(RADIATOR) radpwtst -noacct -noauth -code Disconnect-Request NAS-Port=xxx

Hugh Irvine hugh at open.com.au
Wed Jul 18 17:47:47 CDT 2001


Hello Alain -

I have copied this to the mailing list, because I do not know where to find 
this information. Anyone willing to share, and maybe send us something for 
the FAQ?

thanks

Hugh

On Wednesday 18 July 2001 17:40, Gonzalez Castillo, Alain wrote:

> > Hi Hugh.
> I not found in cisco website information about configure my AS5300 for
> accept Disconnect-request from my radiator.
> You known any site where i get information for this?
> Thans.
> Alain.
>
> -----Mensaje original-----
> De: Hugh Irvine [mailto:hugh at open.com.au]
> Enviado el: sábado, 14 de julio de 2001 3:46
> Para: Gonzalez Castillo, Alain
> Asunto: Re: (RADIATOR) radpwtst -noacct -noauth -code Disconnect-Request
> NAS-Port=xxx
>
>
>
> Hello Alain -
>
> Your Radiator configuration looks fine.
>
> >From what you show below, I would say that you have not configured the NAS
>
> correctly. You will have to check with the vendor for the configuration
> details to allow the NAS to process the Disconnect-Request.
>
> regards
>
> Hugh
>
> On Friday 13 July 2001 20:06, Gonzalez Castillo, Alain wrote:
> > > Hi Hugh
> >
> > I added this lines to my conf file
> > <Handler Request-Type=Disconnect-Request>
> >         <AuthBy RADIUS>
> >                 <Host xxxx>
> >                 	Secret xxxx
> >                 </Host>
> >         </AuthBy>
> > <Handler>
> >
> > when i tried:
> > radpwtst -noacct -noauth -code Disconnect-Request NAS-Port=xxx
> >
> > my log say this:
> > Fri Jul 13 13:54:12 2001: DEBUG: Check if Handler
> > Request-Type=Disconnect-Request should be used to handle this request
> > Fri Jul 13 13:54:12 2001: DEBUG: Handling request with Handler
> > 'Request-Type=Disconnect-Request'
> > Fri Jul 13 13:54:12 2001: DEBUG: Handling with Radius::AuthRADIUS
> > No reply
> > [root at alphatest Radiator-Demo-2.18.1]# Fri Jul 13 13:54:17 2001: DEBUG:
> > Timed out, retransmitting
> > Fri Jul 13 13:54:22 2001: DEBUG: Timed out, retransmitting
> > Fri Jul 13 13:54:27 2001: DEBUG: Timed out, retransmitting
> > Fri Jul 13 13:54:32 2001: INFO: AuthRADIUS: No reply after 3
> > retransmissions to xxxx:1645 for   (207)
> >
> > The handler definition is ok? or i missed anything?
> >
> > Thanks.
> > Alain
> >
> >
> > -----Mensaje original-----
> > De: Hugh Irvine [mailto:hugh at open.com.au]
> > Enviado el: viernes, 13 de julio de 2001 11:01
> > Para: Gonzalez Castillo, Alain
> > CC: 'radiator at open.com.au'
> > Asunto: Re: (RADIATOR) radpwtst -noacct -noauth -code Disconnect-Request
> > NAS-Port=xxx
> >
> >
> >
> > Hello Alain -
> >
> > As mentioned below, you can use radpwtst to send the Disconnect-Request
> > directly to the NAS. However, if you want to send it through Radiator you
> > will have to configure an AuthBy RADIUS clause pointing at the NAS and a
> > Realm or Handler clause to recognise the Disconnect-Request and send it
> > to the right NAS.
> >
> > hth
> >
> > Hugh
> >
> > On Friday 13 July 2001 18:07, Gonzalez Castillo, Alain wrote:
> > > > My NAS support Disconnect-Request.
> > >
> > > Can u tell me how define Handler or Realm for forward the request
> > > correctly? Thanks
> > >
> > > -----Mensaje original-----
> > > De: Hugh Irvine [mailto:hugh at open.com.au]
> > > Enviado el: viernes, 13 de julio de 2001 8:39
> > > Para: Gonzalez Castillo, Alain; 'radiator at open.com.au'
> > > Asunto: Re: (RADIATOR) radpwtst -noacct -noauth -code
> > > Disconnect-Request NAS-Port=xxx
> > >
> > >
> > >
> > > Hello Alain -
> > >
> > > As the error message in the log file says, you will need a Realm or
> >
> > Handler
> >
> > > clause to deal with the Disconnect-Request. You will also need software
> > > on the NAS that understands Disconnect-Request.
> > >
> > > Also note that when the NAS is configured to process Disconnect-Request
> > > it is
> > > acting as a Radius server for this operation, and hence, your Radiator
> >
> > will
> >
> > > in fact need to be configured to proxy the Disconnect-Request to the
>
> NAS.
>
> > > The first thing to do though is to check that your NAS supports
> > > Disconnect-Request, second you will have to configure the NAS to
> > > process the
> > >
> > > requests correctly, and third (optional) you can configure Radiator to
> > > forward the requests correctly.
> > >
> > > NOTE: you can also send the Disconnect-Request directly to the NAS from
> > > radpwtst without going through Radiator at all (this may be easier in
>
> any
>
> > > case).
> > >
> > > hth
> > >
> > > Hugh
> > >
> > > On Friday 13 July 2001 02:44, Gonzalez Castillo, Alain wrote:
> > > > > Hi, i need to disconnect an user.
> > > >
> > > > When i use radpwtst -noacct -noauth -code Disconnect-Request
> > > > NAS-Port=xxxx
> > > >
> > > > logfile tell me:
> > > >
> > > >
> > > > Thu Jul 12 20:35:30 2001: DEBUG: Check if Handler Realm=xxxx should
> > > > be
> > >
> > > used
> > >
> > > > to handle this request
> > > > Thu Jul 12 20:35:30 2001: WARNING: Could not find a handler for :
> >
> > request
> >
> > > > is ignored
> > > > No reply
> > > >
> > > > Muy conf file is this:
> > > >
> > > > # Radiator configuration file.
> > > > # Produced by /cgi-bin/radconfig.cgi Fri Jul  6 21:01:45 2001
> > > > #REMOTE_USER: , REMOTE_ADDR: xxxx
> > > >
> > > > AcctPort 1646
> > > > AuthPort 1645
> > > > DbDir .
> > > > Foreground
> > > > LogDir .
> > > > LogStdout
> > > >
> > > > <AddressAllocator SQL>
> > > >   DBAuth xxxx
> > > >   DBSource dbi:mysql:xxxx
> > > >   DBUsername xxxx
> > > >   Identifier direccionesip
> > > >
> > > > <AddressPool pool1>
> > > >     DNSServer xxxx
> > > >     Range xxxx xxxx
> > > >     Subnetmask xxxx
> > > >   </AddressPool>
> > > > </AddressAllocator>
> > > >
> > > > <AuthBy SQL>
> > > >   AccountingTable ACCOUNTING
> > > >   AcctColumnDef USERNAME,User-Name
> > > >   AcctColumnDef TIME_STAMP,Timestamp,integer
> > > >   AcctColumnDef ACCTSTATUSTYPE,Acct-Status-Type
> > > >   AcctColumnDef ACCTDELAYTIME,Acct-Delay-Time,integer
> > > >   AcctColumnDef ACCTINPUTOCTETS,Acct-Input-Octets,integer
> > > >   AcctColumnDef ACCTOUTPUTOCTETS,Acct-Output-Octets,integer
> > > >   AcctColumnDef ACCTSESSIONID,Acct-Session-Id
> > > >   AcctColumnDef ACCTSESSIONTIME,Acct-Session-Time,integer
> > > >   AcctColumnDef ACCTTERMINATECAUSE,Acct-Terminate-Cause
> > > >   AcctColumnDef NASIDENTIFIER,NAS-Identifier
> > > >   AcctColumnDef NASPORT,NAS-Port,integer
> > > >   AcctColumnDef FRAMEDIPADDRESS,Framed-IP-Address
> > > >   DBAuth xxxx
> > > >   DBSource dbi:mysql:user_BLOSTE
> > > >   DBUsername root
> > > >   Identifier ID_0
> > > > </AuthBy>
> > > >
> > > >
> > > > <ClientListSQL >
> > > >   DBAuth xxxx
> > > >   DBSource dbi:mysql:xxxx
> > > >   DBUsername root
> > > > </ClientListSQL>
> > > >
> > > > <Log SQL>
> > > >   DBAuth xxxx
> > > >   DBSource dbi:mysql:xxxx
> > > >   DBUsername xxxx
> > > >   LogQuery insert into RADLOG (TIME_STAMP, PRIORITY, MESSAGE) values
> >
> > (%t,
> >
> > > > '$p', '$s')
> > > >   Trace 3
> > > > </Log>
> > > >
> > > > <Log FILE>
> > > >   Filename logfile.radiator
> > > >   Identifier log radiator
> > > >   Trace 5
> > > > </Log>
> > > >
> > > > <Realm xxxx>
> > > >   AuthBy ID_0
> > > >   AuthByPolicy ContinueWhileIgnore
> > > >   RewriteUsername s/^([^@]+).*/$1/
> > > >   SessionDatabase Sesion SQL
> > > > 	<AuthBy DYNADDRESS>
> > > >   	Allocator direccionesip
> > > >   	MapAttribute yiaddr, Framed-IP-Address
> > > >   	MapAttribute subnetmask, Framed-IP-Netmask
> > > >   	PoolHint %{Reply:PoolHint}
> > > >   	StripFromReply PoolHint
> > > > 	</AuthBy>
> > > >
> > > > </Realm>
> > > >
> > > > <SessionDatabase SQL>
> > > >   AddQuery insert into RADONLINE (USERNAME, NASIDENTIFIER, NASPORT,
> > > > ACCTSESSIONID, TIME_STAMP, FRAMEDIPADDRESS, NASPORTTYPE, SERVICETYPE)
> > > > values ('%u', '%N', 0%{NAS-Port}, '%{Acct-Session-Id}', %{Timestamp},
> > > > '%{Framed-IP-Address}', '%{NAS-Port-Type}', '%{Service-Type}')
> > > >   ClearNasQuery delete from RADONLINE where NASIDENTIFIER='%N'
> > > >   CountNasSessionsQuery select ACCTSESSIONID from RADONLINE where
> > > > NASIDENTIFIER='%N'
> > > >   CountQuery select NASIDENTIFIER, NASPORT, ACCTSESSIONID from
> > > > RADONLINE where USERNAME='%u'
> > > >   DBAuth xxxx
> > > >   DBSource dbi:mysql:xxxx
> > > >   DBUsername xxxx
> > > >   DeleteQuery delete from RADONLINE where NASIDENTIFIER='%N' and
> > > > NASPORT=0%{NAS-Port}
> > > >   Description Logs
> > > >   Identifier Sesion SQL
> > > > </SessionDatabase>
> > > >
> > > > Anyone can help me?
> > > > My NAS is an Cisco AS5300.
> > > >
> > > > Thanks.
> > > > Alain.
> > >
> > > ----------------------------------------
> > > Content-Type: text/html; charset="iso-8859-1"; name="Attachment: 1"
> > > Content-Transfer-Encoding: quoted-printable
> > > Content-Description:
> > > ----------------------------------------
> >
> > ----------------------------------------
> > Content-Type: text/html; charset="iso-8859-1"; name="Attachment: 1"
> > Content-Transfer-Encoding: 7bit
> > Content-Description:
> > ----------------------------------------
>
> ----------------------------------------
> Content-Type: text/html; charset="iso-8859-1"; name="Attachment: 1"
> Content-Transfer-Encoding: quoted-printable
> Content-Description:
> ----------------------------------------

----------------------------------------
Content-Type: text/html; charset="iso-8859-1"; name="Attachment: 1"
Content-Transfer-Encoding: quoted-printable
Content-Description: 
----------------------------------------

-- 
Radiator: the most portable, flexible and configurable RADIUS server 
anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.


More information about the radiator mailing list