1

(0 replies, posted in Radius Configuration)

I want to change the user passwords store in database from cleartext password to MD5 password.
I run the MD5 function on my php login page and send the hash password compare with the hash password in radius.
But it always login fail.
How can I config it?Please help...........


After I run radiusd -X on command mode~~
I found that the password hash send to radius server only send the first 16 character of the md5 hash~~
How to make it send full length of the hash??

2

(7 replies, posted in Chillispot Configuration)

dextair wrote:

so you can do as it in your chilli.conf :
net 192.168.182.0/24
dynip 192.168.182.128/25
statip 192.168.182.0/25
et voila !

Thank for your suggestion!
But I think if I set the subnet mask to /25 is too much for me(static IP).
I just need one.
Any other suggestion? Use MAC auth will more easy? And how to set up?
I already try to assign a static IP in wireless client directly, but it cannot rediect to login page when I assign a IP for it.
Thank you very much

3

(0 replies, posted in Radius Configuration)

I have been inserted a attribute "WISPr-Redirection-URL" into radreply table.
But I found it cannot work.
How should I config it?

4

(7 replies, posted in Chillispot Configuration)

Framed-IP-Address (radius atribute) only work with mac auth.

How to set mac auth?

How do I enable static IP?
With both WPA and MAC authentication you can include the Radius attribute Framed-IP-Address in the Access-Accept message sent back to ChilliSpot by the Radius server. For this to work
you also need to specify the statip option in /etc/chilli.conf.

What the format of statip option in /etc/chilli.conf? I already try 192.168.182.2 and 192.168.182.2/24
It still can't work

5

(0 replies, posted in Chillispot Configuration)

I use the default network in tag dynip => 192.168.182.0/24.
I want to use radius attribute "Framed-IP-Address" to assign a static ip for user =>192.168.182.2/24.

I see the FAQ in chilli website:

How do I enable static IP?
With both WPA and MAC authentication you can include the Radius attribute Framed-IP-Address in the Access-Accept message sent back to ChilliSpot by the Radius server. "For this to work
you also need to specify the statip option in /etc/chilli.conf."

He said that I also need to specify the statip option in chilli.conf.
What the format of value I should set only for 192.168.182.2/24?

Thank you very much

7

(0 replies, posted in Radius Configuration)

Any one have guideline talk about how to set up CHAP authentication in freeradius with chillispot?
Except create two attibute CHAP-Password and CHAP-Challenge, any other step I should be done?
What was the value of CHAP-Password, MD5(password)? Any other things I should config in chillispot?

I want to create a guest account for more than one users(guest) to login at a time, is it possible?
Because in normal case, I find that a acconut only for one user login at a time, but I don't want to create too many accounts for each guest.

thank, dmkhn!
I find the problem now. In accounting, I un-comment both sql and sql_log and this lead the counter cannot work. After I comment sql_log and add dailycounter in instantiate, it can work well.
But I still have a problem that is I cannot user both files and sql in authorize. When I un-comment both, login success in files but fail in sql. Comment files sql can success but I cannot use the account in files.

dmkhn wrote:

i remember - in my case i use traffic limit counter/ If it used for client account, on login pop-up page time counter start from 00:00 and counts in forward direction. But when client reach limit, chilli disconnect him. So just try - setup little amount of time for "test user" account, and login to chilli by this "test user". May be chilli will succesfully disconnect him after that time. Or another posibility - when "test user" reach limit of time, logout from chilli, and try to login again. Chilli must don't let him to login...

I try to set the value to 60 seconds and reload the page in login client. The client still can access to Internet after reach the limit time.

and one more (but it's maybe don't counts for your trouble) - did you added chillispot dictionary in radius configuration?

chillispot dictionary???what this?

Are you using this counter from sqlcounter.conf?
Did you included sqlcounter.conf in your radius configuration?

I use the module in radiusd.conf(I use the yum install 1.1.X ver, it default in radiusd.conf). The content the same as sqlcounter.conf, I think no necessary to create a new file sqlcounter.conf.

dmkhn wrote:
yky202082 wrote:

I have a testing before is try to add a attribute "Session-Timeout" to radreply table directly, it can work fine and count down form the value I set in radreply table to 00:00:00 (I use hotspotlogin.php)

so, add your "Max-Daily-Session" to table radreply too

I already try it and it doesn't work. The result is the same as normal login and start from 00:00:00.
I see the Implementation in freeradius wiki and it teach me insert this attribute and set the value in radcheck table. I follow the instruction in freeradius wiki still won't work.><
I follow this instruction
http://wiki.freeradius.org/Rlm_sqlcount … ementation

try stop session, then start session again.

I try a lot before.But the counter in pop up window still start from 00:00:00 and no limit time in session
I have a testing before is try to add a attribute "Session-Timeout" to radreply table directly, it can work fine and count down form the value I set in radreply table to 00:00:00 (I use hotspotlogin.php)

maybe you have same user account in both bases - in "files" and in "sql"

I am sure there have not the same account

how can I make it success?
I try many time still cannot count down.

my config =>
sqlcounter dailycounter {
        counter-name = Daily-Session-Time
        check-name = Max-Daily-Session
        reply-name = Session-Timeout
        sqlmod-inst = sql
        key = User-Name
        reset = daily
        query = "SELECT SUM(AcctSessionTime - \
                 GREATEST((%b - UNIX_TIMESTAMP(AcctStartTime)), 0)) \
                 FROM radacct WHERE UserName='%{%k}' AND \
                 UNIX_TIMESTAMP(AcctStartTime) + AcctSessionTime > '%b'"
}

authorize {
    ....
        sql
        dailycounter
        ....
}
radcheck table=>
+----+----------+-------------------+----+----------+
| id | UserName | Attribute         | op | Value    |
+----+----------+-------------------+----+----------+
|  1 | test     | Max-Daily-Session | := | 600       |
|  7 | test     | Password          | := | testpass |
+----+----------+-------------------+----+----------+

when I change the order in authorize
dailycounter
sql
login fail.........
What step am I missing or wrong during config ?
And I want to ask when I uncomment both files and sql in authorize, login will be fail, after I comment one of these two, login become success, what happen?

15

(3 replies, posted in Fedora Core)

Thank for your help, I find what I need now

thank for your help

What is the function of uamhomepage in chilli.conf?
When I uncomment this tag, redirect to login page success but show a notice like "connection must though chilli deamon".
No problem when I just use uamserver tag.

18

(3 replies, posted in Fedora Core)

where can I find chillispot log files?

19

(7 replies, posted in Chillispot Configuration)

Thank for your help

20

(7 replies, posted in Chillispot Configuration)

Hi everyone,
How to set IP address in range from 192.168.182.3/24 to 192.168.182.200/24?
If not possible, how can I set static IP for client?
I want to reserve 192.168.182.2 for static ip.