(RADIATOR) Cisco avpair
Hugh Irvine
hugh at open.com.au
Thu Dec 20 17:31:53 CST 2001
Hello Kyle -
Do you want to return cisco-avpairs for the static addresses in the user
records, or the dynamic addresses from the address allocator (or both)?
thanks
Hugh
On Fri, 21 Dec 2001 10:13, Kyle wrote:
> Hugh,
>
> Running radiator 2.2.18, and I need to return cisco-avpair attributes
> for IP address and netmask. I'm not to familiar with how to do this.
> Right now my config looks like this:
>
>
> <Realm bnsi.net>
>
> AuthByPolicy ContinueWhileAccept
>
> ## ReWrite the username to take off everything after the '@'
> RewriteUsername s/^([^@]+).*/$1/
>
> <AuthBy SQL>
> # Adjust DBSource, DBUsername, DBAuth to suit your DB
>
> DBSource dbi:mysql:radius
> DBUsername radius
> DBAuth s3$5#G5b
>
> Timeout 30
> FailureBackoffTime 300
> RejectEmptyPassword
>
> AuthSelect select PASSWORD, ENCRYPTEDPASSWORD, \
> IPADDRESS, IPNETMASK from DSLSUBSCRIBERS \
> where USERNAME='%n' and STATUS='A'
>
> AuthColumnDef 0, User-Password, check
> AuthColumnDef 1, Encrypted-Password, check
> AuthColumnDef 2, Framed-IP-Address, reply
> AuthColumnDef 3, Framed-Netmask, reply
>
>
> # You may want to tailor these for your ACCOUNTING table
> # You can add your own columns to store whatever you like
>
> AccountingTable ACCOUNTING
> AcctColumnDef USERNAME,User-Name
> AcctColumnDef TIME_STAMP,Timestamp,integer
> AcctColumnDef ACCTSTATUSTYPE,Acct-Status-Type
> AcctColumnDef ACCTDELAYTIME,Acct-Delay-Time,integer
> AcctColumnDef ACCTINPUTOCTETS,Acct-Input-Octets,integer
> AcctColumnDef ACCTOUTPUTOCTETS,Acct-Output-Octets,integer
> AcctColumnDef ACCTSESSIONID,Acct-Session-Id
> AcctColumnDef ACCTSESSIONTIME,Acct-Session-Time,integer
> AcctColumnDef ACCTTERMINATECAUSE,Acct-Terminate-Cause
> AcctColumnDef NASIDENTIFIER,NAS-IP-Address
> AcctColumnDef NASPORT,NAS-Port,integer
> AcctColumnDef FRAMEDIPADDRESS,Framed-IP-Address
> AcctColumnDef CSID,Calling-Station-Id
> AcctColumnDef RXSPEED,Ascend-Data-Rate
> AcctColumnDef TXSPEED,Ascend-Xmit-Rate
> AcctColumnDef INOCTETS,Acct-Input-Octets
> AcctColumnDef OUTOCTETS,Acct-Output-Octets
>
> AcctColumnDef INPACKETS,Acct-Input-Packets
> AcctColumnDef OUTPACKETS,Acct-Output-Packets
> AcctColumnDef NASPORTTYPE,NAS-Port-Type
> AcctColumnDef PATTONACCTTERMINATE,Acct-Terminate-Cause
> AcctColumnDef ASCENDACCTTERMINATE,Ascend-Disconnect-Cause
>
> # You can arrange to log accounting to a file if the
> # SQL insert fails with AcctFailedLogFileName
> # That way you could recover from a broken SQL
> # server
> #AcctFailedLogFileName %D/missedaccounting
> </AuthBy>
>
> <AuthBy DYNADDRESS>
>
> # Point to the address allocator
>
> Allocator DSLallocator
>
> </AuthBy>
>
> SessionDatabase SDBDSL
> AuthLog AuthLogDSL
> </Realm>
>
> The reply packet sends back Framed-IP-Address and Framed-IP-Netmask as
> the reply attributes, the Address allocator works fine if a static Ip is
> not assigned in the customer profile. I just need to return in
> cisco-avpair
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list