(RADIATOR) Static IP address/Framed-IP-Address Simultaneous-Use = 1 attribute

Hugh Irvine hugh at open.com.au
Sun Jun 3 17:35:44 CDT 2001


Hello Rick -

As I can't find you in our customer database, could you please send me the 
name of the registered company that purchased this copy of Radiator?

Please reply to me directly.

regards

Hugh

On Sunday 03 June 2001 08:01, pop wrote:
> Hi,
>
> We are testing out Radiator and so far it seems easy to set up and get
> working.  I seem to be having a problem  with a few items however I believe
> they are all connected.
>
> I'm trying a simple set up with one realm (DEFAULT) with cisco 5300.  I
> would like to use Simultaneous-Use only for most users but not all.  I
> would like to add static ip's for some users with Framed-IP-Address
> Simultaneous-Use = 1 authentication from SQL Database.
>
> The basic username password authentication is working fine only when
> forcing the AddToReplyIfNotExist directive in the config file.
>
> It seems that the reply attributes are not being sent back to the 5300 so
> the same users can log on multiple times.  When using the
> DefaultSimultaneousUse  statement only one user at a time can log on.
> However when setting that attribute and value in the SQL database and
> removing   DefaultSimultaneousUse from the config file, the same user can
> log on multiple times.
>
> I'm seeing a similar problem with assigning a static ip.  Defined in the
> database does not get assigned to the access server.
>
> Additionally I must use the AddToReplyIfNotExist in my config or else I get
> a no appropriate authorization type for user.
> Here is my sql.config and some debugs.  One for a the user fred and one for
> the user xyz.  Xyz is a user set up for static ip and fred is a basic user
> that can only log on once.
>
>
>
> Sql.cfg
>
> # common-sql.cfg
> #
> # Example Radiator configuration file that allows you to
> # authenticate from an SQL database.
> # With Radiator you can interface with almost any databse schema,
> # and there are many more configurable parameters that allow you
> # to control database fallback, select statements, column names
> # and arrangements etc etc etc.
> # See the reference manual for more details.
> # This is a very simple exmaple to get you started. It will
> # work with the tables created by the goodies/*.sql scripts.
> #
> # You should consider this file to be a starting point only
> # $Id: sql.cfg,v 1.5 2000/11/07 21:18:05 mikem Exp $
>
> Foreground
> LogStdout
> LogDir		.
> DictionaryFile ./dictionary.cisco
> DbDir		.
>
> Trace    4
>
> <Client as2.hpcisp.com>
>         Secret xxx
> </Client>
>
>
>
>
> <SessionDatabase SQL>
>         DBSource        dbi:mysql:xxxxx
>         DBUsername      xxxxx
>         DBAuth          xxxxxxx
> </SessionDatabase SQL>
>
>
> # This will authenticate users from SUBSCRIBERS
> <Realm DEFAULT>
>     <AuthBy SQL>
> 	# Adjust DBSource, DBUsername, DBAuth to suit your DB
>
> 	DBSource	dbi:mysql:xxx
>         DBUsername      xxx
>         DBAuth          xxxxx
>
> #DefaultSimultaneousUse 1
>
> 	# You may want to tailor these for your ACCOUNTING table
> 	# You can add your own columns to store whatever you like
> 	AccountingTable	ACCOUNTING
> 	AcctColumnDef	USERNAME,User-Name
> 	AcctColumnDef	TIME_STAMP,Timestamp,integer
> 	AcctColumnDef	ACCTSTATUSTYPE,Acct-Status-Type
> 	AcctColumnDef	ACCTDELAYTIME,Acct-Delay-Time,integer
> 	AcctColumnDef	ACCTINPUTOCTETS,Acct-Input-Octets,integer
> 	AcctColumnDef	ACCTOUTPUTOCTETS,Acct-Output-Octets,integer
> 	AcctColumnDef	ACCTSESSIONID,Acct-Session-Id
> 	AcctColumnDef	ACCTSESSIONTIME,Acct-Session-Time,integer
> 	AcctColumnDef	ACCTTERMINATECAUSE,Acct-Terminate-Cause
> 	AcctColumnDef	NASIDENTIFIER,NAS-Identifier
> 	AcctColumnDef	NASPORT,NAS-Port,integer
> 	AcctColumnDef	FRAMEDIPADDRESS,Framed-IP-Address
>
> # added would like to take this out!
>
>         AddToReplyIfNotExist Service-Type = Framed-User,\
>                  Framed-Protocol = PPP,\
>                  Framed-Routing = None,\
>                  Framed-MTU = 1500,\
>                  Framed-Compression = Van-Jacobson-TCP-IP
> # end added
>
> 	# You can arrange to log accounting to a file if the
> 	# SQL insert fails with AcctFailedLogFileName
> 	# That way you could recover from a broken SQL
> 	# server
> 	AcctFailedLogFileName %D/missedaccounting
>
>
>     </AuthBy>
>
>
> </Realm>
>
> --------------------------------------------------End
> SQL.cfg--------------------------------------------------------------------
>- ------------
>
>
> -----------------------------Select for
> subscribers------------------------------------------------
> USERNAME   CHECKATTR
> fred       Simultaneous-Use = 1, Service-Type = Framed-User
> xyz        Service-Type = Framed-User
>
>
> USERNAME    REPLYATTR
> fred        Framed-Protocol = PPP,Framed-IP-Netmask =
> 255.255.255.254,Service-Type = Framed-User,
>             Framed-Routing = None,Framed-MTU = 1500,
>             Framed-Compression = Van-Jacobson-TCP-IP
>
>
>
>
>
> USERNAME    REPLYATTR
> xyz         Framed-Protocol = PPP,Framed-IP-Netmask =
> 255.255.255.254,Framed-IP-Address = 208.149.144.160,
>             Service-Type = Framed-User,Framed-Routing = None,Framed-MTU =
> 1500,
>             Framed-Compression = Van-Jacobson-TCP-I
>
>
> ------------------------------End select for
> Subscribers------------------------------------------------
>
>
>
>
>
> ===
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.

-- 
Radiator: the most portable, flexible and configurable RADIUS server 
anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.


More information about the radiator mailing list