[RADIATOR] Basic question about AuthBy and Handlers.
Michael
ringo at vianet.ca
Wed Nov 17 08:04:22 CST 2010
Ricardo,
I don't think the AuthBy clauses are checked at all on their own. The
AuthBy's are strictly a configuration, referenced by the Handler's via
"AuthBy (Identifier)". Therefore, the Handler is checked first, and if
the AuthBy's are not referenced in any Handler, they will not be used at
all.
Referenced AuthBy's need to be configured above the Handler for which
references it.
So, I don't see your AuthBy's being referenced at all in the 2 Handlers
you have, therefore not used.
Michael
P.S. correct me if i'm wrong.
On 10-11-17 08:19 AM, Ricardo Martinez wrote:
>
> Hello.
>
> I have a basic question about the AuthBy clause. I’m in the process
> of understand the configuration file create by another person. So.
>
> If I have <AuthBy XXX> clauses before anything else in the
> configuration file, this means all the request are going to be
> authenticated for each one of this clauses?? Or just they define the
> way to connect to the other server to forward the request, and the
> Reaquest are processed with the Handler clauses before ??
>
> This is the beginning of the configuration file :
>
> <Client DEFAULT>
>
> Secret nokia
>
> DupInterval 0
>
> </Client>
>
> <AuthBy RADIUS>
>
> Identifier WAPGW
>
> IgnoreAccountingResponse
>
> Host xx.xx.xx.xx
>
> Secret nokia
>
> AuthPort 1812
>
> AcctPort 1813
>
> Retries 0
>
> MaxFailedRequests 50
>
> FailureBackoffTime 0
>
> </AuthBy>
>
> # En este AuthBy se definen los parametros para reenviar los
> requerimientos hacia Subscriber Manager
>
> <AuthBy RADIUS>
>
> Identifier CiscoSuscriberManager
>
> IgnoreAccountingResponse
>
> IgnoreAuthentication
>
> Host xxx.xxx.xxx.xxx
>
> Secret scesm
>
> AuthPort 1812
>
> AcctPort 1813
>
> Retries 0
>
> MaxFailedRequests 50
>
> FailureBackoffTime 0
>
> AddToRequest Class = %{3GPP-User-Location-Info}, 3GPP-SGSN-Roaming
> = %{3GPP-SGSN-Address}
>
> </AuthBy>
>
> <AuthBy INTERNAL>
>
> Identifier MobiProf
>
> RequestHook file:"/etc/radiator/mobiprof_connector.pl
> <http://mobiprof_connector.pl>"
>
> </AuthBy>
>
> <AuthBy SQL>
>
> Identifier SqlStart
>
> DBSource
> dbi:mysql:database=radius;host=xxx.xxx.xxx.xxx;timeout=1
>
> DBUsername radius
>
> DBAuth
>
> FailureBackoffTime 10
>
> Timeout 1
>
> AcctSQLStatement replace into ONLINE
> (MSISDN,APN,3GPP_Charging_Id,Username,Acct_Session_Id,Timestamp,NAS_Identifier,Framed_IP_A$
>
> </AuthBy>
>
> <AuthBy SQL>
>
> Identifier SqlAlive
>
> DBSource
> dbi:mysql:database=radius;host=xxx.xxx.xxx.xxx;timeout=1
>
> DBUsername radius
>
> DBAuth
>
> FailureBackoffTime 10
>
> Timeout 1
>
> AcctSQLStatement update ONLINE set Timestamp = "%{Timestamp}",
> 3GPP_RAT_Type = if("%{3GPP-RAT-Type}"="", NULL , "%{3GPP-RAT-Typ$
>
> </AuthBy>
>
> <AuthBy SQL>
>
> Identifier SqlStop
>
> DBSource
> dbi:mysql:database=radius;host=xxx.xxx.xxx.xx;timeout=1
>
> DBUsername radius
>
> DBAuth
>
> FailureBackoffTime 10
>
> Timeout 1
>
> AcctSQLStatement delete from ONLINE where
> NAS_Identifier="%{NAS-Identifier}" and
> 3GPP_Charging_Id="%{3GPP-Charging-Id}";
>
> </AuthBy>
>
> <Handler Request-Type=Access-Request, 3GPP-Charging-Characteristics =
> /(1400|1600)/>
>
> <AuthBy TEST>
>
> </AuthBy>
>
> DefaultReply Called-Station-Id = "isp.domain.pp"
>
> </Handler>
>
> . . .
>
> <Handler Request-Type=Access-Request,
> Called-Station-Id=/imovil.domain\.cl/>
>
> <AuthBy TEST>
>
> </AuthBy>
>
> </Handler>
>
> So, if a request is coming to my server, the first thing to try is the
> Handlers??.. or the AuthBy clause defined at the beginning of the
> configuration file?
>
> Hope someone can help me here.
>
> Thanks in advance.
>
> Regards,
>
> Ricardo.-
>
>
> _______________________________________________
> radiator mailing list
> radiator at open.com.au
> http://www.open.com.au/mailman/listinfo/radiator
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.open.com.au/pipermail/radiator/attachments/20101117/91351165/attachment-0001.html
More information about the radiator
mailing list