(RADIATOR) Placeholder value in Colubris CN3000
Hugh Irvine
hugh at open.com.au
Tue Apr 6 03:57:19 CDT 2004
Hello Chip -
Radiator interprets the "%" character for "special characters" such are
you are using elsewhere in your configuration.
If you want to pass the literal string "%o", you should use this: "%%o".
See section 6.2 in the Radiator 3.9 reference manual.
regards
Hugh
On 6 Apr 2004, at 18:08, newsletters wrote:
> Hi:
>
> We have our Colubris CN3000 mostly working with Radiator. Recently we
> discovered that the placholder for original URL's, %o , used in the
> Colubris-AVPair value strings does not seem to be working. We've
> noticed this was an issue in the past with both Colubris Firmware and
> Radiator software. We are using the latest Colubris Firmware and
> latest Radiator with the current patches. Does anyone have an idea
> what might be causing this problem?
>
> Thanks in advance for any help or clues.
> -chip
>
>
>
> Colubris firmware: 1.22B
> Radiator version: 3.8, linux on Mac OSX
> Radiator patches: 3.8
>
> RADIUS.CFG
> ============
> #Foreground
> #LogStdout
> # 6.4 globals
> AuthPort 1812
> AcctPort 1813
> LogDir /var/log
> DbDir /etc/radiator
> Trace 5
>
>
> # 6.15
> <Realm DEFAULT>
> # MaxSessions 1
>
> AuthByPolicy ContinueWhileAccept
>
> # 6.54
> <AuthLog SQL>
> DBSource dbi:mysql:radius
> DBUsername chip
> DBAuth zonex
> LogSuccess
> SuccessQuery insert into RADAUTHLOG (TIME_STAMP,USERNAME,TYPE)
> values (%t,'%n',1)
> LogFailure
> FailureQuery insert into RADAUTHLOG
> (TIME_STAMP,USERNAME,TYPE,REASON) values (%t,'%n',0,%1)
> </AuthLog SQL>
>
> # 6.7
> <SessionDatabase SQL>
> DBSource dbi:mysql:radius
> DBUsername chip
> DBAuth zonex
> AddQuery insert into RADONLINE
> (USERNAME,NASIDENTIFIER,NASPORT,ACCTSESSIONID,TIME_STAMP,FRAMEDIPADDRES
> S,NASPORTTYPE,SERVICETYPE) values
> ('%u','%1',%2,%3,%{Timestamp},'%{Framed-IP-Address}','%{NAS-Port-
> Type}','%{Service-Type}')
> DeleteQuery delete from RADONLINE where NASIDENTIFIER='%1' and
> NASPORT=0%2
> ClearNasQuery delete from RADONLINE where NASIDENTIFIER='%0'
> </SessionDatabase SQL>
>
> #6.61
> <StatsLog SQL>
> DBSource dbi:mysql:radius
> DBUsername chip
> DBAuth zonex
> Interval 600
> InsertQuery insert into RADSTATSLOG (TIME_STAMP, TYPE, IDENTIFIER,
> RESPONSETIME) values ('%0',' %1',' %2',' %23')
> </StatsLog SQL>
>
> # 6.62
> <Monitor>
> Port 9000
> Username chip
> Password zonex
> </Monitor>
>
> # 6.28
> <AuthBy SQL>
> DBSource dbi:mysql:radius
> DBUsername chip
> DBAuth zonex
>
> AccountingTable ACCOUNTING
> AcctColumnDef USERNAME,User-Name
> AcctColumnDef TIME_STAMP,Timestamp,integer
> AcctColumnDef ACCTSTATUSTYPE,Acct-Status-Type
> AcctColumnDef ACCTDELAYTIME,Acct-Delay-Time,integer
> AcctColumnDef ACCTINPUTOCTETS,Acct-Input-Octets,integer
> AcctColumnDef ACCTOUTPUTOCTETS,Acct-Output-Octets,integer
> AcctColumnDef ACCTSESSIONID,Acct-Session-Id
> AcctColumnDef ACCTSESSIONTIME,Acct-Session-Time,integer
> AcctColumnDef ACCTTERMINATECAUSE,Acct-Terminate-Cause
> AcctColumnDef NASIDENTIFIER,NAS-Identifier
> AcctColumnDef NASPORT,NAS-Port,integer
> AcctColumnDef FRAMEDIPADDRESS,Framed-IP-Address
>
> SQLRecoveryFile %D/missedaccounting
>
> AddToReply Service-Type = Framed-User,\
> MS-MPPE-Encryption-Policy = Encryption-Allowed,\
> MS-MPPE-Encryption-Types = Encryption-Any,\
> Framed-Protocol = PPP,\
> Framed-IP-Netmask = 255.255.255.255,\
> Framed-Routing = None,\
> Framed-MTU = 1500,\
> Colubris-AVPAIR =
> "goodbye-url=https://www.fmwifi.net/goodbye.php",\
> Colubris-AVPAIR =
> "login-page=https://www.fmwifi.net/login.html",\
> Colubris-AVPAIR =
> "rem-login-page=https://www.fmwifi.net/login.php",\
> Colubris-AVPAIR =
> "rem-login-url=https://www.fmwifi.net/login.php?
> NASip=%i&NASid=%n&original_url=%o",\
> Colubris-AVPAIR =
> "session-page=https://www.fmwifi.net/session.php",\
> Colubris-AVPAIR =
> "rem-login-err-url=https://www.fmwifi.net/login-error.php?
> site=%s&user=%u&wantedurl=%o",\
> Colubris-AVPAIR =
> "login-err-url=https://www.fmwifi.net/login-error.php",\
> Colubris-AVPAIR =
> "rem-welcome-url=https://www.fmwifi.net/welcome.php",\
> Colubris-AVPAIR =
> "welcome-url=https://www.fmwifi.net/welcome.php?original_url=%o",\
> Colubris-AVPAIR =
> "transport-page=https://www.fmwifi.net/transport.html",\
> Colubris-AVPAIR =
> "fail-page=https://www.fmwifi.net/fail.html",\
> Colubris-AVPAIR =
> "logo=https://www.fmwifi.net/images/logo.jpg",\
> Colubris-AVPAIR = "white-list=tcp, 172.30.10.233, 443",\
> Colubris-AVPAIR = "white-list=tcp, 192.168.1.1, 443",\
> Colubris-AVPAIR = "white-list=tcp, www.fmwifi.net, 443", \
> Colubris-AVPAIR = "rem-smtp-redirect=spiral.he.net"
>
> # check profile to determin session times and idle times
> AuthSelect select PASSWORD,Profile from SUBSCRIBERS where USERNAME=%0
>
> AuthColumnDef 0,User-Password,check
> AuthColumnDef 1,Profile,reply
>
> # may use this for prepaid minutes. Currently not implemented
> #AccountingStopsOnly
> #AcctSQLStatement update SUBSCRIBERS set
> TIMELEFT=TIMELEFT=0T{Acct-Session-Time} where USERNAME='%n'
>
> # access-list for pptp (VPN) with radius server
> # access-list=vpn,DENY,all,192.68.30.0/24,all
> # use-access-list=vpn
>
> </AuthBy>
>
> <AuthBy FILE>
> Filename /etc/radiator/profiles
> StripFromReply Profile
> </AuthBy>
>
> # 6.6
> <ClientListSQL>
> DBSource dbi:mysql:radius
> DBUsername chip
> DBAuth zonex
> </ClientListSQL>
>
> </Realm>
>
> ========================
> RADIUS LOGFILE
> (notice original_url='', or wantedurl='')
> ========================
> Attributes:
> MS-CHAP2-Success =
> "\S=48F71FD903FE778E281521E640A6227AE257FF74"
> Service-Type = Framed-User
> MS-MPPE-Encryption-Policy = Encryption-Allowed
> MS-MPPE-Encryption-Types = Encryption-Any
> Framed-Protocol = PPP
> Framed-IP-Netmask = 255.255.255.255
> Framed-Routing = None
> Framed-MTU = 1500
> Colubris-AVPAIR =
> "goodbye-url=https://www.fmwifi.net/goodbye.php"
> Colubris-AVPAIR =
> "login-page=https://www.fmwifi.net/login.html"
> Colubris-AVPAIR =
> "rem-login-page=https://www.fmwifi.net/login.php"
> Colubris-AVPAIR =
> "rem-login-url=https://www.fmwifi.net/login.php?
> NASip=&NASid=admin&original_url="
> Colubris-AVPAIR =
> "session-page=https://www.fmwifi.net/session.php"
> Colubris-AVPAIR =
> "rem-login-err-url=https://www.fmwifi.net/login-error.php?
> site=25447&user=admin&wantedurl="
> Colubris-AVPAIR =
> "login-err-url=https://www.fmwifi.net/login-error.php"
> Colubris-AVPAIR =
> "rem-welcome-url=https://www.fmwifi.net/welcome.php"
> Colubris-AVPAIR =
> "welcome-url=https://www.fmwifi.net/welcome.php?original_url="
> Colubris-AVPAIR =
> "transport-page=https://www.fmwifi.net/transport.html"
> Colubris-AVPAIR = "fail-page=https://www.fmwifi.net/fail.html"
> Colubris-AVPAIR = "logo=https://www.fmwifi.net/images/logo.jpg"
> Colubris-AVPAIR = "white-list=tcp, 172.30.10.233, 443"
> Colubris-AVPAIR = "white-list=tcp, 192.168.1.1, 443"
> Colubris-AVPAIR = "white-list=tcp, www.fmwifi.net, 443"
> Colubris-AVPAIR = "rem-smtp-redirect=spiral.he.net"
> Session-Timeout = 2592000
> Idle-Timeout = 14400
> .......................................................................
> Spiral Studios
> A Web Site Development &
> Direct Marketing Company
> Chip Carman, Technical Director
> 14071 Mt. Auburn Circle, Nevada City, CA 95959
> Tel 530-470-0830 • Fax 530-687-8200
> chip at spiral.com • http://www.spiral.com
> .......................................................................
> --
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
>
>
NB: have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.
--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list