24 Aug 15:54
RADIUS-Plugin for authentication and accounting
From: Ralf Lübben <ralfluebben <at> gmx.de>
Subject: RADIUS-Plugin for authentication and accounting
Newsgroups: gmane.network.openvpn.user
Date: 2005-08-24 13:55:27 GMT
Subject: RADIUS-Plugin for authentication and accounting
Newsgroups: gmane.network.openvpn.user
Date: 2005-08-24 13:55:27 GMT
Hello,
I finally finished the RADIUS-Plugin.
Features:
- RADIUS Authentication:
- The following RADIUS attributes are analyzed:
- Framed-IP:
(it is pushed to the connecting client over the
config file in the client config dir)
- Framed-Route:
This routes are set on the server in the
system routing table and in the OpenVPN-process
over the config file in the client config dir)
- Acct-Interim-Interval:
(if this is set the client user is accounted
over RADIUS)
- RADIUS Accounting:
If the plugin gets the acct-interim-attribut for a
user/client at the authentication, the plugin sends
with this interval accounting information
(start, update and stop tickets) to the
RADIUS-server. The send and received bytes are
read out of the status file of OpenVPN. There
are logged the whole bytes with the overhead of
the VPN.
The both functions are realized in two separate processes, so
the main process can drop the root rights.
For installation, configuration and more information read the README file.
I only tested it in my enviroment with Debian Sarge and OpenVPN 2.0
and at the moment there was no long-run test.
Please report bugs and suggestions of improvement to me.
Greeting
Ralf Luebben
RSS Feed