Message 2: Re: IP ADDRESS
from "Allen Mallari" <allen@fiax.net>
Message 3: Connect Rate
from "Jeffrey Stevison" <jstevison@emeraldsurf.net>
Message 4: Re: Lantronix LRS32 and RadiusNT
from "Mike@NetDotCom" <mikek@netdotcom.com>
Message 5: Re: Connect Rate
from Dale Reed <daler@iea-software.com>
Message 6: Re: Did this authenticate?
from Mike Noel <noel@integrityonline.com>
Message 7: Re: Did this authenticate?
from Dale Reed <daler@iea-software.com>
Message 8: OT: Transparent Proxy
from "Carlo Gibertini" <carlo@nw.com.br>
Message 9: NAS-Port-Type
from "Mourad Dahoumane" <mdahoumane@interway.lu>
Message 10: Re: The Incredible Expanding Database
from Scott Lagos <slagos@net1plus.com>
Message 11: A second chance RadiusNT server?
from Mike Noel <noel@integrityonline.com>
Message 12: Calls Table/Concurrency Control
from Michael Whisenant <mwhisen@airnet.net>
Message 13: Malformed Packet w/ Ascend and Rad2.5
from "George Mansoor (LS)" <ghmls@4Link.Net>
..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.
| Message 1 |
'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'
Subject: Re: IP ADDRESS
From: Dale Reed <daler@iea-software.com>
Date: Tue, 30 Jun 1998 00:37:57 -0700
Allen Mallari wrote:
>
> can you give me a detailed sample for clients file???
>
> because i can see. it's only WINNT\domain in the
> client file.
Assuming you wanted to give userx the ip 1.2.3.4, you would put
this entry ABOVE your DEFAULT entry. Change the password to
WINNT\domain if you still want them to auth against the NT SAM.
userx Password = "blah"
User-Service = Framed-User,
Framed-Protocol = PPP,
Framed-Address = 1.2.3.4
-- Dale E. Reed Jr. (daler@iea-software.com)_________________________________________________________________ IEA Software, Inc. | RadiusNT, Emerald, and NT FAQs Internet Solutions for Today | http://www.iea-software.com
..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.| Message 2 |'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'Subject: Re: IP ADDRESSFrom: "Allen Mallari" <allen@fiax.net>Date: Tue, 30 Jun 1998 01:11:34 -0700
Thanks a lot for your quick response. One more question.This means that I can assign userx inside the clientfile and he is also added to the WINNT\domain SAM?
Allen*********** REPLY SEPARATOR ***********
On 6/30/98, at 12:37 AM, Dale Reed wrote:
>Allen Mallari wrote:>> >> can you give me a detailed sample for clients file???>> >> because i can see. it's only WINNT\domain in the>> client file.>>Assuming you wanted to give userx the ip 1.2.3.4, you would put>this entry ABOVE your DEFAULT entry. Change the password to>WINNT\domain if you still want them to auth against the NT SAM.>>userx Password = "blah"> User-Service = Framed-User,> Framed-Protocol = PPP,> Framed-Address = 1.2.3.4>>-- >Dale E. Reed Jr. (daler@iea-software.com)>_________________________________________________________________> IEA Software, Inc. | RadiusNT, Emerald, and NT FAQs> Internet Solutions for Today | http://www.iea-software.com
..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.| Message 3 |'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'Subject: Connect RateFrom: "Jeffrey Stevison" <jstevison@emeraldsurf.net>Date: Tue, 30 Jun 1998 09:10:34 -0500
Is there any record in RADIUS that will tell me what connect rates user aregetting? I'm using Livingston PM-3's. I've looked all over the RADIUS logsbut can't find this. I'm using ODBC with SQL Server. Any help would beappreciated.
..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.| Message 4 |'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'Subject: Re: Lantronix LRS32 and RadiusNTFrom: "Mike@NetDotCom" <mikek@netdotcom.com>Date: Tue, 30 Jun 1998 11:11:21 -0400
I tried the single port version this time last year. Bought it as a testunit so I could test various radiusNT configurations/changes withoutdisrupting my main servers.
I had several problems getting the unit to make proper radius calls, spent alot of time on the phone with their tech support, tried several flashupgrades, etc.
In short I never got it to work right and ended up returning it. I then gota Livingston OR-HS on demo and had it working in 15-20 minutes.
They may have improved it since then and your looking at the 32 portversion. I would only buy it if I knew I could return it in 30 days in caseit didn't work right.
Mike
-----Original Message-----From: Glen Harvy <root@aquarius.com.au>To: RadiusNT@iea-software.com <RadiusNT@iea-software.com>Date: Tuesday, June 30, 1998 1:42 AMSubject: Lantronix LRS32 and RadiusNT
>Hi,>>I've been offered one of the above beasts and will need to run>RadiusNT/Emerald with it.>>Has anyone got any experience with Lantronix products in general and the>above in particular?>>>Glen.>-------------------------------------------------------------------->AQUARIUS Communications for all your Internet<>Fidonet needs><>Full ISP services<>FrontDoor Commercial<>TransX Internet/FTSC Mailer>voice(02)9977-3788<>fax(02)9977-3844<>bbs(02)9977-2855<>3:714/930>http://www.aquarius.com.au <> mailto:sales@aquarius.com.au>
..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.| Message 5 |'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'Subject: Re: Connect RateFrom: Dale Reed <daler@iea-software.com>Date: Tue, 30 Jun 1998 09:38:13 -0700
Jeffrey Stevison wrote:> > Is there any record in RADIUS that will tell me what connect rates user are> getting? I'm using Livingston PM-3's. I've looked all over the RADIUS logs> but can't find this. I'm using ODBC with SQL Server. Any help would be> appreciated.
Atribute #77 is Connect-Info and includes the connect rates. You canadd a field in the Calls table named ConnectInfo of type varchar (20)and restart RadiusNT to have it store the information.
-- Dale E. Reed Jr. (daler@iea-software.com)_________________________________________________________________ IEA Software, Inc. | RadiusNT, Emerald, and NT FAQs Internet Solutions for Today | http://www.iea-software.com
..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.| Message 6 |'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'Subject: Re: Did this authenticate?From: Mike Noel <noel@integrityonline.com>Date: Tue, 30 Jun 1998 09:55:07 -0700
>You might want to try some debug on the PM side and also test RadiusnT>with Radlogin (see the testing section of the RadiusNT 2.5 docs).>>The default port for auth is 1645 and Acct is 1646.
Ok. Thanks for the info. Radlogin is nice. The problem turned out to bea wrong secret... Dale, is there anyway for RadiusNT to notice a secretmismatch and print that out in the debug output? That would be nice.
_M_
..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.| Message 7 |'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'Subject: Re: Did this authenticate?From: Dale Reed <daler@iea-software.com>Date: Tue, 30 Jun 1998 10:13:28 -0700
Mike Noel wrote:> > >You might want to try some debug on the PM side and also test RadiusnT> >with Radlogin (see the testing section of the RadiusNT 2.5 docs).> >> >The default port for auth is 1645 and Acct is 1646.> > Ok. Thanks for the info. Radlogin is nice. The problem turned out to be> a wrong secret... Dale, is there anyway for RadiusNT to notice a secret> mismatch and print that out in the debug output? That would be nice.
Not really. If the decrypted password in -x15 debug is alwas garbage,thenthe secret is incorrect.
-- Dale E. Reed Jr. (daler@iea-software.com)_________________________________________________________________ IEA Software, Inc. | RadiusNT, Emerald, and NT FAQs Internet Solutions for Today | http://www.iea-software.com
..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.| Message 8 |'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'Subject: OT: Transparent ProxyFrom: "Carlo Gibertini" <carlo@nw.com.br>Date: Tue, 30 Jun 1998 17:52:58 -0300
Hello,
I am looking for a transparent proxy solution.
Can someone point me in the direction, and list the pro and cons of usingthis tecnologies?
Thanks in advance,
Carlo Gibertini
..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.| Message 9 |'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'Subject: NAS-Port-TypeFrom: "Mourad Dahoumane" <mdahoumane@interway.lu>Date: Tue, 30 Jun 1998 22:53:19 +0200
Dale,
Sorry to come back with this one again but I havethis problem of being able to connect to a Port-type that is not in mydefault profile.
Let me explain the exact situation: I have a PM2 with async ports and 1 BRIboard. Each is served by a different phone number.
Users defined as async should not be able to connect to the I and vis-versausers with ISDN should not be able to connect to the async.That how it should be.
But this doesn't work in my case, any ISDN user knowing the async dial upnumber can connect et vis-versa.
Profiles are loaded correctly and all users have the default assignedto the type of port they subscribed to.
Is this feature working for someone else there or is it just impossible todisnguish between isdn and async users ?
Mourad DahoumaneConnexion Interway
..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.| Message 10 |'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'Subject: Re: The Incredible Expanding DatabaseFrom: Scott Lagos <slagos@net1plus.com>Date: Tue, 30 Jun 1998 17:11:24 -0400
Agreed! Ya, we split it this way and that way and the growth is stillthere. The unfortunate part is we cant upgrade to SQL fast enought!
Thanks
Scott
At 07:13 PM 6/28/98 -0700, you wrote:>Scott Lagos wrote:>> >> Nice that you pointed out what isn't causing it Dale, but do you have an>> explanation as to why it would be happening?>>I didn't want to get into this discussion, because I don't like MS>Access.>If you want somethine to catalog your CDs, its a great choice. If you>want>to do anything serious with it, its a terrible choice. The engine is>just>not suited for scaleability, multi user interaction, or anything else>you>could "seriously" want to use it for.>>Putting a lot of transactions through access makes it grow. Why? If>I knew, I'd definately tell you. Something you could try with RadiusNT>2.5 (if you are not doing concurrency control) is to put your calls>table in a second MS Access database, and use two DSNs. I'm guessing>that if you have manual calls update, its that which is causing the >database to grow. If you split them and its the auth database that>grows (and is compactable) thats the issue. If its the acct database>that is the one, then you can look at what RadiusNT is doing with that>database. >>-- >Dale E. Reed Jr. (daler@iea-software.com)>_________________________________________________________________> IEA Software, Inc. | RadiusNT, Emerald, and NT FAQs> Internet Solutions for Today | http://www.iea-software.com>
..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.| Message 11 |'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'Subject: A second chance RadiusNT server?From: Mike Noel <noel@integrityonline.com>Date: Tue, 30 Jun 1998 14:33:58 -0700
When RadiusNT 2.5 gets an auth request, it checks its tables to see if theusername and password (and other check items) are correct. If they allare, it sends back an OK and some reply items. If the check items don'tmatch, it sends a reject.
I would like my Radius server to add a second step. If the check itemsfail, instead of sending a reject, I would like the server to forward therequest to a different server. Kinda like the roaming service thatRadiusNT 2.5 supports, but doing the second check only if the first one fails.
I call this a "second chance" server. Is it possible to set this up withRadiusNT 2.5?
_M_
..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.| Message 12 |'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'Subject: Calls Table/Concurrency ControlFrom: Michael Whisenant <mwhisen@airnet.net>Date: Tue, 30 Jun 1998 19:25:28 -0500
Help!
Recently, (last few days) the calls table is not getting updated properlywhich causes concurrency control fits. I have set another Radius server upand have just one chassis's accounting ONLY packets going to that machine.I see the packets arriving and see STOP packets arriving. Calls table isupdated on all START records, but the STOP records update about 90% of thetime. This is a major issue. I have thought it was timing, but I neversee long times in the update information. I am 1 hop away from the Radiusserver, the link is less than 40% used, the machine is a dual 400Mhz withONLY NT and RADIUS running. Average times on the packets is under 100ms.Is there a problem with v2.5? What is the manual calls update value andshould it be selected, and if so they I wonder why it has been working?Assistance and advice needed!!!!Michael J. WhisenantVice-President, OperationsAIRnet Internet Services, Inc.ph: (256) 704-4692 fax: (256) 704-2329
..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.| Message 13 |'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'Subject: Malformed Packet w/ Ascend and Rad2.5From: "George Mansoor (LS)" <ghmls@4Link.Net>Date: Tue, 30 Jun 1998 21:16:14 -0700
--------------642EE3DADEDAF99D0D298E3AContent-Type: text/plain; charset=us-asciiContent-Transfer-Encoding: 7bit
I saw the following in the mail archives:
> Steve Luper wrote: > > 2.5 looks good and I can do ODBC with WINNT using radlogin but when > > trying to use 2.5 in conjunction with an Ascend Max 2012, I get > > "Malformed packet" everytime a user tries to authenticate. > > From: Dale E. Reed Jr. <daler@iea-software.com> > If you send me a -x15 -X capture of the packet, I'll quote the > RFC telling you why its Malformed so you can send it to Ascend. > You might want to check which version of AOS you are running. > Anything before 5.0Ap42 is pretty problem proned.
For the record, Maxes with 6.0.2 do the same thing. I added the registry entry and that "fixed" the problem. Have you (Dale) sent support@ascend.com anything on this issue?
Josh Hillman hillman@talstar.com
There's a referecned to a a registry entry. What is this registry entrythat needs to be fixed?
thanks
George
--------------642EE3DADEDAF99D0D298E3AContent-Type: text/html; charset=us-asciiContent-Transfer-Encoding: 7bit
I saw the following in the mail archives:
> Steve Luper wrote:There's a referecned to a a registry entry. What is this registryentry that needs to be fixed?
> > 2.5 looks good and I can do ODBC with WINNT using radlogin butwhen
> > trying to use 2.5 in conjunction with an Ascend Max 2012, I get
> > "Malformed packet" everytime a user tries to authenticate.
>
> From: Dale E. Reed Jr. <daler@iea-software.com>
> If you send me a -x15 -X capture of the packet, I'll quote the
> RFC telling you why its Malformed so you can send it to Ascend.
> You might want to check which version of AOS you are running.
> Anything before 5.0Ap42 is pretty problem proned.For the record, Maxes with 6.0.2 do the same thing. I added the registry
entry and that "fixed" the problem. Have you (Dale) sent
support@ascend.com anything on this issue?Josh Hillman
hillman@talstar.comthanks
George--------------642EE3DADEDAF99D0D298E3A--