct-Status-Type}')
> DeleteQuery DELETE FROM onlineusers WHERE nasidport='%N
> %{NAS-Port}'
> ClearNasQuery DELETE FROM onlineusers WHERE nas_id = '%N'
> CountQuery SELECT nas_id, 0 AS nas_port, session_id
> FROM onlineusers WHERE login = '%n'
> #AddQuery REPLACE DELAYED INTO online
> (login,nas_id,session_id,time_stamp,framed_ip,nas_port_type,service_ty
> pe,called_id,caller_id,nasidport,radsrv,status_type) VA
> LUES ('%n', '%N', '%{Acct-Session-Id}', %{Timestamp}, '%{Framed-IP-
> Address}', '%{NAS-Port-Type}', '%{Service-Type}','%{Calling-Station-
> Id}', '%{Calling-Station-Id}','%N %{NAS-Por
> t}','phoebus.skynet.be','%{Acct-Status-Type}')
> #DeleteQuery DELETE LOW_PRIORITY FROM online WHERE login
> = '%n' AND nasidport='%N %{NAS-Port}'
> #ClearNasQuery DELETE LOW_PRIORITY FROM online WHERE
> nas_id = '%N'
> #CountQuery SELECT HIGH_PRIORITY nas_id, 0 AS nas_port,
> session_id FROM online WHERE login = '%n'
>
> </SessionDatabase>
>
>
> 128><0><0><0><5>ass_ Attributes: ^IUser-Name = "dectest at LOADA1"
> ^INAS-IP-Address = 192.168.255.116 ^INAS-Port-Type = Async ^INAS-
> Port = 5 ^ICalling-Station-Id = "45000005" ^ICalled-Station-Id =
> "45000005" ^IService-Type = Framed-User ^IFramed-Protocol = PPP
> ^IFramed-IP-Address = 10.0.0.6 ^IUser-Password = "<253><235>:
> [QA@&:<159>\%<171>E<178>_"
> Sep 12 16:28:27 radius501 radiusd[4799]: Rewrote user name to
> dectest at LOADA1
> Sep 12 16:28:27 radius501 radiusd[4799]: Handling request with
> Handler 'SkyHandler = skynet, User-Name = /dectest/i'
> Sep 12 16:28:27 radius501 radiusd[4799]: Rewrote user name to dectest
> Sep 12 16:28:27 radius501 radiusd[4799]: SkynetOnline Deleting
> session for dectest at LOADA1, 192.168.255.116, 5
> Sep 12 16:28:27 radius501 radiusd[4799]: do query is: 'DELETE FROM
> onlineusers WHERE nasidport=' 192.168.255.116 5'':
>
> ....
>
> Sep 12 16:43:53 radius501 radiusd[4799]: do failed for 'DELETE FROM
> onlineusers WHERE nasidport='192.168.255.116 5'': SQL Timeout
> Sep 12 16:43:53 radius501 radiusd[4799]: Handling with Radius::AuthSQL
> Sep 12 16:43:53 radius501 radiusd[4799]: Handling with
> Radius::AuthSQL: BGC_bit_Auth99
NB:
Have you read the reference manual ("doc/ref.html")?
Have you searched the mailing list archive (www.open.com.au/archives/
radiator)?
Have you had a quick look on Google (www.google.com)?
Have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?
Have you checked the RadiusExpert wiki:
http://www.open.com.au/wiki/index.php/Main_Page
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
Includes support for reliable RADIUS transport (RadSec),
and DIAMETER translation agent.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.
--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list