[prev in list] [next in list] [prev in thread] [next in thread]
List: freeradius-users
Subject: Re: [sqlippool] No Pool-Name defined.
From: yata <aurens.memuro02 () gmail ! com>
Date: 2014-04-28 21:13:54
Message-ID: CA+cUj19PTBOZOcwu5c2BmQhyUbff6fqxeMGGwzFW+4+RjnrcbQ () mail ! gmail ! com
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
Hi Roney
I was able to solve this problem by setting Default pool-name in top of
users file.
Thank you for your co-operation.
2014-04-28 22:52 GMT+09:00 Rôney Eduardo <roneyeduardosantos@gmail.com>:
> You need to set the "Pool-Name" attribute to your test user, in
> radcheck or radgroupcheck table.
>
> --
> Roney Eduardo
>
> 2014-04-28 3:24 GMT-03:00 yata <aurens.memuro02@gmail.com>:
> > Hi
> > I wanna use freeradius2 as a radius-server and dhcp-server.
> > When I try to connect to radius-server,following errors show up.
> > I think authentication is look fine.then message said sqlippool not
> defined.
> > but I set up as below.
> > What's wrong with my settings?
> >
> > ------------radiusd -X-----------------
> > ... adding new socket proxy address * port 55682
> > Listening on authentication address * port 1812
> > Listening on accounting address * port 1813
> > Listening on command file /var/run/radiusd/radiusd.sock
> > Listening on authentication address 127.0.0.1 port 18120 as server
> > inner-tunnel
> > Listening on proxy address * port 1814
> > Ready to process requests.
> > rad_recv: Access-Request packet from host 10.0.5.200 port 50000, id=3,
> > length=205
> > User-Password = "test"
> > User-Name = "user@mondomaine.fr"
> > Acct-Session-Id = "erx FastEthernet 1/6:0011534340"
> > Service-Type = Framed-User
> > Framed-Protocol = PPP
> > ERX-Pppoe-Description = "pppoe 00:1d:72:c6:7b:d5"
> > Calling-Station-Id = "#ERX-40-b0-7a#E16#0"
> > NAS-Port-Type = Ethernet
> > NAS-Port = 369098752
> > NAS-Port-Id = "FastEthernet 1/6"
> > NAS-IP-Address = 10.0.5.200
> > NAS-Identifier = "ERX-40-b0-7a"
> > # Executing section authorize from file /etc/raddb/sites-enabled/default
> > +- entering group authorize {...}
> > ++[preprocess] returns ok
> > ++[chap] returns noop
> > ++[mschap] returns noop
> > ++[digest] returns noop
> > [suffix] Looking up realm "mondomaine.fr" for User-Name =
> > "user@mondomaine.fr"
> > [suffix] No such realm "mondomaine.fr"
> > ++[suffix] returns noop
> > [eap] No EAP-Message, not doing EAP
> > ++[eap] returns noop
> > [files] users: Matched entry user@mondomaine.fr at line 6
> > [files] users: Matched entry DEFAULT at line 183
> > ++[files] returns ok
> > ++[expiration] returns noop
> > ++[logintime] returns noop
> > ++[pap] returns updated
> > Found Auth-Type = PAP
> > # Executing group from file /etc/raddb/sites-enabled/default
> > +- entering group PAP {...}
> > [pap] login attempt with password "test"
> > [pap] Using clear text password "test"
> > [pap] User authenticated successfully
> > ++[pap] returns ok
> > Login OK: [user@mondomaine.fr] (from client GGSN1 port 369098752 cli
> > #ERX-40-b0-7a#E16#0)
> > # Executing section post-auth from file /etc/raddb/sites-enabled/default
> > +- entering group post-auth {...}
> > [sqlippool] No Pool-Name defined.
> > [sqlippool] expand: No Pool-Name defined (did %{Called-Station-Id}
> cli
> > %{Calling-Station-Id} port %{NAS-Port} user %{User-Name}) -> No Pool-Name
> > defined (did cli #ERX-40-b0-7a#E16#0 port 369098752 user
> > user@mondomaine.fr)
> > No Pool-Name defined (did cli #ERX-40-b0-7a#E16#0 port 369098752 user
> > user@mondomaine.fr)
> > ++[sqlippool] returns noop
> > ++[exec] returns noop
> > Sending Access-Accept of id 3 to 10.0.5.200 port 50000
> > NAS-IP-Address == 10.0.5.200
> > Framed-Protocol = PPP
> > Framed-Compression = Van-Jacobson-TCP-IP
> > Finished request 0.
> > Going to the next request
> > Waking up in 4.9 seconds.
> > rad_recv: Accounting-Request packet from host 10.0.5.200 port 50016,
> id=73,
> > length=246
> > Acct-Status-Type = Stop
> > User-Name = "user@mondomaine.fr"
> > Event-Timestamp = "Apr 27 2014 14:19:10 PDT"
> > Acct-Delay-Time = 0
> > NAS-Identifier = "ERX-40-b0-7a"
> > Acct-Session-Id = "erx FastEthernet 1/6:0011534340"
> > NAS-IP-Address = 10.0.5.200
> > Service-Type = Framed-User
> > Calling-Station-Id = "#ERX-40-b0-7a#E16#0"
> > Acct-Input-Gigawords = 0
> > Acct-Input-Octets = 0
> > Acct-Output-Gigawords = 0
> > Acct-Output-Octets = 0
> > ERX-Input-Gigapkts = 0
> > Acct-Input-Packets = 0
> > ERX-Output-Gigapkts = 0
> > Acct-Output-Packets = 0
> > NAS-Port-Type = Ethernet
> > NAS-Port = 369098752
> > NAS-Port-Id = "FastEthernet 1/6"
> > Acct-Authentic = RADIUS
> > Acct-Session-Time = 0
> > Acct-Terminate-Cause = NAS-Request
> > # Executing section preacct from file /etc/raddb/sites-enabled/default
> > +- entering group preacct {...}
> > ++[preprocess] returns ok
> > [acct_unique] Hashing 'NAS-Port = 369098752,Client-IP-Address =
> > 10.0.5.200,NAS-IP-Address = 10.0.5.200,Acct-Session-Id = "erx
> FastEthernet
> > 1/6:0011534340",User-Name = "user@mondomaine.fr"'
> > [acct_unique] Acct-Unique-Session-ID = "fbbf6a6fb6bf3d32".
> > ++[acct_unique] returns ok
> > [suffix] Looking up realm "mondomaine.fr" for User-Name =
> > "user@mondomaine.fr"
> > [suffix] No such realm "mondomaine.fr"
> > ++[suffix] returns noop
> > ++[files] returns noop
> > # Executing section accounting from file /etc/raddb/sites-enabled/default
> > +- entering group accounting {...}
> > [detail] expand: %{Packet-Src-IP-Address} -> 10.0.5.200
> > [detail] expand:
> >
> /var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d
> > -> /var/log/radius/radacct/10.0.5.200/detail-20140427
> > [detail]
> >
> /var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d
> > expands to /var/log/radius/radacct/10.0.5.200/detail-20140427
> > [detail] expand: %t -> Sun Apr 27 22:49:32 2014
> > ++[detail] returns ok
> > ++[unix] returns ok
> > [radutmp] expand: /var/log/radius/radutmp ->
> /var/log/radius/radutmp
> > [radutmp] expand: %{User-Name} -> user@mondomaine.fr
> > rlm_radutmp: Logout for NAS GGSN1 port 369098752, but no Login record
> > ++[radutmp] returns ok
> > rlm_sql (sql): Reserving sql socket id: 13
> > [sqlippool] expand: %{User-Name} -> user@mondomaine.fr
> > [sqlippool] sql_set_user escaped user --> 'user@mondomaine.fr'
> > [sqlippool] expand: START TRANSACTION -> START TRANSACTION
> > [sqlippool] expand: UPDATE radippool SET nasipaddress = '',
> pool_key =
> > 0, callingstationid = '', username = '', expiry_time = NULL WHERE
> > nasipaddress = '%{Nas-IP-Address}' AND pool_key = '%{NAS-Port}' AND
> > username = '%{User-Name}' AND callingstationid = '%{Calling-Station-Id}'
> > AND framedipaddress = '%{Framed-IP-Address}' -> UPDATE radippool SET
> > nasipaddress = '', pool_key = 0, callingstationid = '', username = '',
> > expiry_time = NULL WHERE nasipaddress = '10.0.5.200' AND pool_key =
> > '369098752' AND username = 'user@mondomaine.fr' AND callingstationid =
> > '=23ERX-40-b0-7a=23E16=230' AND framedipaddress = ''
> > [sqlippool] expand: COMMIT -> COMMIT
> > [sqlippool] expand: Released IP %{Framed-IP-Address} (did
> > %{Called-Station-Id} cli %{Calling-Station-Id} user %{User-Name}) ->
> > Released IP (did cli #ERX-40-b0-7a#E16#0 user user@mondomaine.fr)
> > Released IP (did cli #ERX-40-b0-7a#E16#0 user user@mondomaine.fr)
> > rlm_sql (sql): Released sql socket id: 13
> > ++[sqlippool] returns ok
> > ++[exec] returns noop
> > [attr_filter.accounting_response] expand: %{User-Name} ->
> > user@mondomaine.fr
> > attr_filter: Matched entry DEFAULT at line 12
> > ++[attr_filter.accounting_response] returns updated
> > Sending Accounting-Response of id 73 to 10.0.5.200 port 50016
> > Finished request 1.
> > Cleaning up request 1 ID 73 with timestamp +10
> > Going to the next request
> > Waking up in 4.9 seconds.
> > Cleaning up request 0 ID 3 with timestamp +10
> > Ready to process requests.
> > ------------------------------------------------------------
> >
> >
> >
> >
> >
> > ---------------------sqlippool.conf------------------------------
> > ## Configuration for the SQL based IP Pool module (rlm_sqlippool)
> > ##
> > ## The database schemas are available at:
> > ##
> > ## raddb/sql/DB/ippool.sql
> > ##
> > ## $Id$
> >
> > sqlippool {
> >
> > #########################################
> > ## SQL instance to use (from sql.conf) ##
> > ##
> > ## If you have multiple sql instances, such as "sql sql1 {...}",
> > ## use the *instance* name here: sql1.
> > #########################################
> > sql-instance-name = "sql"
> >
> > ## SQL table to use for ippool range and lease info
> > ippool_table = "radippool"
> >
> > ## IP lease duration. (Leases expire even if Acct Stop packet is lost)
> > lease-duration = 3600
> >
> > ## Attribute which should be considered unique per NAS
> > ## Using NAS-Port gives behaviour similar to rlm_ippool. (And ACS)
> > ## Using Calling-Station-Id works for NAS that send fixed NAS-Port
> > ## ONLY change this if you know what you are doing!
> > pool-key = "%{NAS-Port}"
> > # pool-key = "%{Calling-Station-Id}"
> >
> > ################################################################
> > #
> > # WARNING: MySQL has certain limitations that means it can
> > # hand out the same IP address to 2 different users.
> > #
> > # We suggest using an SQL DB with proper transaction
> > # support, such as PostgreSQL, or using MySQL
> > # with InnoDB.
> > #
> > ################################################################
> >
> > #
> > # Use the same database as configured in the "sql" module, "database"
> > # configuration item. Change the "postgresql" name below to be the
> > # same as the "database" field of the SQL module referred to in the
> > # "sql-instance-name", above.
> > #
> > #$INCLUDE sql/postgresql/ippool.conf
> > $INCLUDE sql/mysql/ippool.conf
> >
> > ## Logging configuration. (Comment out to disable logging)
> > sqlippool_log_exists = "Existing IP: %{reply:Framed-IP-Address} \
> > (did %{Called-Station-Id} cli %{Calling-Station-Id} port %{NAS-Port}
> user
> > %{User-Name})"
> >
> > sqlippool_log_success = "Allocated IP: %{reply:Framed-IP-Address} from
> > %{control:Pool-Name} \
> > (did %{Called-Station-Id} cli %{Calling-Station-Id} port %{NAS-Port}
> user
> > %{User-Name})"
> >
> > sqlippool_log_clear = "Released IP %{Framed-IP-Address}\
> > (did %{Called-Station-Id} cli %{Calling-Station-Id} user %{User-Name})"
> >
> > sqlippool_log_failed = "IP Allocation FAILED from %{control:Pool-Name} \
> > (did %{Called-Station-Id} cli %{Calling-Station-Id} port %{NAS-Port}
> user
> > %{User-Name})"
> >
> > sqlippool_log_nopool = "No Pool-Name defined \
> > (did %{Called-Station-Id} cli %{Calling-Station-Id} port %{NAS-Port}
> user
> > %{User-Name})"
> >
> > }
> > -------------------------------------------------------------------
> >
> >
> >
> >
> >
> > ------------------------------sql.conf---------------------------------
> > # -*- text -*-
> > ##
> > ## sql.conf -- SQL modules
> > ##
> > ## $Id$
> >
> > ######################################################################
> > #
> > # Configuration for the SQL module
> > #
> > # The database schemas and queries are located in subdirectories:
> > #
> > # sql/DB/schema.sql Schema
> > # sql/DB/dialup.conf Basic dialup (including policy) queries
> > # sql/DB/counter.conf counter
> > # sql/DB/ippool.conf IP Pools in SQL
> > # sql/DB/ippool.sql schema for IP pools.
> > #
> > # Where "DB" is mysql, mssql, oracle, or postgresql.
> > #
> >
> > sql {
> > #
> > # Set the database to one of:
> > #
> > # mysql, mssql, oracle, postgresql
> > #
> > database = "mysql"
> >
> > #
> > # Which FreeRADIUS driver to use.
> > #
> > driver = "rlm_sql_${database}"
> >
> > # Connection info:
> > server = "localhost"
> > #port = 3306
> > login = "userfreeradius"
> > password = "pwdfreeradius"
> >
> > # Database table configuration for everything except Oracle
> > radius_db = "freeradius"
> > # If you are using Oracle then use this instead
> > # radius_db =
> >
> "(DESCRIPTION=(ADDRESS=(PROTOCOL=TCP)(HOST=localhost)(PORT=1521))(CONNECT_DATA=(SID=your_sid)))"
> >
> > # If you want both stop and start records logged to the
> > # same SQL table, leave this as is. If you want them in
> > # different tables, put the start table in acct_table1
> > # and stop table in acct_table2
> > acct_table1 = "radacct"
> > acct_table2 = "radacct"
> >
> > # Allow for storing data after authentication
> > postauth_table = "radpostauth"
> >
> > authcheck_table = "radcheck"
> > authreply_table = "radreply"
> >
> > groupcheck_table = "radgroupcheck"
> > groupreply_table = "radgroupreply"
> >
> > # Table to keep group info
> > usergroup_table = "radusergroup"
> >
> > # If set to 'yes' (default) we read the group tables
> > # If set to 'no' the user MUST have Fall-Through = Yes in the radreply
> table
> > read_groups = yes
> >
> > # Remove stale session if checkrad does not see a double login
> > deletestalesessions = yes
> >
> > # Print all SQL statements when in debug mode (-x)
> > sqltrace = no
> > sqltracefile = ${logdir}/sqltrace.sql
> >
> > # number of sql connections to make to server
> > num_sql_socks = 15
> >
> > # number of seconds to dely retrying on a failed database
> > # connection (per_socket)
> > connect_failure_retry_delay = 60
> >
> > # lifetime of an SQL socket. If you are having network issues
> > # such as TCP sessions expiring, you may need to set the socket
> > # lifetime. If set to non-zero, any open connections will be
> > # closed "lifetime" seconds after they were first opened.
> > lifetime = 0
> >
> > # Maximum number of queries used by an SQL socket. If you are
> > # having issues with SQL sockets lasting "too long", you can
> > # limit the number of queries performed over one socket. After
> > # "max_qeuries", the socket will be closed. Use 0 for "no limit".
> > max_queries = 0
> >
> > # Set to 'yes' to read radius clients from the database ('nas' table)
> > # Clients will ONLY be read on server startup. For performance
> > # and security reasons, finding clients via SQL queries CANNOT
> > # be done "live" while the server is running.
> > #
> > readclients = yes
> >
> > # Table to keep radius client info
> > nas_table = "nas"
> >
> > # Read driver-specific configuration
> > $INCLUDE sql/${database}/dialup.conf
> > }
> >
> ---------------------------------------------------------------------------
> >
> > If these information is not enough please let me know.
> >
> > Thanks,
> >
> >
> >
> >
> > -
> > List info/subscribe/unsubscribe? See
> > http://www.freeradius.org/list/users.html
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
[Attachment #5 (text/html)]
<div dir="ltr">Hi Roney<div><br></div><div>I was able to solve this problem by \
setting Default pool-name in top of users file.</div><div><br></div><div>Thank you \
for your co-operation.</div></div><div class="gmail_extra"><br> <br><div \
class="gmail_quote">2014-04-28 22:52 GMT+09:00 Rôney Eduardo <span dir="ltr"><<a \
href="mailto:roneyeduardosantos@gmail.com" \
target="_blank">roneyeduardosantos@gmail.com</a>></span>:<br><blockquote \
class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc \
solid;padding-left:1ex"> <div class="">You need to set the "Pool-Name" \
attribute to your test user, in<br> radcheck or radgroupcheck table.<br>
<br>
--<br>
Roney Eduardo<br>
<br>
</div>2014-04-28 3:24 GMT-03:00 yata <<a \
href="mailto:aurens.memuro02@gmail.com">aurens.memuro02@gmail.com</a>>:<br> <div \
class="HOEnZb"><div class="h5">> Hi<br> > I wanna use freeradius2 as a \
radius-server and dhcp-server.<br> > When I try to connect to \
radius-server,following errors show up.<br> > I think authentication is look \
fine.then message said sqlippool not defined.<br> > but I set up as below.<br>
> What's wrong with my settings?<br>
><br>
> ------------radiusd -X-----------------<br>
> ... adding new socket proxy address * port 55682<br>
> Listening on authentication address * port 1812<br>
> Listening on accounting address * port 1813<br>
> Listening on command file /var/run/radiusd/radiusd.sock<br>
> Listening on authentication address 127.0.0.1 port 18120 as server<br>
> inner-tunnel<br>
> Listening on proxy address * port 1814<br>
> Ready to process requests.<br>
> rad_recv: Access-Request packet from host 10.0.5.200 port 50000, id=3,<br>
> length=205<br>
> User-Password = "test"<br>
> User-Name = "<a \
href="mailto:user@mondomaine.fr">user@mondomaine.fr</a>"<br> > \
Acct-Session-Id = "erx FastEthernet 1/6:0011534340"<br> > \
Service-Type = Framed-User<br> > Framed-Protocol = PPP<br>
> ERX-Pppoe-Description = "pppoe 00:1d:72:c6:7b:d5"<br>
> Calling-Station-Id = "#ERX-40-b0-7a#E16#0"<br>
> NAS-Port-Type = Ethernet<br>
> NAS-Port = 369098752<br>
> NAS-Port-Id = "FastEthernet 1/6"<br>
> NAS-IP-Address = 10.0.5.200<br>
> NAS-Identifier = "ERX-40-b0-7a"<br>
> # Executing section authorize from file /etc/raddb/sites-enabled/default<br>
> +- entering group authorize {...}<br>
> ++[preprocess] returns ok<br>
> ++[chap] returns noop<br>
> ++[mschap] returns noop<br>
> ++[digest] returns noop<br>
> [suffix] Looking up realm "<a href="http://mondomaine.fr" \
target="_blank">mondomaine.fr</a>" for User-Name =<br> > "<a \
href="mailto:user@mondomaine.fr">user@mondomaine.fr</a>"<br> > [suffix] No \
such realm "<a href="http://mondomaine.fr" \
target="_blank">mondomaine.fr</a>"<br> > ++[suffix] returns noop<br>
> [eap] No EAP-Message, not doing EAP<br>
> ++[eap] returns noop<br>
> [files] users: Matched entry <a \
href="mailto:user@mondomaine.fr">user@mondomaine.fr</a> at line 6<br> > [files] \
users: Matched entry DEFAULT at line 183<br> > ++[files] returns ok<br>
> ++[expiration] returns noop<br>
> ++[logintime] returns noop<br>
> ++[pap] returns updated<br>
> Found Auth-Type = PAP<br>
> # Executing group from file /etc/raddb/sites-enabled/default<br>
> +- entering group PAP {...}<br>
> [pap] login attempt with password "test"<br>
> [pap] Using clear text password "test"<br>
> [pap] User authenticated successfully<br>
> ++[pap] returns ok<br>
> Login OK: [<a href="mailto:user@mondomaine.fr">user@mondomaine.fr</a>] (from \
client GGSN1 port 369098752 cli<br> > #ERX-40-b0-7a#E16#0)<br>
> # Executing section post-auth from file /etc/raddb/sites-enabled/default<br>
> +- entering group post-auth {...}<br>
> [sqlippool] No Pool-Name defined.<br>
> [sqlippool] expand: No Pool-Name defined (did %{Called-Station-Id} \
cli<br> > %{Calling-Station-Id} port %{NAS-Port} user %{User-Name}) -> No \
Pool-Name<br> > defined (did cli #ERX-40-b0-7a#E16#0 port 369098752 user<br>
> <a href="mailto:user@mondomaine.fr">user@mondomaine.fr</a>)<br>
> No Pool-Name defined (did cli #ERX-40-b0-7a#E16#0 port 369098752 user<br>
> <a href="mailto:user@mondomaine.fr">user@mondomaine.fr</a>)<br>
> ++[sqlippool] returns noop<br>
> ++[exec] returns noop<br>
> Sending Access-Accept of id 3 to 10.0.5.200 port 50000<br>
> NAS-IP-Address == 10.0.5.200<br>
> Framed-Protocol = PPP<br>
> Framed-Compression = Van-Jacobson-TCP-IP<br>
> Finished request 0.<br>
> Going to the next request<br>
> Waking up in 4.9 seconds.<br>
> rad_recv: Accounting-Request packet from host 10.0.5.200 port 50016, id=73,<br>
> length=246<br>
> Acct-Status-Type = Stop<br>
> User-Name = "<a \
href="mailto:user@mondomaine.fr">user@mondomaine.fr</a>"<br> > \
Event-Timestamp = "Apr 27 2014 14:19:10 PDT"<br> > \
Acct-Delay-Time = 0<br> > NAS-Identifier = \
"ERX-40-b0-7a"<br> > Acct-Session-Id = "erx \
FastEthernet 1/6:0011534340"<br> > NAS-IP-Address = \
10.0.5.200<br> > Service-Type = Framed-User<br>
> Calling-Station-Id = "#ERX-40-b0-7a#E16#0"<br>
> Acct-Input-Gigawords = 0<br>
> Acct-Input-Octets = 0<br>
> Acct-Output-Gigawords = 0<br>
> Acct-Output-Octets = 0<br>
> ERX-Input-Gigapkts = 0<br>
> Acct-Input-Packets = 0<br>
> ERX-Output-Gigapkts = 0<br>
> Acct-Output-Packets = 0<br>
> NAS-Port-Type = Ethernet<br>
> NAS-Port = 369098752<br>
> NAS-Port-Id = "FastEthernet 1/6"<br>
> Acct-Authentic = RADIUS<br>
> Acct-Session-Time = 0<br>
> Acct-Terminate-Cause = NAS-Request<br>
> # Executing section preacct from file /etc/raddb/sites-enabled/default<br>
> +- entering group preacct {...}<br>
> ++[preprocess] returns ok<br>
> [acct_unique] Hashing 'NAS-Port = 369098752,Client-IP-Address =<br>
> 10.0.5.200,NAS-IP-Address = 10.0.5.200,Acct-Session-Id = "erx \
FastEthernet<br> > 1/6:0011534340",User-Name = "<a \
href="mailto:user@mondomaine.fr">user@mondomaine.fr</a>"'<br> > \
[acct_unique] Acct-Unique-Session-ID = "fbbf6a6fb6bf3d32".<br> > \
++[acct_unique] returns ok<br> > [suffix] Looking up realm "<a \
href="http://mondomaine.fr" target="_blank">mondomaine.fr</a>" for User-Name \
=<br> > "<a href="mailto:user@mondomaine.fr">user@mondomaine.fr</a>"<br>
> [suffix] No such realm "<a href="http://mondomaine.fr" \
target="_blank">mondomaine.fr</a>"<br> > ++[suffix] returns noop<br>
> ++[files] returns noop<br>
> # Executing section accounting from file /etc/raddb/sites-enabled/default<br>
> +- entering group accounting {...}<br>
> [detail] expand: %{Packet-Src-IP-Address} -> 10.0.5.200<br>
> [detail] expand:<br>
> /var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d<br>
> -> /var/log/radius/radacct/<a href="http://10.0.5.200/detail-20140427" \
target="_blank">10.0.5.200/detail-20140427</a><br> > [detail]<br>
> /var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d<br>
> expands to /var/log/radius/radacct/<a href="http://10.0.5.200/detail-20140427" \
target="_blank">10.0.5.200/detail-20140427</a><br> > [detail] expand: \
%t -> Sun Apr 27 22:49:32 2014<br> > ++[detail] returns ok<br>
> ++[unix] returns ok<br>
> [radutmp] expand: /var/log/radius/radutmp -> \
/var/log/radius/radutmp<br> > [radutmp] expand: %{User-Name} -> <a \
href="mailto:user@mondomaine.fr">user@mondomaine.fr</a><br> > rlm_radutmp: Logout \
for NAS GGSN1 port 369098752, but no Login record<br> > ++[radutmp] returns ok<br>
> rlm_sql (sql): Reserving sql socket id: 13<br>
> [sqlippool] expand: %{User-Name} -> <a \
href="mailto:user@mondomaine.fr">user@mondomaine.fr</a><br> > [sqlippool] \
sql_set_user escaped user --> '<a \
href="mailto:user@mondomaine.fr">user@mondomaine.fr</a>'<br> > [sqlippool] \
expand: START TRANSACTION -> START TRANSACTION<br> > [sqlippool] expand: \
UPDATE radippool SET nasipaddress = '', pool_key =<br> > 0, \
callingstationid = '', username = '', expiry_time = NULL \
WHERE<br> > nasipaddress = '%{Nas-IP-Address}' AND pool_key = \
'%{NAS-Port}' AND<br> > username = '%{User-Name}' AND \
callingstationid = '%{Calling-Station-Id}'<br> > AND framedipaddress = \
'%{Framed-IP-Address}' -> UPDATE radippool SET<br> > nasipaddress = \
'', pool_key = 0, callingstationid = '', username = '',<br> \
> expiry_time = NULL WHERE nasipaddress = '10.0.5.200' AND pool_key \
=<br> > '369098752' AND username = '<a \
href="mailto:user@mondomaine.fr">user@mondomaine.fr</a>' AND callingstationid \
=<br> > '=23ERX-40-b0-7a=23E16=230' AND framedipaddress = ''<br>
> [sqlippool] expand: COMMIT -> COMMIT<br>
> [sqlippool] expand: Released IP %{Framed-IP-Address} (did<br>
> %{Called-Station-Id} cli %{Calling-Station-Id} user %{User-Name}) -><br>
> Released IP (did cli #ERX-40-b0-7a#E16#0 user <a \
href="mailto:user@mondomaine.fr">user@mondomaine.fr</a>)<br> > Released IP (did \
cli #ERX-40-b0-7a#E16#0 user <a \
href="mailto:user@mondomaine.fr">user@mondomaine.fr</a>)<br> > rlm_sql (sql): \
Released sql socket id: 13<br> > ++[sqlippool] returns ok<br>
> ++[exec] returns noop<br>
> [attr_filter.accounting_response] expand: %{User-Name} -><br>
> <a href="mailto:user@mondomaine.fr">user@mondomaine.fr</a><br>
> attr_filter: Matched entry DEFAULT at line 12<br>
> ++[attr_filter.accounting_response] returns updated<br>
> Sending Accounting-Response of id 73 to 10.0.5.200 port 50016<br>
> Finished request 1.<br>
> Cleaning up request 1 ID 73 with timestamp +10<br>
> Going to the next request<br>
> Waking up in 4.9 seconds.<br>
> Cleaning up request 0 ID 3 with timestamp +10<br>
> Ready to process requests.<br>
> ------------------------------------------------------------<br>
><br>
><br>
><br>
><br>
><br>
> ---------------------sqlippool.conf------------------------------<br>
> ## Configuration for the SQL based IP Pool module (rlm_sqlippool)<br>
> ##<br>
> ## The database schemas are available at:<br>
> ##<br>
> ## raddb/sql/DB/ippool.sql<br>
> ##<br>
> ## $Id$<br>
><br>
> sqlippool {<br>
><br>
> #########################################<br>
> ## SQL instance to use (from sql.conf) ##<br>
> ##<br>
> ## If you have multiple sql instances, such as "sql sql1 \
{...}",<br> > ## use the *instance* name here: sql1.<br>
> #########################################<br>
> sql-instance-name = "sql"<br>
><br>
> ## SQL table to use for ippool range and lease info<br>
> ippool_table = "radippool"<br>
><br>
> ## IP lease duration. (Leases expire even if Acct Stop packet is lost)<br>
> lease-duration = 3600<br>
><br>
> ## Attribute which should be considered unique per NAS<br>
> ## Using NAS-Port gives behaviour similar to rlm_ippool. (And ACS)<br>
> ## Using Calling-Station-Id works for NAS that send fixed NAS-Port<br>
> ## ONLY change this if you know what you are doing!<br>
> pool-key = "%{NAS-Port}"<br>
> # pool-key = "%{Calling-Station-Id}"<br>
><br>
> ################################################################<br>
> #<br>
> # WARNING: MySQL has certain limitations that means it can<br>
> # hand out the same IP address to 2 different users.<br>
> #<br>
> # We suggest using an SQL DB with proper transaction<br>
> # support, such as PostgreSQL, or using MySQL<br>
> # with InnoDB.<br>
> #<br>
> ################################################################<br>
><br>
> #<br>
> # Use the same database as configured in the "sql" module, \
"database"<br> > # configuration item. Change the \
"postgresql" name below to be the<br> > # same as the \
"database" field of the SQL module referred to in the<br> > # \
"sql-instance-name", above.<br> > #<br>
> #$INCLUDE sql/postgresql/ippool.conf<br>
> $INCLUDE sql/mysql/ippool.conf<br>
><br>
> ## Logging configuration. (Comment out to disable logging)<br>
> sqlippool_log_exists = "Existing IP: %{reply:Framed-IP-Address} \<br>
> (did %{Called-Station-Id} cli %{Calling-Station-Id} port %{NAS-Port} user<br>
> %{User-Name})"<br>
><br>
> sqlippool_log_success = "Allocated IP: %{reply:Framed-IP-Address} \
from<br> > %{control:Pool-Name} \<br>
> (did %{Called-Station-Id} cli %{Calling-Station-Id} port %{NAS-Port} user<br>
> %{User-Name})"<br>
><br>
> sqlippool_log_clear = "Released IP %{Framed-IP-Address}\<br>
> (did %{Called-Station-Id} cli %{Calling-Station-Id} user \
%{User-Name})"<br> ><br>
> sqlippool_log_failed = "IP Allocation FAILED from %{control:Pool-Name} \
\<br> > (did %{Called-Station-Id} cli %{Calling-Station-Id} port %{NAS-Port} \
user<br> > %{User-Name})"<br>
><br>
> sqlippool_log_nopool = "No Pool-Name defined \<br>
> (did %{Called-Station-Id} cli %{Calling-Station-Id} port %{NAS-Port} user<br>
> %{User-Name})"<br>
><br>
> }<br>
> -------------------------------------------------------------------<br>
><br>
><br>
><br>
><br>
><br>
> ------------------------------sql.conf---------------------------------<br>
> # -*- text -*-<br>
> ##<br>
> ## sql.conf -- SQL modules<br>
> ##<br>
> ## $Id$<br>
><br>
> ######################################################################<br>
> #<br>
> # Configuration for the SQL module<br>
> #<br>
> # The database schemas and queries are located in subdirectories:<br>
> #<br>
> # sql/DB/schema.sql Schema<br>
> # sql/DB/dialup.conf Basic dialup (including policy) queries<br>
> # sql/DB/counter.conf counter<br>
> # sql/DB/ippool.conf IP Pools in SQL<br>
> # sql/DB/ippool.sql schema for IP pools.<br>
> #<br>
> # Where "DB" is mysql, mssql, oracle, or postgresql.<br>
> #<br>
><br>
> sql {<br>
> #<br>
> # Set the database to one of:<br>
> #<br>
> # mysql, mssql, oracle, postgresql<br>
> #<br>
> database = "mysql"<br>
><br>
> #<br>
> # Which FreeRADIUS driver to use.<br>
> #<br>
> driver = "rlm_sql_${database}"<br>
><br>
> # Connection info:<br>
> server = "localhost"<br>
> #port = 3306<br>
> login = "userfreeradius"<br>
> password = "pwdfreeradius"<br>
><br>
> # Database table configuration for everything except Oracle<br>
> radius_db = "freeradius"<br>
> # If you are using Oracle then use this instead<br>
> # radius_db =<br>
> "(DESCRIPTION=(ADDRESS=(PROTOCOL=TCP)(HOST=localhost)(PORT=1521))(CONNECT_DATA=(SID=your_sid)))"<br>
><br>
> # If you want both stop and start records logged to the<br>
> # same SQL table, leave this as is. If you want them in<br>
> # different tables, put the start table in acct_table1<br>
> # and stop table in acct_table2<br>
> acct_table1 = "radacct"<br>
> acct_table2 = "radacct"<br>
><br>
> # Allow for storing data after authentication<br>
> postauth_table = "radpostauth"<br>
><br>
> authcheck_table = "radcheck"<br>
> authreply_table = "radreply"<br>
><br>
> groupcheck_table = "radgroupcheck"<br>
> groupreply_table = "radgroupreply"<br>
><br>
> # Table to keep group info<br>
> usergroup_table = "radusergroup"<br>
><br>
> # If set to 'yes' (default) we read the group tables<br>
> # If set to 'no' the user MUST have Fall-Through = Yes in the radreply \
table<br> > read_groups = yes<br>
><br>
> # Remove stale session if checkrad does not see a double login<br>
> deletestalesessions = yes<br>
><br>
> # Print all SQL statements when in debug mode (-x)<br>
> sqltrace = no<br>
> sqltracefile = ${logdir}/sqltrace.sql<br>
><br>
> # number of sql connections to make to server<br>
> num_sql_socks = 15<br>
><br>
> # number of seconds to dely retrying on a failed database<br>
> # connection (per_socket)<br>
> connect_failure_retry_delay = 60<br>
><br>
> # lifetime of an SQL socket. If you are having network issues<br>
> # such as TCP sessions expiring, you may need to set the socket<br>
> # lifetime. If set to non-zero, any open connections will be<br>
> # closed "lifetime" seconds after they were first opened.<br>
> lifetime = 0<br>
><br>
> # Maximum number of queries used by an SQL socket. If you are<br>
> # having issues with SQL sockets lasting "too long", you can<br>
> # limit the number of queries performed over one socket. After<br>
> # "max_qeuries", the socket will be closed. Use 0 for "no \
limit".<br> > max_queries = 0<br>
><br>
> # Set to 'yes' to read radius clients from the database ('nas' \
table)<br> > # Clients will ONLY be read on server startup. For performance<br>
> # and security reasons, finding clients via SQL queries CANNOT<br>
> # be done "live" while the server is running.<br>
> #<br>
> readclients = yes<br>
><br>
> # Table to keep radius client info<br>
> nas_table = "nas"<br>
><br>
> # Read driver-specific configuration<br>
> $INCLUDE sql/${database}/dialup.conf<br>
> }<br>
> ---------------------------------------------------------------------------<br>
><br>
> If these information is not enough please let me know.<br>
><br>
> Thanks,<br>
><br>
><br>
><br>
><br>
</div></div><div class="HOEnZb"><div class="h5">> -<br>
> List info/subscribe/unsubscribe? See<br>
> <a href="http://www.freeradius.org/list/users.html" \
target="_blank">http://www.freeradius.org/list/users.html</a><br>
-<br>
List info/subscribe/unsubscribe? See <a \
href="http://www.freeradius.org/list/users.html" \
target="_blank">http://www.freeradius.org/list/users.html</a><br> \
</div></div></blockquote></div><br></div>
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic