freeradius


freeradius request proxy to freediameter


I am looking to proxy EAP-SIM request from freeRADIUS to freeDiameter, the process involves:
Set proxy on freeRADIUS (my status is requested is not being proxied)
Set NAS on freeDiameter (due to lack of documentation I am not able to understand where to define Radius as a NAS)
Send message back to freeRADIUS (I think this will be done automatically by Diameter once the above tasks are completed)
my current status is freeRADIUS is:
[suffix] Looking up realm "wlan.mnc010.mcc404.3gppnetwork.org" for ser-Name = "1404100508859867#wlan.mnc010.mcc404.3gppnetwork.org"
[suffix] Found realm "wlan.mnc010.mcc404.3gppnetwork.org"
[suffix] Adding Stripped-User-Name = "1404100508859867"
[suffix] Adding Realm = "wlan.mnc010.mcc404.3gppnetwork.org"
[suffix] Proxying request from user 1404100508859867 to realm wlan.mnc010.mcc404.3gppnetwork.org
[suffix] Preparing to proxy authentication request to realm "wlan.mnc010.mcc404.3gppnetwork.org"
++[suffix] = updated
[eap] Request is supposed to be proxied to Realm wlan.mnc010.mcc404.3gppnetwork.org. Not doing EAP.
++[eap] = noop
in the end, I get an error message which says:
+} # group authorize = updated
ERROR: Failed to find live home server for realm wlan.mnc010.mcc404.3gppnetwork.org
There was no response configured: rejecting request 6
Using Post-Auth-Type REJECT
# Executing group from file /etc/raddb/sites-enabled/default
+group REJECT {
[attr_filter.access_reject] expand: %{User-Name} -> 1404100508859867#wlan.mnc010.mcc404.3gppnetwork.org
attr_filter: Matched entry DEFAULT at line 11
++[attr_filter.access_reject] = updated
+} # group REJECT = updated
I am not able to understand what I might be doing wrong
Also, a point to note I don't get any debug in my Diameter:
freeDiameterd
libfdproto initialized.
libgnutls '2.12.23', libgcrypt '1.4.5', initialized.
Generating fresh Diffie-Hellman parameters of size 1024 (this takes some time)...
All extensions loaded.
-- Configuration :
Debug trace level ...... : +1
Configuration file ..... : /usr/etc/freeDiameter/freeDiameter.conf
Diameter Identity ...... : diameter.<identity hidden> (l:19)
Diameter Realm ......... : <identity hidden> (l:10)
Tc Timer ............... : 30
Tw Timer ............... : 30
Local port ............. : 3868
Local secure port ...... : 3869
Number of SCTP streams . : 30
Number of server threads : 4
Local endpoints ........ :
[103.206.180.2]:0 {C---}
Local applications ..... : (none)
Flags : - IP ........... : Enabled
- IPv6 ......... : DISABLED
- Relay app .... : DISABLED
- TCP .......... : Enabled
- SCTP ......... : DISABLED
- Pref. proto .. : SCTP
- TLS method ... : Separate port
TLS : - Certificate .. : /etc/ssl/certs/freeDiameter.pem
- Private key .. : /etc/ssl/private/freeDiameter.key
- CA (trust) ... : /etc/ssl/certs/freeDiameter.pem (1 certs)
- CRL .......... : (none)
- Priority ..... : (default: 'NORMAL')
- DH bits ...... : 1024
Origin-State-Id ........ : 1493381358
freeDiameterd daemon initialized.
All the help in this will be highly appreciable.

Related Links

freeRADIUS server confiuration for 802.1x
Freeradius proxy non EAP to EAP
Get Online User From FreeRadius
freeRadius, dynamic clients with 32 bit integer mask
how to configure FreeRADIUS to proxy the PAP request inside an EAP-TTLS tunnel
Unable to authorize on FreeRADIUS
how can I configure FreeRADIUS to proxy the PAP request inside an EAP-PEAP-GTC tunnel?
Configure FreeRADIUS to only support EAP TTLS PAP
Freeradius V3 meta-attributes. Check item attributes
Freeradius Crypt-Password authentication
How to get User-Password in inner tunnel from iOS
freeRadius using EAP with custom auth script
How do I validate different users for different SSIDs on a FreeRADIUS server?
FreeRADIUS - how to create a profile for two differnet NAS
Free Radius - Session Timeout, Idle Timeout (disconnecting idle users)
Error from FreeRadius3: No dictionary definition for EAP method md5

Categories

HOME
php
ionic2
webview
android-fragments
concurrency
key
biztalk-2010
elk-stack
mosquitto
share
tup
twitter-oauth
lapack
pm2
supervisord
synthesis
exe
jqxgrid
codefluent
bazaar
error-logging
altium-designer
device
dragula
ninject
nic
seafile-server
knights-tour
android-canvas
jfxtras
cups
ms-dos
extbase
swfupload
utf
get-event-store
classnotfoundexception
minikube
kitura
ipp-protocol
bit-shift
dredd
swift2.3
scala-breeze
punctuation
1010
predicates
mpmovieplayercontroller
adobe-reader
bpms
libharu
openquery
pyaudio
nunit-console
declarative
qpixmap
unsigned
distributed-cache
taco
pack
variable-length-array
opencyc
place
nette
asp.net-web-api-helppages
netdatacontractserializer
unidata
dbmigrate
kotlin-android-extensions
sablecc
jcheckbox
famo.us
angular-ui-select
bittorrent-sync
pageviews
xmi
boolean-algebra
spring-social-linkedin
xsd2code
sunstudio
ui-design
xmlwriter
handshake
ip-geolocation
audiotoolbox
clrprofiler
wcf-callbacks
multidrop-bus
getopts
database-deadlocks
hungarian-notation
urchin
android-input-method
eventaggregator
accumulator
account-management

Resources

Mobile Apps Dev
Database Users
javascript
java
csharp
php
android
MS Developer
developer works
python
ios
c
html
jquery
RDBMS discuss
Cloud Virtualization
Database Dev&Adm
javascript
java
csharp
php
python
android
jquery
ruby
ios
html
Mobile App
Mobile App
Mobile App