(RADIATOR) Dynamic DNS
Hugh Irvine
hugh at open.com.au
Tue Jul 23 01:49:41 CDT 2002
Hello Rabbie -
As the AuthBy SQLRADIUS clause operates asynchronously when proxying radius
requests, you cannot use chained AuthBy clauses as you are trying to do.
You will need to use a ReplyHook that executes when the proxy reply comes
back, and which then calls the AuthBy DYNADDRESS clause.
There is an example showing how to do this in "goodies/hooks.txt".
regards
Hugh
On Tue, 23 Jul 2002 15:42, Rabbie Zalaf wrote:
> Hi All,
>
> I am trying to use our proxy radius server to dynamically assign an ip
> address from our range to each dialup user and for some reason it keeps
> giving me the same ip address every time.
>
> It is always giving me the ip of 202.78.40.4 and I believe that this is due
> to a cached response.
>
> I'm pretty sure there is a syntax error somewhere here.. Can anyone help me
> out?
>
> Thanks.
>
> Rabbie.
>
>
>
>
> ----------
> LogDir /var/log/radius
> LogFile /var/log/radius/logfile
> DbDir /etc/radiator
>
> Trace 4
>
> AuthPort 1812
> AcctPort 1813
>
> <Client xxxxxxxx>
> Secret xxxxxxx
> DupInterval 0
> </Client>
>
> <Client xxx.xxx.xxx.xx>
> #Optus Providor3
> Identifier providor3
> Secret xxxxxxxx
> </Client>
> <AddressAllocator SQL>
> Identifier myallocator
> # For mysql, use something like this
> DBSource dbi:mysql:radius
> DBUsername xxxxxxx
> DBAuth xxxxxxx
> <AddressPool pool1>
> DNSServer 202.22.163.41
> Subnetmask 255.255.255.255
> Range 202.78.40.0 202.78.40.250
> </AddressPool>
> </AddressAllocator>
>
> <Handler Client-Identifier=providor3>
> AuthByPolicy ContinueWhileAccept
> <AuthBy SQLRADIUS>
> Identifier SQLRadiusProxy
> DBSource dbi:mysql:radius
> DBUsername xxxxxxx
> DBAuth xxxxxxx
>
> NumHosts 2
>
> HostSelect select HOST%0, SECRET, AUTHPORT, ACCTPORT, \
> RETRIES, RETRYTIMEOUT, USEOLDASCENDPASSWORDS, \
> SERVERHASBROKENPORTNUMBERS, SERVERHASBROKENADDRESSES, \
> IGNOREREPLYSIGNATURE, FAILUREPOLICY \
> from RADSQLRADIUS_REALM where REALM='%R'
>
> AddToReplyIfNotExist
> Service-Type=Framed-User,Framed-Protocol=PPP,PoolHint=pool1
>
> AccountingTable ACCOUNTING
> AcctColumnDef USERNAME,User-Name
> AcctColumnDef TIME_STAMP,Timestamp,integer
> AcctColumnDef ACCTSTATUSTYPE,Acct-Status-Type
> AcctColumnDef ACCTDELAYTIME,Acct-Delay-Time,integer
> AcctColumnDef ACCTINPUTOCTETS,Acct-Input-Octets,integer
> AcctColumnDef ACCTOUTPUTOCTETS,Acct-Output-Octets,integer
> AcctColumnDef ACCTSESSIONID,Acct-Session-Id
> AcctColumnDef ACCTSESSIONTIME,Acct-Session-Time,integer
> AcctColumnDef ACCTTERMINATECAUSE,Acct-Terminate-Cause
> AcctColumnDef NASIDENTIFIER,NAS-Identifier
> AcctColumnDef NASPORT,NAS-Port,integer
> AcctColumnDef FRAMEDIPADDRESS,Framed-IP-Address
> </AuthBy>
>
> <AuthBy DYNADDRESS>
> Allocator myallocator
>
> PoolHint %{Reply:PoolHint}
>
> MapAttribute yiaddr, Framed-IP-Address
> MapAttribute subnetmask, Framed-IP-Netmask
>
> StripFromReply PoolHint
>
> </AuthBy>
> </Handler>
>
> # Handler for normal operation
> <Handler>
> AuthByPolicy ContinueAlways
> AuthBy SQLAccounting
> AuthBy SQLRadiusProxy
> </Handler>
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list