Message 2: unsubscribe
from "Cesar Laguna Vargas" <claguna@infotex.com.pe>
Message 3: Running debug in "windowed" mode?
from "Zak Wolfinger" <zak@cyberlink.com>
Message 4: server ports
from iml@interconnect.net
Message 5: SQL and RadiusNT 2.5 memory hog
from "Lawrence Watkins Work" <lwatkins-work@thepark.net>
Message 6: Re: SQL and RadiusNT 2.5 memory hog
from "Josh Hillman" <admin-maillist@talstar.com>
Message 7: Re: Running debug in "windowed" mode?
from "Dale E. Reed Jr." <daler@iea-software.com>
Message 8: Re: static IP and AS5200 problem
from Christian Simard <simardc@netc.net>
Message 9: Re: PPTP and RadiusNT
from Michael Whisenant <mwhisen@airnet.net>
Message 10: Re: static IP and AS5200 problem
from "Dale E. Reed Jr." <daler@iea-software.com>
Message 11: unsubscribe
from "Luis Simoni" <Luis.Simoni@eltec.es>
Message 12:
from "Allnet Management" <info@all.com.au>
..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.
| Message 1 |
'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'
Subject: RE: Upgrade 2.2 to 2.5 (Standard not Enterprise)
From: "George G. Stossel" <STOSSEL@DACOR.COM>
Date: Mon, 1 Jun 1998 08:18:25 -0400
Dale,
Thanks for the quick response.
I had hoped to avoid the testing issue by waiting until 2.5 was out of
beta. I should know better.
Turns out the problem was the backup copy of 2.2 that I had started to
fill in on authentication, which had stopped authenticating had been
intercepting the accounting transactions. Once I killed that on the
backup server, the server running 2.5 started working.
Sorry to waste your time, other than to suggest that the manual could
use some sprucing up in the area of 2.2 to 2.5 upgrade. I found
references in troubleshooting that referred to information in chapter 1
that I could not find.
George
George G. Stossel, President Phone:
419.352.3568
DACOR, Inc. FAX: 419.353.0149
519 W. Wooster Street Sales: 800.447.5333
Bowling Green, OH 43402-2763 03 USA Email:
stossel@dacor.com
WWW: http://www.dacor.com/
-----Original Message-----
From: Dale E. Reed Jr. [SMTP:daler@iea-software.com]
Sent: Sunday, May 31, 1998 2:06 AM
To: radiusnt@iea-software.com
Subject: Re: Upgrade 2.2 to 2.5 (Standard not Enterprise)
George Stossel wrote:
>
> I bit the bullet yesterday and upgraded a fully functioning
2.2
> (MSAccess) to 2.5 and it's now broken.
> I installed 2.5 to a different directory (C:\RadiusNT) than
2.2
> (C:\Radius).
> I Went through the 2.5 Admin and installed the service and
then
> restarted.
> It stopped authenticating.
Typically, testing something before putting it into production
is a good thing. Especially for mission critical things. :(
> I have spent most of the day trying to sort out the mess. I
have the
> authentication back up but I can't get accounting to work.
Debug mode
> shows me authentication requests but no accounting requests.
The MAX
> set up has not been touched in the area of authorization or
accounting,
> I have just added some names to the MAX Names/Passwords table.
What problems are you seeing in -x15 debug more? RadiusNT 2.5
actually uses the ports you specify in the registry (if you
specify them), whereas RadiusNT 2.2 did not. Have you verified
that the ports are correct?
--
Dale E. Reed Jr. (daler@iea-software.com)
_________________________________________________________________
IEA Software, Inc. | RadiusNT, Emerald, and NT FAQs
Internet Solutions for Today | http://www.iea-software.com
..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.
| Message 2 |
'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'
Subject: unsubscribe
From: "Cesar Laguna Vargas" <claguna@infotex.com.pe>
Date: Mon, 1 Jun 1998 09:15:41 -0500
unsubscribe radiusnt
..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.
| Message 3 |
'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'
Subject: Running debug in "windowed" mode?
From: "Zak Wolfinger" <zak@cyberlink.com>
Date: Mon, 1 Jun 1998 09:36:36 -0500
Dale,
While attempting to test and debug RadiusNT, I am occasionally
running it in -x15 mode in a window. If I leave it running like that
for a while, I start seeing duplicate auth requests and auth requests
sent to the backup radius server. I'm assuming that the problem is
that it's not auth'ing fast enough when running in a window. Can you
confirm that I'm on the right track? I'm hoping that once I get it
working like I want it to, I will change to running it as a service
and this will be a moot point?
Zak Wolfinger email: zak@cyberlink.com
CyberLink, Inc. voice: (219) 235-1400
213 S Main Street fax: (219) 235-1599
South Bend, IN 46601 www: http://www.wolfinger.net/zak
..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.
| Message 4 |
'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'
Subject: server ports
From: iml@interconnect.net
Date: Mon, 01 Jun 1998 11:10:24 -0500
Hey Dale I see this mentioned in the 2.5 Radius list
* New advanced Server/Port Access controls, including time of day
restrictions.
I sent message earlier about setting port types you mentioned in 2.5
(i.e. ISDN and analog users)
By the docs in Chapter 9 I assume this is the DNIS function?
Also, how do you work with the time of day restrictions? I didn't see
any mention in the docs about time of day restrictions. Will all this
work with Emerald we have been wanting to offer a daytime only account
for sometime now.
..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.
| Message 5 |
'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'
Subject: SQL and RadiusNT 2.5 memory hog
From: "Lawrence Watkins Work" <lwatkins-work@thepark.net>
Date: Mon, 1 Jun 1998 11:59:32 -0500
Hello all,
When I start my SQL server 6.5 SP4, it starts running using
about 110mb ram, it then slowly increases to about 250mb ram
at which point the servers starts complaining about running
out of virtual memory. The machine has 128mb physical memory
and a 130mb swap file. SQL is setup to use 90mb ram on
startup. Any ideas? Thanks in advance!
..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.
| Message 6 |
'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'
Subject: Re: SQL and RadiusNT 2.5 memory hog
From: "Josh Hillman" <admin-maillist@talstar.com>
Date: Mon, 1 Jun 1998 13:25:11 -0400
> From: Lawrence Watkins Work <lwatkins-work@thepark.net>
> When I start my SQL server 6.5 SP4, it starts running using
> about 110mb ram, it then slowly increases to about 250mb ram
> at which point the servers starts complaining about running
> out of virtual memory. The machine has 128mb physical memory
> and a 130mb swap file. SQL is setup to use 90mb ram on
> startup. Any ideas? Thanks in advance!
Are you sure you have it set to 90MB and not 180MB? When entering in the
value into SQL, it's in incriments of 2MB, so 45000 ~= 90MB and 90000 ~=
180MB
Josh Hillman
hillman@talstar.com
..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.
| Message 7 |
'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'
Subject: Re: Running debug in "windowed" mode?
From: "Dale E. Reed Jr." <daler@iea-software.com>
Date: Mon, 01 Jun 1998 11:37:30 -0700
Zak Wolfinger wrote:
>
> Dale,
> While attempting to test and debug RadiusNT, I am occasionally
> running it in -x15 mode in a window. If I leave it running like that
> for a while, I start seeing duplicate auth requests and auth requests
> sent to the backup radius server. I'm assuming that the problem is
> that it's not auth'ing fast enough when running in a window. Can you
> confirm that I'm on the right track? I'm hoping that once I get it
> working like I want it to, I will change to running it as a service
> and this will be a moot point?
There is a significant amount of "video" time involved in that.
Just minimize the window while you are not actually watching it,
and it will perform very similiarly to running as a service.
-- Dale E. Reed Jr. (daler@iea-software.com)_________________________________________________________________ IEA Software, Inc. | RadiusNT, Emerald, and NT FAQs Internet Solutions for Today | http://www.iea-software.com
..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.| Message 8 |'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'Subject: Re: static IP and AS5200 problemFrom: Christian Simard <simardc@netc.net>Date: Mon, 01 Jun 1998 15:20:35 -0400
Hi!
I've added the Framed-User and Protocol like you suggest me but I does not change anything.
Here is what I have in the RadConfigs table:
RadConfigID AccountID RadAttributeID Data
---------------------------------------------13 659 6 Framed-User 14 659 7 PPP 15 659 8 207.139.145.150 16 659 10 Broadcast-Listen 17 659 13 Van-Jacobsen-TCP-IP
Here is what I get from radius when I try to connect to the AS5200:
Allocating Statement...
SQL Statement: Select ra.RadAttributeID, Name, Data, Value, Type FromRadConfis rc, RadAttributes ra Where ra.RadAttributeID=rc.RadAttributeID ANDrc.AccountD=659
User-Service = Framed-User (1) Framed-Protocol = PPP (1) Framed-Address = 207.139.145.150 (1) Framed-Routing = Broadcast-Listen (1) Framed-Compression = Van-Jacobsen-TCP-IP (1)Freeing SQL Statement...Sending Ack of id 141 to cf8b9105 (cisco5-2.netc.net) User-Service = Login-User Framed-Protocol = PPP Framed-Address = 207.139.145.150 Framed-Routing = Broadcast Framed-Compression = Van-Jacobsen-TCP-IP
thanks for your help!
>Christian Simard wrote:>> >> I'v assigned a static IP Address to a user in the Radconfigs table.>> Without a static IP, there is no problem to get authentified by>> the CISCO AS5200 but with the static IP, the user get disconnected>> immediatly after "Framed-Address". Here is a the radius debug screen>> snapshoot and a debug of AAA made on the CISCO AS5200:>>You most likely need more than just Framed-Address. Try adding>User-Service=Framed-User, and Framed-Protocol=PPP as well.>RadiusNT does NOT add the RadConfigs entries to the RadATConfigs>entries. Its one or the other.> >> I use Radius NT 1.16 with SQL server but I have the same problem with 2.2>> >> thank you for your help!>> >> RADIUS NT:>> =========>> >> Allocating Statement...>> >> SQL Statement: Select ra.RadAttributeID, Name, Data, Value, Type From>> RadConfig>> s rc, RadAttributes ra Where ra.RadAttributeID=rc.RadAttributeID AND>> rc.AccountI>> D=659>> >> Framed-Address = 207.139.145.150 (1)>> Freeing SQL Statement...>> Sending Ack of id 181 to cf8b9105 (cisco5-2.netc.net)>> Framed-Address = 207.139.145.150>> >> Response Time: 230>> >> CISCO AS5200:>> ============>> >> AAA/AUTHEN/START (0): port='Async36' list='' action=LOGIN service=PPP>> AAA/AUTHEN/START (0): using "default" list>> AAA/AUTHEN/START (397743627): Method=RADIUS>> AAA/AUTHEN (397743627): status = GETPASS>> AAA/AUTHEN/CONT (397743627): continue_login>> AAA/AUTHEN (397743627): status = GETPASS>> AAA/AUTHEN (397743627): Method=RADIUS>> AAA/AUTHEN (397743627): status = PASS>> AAA/AUTHOR/LCP: authorize LCP>> AAA/AUTHOR (0): user='simardc'>> AAA/AUTHOR (0): send AV service=ppp>> AAA/AUTHOR (0): send AV protocol=lcp>> AAA/AUTHOR (623322683): Method=RADIUS>> AAA/AUTHOR (623322683): Post authorization status = ERROR>> >> Same login with Livingston RADIUS:>> =================================>> >> %LINK-3-UPDOWN: Interface Async26, changed state to up>> AAA/AUTHEN: create_user user='simardc' ruser='' port='Async26'>> rem_addr='async/8>> 718373' authen_type=2 service=3 priv=1>> AAA/AUTHEN/START (0): port='Async26' list='' action=LOGIN service=PPP>> AAA/AUTHEN/START (0): using "default" list>> AAA/AUTHEN/START (511843121): Method=RADIUS>> AAA/AUTHEN (511843121): status = GETPASS>> AAA/AUTHEN/CONT (511843121): continue_login>> AAA/AUTHEN (511843121): status = GETPASS>> AAA/AUTHEN (511843121): Method=RADIUS>> AAA/AUTHEN (511843121): status = PASS>> AAA/AUTHOR/LCP: authorize LCP>> AAA/AUTHOR (0): user='simardc'>> AAA/AUTHOR (0): send AV service=ppp>> AAA/AUTHOR (0): send AV protocol=lcp>> AAA/AUTHOR (638391897): Method=RADIUS>> AAA/AUTHOR (638391897): Post authorization status = PASS_REPL>> AAA/AUTHOR/LCP: Async26: Processing AV routing*true>> AAA/AUTHOR/FSM (0): can we start IPCP?>> AAA/AUTHOR (0): user='simardc'>> AAA/AUTHOR (0): send AV service=ppp>> AAA/AUTHOR (0): send AV protocol=ip>> AAA/AUTHOR (62202857): Method=RADIUS>> AAA/AUTHOR (62202857): Post authorization status = PASS_REPL>> AAA/AUTHOR/FSM: we can start IPCP for protocol 0x8021>> AAA/AUTHOR/IPCP: Async26: start: her address 0.0.0.0, we want207.139.145.169>> AAA/AUTHOR/IPCP: Async26: Processing AV addr=207.139.145.150>> AAA/AUTHOR/IPCP: Async26: Processing AV routing*true>> AAA/AUTHOR/IPCP: Async26: set routing to TRUE>> AAA/AUTHOR/IPCP: Async26: authorization succeeded>> AAA/AUTHOR/IPCP: Async26: done: her address 0.0.0.0, we want207.139.145.150>> AAA/AUTHOR/IPCP: Async26: authorization succeeded>> AAA/AUTHOR/IPCP: Async26: start: her address 0.0.0.0, we want207.139.145.150>> AAA/AUTHOR/IPCP: Async26: Processing AV addr=207.139.145.150>> AAA/AUTHOR/IPCP: Async26: Processing AV routing*true>>-- >Dale E. Reed Jr. (daler@iea-software.com)>_________________________________________________________________> IEA Software, Inc. | RadiusNT, Emerald, and NT FAQs> Internet Solutions for Today | http://www.iea-software.com>>
*----------------------------------------------------------*Christian Simard (System Administrator)Net Communications Inc.Acces-Cible Inc.Tel.: (514) 346-3401Fax : (514) 346-3587e-mail: simardc@netc.netweb: http://www.netc.net*----------------------------------------------------------*
..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.| Message 9 |'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'Subject: Re: PPTP and RadiusNTFrom: Michael Whisenant <mwhisen@airnet.net>Date: Mon, 01 Jun 1998 15:51:16 -0500
I know there has been quite a stir about RadiusNT v2.5, but can Dale orsomeone comment on this?
>> I want to issue a value for certain users upon dialin to set their framed>>protocol to PPTP and their default host to a particular value. ie PPTP at>>the dial-in. This would prevent a user from having to configure a PPTP>>adapter and make many companies I deal with happier. I use the USR TC>>chassis. Does anyone else do this? I am running radiusnt 2.5 and 2.41 I>>do not have these values loaded in as options, so if available, I would>>appreciate detailed information as to how to load them into the SQL>>database and how to implement. Also for reference only does anyone charge>>any additional for offering the PPTP in the chassis?>>>>Michael J. Whisenant>>Vice-President, Operations>>AIRnet Internet Services, Inc.>>ph: (256) 704-4692 fax: (256) 704-2329>> >Michael J. Whisenant>Vice-President, Operations>AIRnet Internet Services, Inc.>ph: (256) 704-4692 fax: (256) 704-2329> Michael J. WhisenantVice-President, OperationsAIRnet Internet Services, Inc.ph: (256) 704-4692 fax: (256) 704-2329
..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.| Message 10 |'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'Subject: Re: static IP and AS5200 problemFrom: "Dale E. Reed Jr." <daler@iea-software.com>Date: Mon, 01 Jun 1998 16:30:23 -0700
Christian Simard wrote:> > I've added the Framed-User and Protocol like you suggest me> but I does not change anything.> > Here is what I have in the RadConfigs table:> > RadConfigID AccountID RadAttributeID Data> > ---------------------------------------------> 13 659 6 Framed-User> 14 659 7 PPP> 15 659 8 207.139.145.150> 16 659 10 Broadcast-Listen> 17 659 13 Van-Jacobsen-TCP-IP
What about the value column? See below. > User-Service = Framed-User (1)> Framed-Protocol = PPP (1)> Framed-Address = 207.139.145.150 (1)> Framed-Routing = Broadcast-Listen (1)> Framed-Compression = Van-Jacobsen-TCP-IP (1)
RadiusNT uses the data column for string/IP address types andthe value column for integer types. Your value column forUser-Service is one, which is Login-User and what is actuallysent below. You need to change that to 2 for a framed user,as listed in the dictionary:
VALUE User-Service Login-User 1VALUE User-Service Framed-User 2
PPP is one for Framed-Protocol, but since you aren't specifyinga Framed service, its ignored. The framed-routing most likelyshould be removed.
> Sending Ack of id 141 to cf8b9105 (cisco5-2.netc.net)> User-Service = Login-User> Framed-Protocol = PPP> Framed-Address = 207.139.145.150> Framed-Routing = Broadcast> Framed-Compression = Van-Jacobsen-TCP-IP
-- Dale E. Reed Jr. (daler@iea-software.com)_________________________________________________________________ IEA Software, Inc. | RadiusNT, Emerald, and NT FAQs Internet Solutions for Today | http://www.iea-software.com
..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.| Message 11 |'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'Subject: unsubscribeFrom: "Luis Simoni" <Luis.Simoni@eltec.es>Date: Tue, 2 Jun 1998 08:11:40 +0200
unsubscribe radiusnt
..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.| Message 12 |'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'Subject: From: "Allnet Management" <info@all.com.au>Date: Tue, 2 Jun 1998 16:23:40 +1000
unsubscribe radiusnt