(RADIATOR) getting proxy details

Hugh Irvine hugh at open.com.au
Tue May 30 13:31:58 CDT 2006 

Hello Gareth -

For these sorts of things you should use Handlers instead of Realms.


<Handler User-Name = /\@domain1\@domain2$/>
	.....
</Handler>


Note that you should not mix Realms and Handlers in the same  
configuration file, as Realms are always evaluated before Handlers.

regards

Hugh


On 29 May 2006, at 12:13, Gareth Hopkins wrote:

> On Mon, 29 May 2006, Hugh Irvine wrote:
>
> HI>
> HI>Hello Gareth -
> HI>
> HI>You will usually find the address of the originiating NAS in the  
> NAS-
> HI>IP-Address attribute in the request.
> HI>
> HI>Have a look at a trace 4 debug to see what attributes are  
> present in the
> HI>radius requests that you are receiving.
> HI>
> HI>If the requests are being proxied, you will need to have a  
> Client clause for
> HI>the proxy in your configuration file and you can do something  
> like this:
> HI>
> HI>
> HI><Client 1.1.1.1>
> HI>	Identifier ProxyA
> HI>	.....
> HI></Client>
> HI>
> HI>
> HI>Then your hook can use something like this:
> HI>
> HI>	my $clientid = $p->{Client}->{Identifier}
> HI>
> HI>See the example hooks in "goodies/hooks.txt".
>
> Hi Hugh,
>
> Yip, that does work, thanks very much :)
>
> I now have another problem. Some users, again depending on their  
> service dial
> up with two domains. example: user at domain1@domain2. Now is there  
> anyway of authenticating
> these users differently to normal users that use user at domain1?
>
> I have tried a realm clause but that doesnt seem to match domain2.
>
> <Realm = /*.\/@\domain2/>
>
>         <AuthBy DBFILE>
>                 Filename /usr/local/etc/raddb/users/domain2_users.db
>                 DBType DB_File
>         </AuthBy>
>
> </Realm>
>
> Then everything else is authenticated against the default realm.
>
> ---
> Gareth Hopkins
> Verizon Business
> System Operations
>
> Telephone + 27 21 658 8519
> Mobile +27 82 929 6668
> Fax +27 21 658 8552
>
> UUNET SA is now operating as Verizon Business.
>
> Verizon Business is a brand of Verizon South Africa (Pty) Ltd. This  
> e-mail is strictly confidential and intended only for
> use by the addressee unless otherwise indicated.


NB:

Have you read the reference manual ("doc/ref.html")?
Have you searched the mailing list archive (www.open.com.au/archives/ 
radiator)?
Have you had a quick look on Google (www.google.com)?
Have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.


--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.

More information about the radiator mailing list