(RADIATOR) General Questions
Stuart Clark
elmhurst at spacelink.com.au
Mon Feb 21 08:38:39 CST 2005
Hi all
I have a few queries.
My situation is that I have dial-up and ADSL customers. I'm running
Optigold/Mysql/Max6000/Cisco7204
These are my questions:
a) 'MaxSessions 1' dosen't work.
An ADSL and Dialup user with same usr/pass can get online at the same time.
How can I stop this?
b)These 2 attributes don't work
RejectEmptyPassword
CaseInsensitivePasswords
They throw up errors
c) One of my max 6000 throws back a 'Framed-IP-Address' attribute when a
user authenticates the other doesn't. They both have the same software
version and I have spent a long time comparing configs. Any clues?
d) ADSL config - IS 'Framed-MTU = 1460' ok or should it be more?
If the ADSL router has PPPOA does it disregard the 'Framed-MTU' attribute?
Does anyone have examples of their ADSL reply MTU attributes for
PPPOE/PPPOA?
d) I have never had anyone comment at the overall way in which my config is
constructed. All the options nearly drove me bananas. Does the general
structure look ok?
Kind Regards
Stuart Clark
Spacelink
#Turn debug on
Trace 4
AuthPort xxxx
AcctPort xxxx
Foreground
LogStdout
LogDir c:/Program Files/Radiator
DbDir c:/Program Files/Radiator
DictionaryFile %D/dictionary.ascend2, %D/dictionary
DefineFormattedGlobalVar DBSource dbi:mysql:XXXXXXXXX
DefineFormattedGlobalVar DBUsername XXXXXXXXX
DefineFormattedGlobalVar DBAuth XXXXXXXX
<ClientListSQL>
DBSource %{GlobalVar:DBSource}
DBUsername %{GlobalVar:DBUsername}
DBAuth %{GlobalVar:DBAuth}
GetClientQuery select NASIDENTIFIER, SECRET, IGNOREACCTSIGNATURE, \
DUPINTERVAL, DEFAULTREALM, NASTYPE, SNMPCOMMUNITY, LIVINGSTONOFFS, \
LIVINGSTONHOLE, FRAMEDGROUPBASEADDRESS,
FRAMEDGROUPMAXPORTSPERCLASSC, \
REWRITEUSERNAME, NOIGNOREDUPLICATES, PREHANDLERHOOK from
radclientlist
</ClientListSQL>
<SessionDatabase SQL>
Identifier SessionsDSX
DBSource %{GlobalVar:DBSource}
DBUsername %{GlobalVar:DBUsername}
DBAuth %{GlobalVar:DBAuth}
AddQuery insert into radonline (USERNAME, NASIDENTIFIER, NASPORT, \
ACCTSESSIONID, TIME_STAMP, FRAMEDIPADDRESS, NASPORTTYPE,
SERVICETYPE, CALLERID) \
values ('%u', '%1', %2, %3, %{Timestamp}, '%{Framed-IP-Address}', \
'%{NAS-Port-Type}', '%{Service-Type}', '%{Calling-Station-Id}')
CountQuery
</SessionDatabase>
<AuthLog SQL>
Identifier myauthlogger
DBSource %{GlobalVar:DBSource}
DBUsername %{GlobalVar:DBUsername}
DBAuth %{GlobalVar:DBAuth}
FailureQuery insert into radauthlog (TIME_STAMP, USERNAME, TYPE,
REASON, PASSWORD, CALLERID, SPEED) \
values (NOW(), %2, 'Failure', %1, '%P',
'%{Calling-Station-Id}', '%{Ascend-Xmit-Rate}')
SuccessQuery insert into radauthlog (TIME_STAMP, USERNAME, TYPE,
REASON, PASSWORD, CALLERID, SPEED) \
values (NOW(), %2, 'Success', '%{Framed-IP-Address}', '%P',
'%{Calling-Station-Id}', '%{Ascend-Xmit-Rate}')
LogSuccess 1
LogFailure 1
</AuthLog>
<AuthBy SQL>
Identifier Block-Time-SQL
DBSource %{GlobalVar:DBSource}
DBUsername %{GlobalVar:DBUsername}
DBAuth %{GlobalVar:DBAuth}
AuthSelect select TIMELEFT from subscribers \
where USERNAME='%n'
AuthColumnDef 0, Session-Timeout, reply
AcctSQLStatement update subscribers set \
TIMELEFT=TIMELEFT-0%{Acct-Session-Time} \
where USERNAME='%n' and PRODUCTID like '%%COUNTDOWN%%'
</AuthBy>
<AuthBy SQL>
Identifier Meg-SQL
DBSource %{GlobalVar:DBSource}
DBUsername %{GlobalVar:DBUsername}
DBAuth %{GlobalVar:DBAuth}
AuthSelect MEGLEFT from subscribers \
where USERNAME='%n'
AcctSQLStatement update subscribers set \
MEGLEFT=MEGLEFT-sum(('0%{Acct-Input-Octets'})/1000)/1000 \
where USERNAME='%n'
</AuthBy>
### NAS here is Max 6000 ###
<Handler NAS-IP-Address = /XXX.XXX.XXX.XXX|XXX.XXX.XXX.XXX/>
SessionDatabase SessionsDSX
AuthLog myauthlogger
AuthByPolicy ContinueWhileAccept
#RejectEmptyPassword
#CaseInsensitivePasswords
MaxSessions 1
<AuthBy SQL>
DBSource %{GlobalVar:DBSource}
DBUsername %{GlobalVar:DBUsername}
DBAuth %{GlobalVar:DBAuth}
AuthSelect select PASSWORD, MAXLOGINS, DIALUPSTATICIP from \
SUBSCRIBERS where USERNAME=%0 and STATUS='Current'
AuthColumnDef 0, Password, check
AuthColumnDef 1, Simultaneous-Use, check
AuthColumnDef 2, Framed-IP-Address, reply
AddToReply Framed-Protocol = PPP,\
Service-Type = Framed-User,\
Framed-IP-Netmask =
255.255.255.255,\
Framed-Routing = None,\
Framed-MTU = 1500,\
Framed-Compression =
Van-Jacobson-TCP-IP,\
Class = %{NAS-Port}
AccountingTable accounting
AcctColumnDef USERNAME,User-Name
AcctColumnDef TIMESTAMP,Timestamp,integer
AcctColumnDef ACCSTATUSTYPE,Acct-Status-Type
AcctColumnDef
ACCINPUTOCTETS,Acct-Input-Octets,integer
AcctColumnDef
ACCOUTPUTOCTETS,Acct-Output-Octets,integer
AcctColumnDef ACCSESSIONID,Acct-Session-Id
AcctColumnDef
ACCSESSIONTIME,Acct-Session-Time,integer
AcctColumnDef
ACCTERMINATECAUSE,Acct-Terminate-Cause,integer
AcctColumnDef NASIDENTIFIER,NAS-Identifier
AcctColumnDef CALLERID,Calling-Station-Id,string
AcctColumnDef NASPORT,NAS-Port-DNIS,integer
AcctColumnDef FRAMEDPROTOCOL,Framed-Protocol
AcctColumnDef FRAMEDADDRESS,Framed-IP-Address
SQLRecoveryFile %D/missedaccounting
</AuthBy>
#AuthBy Meg-SQL
AuthBy Block-Time-SQL
PostAuthHook file:"%D/CheckBlockTimeLeft"
</Handler>
###########ADSL STARTS HERE###########
<AuthLog SQL>
Identifier myauthlogger2
DBSource %{GlobalVar:DBSource}
DBUsername %{GlobalVar:DBUsername}
DBAuth %{GlobalVar:DBAuth}
FailureQuery insert into radauthlog (TIME_STAMP, USERNAME, TYPE,
REASON, PASSWORD, CALLERID, SPEED) \
values (NOW(), %2, 'Failure', %1, '%P',
'%{Calling-Station-Id}', '%{Ascend-Xmit-Rate}')
SuccessQuery insert into radauthlog (TIME_STAMP, USERNAME, TYPE,
REASON, PASSWORD, CALLERID, SPEED) \
values (NOW(), %2, 'Success', '%{Framed-IP-Address}', '%P',
'%{Calling-Station-Id}', '%{Ascend-Xmit-Rate}')
LogSuccess 1
LogFailure 1
</AuthLog>
<SessionDatabase SQL>
Identifier SessionsADSLDSX
DBSource %{GlobalVar:DBSource}
DBUsername %{GlobalVar:DBUsername}
DBAuth %{GlobalVar:DBAuth}
AddQuery insert into radonline (USERNAME, NASIDENTIFIER, NASPORT, \
ACCTSESSIONID, TIME_STAMP, FRAMEDIPADDRESS, NASPORTTYPE,
SERVICETYPE, CALLERID) \
values ('%u', '%1', %2, %3, %{Timestamp}, '%{Framed-IP-Address}', \
'%{NAS-Port-Type}', '%{Service-Type}', '%{Calling-Station-Id}')
CountQuery
</SessionDatabase>
####### NAS is Cisco 7204 ##############
<Handler NAS-IP-Address = /XXX.XXX.XXX.XXX|XXX.XXX.XXX.XXX/>
SessionDatabase SessionsADSLDSX
AuthLog myauthlogger2
AuthByPolicy ContinueWhileAccept
#RejectEmptyPassword
#CaseInsensitivePasswords
MaxSessions 1
<AuthBy SQL>
DBSource %{GlobalVar:DBSource}
DBUsername %{GlobalVar:DBUsername}
DBAuth %{GlobalVar:DBAuth}
AuthSelect select PASSWORD, MAXLOGINS, STATICIP, TIMELEFT from \
SUBSCRIBERS where USERNAME=%0 and STATUS='Current'
AuthColumnDef 0, Password, check
AuthColumnDef 1, Simultaneous-Use, check
AuthColumnDef 2, Framed-IP-Address, reply
AuthColumnDef 3, Session-Timeout, reply
AddToReply Framed-Protocol = PPP,\
Service-Type = Framed-User,\
Framed-IP-Netmask =
255.255.255.255,\
Framed-Routing = None,\
Framed-MTU = 1460,\
Framed-Compression =
Van-Jacobson-TCP-IP,\
cisco-avpair
="ip:dns-servers=XXX.XXX.XXX.XXX XXX.XXX.XXX.XXX"
AccountingTable accounting
AcctColumnDef USERNAME,User-Name
AcctColumnDef
TIMESTAMP,Timestamp,integer
AcctColumnDef
ACCSTATUSTYPE,Acct-Status-Type
AcctColumnDef
ACCINPUTOCTETS,Acct-Input-Octets,integer
AcctColumnDef
ACCOUTPUTOCTETS,Acct-Output-Octets,integer
AcctColumnDef
ACCSESSIONID,Acct-Session-Id
AcctColumnDef
ACCSESSIONTIME,Acct-Session-Time,integer
AcctColumnDef
ACCTERMINATECAUSE,Acct-Terminate-Cause,integer
AcctColumnDef
NASIDENTIFIER,NAS-Identifier
AcctColumnDef
CALLERID,Calling-Station-Id,string
AcctColumnDef
NASPORT,NAS-Port-DNIS,integer
AcctColumnDef
FRAMEDPROTOCOL,Framed-Protocol
AcctColumnDef
FRAMEDADDRESS,Framed-IP-Address
</AuthBy>
</Handler>
--------------------------------------------------------------------------
--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list