[Serusers] Re: [Serhelp] radius-server with sip attributes problem

varala ramakanth varala_kanth at yahoo.com
Thu Jun 3 06:40:52 CEST 2004


hello janak,

this is my radius client dictionary file

iam using 

#
# Updated 97/06/13 to livingston-radius-2.01
miquels at cistron.nl
#
#       This file contains dictionary translations for
parsing
#       requests and generating responses.  All
transactions are
#       composed of Attribute/Value Pairs.  The value
of each attribute
#       is specified as one of 4 data types.  Valid
data types are:
#
#       string - 0-253 octets
#       ipaddr - 4 octets in network byte order
#       integer - 32 bit value in big endian order
(high byte first)
#       date - 32 bit value in big endian order -
seconds since
#                                       00:00:00 GMT, 
Jan.  1,  1970
#
#       Enumerated values are stored in the user file
with dictionary
#       VALUE translations for easy administration.
#
#       Example:
#
#       ATTRIBUTE         VALUE
#       ---------------   -----
#       Framed-Protocol = PPP
#       7               = 1     (integer encoding)
#

#
#       Following are the proper new names. Use these.
#
ATTRIBUTE       User-Name               1       string
ATTRIBUTE       Password                2       string
ATTRIBUTE       CHAP-Password           3       string
ATTRIBUTE       NAS-IP-Address          4       ipaddr
ATTRIBUTE       NAS-Port-Id             5      
integer
ATTRIBUTE       Service-Type            6      
integer
ATTRIBUTE       Framed-Protocol         7      
integer
ATTRIBUTE       Framed-IP-Address       8       ipaddr
ATTRIBUTE       Framed-IP-Netmask       9       ipaddr
ATTRIBUTE       Framed-Routing          10     
integer
ATTRIBUTE       Filter-Id               11      string
ATTRIBUTE       Framed-MTU              12     
integer
ATTRIBUTE       Framed-Compression      13     
integer
ATTRIBUTE       Login-IP-Host           14      ipaddr
ATTRIBUTE       Login-Service           15     
integer
ATTRIBUTE       Login-TCP-Port          16     
integer
ATTRIBUTE       Reply-Message           18      string
ATTRIBUTE       Callback-Number         19      string
ATTRIBUTE       Callback-Id             20      string
ATTRIBUTE       Framed-Route            22      string
ATTRIBUTE       Framed-IPX-Network      23      ipaddr
ATTRIBUTE       State                   24      string
ATTRIBUTE       Class                   25      string
ATTRIBUTE       Vendor-Specific         26      string
ATTRIBUTE       Session-Timeout         27     
integer
ATTRIBUTE       Idle-Timeout            28     
integer
ATTRIBUTE       Termination-Action      29     
integer
ATTRIBUTE       Called-Station-Id       30      string
ATTRIBUTE       Calling-Station-Id      31      string
ATTRIBUTE       NAS-Identifier          32      string
ATTRIBUTE       Proxy-State             33      string
ATTRIBUTE       Login-LAT-Service       34      string
ATTRIBUTE       Login-LAT-Node          35      string
ATTRIBUTE       Login-LAT-Group         36      string
ATTRIBUTE       Framed-AppleTalk-Link   37     
integer
ATTRIBUTE       Framed-AppleTalk-Network        38    
 integer
ATTRIBUTE       Framed-AppleTalk-Zone   39      string
ATTRIBUTE       Acct-Status-Type        40     
integer
ATTRIBUTE       Acct-Delay-Time         41     
integer
ATTRIBUTE       Acct-Input-Octets       42     
integer
ATTRIBUTE       Acct-Output-Octets      43     
integer
ATTRIBUTE       Acct-Session-Id         44      string
ATTRIBUTE       Acct-Authentic          45     
integer
ATTRIBUTE       Acct-Session-Time       46     
integer
ATTRIBUTE       Acct-Input-Packets      47     
integer
ATTRIBUTE       Acct-Output-Packets     48     
integer
ATTRIBUTE       Acct-Terminate-Cause    49     
integer
ATTRIBUTE       Acct-Multi-Session-Id   50      string
ATTRIBUTE       Acct-Link-Count         51     
integer
ATTRIBUTE       Event-Timestamp         55     
integer
ATTRIBUTE       CHAP-Challenge          60      string
ATTRIBUTE       NAS-Port-Type           61     
integer
ATTRIBUTE       Port-Limit              62     
integer
ATTRIBUTE       Login-LAT-Port          63     
integer
ATTRIBUTE       Connect-Info            77      string

#
#       RFC3162 IPv6 attributes
#
ATTRIBUTE       NAS-IPv6-Address        95      string
ATTRIBUTE       Framed-Interface-Id     96      string
ATTRIBUTE       Framed-IPv6-Prefix      97      string
ATTRIBUTE       Login-IPv6-Host         98      string
ATTRIBUTE       Framed-IPv6-Route       99      string
ATTRIBUTE       Framed-IPv6-Pool        100     string

#
#       Experimental Non Protocol Attributes used by
Cistron-Radiusd
#
ATTRIBUTE       Huntgroup-Name          221     string
ATTRIBUTE       User-Category           1029    string
ATTRIBUTE       Group-Name              1030    string
ATTRIBUTE       Simultaneous-Use        1034   
integer
ATTRIBUTE       Strip-User-Name         1035   
integer
ATTRIBUTE       Fall-Through            1036   
integer
ATTRIBUTE       Add-Port-To-IP-Address  1037   
integer
ATTRIBUTE       Exec-Program            1038    string
ATTRIBUTE       Exec-Program-Wait       1039    string
ATTRIBUTE       Hint                    1040    string

#
#       Non-Protocol Attributes
#       These attributes are used internally by the
server
#
ATTRIBUTE       Expiration                21    date
ATTRIBUTE       Auth-Type               1000   
integer
ATTRIBUTE       Menu                    1001    string
ATTRIBUTE       Termination-Menu        1002    string
ATTRIBUTE       Prefix                  1003    string
ATTRIBUTE       Suffix                  1004    string
ATTRIBUTE       Group                   1005    string
ATTRIBUTE       Crypt-Password          1006    string
ATTRIBUTE       Connect-Rate            1007   
integer

#
#       Integer Translations
#

#       User Types

VALUE           Service-Type            Login-User    
         1
VALUE           Service-Type            Framed-User   
         2
VALUE           Service-Type           
Callback-Login-User     3
VALUE           Service-Type           
Callback-Framed-User    4
VALUE           Service-Type            Outbound-User 
         5
VALUE           Service-Type           
Administrative-User     6
VALUE           Service-Type           
NAS-Prompt-User         7

#       Framed Protocols

VALUE           Framed-Protocol         PPP           
         1
VALUE           Framed-Protocol         SLIP          
         2

#       Framed Routing Values

VALUE           Framed-Routing          None          
         0
VALUE           Framed-Routing          Broadcast     
         1
VALUE           Framed-Routing          Listen        
         2
VALUE           Framed-Routing         
Broadcast-Listen        3

#       Framed Compression Types

VALUE           Framed-Compression      None          
         0
VALUE           Framed-Compression     
Van-Jacobson-TCP-IP     1

#       Login Services

VALUE           Login-Service           Telnet        
         0
VALUE           Login-Service           Rlogin        
         1
VALUE           Login-Service           TCP-Clear     
         2
VALUE           Login-Service           PortMaster    
         3

#       Status Types

VALUE           Acct-Status-Type        Start         
         1
VALUE           Acct-Status-Type        Stop          
         2
VALUE           Acct-Status-Type        Alive         
         3
VALUE           Acct-Status-Type        Accounting-On 
         7
VALUE           Acct-Status-Type        Accounting-Off
         8

#       Authentication Types

VALUE           Acct-Authentic          RADIUS        
         1
VALUE           Acct-Authentic          Local         
         2
VALUE           Acct-Authentic          PowerLink128  
         100

#       Termination Options

VALUE           Termination-Action      Default       
         0
VALUE           Termination-Action      RADIUS-Request
         1

#       NAS Port Types, available in 3.3.1 and later

VALUE           NAS-Port-Type           Async         
         0
VALUE           NAS-Port-Type           Sync          
         1
VALUE           NAS-Port-Type           ISDN          
         2
VALUE           NAS-Port-Type           ISDN-V120     
         3
VALUE           NAS-Port-Type           ISDN-V110     
         4

#       Acct Terminate Causes, available in 3.3.2 and
later

VALUE           Acct-Terminate-Cause    User-Request  
         1
VALUE           Acct-Terminate-Cause    Lost-Carrier  
         2
VALUE           Acct-Terminate-Cause    Lost-Service  
         3
VALUE           Acct-Terminate-Cause    Idle-Timeout  
         4
VALUE           Acct-Terminate-Cause   
Session-Timeout         5
VALUE           Acct-Terminate-Cause    Admin-Reset   
         6
VALUE           Acct-Terminate-Cause    Admin-Reboot  
         7
VALUE           Acct-Terminate-Cause    Port-Error    
         8
VALUE           Acct-Terminate-Cause    NAS-Error     
         9
VALUE           Acct-Terminate-Cause    NAS-Request   
         10
VALUE           Acct-Terminate-Cause    NAS-Reboot    
         11
VALUE           Acct-Terminate-Cause    Port-Unneeded 
         12
VALUE           Acct-Terminate-Cause    Port-Preempted
         13
VALUE           Acct-Terminate-Cause    Port-Suspended
         14
VALUE           Acct-Terminate-Cause   
Service-Unavailable     15
VALUE           Acct-Terminate-Cause    Callback      
         16
VALUE           Acct-Terminate-Cause    User-Error    
         17
VALUE           Acct-Terminate-Cause    Host-Request  
         18

#
#       Non-Protocol Integer Translations
#

VALUE           Auth-Type               Local         
         0
VALUE           Auth-Type               System        
         1
VALUE           Auth-Type               SecurID       
         2
VALUE           Auth-Type               Crypt-Local   
         3
VALUE           Auth-Type               Reject        
         4

#
#       Cistron extensions
#
VALUE           Auth-Type               Pam           
         253
VALUE           Auth-Type               Accept        
         254

#
#       Experimental Non-Protocol Integer Translations
for Cistron-Radiusd
#
VALUE           Fall-Through            No            
         0
VALUE           Fall-Through            Yes           
         1
VALUE           Add-Port-To-IP-Address  No            
         0
VALUE           Add-Port-To-IP-Address  Yes           
         1

#
#       Configuration Values
#       uncomment these two lines to turn account
expiration on
#

#VALUE          Server-Config          
Password-Expiration     30
#VALUE          Server-Config          
Password-Warning        5

#
# $Id: dictionary.ser,v 1.2 2003/09/11 22:05:08 janakj
Exp $
#
# SIP RADIUS attributes
#
# Schulzrinne indicates attributes according to
# draft-schulzrinne-sipping-radius-accounting-00
#
# Sterman indicates attributes according to
# draft-sterman-aaa-sip-00
#
# Standard indicates a standard RADIUS attribute
# which is missing in radiusclient dictionary
#
# Digest indicates attributes according to
#
# Proprietary indicates an attribute that hasn't
# been standardized
#

### acc ###
ATTRIBUTE Sip-Method                   101  integer   
# Schulzrinne
ATTRIBUTE Sip-Response-Code            102  integer   
# Schulzrinne
ATTRIBUTE Sip-Cseq                     103  string    
# Schulzrinne
ATTRIBUTE Sip-To-Tag                   104  string    
# Schulzrinne
ATTRIBUTE Sip-From-Tag                 105  string    
# Schulzrinne
ATTRIBUTE Sip-Branch-Id                106  string    
# Schulzrinne
ATTRIBUTE Sip-Translated-Req-ID        107  string    
# Schulzrinne
ATTRIBUTE Sip-Source-Ip-Address        108  ipaddr    
# Schulzrinne
ATTRIBUTE Sip-Source-Port              109  integer   
# Schulzrinne
VALUE Service-Type Sip-Session          15            
# Schulzrinne

### auth_radius ###
# Sip-Session service type is already defined in acc
section
VALUE Service-Type Call-Check           10            
# Standard
VALUE Service-Type Emergency-Call       13            
# Proprietary

ATTRIBUTE Digest-Response              206     string 
# Sterman
ATTRIBUTE Digest-Attributes            207     string 
# Sterman

ATTRIBUTE Sip-Uri-User                 208     string 
# Proprietary
ATTRIBUTE Sip-Rpid                     213     string 
# Proprietary

ATTRIBUTE Digest-Realm                1063     string 
# Sterman
ATTRIBUTE Digest-Nonce                1064     string 
# Sterman
ATTRIBUTE Digest-Method               1065     string 
# Sterman
ATTRIBUTE Digest-Uri                  1066     string 
# Sterman
ATTRIBUTE Digest-Qop                  1067     string 
# Sterman
ATTRIBUTE Digest-Algorithm            1068     string 
# Sterman
ATTRIBUTE Digest-Body-Digest          1069     string 
# Sterman
ATTRIBUTE Digest-Cnonce               1070     string 
# Sterman
ATTRIBUTE Digest-Nonce-Count          1071     string 
# Sterman
ATTRIBUTE Digest-User-Name            1072     string 
# Sterman

### group_radius ###
VALUE Service-Type Group-Check          12            
# Proprietary

ATTRIBUTE Sip-Group                    211     string 
# Proprietary

### uri_radius ###
# Call-Check service type is already define in
auth_radius


--- Jan Janak <jan at iptel.org> wrote:
> The dictionary the radiusclient library is using is
> probably malformed,
> please post the dictionary here, including changes
> you have made
> (radiuslient dictionary, not radius server if they
> are different).
> 
>   Jan.
> 
> On 30-05 22:56, varala ramakanth wrote:
> > hello friends,
> > 
> > i have installed free radius server-0.9.3 and
> radius
> > client-0.3.2
> > 
> > and followed the ser howto 
> > 
> > radtest is success full
> > 
> > and i updated dictionary of radius client with of
> in
> > web 
> > available dictionary.ser ( of sip related
> attributies>
> > 
> > and i included statement of INCLUDE <path of
> > dicionary.ser>
> > 
> > when i start radiusd -x its givens error as
> > 
> > Errors reading dictionary: dict_init:
> > /usr/local/etc/raddb/dictionary[23]: Couldn't open
> > dictionary "     
> > /usr/local/etc/raddb/dictionary.ser": No such file
> or
> > directory
> > Errors reading radiusd.conf
> > 
> > so i gone to "/usr/local/share/freeradius/" 
> > path and appended whole dictionary.ser contets
> into it
> > and also kept link as INclude dictinary.ser
> > 
> > even though if i create packet "digest" 
> > 
> > User-Name = "test", Digest-Response =
> > "631d6d73147add2f9e437f59bbc3aeb7", 
> > Digest-Realm = "testrealm", Digest-Nonce =
> "1234abcd"
> > , 
> > Digest-Method = "INVITE", Digest-URI =
> > "sip:5555551212 at example.com", 
> > Digest-Algorithm = "MD5", Digest-User-Name =
> "test"
> > 
> > and run with 
> > 
> > root@/usr/local/src# radclient -f digest localhost
> > auth <shared_secret>
> > 
> > it s giveng error as 
> > 
> > radclient:No token read where we expected an
> attribute
> > name
> > 
> > 
> > i checked both in client and server 
> > dictionary attributes are present for the all that
> > which are included in the pakcet.
> > 
> > if include only 
> > User-Name = "test",User-Password="test" in the
> digest
> > packet
> > 
> > and check it s sucessfull so what may be the wrong
> > sip method digest packet
> > 
> > 
> > please help me
> > 
> > with regards
> > rama kanth
> > 
> > 
> > 
> > 	
> > 		
> > __________________________________
> > Do you Yahoo!?
> > Friends.  Fun.  Try the all-new Yahoo! Messenger.
> > http://messenger.yahoo.com/ 
> > 
> > _______________________________________________
> > Serhelp mailing list
> > serhelp at lists.iptel.org
> > http://lists.iptel.org/mailman/listinfo/serhelp



	
		
__________________________________
Do you Yahoo!?
Friends.  Fun.  Try the all-new Yahoo! Messenger.
http://messenger.yahoo.com/ 




More information about the sr-users mailing list