help-gnu-radius
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Help-gnu-radius] communication between gemtek-systems p560 and gnu-radi

From: Klemens Mantzos - Futureweb St. Johann
Subject: [Help-gnu-radius] communication between gemtek-systems p560 and gnu-radius
Date: Thu, 18 Nov 2004 18:13:49 +0100 
Hello,

We need the gnu-radius server for accounting and (maybe if possible) billing 
our wlan (gemtek-systems p-560).

i think the router configuration is ok (he supports radius).

the reference manual of the gnu-radius server is great (and humungus), but it 
doesn't help me to configure.

i need a howto or tutorial ;) with minimal configuration instrutions.

if there is no chance to get something like that, i hope somebody is motivated 
to help me.....

...asap?:
radius server: 192.168.1.204
router:        192.168.1.10

access.deny: 
°°°°°°°°°°°°
#empty

client.conf (i think there is something missing, but i just don't konw too):
°°°°°°°°°°°°
server local 127.0.0.1 foobar 1812 1813
source_ip 127.0.0.1
timeout 3
retry 1

clients:
°°°°°°°°
#Client Name            Key
#----------------       -------------------
192.168.1.10            test

config:
°°°°°°°
# For detailed description, run:
#       info Radius config
 
option {
        max-requests 1024;
        resolve no;
};
 
logging {
        prefix-hook "default_log_prefix";
        channel default {
                file "radius.log";
                print-category yes;
                print-level yes;
        };
        channel info {
                file "radius.info";
                print-pid yes;
        };
        channel debug {
                file "radius.debug";
        };
        category auth {
                print-auth yes;
                print-failed-pass yes;
        };
        category info {
                channel info;
        };
        category =debug {
                channel debug;
        };
        category * {
                channel default;
        };
};
 
auth {
        max-requests 127;
        request-cleanup-delay 2;
        detail yes;
        detail-file-name "=nas_name(request_source_ip()) + \"/detail.auth\"";
        strip-names yes;
        checkrad-assume-logged yes;
};
 
acct {
        max-requests 127;
        request-cleanup-delay 2;
        detail-file-name "=nas_name(request_source_ip()) + \"/detail\"";
};
 
rewrite {
        load "checknas.rw";
        load "log-hook.rw";
        load "nas-ip.rw";
};
 
# snmp {
#       listen no;
# };

dictionary:
°°°°°°°°°°°
$INCLUDE dict/standard
 
# Uncomment any of these as appropriate:
 
$INCLUDE dict/compat            # Compatibility issues
$INCLUDE dict/livingston        # Livingston compatibility
#$INCLUDE dict/tunnel           # Tunnel attrs. as per RFC 2867
#$INCLUDE dict/usr              # USR Robotics
#$INCLUDE dict/ascend           # MAX Ascend
#$INCLUDE dict/ascend.vs        # MAX Ascend -- vendor-specific
#$INCLUDE dict/cisco            # Cisco
#$INCLUDE dict/voip             # Special attributes to be used
                                # with rewriting functions

hints:
°°°°°°
DEFAULT Rewrite-Function = restore_nas_ip       Fall-Through = Yes

hintgorups:
°°°°°°°°°°°
#empty

naslist:
°°°°°°°°
# NAS Name              Short Name      Type            Flags
#----------------       ----------      ----            ---------------
localhost               local           true

nas.rc:
°°°°°°°
;; This is a sample configuration file for nas.scm
 
;; These statements can be used to override the defaults set in
;; raddb/client.conf
;(set! rad-server-list
;      '(("local" "localhost" "guessme" 1645 1646 0)))
;(define nas-ip "127.0.0.1")
;(rad-client-source-ip nas-ip)
;(rad-client-timeout 10)
;(rad-client-retry 3)
;(rad-select-server "local")
 
(set! nas-log-facility LOG_LOCAL4)
(set! pppd-args (list
                "crtscts"
                "asyncmap" "0x000A0000"
                "lock" 
                "-detach"
                "idle" "600"
                "mtu" "296" 
                "mru" "296"))
 
(set! port-list (list
                 (cons "/dev/ttyS0"     1)
                 (cons "/dev/ttyS1"     2)
                 (cons "/dev/ttyS4"     3)
                 (cons "/dev/ttyS5"     4)
                 (cons "/dev/ttyS6"     5)
                 (cons "/dev/ttyS7"     6)
                 (cons "/dev/ttyS8"     7)
                 (cons "/dev/ttyS9"     8)
                 (cons "/dev/ttyS10"    9)
                 (cons "/dev/ttyS11"    10)))

nastypes:
°°°°°°°°°
# Type     Method          Args
# ----     ------          ----
unix       finger       function=check_unix
max-f      finger       function=check_max_finger
max        snmp         oid=.1.3.6.1.4.1.529.12.3.1.4.%d,function=check_snmp_u
as5300-f   finger       function=check_as5300_finger
as5300     snmp         
oid=.1.3.6.1.4.1.9.9.150.1.1.3.1.2.%d,function=check_snmp_u
livingston snmp         
oid=.1.3.6.1.4.1.307.3.2.1.1.1.5.%P,function=check_snmp_s

realms:
°°°°°°°
#empty

sqlserver:
°°°°°°°°°°
#the mail f***ing long enouth without this file...

users:
°°°°°°
DEFAULT Group = "*LOCKED_ACCOUNT*",
                Auth-Type = Reject
        Reply-Message = "Your account is currently locked.\n\
Please, contact your system administrator\n"
 
DEFAULT Auth-Type = SQL,
                Simultaneous-Use = 1
        Service-Type = Framed-User,
                Framed-Protocol = PPP

hope anybody can help me, or send some links with good informations about 
configuring........HELP!
Klemens Mantzos
reply via email to
[Prev in Thread] Current Thread [Next in Thread]