[RADIATOR] Alive\Update handlers with proxy

Heikki Vatiainen hvn at open.com.au
Mon Dec 16 09:07:54 CST 2013 

On 12/16/2013 03:44 PM, eliran shlomo wrote:

> I have proxy radius that receive a different attributes then the NAS.
> 
> When i change an attribute in the LDAP and tell the NAS to get an update
> the NAS receive all updated values
> But the values that are sent to the proxy contain old data.

Hello Eliran,

are you changing $p (the current request) in the hook? $p is what the
outgoing request in AuthBy RADIUS is based on.

It's a bit hard to say more without Trace 4 logs and the hook.

Thanks,
Heikki


> please advise.
> 
> Thanks,
> 
> Eliran
> 
> The AuthBy look like this
> 
> <AuthBy RADIUS>
>         Identifier ProxyAccounting
>         Host x.x.x.x
>         NoForwardAuthentication
>         IgnoreAccountingResponse
>         AcctPort 1813
>         FailureBackoffTime 0
>         Retries 1
>         RetryTimeout 3
>         Secret ******
> </AuthBy>
> 
> And the handler looks like this
> 
> <Handler NAS-IP-Address=x.x.x.x, Request-Type=Accounting-Request,
> Acct-Status-Type = /^Alive/>
>         include %{GlobalVar:CONFIGROOT}/include/RewriteUsername.inc
>         PreAuthHook file:"%{GlobalVar:CONFIGROOT}/include/proxyupdate.pl
> <http://proxyupdate.pl>"
>         AuthBy ProxyAccounting
>         SessionDatabase NULL
>         AccountingHandled
>         AcctLogFileName %{GlobalVar:DETAILDIR}/%c/detail-%Y%m%d.csv
>         AcctLogFileFormat  \
>                 %{User-Name},%{Acct-Session-Id},%{Framed-IP-Address},\
>                
> %{Calling-Station-Id},%{Called-Station-Id},%{NAS-IP-Address},\
>                 %{NAS-Port-Type},%{NAS-Port},%{Acct-Status-Type},\
>                 %{Tunnel-Server-Endpoint},%{Tunnel-Client-Endpoint},\
>                 %{Tunnel-Server-Auth-ID},%{Tunnel-Client-Auth-ID},\
>                
> %{RB-Context-Name},%{Acct-Input-Octets},%{Acct-Output-Octets},\
>                 %{Acct-Input-Gigawords},%{Acct-Output-Gigawords},\
>                 %{RB-QoS-Metering-Profile-Name},%{Acct-Terminate-Cause},\
>                 %{Acct-Session-Time},%{Event-Timestamp},\
>                 %{Acct-Authentic},%{Acct-Delay-Time},\
>                 %{Acct-Input-Packets},%{Acct-Output-Packets},\
>                 %{Framed-Protocol},%{Service-Type}
> </Handler>
> 
> 
> 
> 
> 
> _______________________________________________
> radiator mailing list
> radiator at open.com.au
> http://www.open.com.au/mailman/listinfo/radiator
> 


-- 
Heikki Vatiainen <hvn at open.com.au>

Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP,
DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS,
NetWare etc.

More information about the radiator mailing list