(RADIATOR) Using calling_station_hook_requests.pl

Hugh Irvine hugh at open.com.au
Thu Mar 2 03:45:26 CST 2006


Hello Chris -

You need to call the hook twice - once as a PostAuthHook and once as  
a PreProcessingHook.

See the example in "goodies/eap_peap.cfg".

regards

Hugh


On 1 Mar 2006, at 18:23, Chris Hills wrote:

> Hi
>
> We too suffer from the problem that our access points do not send  
> the User-Name attribute with EAP-TTLS requests, so I would like to  
> use calling_station_hook_requests.pl. Unfortunately my attempts so  
> far have been futile! My config is thus:-
>
> -------------------------------------------------------------------
> <Handler Client-Identifier=redditch-3com-7250-waps,Realm=/^$/>
>         AuthBy  CheckLDAP
>         AuthLog authlogger
>
>         PreProcessingHook file:"/etc/radiator/ 
> calling_station_hook_requests.pl"
>
>         AcctLogFileName /var/log/radiator/wap.its.ne-worcs.ac.uk
> </Handler>
> -------------------------------------------------------------------
>
> The accounting log contains lines like this:-
>
> -------------------------------------------------------------------
> Wed Mar  1 10:20:45 2006
>         Acct-Status-Type = Alive
>         Acct-Session-Id = "00092d48995d-0012a916b12c-004e"
>         NAS-IP-Address = 172.18.102.27
>         Acct-Input-Octets = 301549
>         Acct-Output-Octets = 36450
>         Acct-Input-Packets = 375
>         Acct-Output-Packets = 296
>         Unknown-1 = "ername is: anonymous at ne-worcs.ac.uk"
>         Unknown-2 = "D is: 0"
>         Unknown-3 = "= 3Com"
>         Unknown-4 = "pe is: EAP-TTLS"
>         Acct-Session-Time = 59968
>         Timestamp = 1141208445
> -------------------------------------------------------------------
>
> Extract from debug log:-
>
> -------------------------------------------------------------------
> Wed Mar  1 10:21:55 2006: DEBUG: Packet dump:
> *** Received from 172.18.102.11 port 1312 ....
>
> Packet length = 189
> 04 d1 00 bd ca ac d4 d1 8c 6e b7 95 c3 bd f6 d5
> a5 e4 fe c3 28 06 00 00 00 03 2c 20 30 30 30 39
> 32 64 34 38 39 39 35 64 2d 30 30 31 32 61 39 63
> 36 63 39 34 35 2d 66 39 32 33 04 06 ac 12 66 0b
> 2a 06 00 00 1c bc 2b 06 00 00 0e 75 2f 06 00 00
> 00 22 30 06 00 00 00 21 1a 2b 45 41 50 20 55 73
> 65 72 6e 61 6d 65 20 69 73 3a 20 61 6e 6f 6e 79
> 6d 6f 75 73 40 6e 65 2d 77 6f 72 63 73 2e 61 63
> 2e 75 6b 1a 0f 56 4c 41 4e 20 49 44 20 69 73 3a
> 20 30 1a 0e 45 53 53 49 44 20 3d 20 33 43 6f 6d
> 1a 17 45 41 50 20 54 79 70 65 20 69 73 3a 20 45
> 41 50 2d 54 54 4c 53 2e 06 00 00 01 66
> Code:       Accounting-Request
> Identifier: 209
> Authentic:  
> <202><172><212><209><140>n<183><149><195><189><246><213><165><228><254 
> ><195>
> Attributes:
>         Acct-Status-Type = Alive
>         Acct-Session-Id = "00092d48995d-0012a9c6c945-f923"
>         NAS-IP-Address = 172.18.102.11
>         Acct-Input-Octets = 7356
>         Acct-Output-Octets = 3701
>         Acct-Input-Packets = 34
>         Acct-Output-Packets = 33
>         Unknown-1 = "ername is: anonymous at ne-worcs.ac.uk"
>         Unknown-2 = "D is: 0"
>         Unknown-3 = "= 3Com"
>         Unknown-4 = "pe is: EAP-TTLS"
>         Acct-Session-Time = 358
>
> Wed Mar  1 10:21:55 2006: DEBUG: Handling request with Handler  
> 'Client-Identifier=redditch-3com-7250-waps,Realm=/^$/'
> Wed Mar  1 10:21:55 2006: DEBUG:  Adding session for , 172.18.102.11,
> Wed Mar  1 10:21:55 2006: DEBUG: Handling with Radius::AuthLDAP2:  
> CheckLDAP
> Wed Mar  1 10:21:55 2006: DEBUG: AuthBy LDAP2 result: ACCEPT,
> Wed Mar  1 10:21:55 2006: DEBUG: Accounting accepted
> Wed Mar  1 10:21:55 2006: DEBUG: Packet dump:
> *** Sending to 172.18.102.11 port 1312 ....
>
> Packet length = 20
> 05 d1 00 14 14 de 00 8c ec 9d 19 f8 c7 12 2c c9
> 19 ab 16 9a
> Code:       Accounting-Response
> Identifier: 209
> Authentic:  
> <202><172><212><209><140>n<183><149><195><189><246><213><165><228><254 
> ><195>
> Attributes:
> -------------------------------------------------------------------
>
> Regards
>
> -- 
> Chris Hills                       | Tel: +44 (0)1527 572754
> IT Services                       | Fax: +44 (0)1527 572901
> North East Worcestershire College | Web: http://www.ne-worcs.ac.uk/
>
> --
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.


NB:

Have you read the reference manual ("doc/ref.html")?
Have you searched the mailing list archive (www.open.com.au/archives/ 
radiator)?
Have you had a quick look on Google (www.google.com)?
Have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.


--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.


More information about the radiator mailing list