(RADIATOR) Re: PIN code authentication + hijack traffic and force end user to a specific portal to login?

ScottXiao163 scottshaw at 163.com
Tue Apr 22 09:00:57 CDT 2008


Hi Hugh
Ok,I will upgrade to 5.8.8 and try. Another question: I changed to windows 
2003 server VMware with IIS,installed MS SQL 2005 and radiator.Now installed 
Radmin. I configured the virutal directory on IIS and point to 
C:\Inetpub\AdminScripts
when install Radmin,I answer as below and no error

C:\Radmin-1.10>perl install.pl
Checking if your kit is complete...
Looks good
Web server html directory: C:/Inetpub/wwwroot. OK? [Y,n] y
Web server CGI directory: c:/inetpub/adminscripts. OK? [Y,n] y

Your Radmin files have been installed.


But when I wen to the webpage to launch the page, it told me page cannot be 
found. I restarted IIS,and reinstalled radmin a few times. I used perl 
listUsers.pl
and didn't see error on command line either.Can you advise where I got 
problem ? Thanks!


http://localhost/AdminScripts/Radmin/private/listUsers.pl
The page cannot be found


C:\Inetpub\AdminScripts\Radmin\private>
C:\Inetpub\AdminScripts\Radmin\private>
C:\Inetpub\AdminScripts\Radmin\private>dir \inetpub\wwwroot
 Volume in drive C has no label.
 Volume Serial Number is B84C-1ECD

 Directory of C:\inetpub\wwwroot

04/22/2008  09:47 PM    <DIR>          .
04/22/2008  09:47 PM    <DIR>          ..
03/01/2007  03:48 AM    <DIR>          aspnet_client
04/21/2008  10:41 PM                32 default.htm
02/22/2003  09:48 AM             1,433 iisstart.htm
02/22/2003  09:48 AM             2,806 pagerror.gif
04/22/2008  09:49 PM    <DIR>          Radmin
               3 File(s)          4,271 bytes
               4 Dir(s)  102,323,347,456 bytes free

C:\Inetpub\AdminScripts\Radmin\private>




The page cannot be found
----- Original Message ----- 
From: "Hugh Irvine" <hugh at open.com.au>
To: "ScottXiao163" <scottshaw at 163.com>
Cc: <radiator at open.com.au>
Sent: Sunday, April 20, 2008 4:51 PM
Subject: Re: (RADIATOR) Re: PIN code authentication + hijack traffic and 
force end user to a specific portal to login?


>
> Hello Scott -
>
> Have you tried ActivePerl 5.8.8.820?
>
> Once you have a LogMicroseconds log, the trace 4 debug will include a  6 
> digit number in the timestamp indicating the microsecond offset in  the 
> current second. This will show you exactly how long each  processing step 
> is taking, and hence how many requests per second you  can process. It 
> will also show you where your performance bottlenecks  are.
>
> You should check Google for RADIUS testing tools - a search for  "RADIUS 
> protocol testing tools" gives lots of hits.
>
> regards
>
> Hugh
>
>
> On 21 Apr 2008, at 00:22, ScottXiao163 wrote:
>
>> Hi Hugh
>> Thanks for the advice. I tried to install Hires but got the  error 
>> ,please advise.
>>
>> PPM> install Time::Hires
>> Install package 'Time-Hires?' (y/N): y
>> Installing package 'Time-Hires'...
>> Error installing package 'Time-Hires': Read a PPD for 'Time-Hires',  but 
>> it is no
>> t intended for this build of Perl (MSWin32-x86-multi-thread)
>> My OS is windows 2003 server in VMware, MS SQL workgroup edition 
>> install.Perl 5.6.1.Build 638
>>
>> Do you have more details on how to use that for testing the  performance? 
>> Any tools recommended to simulate thousands of users  concurrent login?
>> Thanks!
>> Scott
>>
>>
>> ----- Original Message ----- From: "Hugh Irvine" <hugh at open.com.au>
>> To: "ScottXiao163" <scottshaw at 163.com>
>> Cc: <radiator at open.com.au>
>> Sent: Thursday, April 17, 2008 4:56 PM
>> Subject: Re: (RADIATOR) Re: PIN code authentication + hijack  traffic and 
>> force end user to a specific portal to login?
>>
>>
>>>
>>> Hello Scott -
>>>
>>> The best answer you will get is by setting up your own test 
>>> environment and doing some tests.
>>>
>>> You can set up a Log FILE clause with LogMicroseconds (requires  Time- 
>>> Hires from CPAN) which will show you exactly how long each  processing 
>>> step will take. You will then know the maximum number  of requests per 
>>> second that you can process in your environment.
>>>
>>> The critical variable is the number of RADIUS requests per second   that 
>>> you will need to process - you can then use your test results  to 
>>> determine how much hardware you will require.
>>>
>>> It is extremely important when using sn SQL database to have a  really 
>>> good database administrator involved.
>>>
>>> hope that helps
>>>
>>> regards
>>>
>>> Hugh
>>>
>>>
>>>
>>> On 17 Apr 2008, at 15:07, ScottXiao163 wrote:
>>>> Hi Hugh
>>>> I tried to contact archred with email, but no response yet for a   few 
>>>> days,I will try again.So you know there are some cases that   archred 
>>>> works as access controller with radiator to hijack the   traffic and 
>>>> redirect to its portal login page?
>>>> I have another question regarding backup. I know Radiator 's  config 
>>>> file can be easily copy out for backup.What about the the  whole 
>>>> system and database? My project now is, we may put the MS  SQL  server 
>>>> workgroup edition  on the same windows 2003 server  as  Radiator 4.2, 
>>>> Radmin and Radar. Does Radiator support  asynchronous  bidirectional 
>>>> backup ,or synchronous bidirectional  backup ? Please  correct me if I 
>>>> didn't use the correct term for  that. Or it's not  related to radiator 
>>>> at all? Just MS SQL server  backup?
>>>> Do you have any recommended hardware config for MS SQL server to   work 
>>>> with Radiator to cater up to 5000 concurrently  authentication  login? 
>>>> My current design is only MS SQL server  workgroup edition  one CPU, 
>>>> windows 2003 server, Radiator 4.2  plus radmin,radar. Do  you think it 
>>>> will be any performance issue  if 5000 concurrent login  come in?Or 
>>>> maximu how many will be best  practice for MS SQL server  workgroup 
>>>> edtion with Radiator?
>>>> I think there might be some topics in archive of mailling list 
>>>> too,just cannot find out.Any tip to search that in the archive?  It 
>>>> would be better if you have some reference document on the  best 
>>>> practice.
>>>> thanks
>>>> scott
>>>>
>>>>
>>>> ----- Original Message ----- From: "Hugh Irvine" <hugh at open.com.au>
>>>> To: "ScottXiao163" <scottshaw at 163.com>
>>>> Cc: <radiator at open.com.au>
>>>> Sent: Friday, April 11, 2008 4:20 PM
>>>> Subject: Re: (RADIATOR) Re: PIN code authentication + hijack   traffic 
>>>> and force end user to a specific portal to login?
>>>>
>>>>
>>>>>
>>>>> Hello again Scott -
>>>>>
>>>>> You may find this useful:
>>>>>
>>>>> http://www.archred.com/products.html
>>>>>
>>>>> regards
>>>>>
>>>>> Hugh
>>>>>
>>>>>
>>>>> On 11 Apr 2008, at 17:29, ScottXiao163 wrote:
>>>>>> Hello Hugh
>>>>>> Thanks. Will try (Or search for some tools if there is any 
>>>>>> available...)...
>>>>>> Regarding the first question,is there module allows radiator   server 
>>>>>> to hijack traffic
>>>>>> and  force end user to a specific portal to login,or any  advice  on 
>>>>>> that?
>>>>>> Thanks
>>>>>> Scott
>>>>>> ----- Original Message ----- From: "Hugh Irvine"  <hugh at open.com.au>
>>>>>> To: "ScottXiao163" <scottshaw at 163.com>
>>>>>> Cc: <radiator at open.com.au>
>>>>>> Sent: Friday, April 11, 2008 2:33 PM
>>>>>> Subject: Re: (RADIATOR) Re: PIN code authentication + hijack 
>>>>>> traffic and force end user to a specific portal to login?
>>>>>>
>>>>>>
>>>>>>>
>>>>>>> Hello Scott -
>>>>>>>
>>>>>>> You would write an SQL script to populate the database.
>>>>>>>
>>>>>>> regards
>>>>>>>
>>>>>>> Hugh
>>>>>>>
>>>>>>>
>>>>>>> On 11 Apr 2008, at 16:30, ScottXiao163 wrote:
>>>>>>>> Hello Hugh
>>>>>>>> Thanks! I also guess it's just a kind of simple user name   without 
>>>>>>>> password,while user name is numeric.Nothing to do  with  the real 
>>>>>>>> PIN,like two factors PIN for secure login. So  in this  case, the 
>>>>>>>> administrator just use Radmin to create a  numeric  user while 
>>>>>>>> leaving password blank,print out the  voucher. If  the customer 
>>>>>>>> need to usr Radmin to import an  excel user list,  or randomly 
>>>>>>>> create thousands of prepaid  users with  Radmin,what is the best 
>>>>>>>> way you suggest we do?I  didn't see  the option of creating 
>>>>>>>> multiple users in  Radmin's UI yet.
>>>>>>>> Thanks!
>>>>>>>> best regards
>>>>>>>> Scott
>>>>>>>> ----- Original Message ----- From: "Hugh Irvine" 
>>>>>>>> <hugh at open.com.au>
>>>>>>>> To: "ScottXiao163" <scottshaw at 163.com>
>>>>>>>> Cc: <radiator at open.com.au>; "Mike McCauley" <mikem at open.com.au>
>>>>>>>> Sent: Friday, April 11, 2008 1:46 PM
>>>>>>>> Subject: Re: PIN code authentication + hijack traffic and   force 
>>>>>>>> end user to a specific portal to login?
>>>>>>>>
>>>>>>>>
>>>>>>>>>
>>>>>>>>> Hello Scott -
>>>>>>>>>
>>>>>>>>> What you are describing is just a simple numeric username   which 
>>>>>>>>> is used as the username when performing RADIUS   authentication.
>>>>>>>>>
>>>>>>>>> Many organisations use this sort of system for prepaid    internet 
>>>>>>>>> access - there is nothing special required.
>>>>>>>>>
>>>>>>>>> regards
>>>>>>>>>
>>>>>>>>> Hugh
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> On 11 Apr 2008, at 11:44, ScottXiao163 wrote:
>>>>>>>>>> Hello team
>>>>>>>>>> Does Radiator support PIN code authentication?
>>>>>>>>>> Network envirionment is  Airport deporture lounge WIFI 
>>>>>>>>>> network. The user need to purchase a voucher which include   a 
>>>>>>>>>> PIN code. The user launch IE on laptop,get a portal  for 
>>>>>>>>>> authentication. The user need key in the PIN code  instead  of 
>>>>>>>>>> username/password, start to surf internet once  the PIN 
>>>>>>>>>> authentication successful through  radiator  Radius server.
>>>>>>>>>> Does Radiator can be configured to support this?I have  read 
>>>>>>>>>> some documents mentioned digipass,but it's to  enhance the 
>>>>>>>>>> authentication with two factors PIN, I don't  think the 
>>>>>>>>>> customer will make it so complicated in airport  wifi.
>>>>>>>>>>
>>>>>>>>>> Thank you !
>>>>>>>>>> Best regards
>>>>>>>>>> Scott
>>>>>>>>>> ----- Original Message ----- From: "ScottXiao163" 
>>>>>>>>>> <scottshaw at 163.com>
>>>>>>>>>> To: "Hugh Irvine" <hugh at open.com.au>
>>>>>>>>>> Cc: <radiator at open.com.au>; "Mike McCauley"  <mikem at open.com.au>
>>>>>>>>>> Sent: Wednesday, April 09, 2008 9:51 PM
>>>>>>>>>> Subject: (RADIATOR) any module allows radiator server to   hijack 
>>>>>>>>>> traffic and force end user to a specific portal to  login?
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>> Hello team
>>>>>>>>>>> Is there any module allows radiator server to hijack   traffic 
>>>>>>>>>>> and force end user to a specific portal to login?   Usually 
>>>>>>>>>>> what we did before is, to let customer buy a   access 
>>>>>>>>>>> controller ,and it can do hijack and force all  DHCP (or event 
>>>>>>>>>>> static IP address user) users ' web  brower  redirect to a web 
>>>>>>>>>>> server's login page.The login  will use  radiator's AAA 
>>>>>>>>>>> servcie. But now many AC has  their own  builtin AAA service , 
>>>>>>>>>>> so the custome may not  need radiator  at all if we introduce 
>>>>>>>>>>> the AC to customer.  that's why I  ask if there is any optional 
>>>>>>>>>>> module can do  this. any advice?
>>>>>>>>>>>
>>>>>>>>>>> Thanks!
>>>>>>>>>>> Scott
>>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> NB:
>>>>>>>>>
>>>>>>>>> Have you read the reference manual ("doc/ref.html")?
>>>>>>>>> Have you searched the mailing list archive (www.open.com.au/ 
>>>>>>>>> archives/ radiator)?
>>>>>>>>> Have you had a quick look on Google (www.google.com)?
>>>>>>>>> Have you included a copy of your configuration file (no  secrets),
>>>>>>>>> together with a trace 4 debug showing what is happening?
>>>>>>>>> Have you checked the RadiusExpert wiki:
>>>>>>>>> http://www.open.com.au/wiki/index.php/Main_Page
>>>>>>>>>
>>>>>>>>> -- 
>>>>>>>>> Radiator: the most portable, flexible and configurable  RADIUS 
>>>>>>>>> server
>>>>>>>>> anywhere. Available on *NIX, *BSD, Windows, MacOS X.
>>>>>>>>> Includes support for reliable RADIUS transport (RadSec),
>>>>>>>>> and DIAMETER translation agent.
>>>>>>>>> -
>>>>>>>>> Nets: internetwork inventory and management - graphical, 
>>>>>>>>> extensible,
>>>>>>>>> flexible with hardware, software, platform and database 
>>>>>>>>> independence.
>>>>>>>>> -
>>>>>>>>> CATool: Private Certificate Authority for Unix and Unix-like 
>>>>>>>>> systems.
>>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> --
>>>>>>>> Archive at http://www.open.com.au/archives/radiator/
>>>>>>>> Announcements on radiator-announce at open.com.au
>>>>>>>> To unsubscribe, email 'majordomo at open.com.au' with
>>>>>>>> 'unsubscribe radiator' in the body of the message.
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> NB:
>>>>>>>
>>>>>>> Have you read the reference manual ("doc/ref.html")?
>>>>>>> Have you searched the mailing list archive (www.open.com.au/ 
>>>>>>> archives/ radiator)?
>>>>>>> Have you had a quick look on Google (www.google.com)?
>>>>>>> Have you included a copy of your configuration file (no secrets),
>>>>>>> together with a trace 4 debug showing what is happening?
>>>>>>> Have you checked the RadiusExpert wiki:
>>>>>>> http://www.open.com.au/wiki/index.php/Main_Page
>>>>>>>
>>>>>>> -- 
>>>>>>> Radiator: the most portable, flexible and configurable RADIUS 
>>>>>>> server
>>>>>>> anywhere. Available on *NIX, *BSD, Windows, MacOS X.
>>>>>>> Includes support for reliable RADIUS transport (RadSec),
>>>>>>> and DIAMETER translation agent.
>>>>>>> -
>>>>>>> Nets: internetwork inventory and management - graphical, 
>>>>>>> extensible,
>>>>>>> flexible with hardware, software, platform and database 
>>>>>>> independence.
>>>>>>> -
>>>>>>> CATool: Private Certificate Authority for Unix and Unix-like 
>>>>>>> systems.
>>>>>>>
>>>>>>>
>>>>>>> --
>>>>>>> Archive at http://www.open.com.au/archives/radiator/
>>>>>>> Announcements on radiator-announce at open.com.au
>>>>>>> To unsubscribe, email 'majordomo at open.com.au' with
>>>>>>> 'unsubscribe radiator' in the body of the message.
>>>>>>
>>>>>
>>>>>
>>>>>
>>>>> NB:
>>>>>
>>>>> Have you read the reference manual ("doc/ref.html")?
>>>>> Have you searched the mailing list archive (www.open.com.au/ 
>>>>> archives/ radiator)?
>>>>> Have you had a quick look on Google (www.google.com)?
>>>>> Have you included a copy of your configuration file (no secrets),
>>>>> together with a trace 4 debug showing what is happening?
>>>>> Have you checked the RadiusExpert wiki:
>>>>> http://www.open.com.au/wiki/index.php/Main_Page
>>>>>
>>>>> -- 
>>>>> Radiator: the most portable, flexible and configurable RADIUS  server
>>>>> anywhere. Available on *NIX, *BSD, Windows, MacOS X.
>>>>> Includes support for reliable RADIUS transport (RadSec),
>>>>> and DIAMETER translation agent.
>>>>> -
>>>>> Nets: internetwork inventory and management - graphical,  extensible,
>>>>> flexible with hardware, software, platform and database  independence.
>>>>> -
>>>>> CATool: Private Certificate Authority for Unix and Unix-like  systems.
>>>>>
>>>>>
>>>>> --
>>>>> Archive at http://www.open.com.au/archives/radiator/
>>>>> Announcements on radiator-announce at open.com.au
>>>>> To unsubscribe, email 'majordomo at open.com.au' with
>>>>> 'unsubscribe radiator' in the body of the message.
>>>>
>>>
>>>
>>>
>>> NB:
>>>
>>> Have you read the reference manual ("doc/ref.html")?
>>> Have you searched the mailing list archive (www.open.com.au/ archives/ 
>>> radiator)?
>>> Have you had a quick look on Google (www.google.com)?
>>> Have you included a copy of your configuration file (no secrets),
>>> together with a trace 4 debug showing what is happening?
>>> Have you checked the RadiusExpert wiki:
>>> http://www.open.com.au/wiki/index.php/Main_Page
>>>
>>> -- 
>>> Radiator: the most portable, flexible and configurable RADIUS server
>>> anywhere. Available on *NIX, *BSD, Windows, MacOS X.
>>> Includes support for reliable RADIUS transport (RadSec),
>>> and DIAMETER translation agent.
>>> -
>>> Nets: internetwork inventory and management - graphical, extensible,
>>> flexible with hardware, software, platform and database independence.
>>> -
>>> CATool: Private Certificate Authority for Unix and Unix-like systems.
>>>
>>>
>>> --
>>> Archive at http://www.open.com.au/archives/radiator/
>>> Announcements on radiator-announce at open.com.au
>>> To unsubscribe, email 'majordomo at open.com.au' with
>>> 'unsubscribe radiator' in the body of the message.
>>
>>
>> --
>> Archive at http://www.open.com.au/archives/radiator/
>> Announcements on radiator-announce at open.com.au
>> To unsubscribe, email 'majordomo at open.com.au' with
>> 'unsubscribe radiator' in the body of the message.
>
>
>
> NB:
>
> Have you read the reference manual ("doc/ref.html")?
> Have you searched the mailing list archive (www.open.com.au/archives/ 
> radiator)?
> Have you had a quick look on Google (www.google.com)?
> Have you included a copy of your configuration file (no secrets),
> together with a trace 4 debug showing what is happening?
> Have you checked the RadiusExpert wiki:
> http://www.open.com.au/wiki/index.php/Main_Page
>
> -- 
> Radiator: the most portable, flexible and configurable RADIUS server
> anywhere. Available on *NIX, *BSD, Windows, MacOS X.
> Includes support for reliable RADIUS transport (RadSec),
> and DIAMETER translation agent.
> -
> Nets: internetwork inventory and management - graphical, extensible,
> flexible with hardware, software, platform and database independence.
> -
> CATool: Private Certificate Authority for Unix and Unix-like systems.
>
>
> --
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
> 


--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.


More information about the radiator mailing list