Re: radius -> radius
This is a discussion on Re: radius -> radius within the FreeRADIUS Users forums, part of the Networking and Network Related category; Hi, Its ok to use a second sql backend , not to send the request to a second=20 homeradius .. Regards ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
02-16-2005
|
|||
|
|||
Re: radius -> radius
Hi,
Its ok to use a second sql backend , not to send the request to a second=20 homeradius .. Regards Thomas Junior Gillespie wrote: >Here's how I did it. Note that there are many ways to do this. > >In radiusd.conf > >Goto the modules section, and modify the $INCLUDE for sql.conf to look l= ike this. > >$INCLUDE ${confdir}/sql1.conf >$INCLUDE ${confdir}/sql2.conf ># adding as many sql db as needed. > >Then also add right below it the following > >sql sql1 { >} >sql sql2 { >} ># Must reflect the $INCLUDE from above. > >###The Authorize section must have something similar to the following > > group { > sql1 { > fail =3D 1 > notfound =3D 2 > noop =3D return > ok =3D return > updated =3D return > reject =3D return > userlock =3D return > invalid =3D return > handled =3D return > } > sql2 { > fail =3D 1 > notfound =3D 2 > noop =3D return > ok =3D return > updated =3D return > reject =3D return > userlock =3D return > invalid =3D return > handled =3D return > } > } >## Of course this too will need to reflect the modules section. >## May also want to add it into the accounting section. This will need = to be modified regardless. Will need to modify it to look at sql1 etc. > >You must then copy original sql.conf to sql1.conf...sql2.conf...and so o= n. >Then modify the sql#.conf to meet your needs with db info. You will nee= d to make the following change in the sql#.conf: > >sql { > to=20 >sql sql1 { # This is mandatory! > ># Now restart radiusd with radiusd -X to see any errors you may get. > >This should work for you. Let me know if it does or doesn=92t. > > >Junior Gillespie >NOC Engineer >T-SPEED Broadband Communications, Inc.=20 >1-800-4TSpeed >972-458-0909 >support@t-speed.com >http://www.t-speed.com/ >The information contained in this e-mail may be privileged, confidential= , and protected from disclosure. If you are not the intended recipient, y= ou are hereby notified that any dissemination, distribution or duplicatio= n of this communication is strictly prohibited. If you have received this= communication in error, please notify the sender immediately and delete = all copies. >-----Original Message----- >From: freeradius-users-admin@lists.freeradius.org [mailto:freeradius-use= rs-admin@lists.freeradius.org] On Behalf Of Dmitry S. Vlasov >Sent: Monday, February 14, 2005 9:45 AM >To: freeradius-users@lists.freeradius.org >Subject: radius -> radius > >Hello! >How I can create following scheme: >Two freeradius servers, called "A" and "B". > >1) When User found but got Reject from server "A", "A" try to proxy this= =20 >request to "B" >or >2) When User not found on "A", "A" proxy request to "B". > >Thank you! > =20 > - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html 
|
Linear Mode
