Re: (PM) Radius (fwd)

Danny ter Haar (list-portmaster-users@news.cistron.nl)
7 Nov 1997 12:24:01 +0100

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Danny ter Haar: "Re: (PM) Radius (fwd)"
Previous message: Alan L. Wendt: "(PM) MRTG Modem Traffic"
In reply to: Karl Denninger : "Re: (PM) Radius (fwd)"

MegaZone <megazone@livingston.com> wrote:
>This is why another protocol - like SNMP - is used. Let's use a simple
>case where the limit is one login per user.
>
>Request comes in - RADIUS checks database.

The cistron radius checkes the rad_utmp file which is updated
constantly.

>1 - user is not shown as logged in in database. ie, STOPs have been
>received for all Starts. ACK

Check

>2 - user is shown as logged in in database on NAS X. Now you use SNMP to
>query NAS X to be *sure* the user is still on.

That's exactly what cistron radius does.

We use nice utilities like sac to do some statistics on avarage login time etc.
It's also handy to check someone with:

radlast -10 username

Danny

-- 
Danny ter Haar |   Cistron Internet Services       |  Unix & Internet
dth@het.net    | finger dth@cistron.nl for PGP-key |    specialists
 == where do you want to go tomorrow ? linux axp   www.debian.org  ==
-
To unsubscribe, email 'majordomo@livingston.com' with
'unsubscribe portmaster-users' in the body of the message.

Next message: Danny ter Haar: "Re: (PM) Radius (fwd)"
Previous message: Alan L. Wendt: "(PM) MRTG Modem Traffic"
In reply to: Karl Denninger : "Re: (PM) Radius (fwd)"