I have simultaneous-use working w/ checkrad and snmp. Works great there. Is there any way to make FreeRADIUS disconnect the existing session when checkrad runs instead of just denying the new connection?
EDIT: Maybe modifying the checkrad script to just do an SNMP3 write? Can SNMP be used to disconnect a session if the portid is known?
Re: FreeRADIUS Simultaneous-Use and Disconnect ?
It is not possible to disconnect user with SNMP (any user).
Disconnect messages (PoD) could be used to disconnect the user (ppp).
Disconnect messages (PoD) could be used to disconnect the user (ppp).
-
-
roadracer96
Forum Veteran
- Posts: 733
- Joined:
Re: FreeRADIUS Simultaneous-Use and Disconnect ?
Thanks.. Already got it. Modified the checkrad script to send a disconnect-message when a new authentication comes in. Works like a champ!
Re: FreeRADIUS Simultaneous-Use and Disconnect ?
so share with us !
-
-
roadracer96
Forum Veteran
- Posts: 733
- Joined:
Re: FreeRADIUS Simultaneous-Use and Disconnect ?
Code: Select all
52,53c52,53
< $debug = "";
< #$debug = "$logdir/checkrad.log";
---
> #$debug = "";
> $debug = "$logdir/checkrad.log";
158a159,168
> sub mtdisconnect {
> my ($client) = @_;
> local $_;
>
> print LOG " radclient ip.ad.re.ss:3799 disconnect radiussecret
> $_ = `echo "User-Name := $client" | radclient ip.ad.re.ss:3799 disconnect radiussecret
>
> return $_;
> }
>
1186,1187c1196,1197
<
<
---
> @mtdiscon = mtdisconnect($ARGV[3]);
> foreach $line ( @mtdiscon ){
1196a1207
> }
This is a diff agains a centos 5.5 freeradius default checkrad script. When client tries to reconnect, it will disconnect the existing session, then they client has to reconnect again.
Works for my purposes.