From owner-freebsd-isp@FreeBSD.ORG Thu Jul 23 17:52:37 2009 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 85498106566C for ; Thu, 23 Jul 2009 17:52:37 +0000 (UTC) (envelope-from nvass9573@gmx.com) Received: from mail.gmx.com (unknown [213.165.64.42]) by mx1.freebsd.org (Postfix) with SMTP id E78498FC18 for ; Thu, 23 Jul 2009 17:52:36 +0000 (UTC) (envelope-from nvass9573@gmx.com) Received: (qmail invoked by alias); 23 Jul 2009 17:52:35 -0000 Received: from ipa27.81.91.tellas.gr (EHLO [169.254.0.10]) [91.140.81.27] by mail.gmx.com (mp-eu005) with SMTP; 23 Jul 2009 19:52:35 +0200 X-Authenticated: #46156728 X-Provags-ID: V01U2FsdGVkX19T2nYe3mBTYhkADzEKlVdR4e4hrn7Y7j/yDwvR1c nR/yi5w28kBo6o Message-ID: <4A68A34F.5040400@gmx.com> Date: Thu, 23 Jul 2009 20:52:15 +0300 From: Nikos Vassiliadis User-Agent: Thunderbird 2.0.0.22 (Windows/20090605) MIME-Version: 1.0 To: Michelle Konzack References: <20090715184054.GD29667@tamay-dogan.net> In-Reply-To: <20090715184054.GD29667@tamay-dogan.net> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Y-GMX-Trusted: 0 X-FuHaFi: 0.5 Cc: freebsd-isp@freebsd.org, freebsd-questions@freebsd.org Subject: Re: PPPoE server (high traffic in WDM network) X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 23 Jul 2009 17:52:37 -0000 > Hello Nikos, Hi, I just saw your answer while browsing. I am not on isp@... Please CC questions@. > Am 2009-07-16 12:27:06, schrieb Nikos Vassiliadis: >> Michelle Konzack wrote: >>> I am ongoing to install a CWDM (1GE) and DWDM (10GE) network for the >>> Alvarion BreezeACCESS VL (38 base stations) and more then 200 Iskratel >>> FTTH DSLAMS of 96 ports (each with 100MBit, but only one 1GE Upstream) >>> each. >> >> So, you'll have 96*200 possible PPP clients. How many concurrent PPP >> sessions do you care to support? >> And more importantly, how much aggregate bandwidth? > > Because the customers are permanently On-Line du to the VoIP-Telephone, > we count with the full number of clients... > > The distance between the FTTH DSLAM and the customers can be up to 10km. > > The idea is now, that we do not simply connect the FTTH DSLAM's to the > CISCO switches but building a redunant Ethernet Carrier Network. > > This mean, we can install in each village there own FTTH DSLAM even if > there are 2500 hausholds and we install 26 FTTH DSLAM's there. > > This mean in theorie 250 GBit Customer Downstream, 26 Gbit Upstream but > we count with a 10 GE which is maybe used to 30-50%. > > OK, if we switch to an "Ethernet Carrier Network" I could install one or > two PPPoE Servers in each village. But if one goes down, the second has > to handel 2500 client connections. I *think* the number of clients is doable. I don't know about the bandwidth. > Note: This is ONLY the base installation between Kehl, Rheinau, > Renchen and Oberkirch (arround 35.000 hausholds) and the > whole region has 150.000 hausholds. > >> Don't understand what you mean round-robin and loadbalancing? >> Read below. > >> FreeBSD has a RADIUS library in base. The two notable users of libradius >> are ppp and net/mpd. The only choice in a ISP environment I think is the >> net/mpd5 port. Read the outline here: >> http://www.freebsd.org/cgi/url.cgi?ports/net/mpd5/pkg-descr >> >> It is very good and is actually used in large setups. > > Thankyo for the link, I will red on if I am in Office... > >> Can't reply, but keep in mind that filling a 10GE pipe is >> a hard task on its own. > > It depends on how many customers you have and with an Internet access of > 100 Mbit plus services like IPTV and VOD you can fill up a 10 GE pipe. I meant "filling a 10 Gbit pipe with a general purpose computer architecture is a hard task". Packet forwarding at these rates is tricky. >> I *think* having more low fidelity BRASs, will serve your >> needs better that a few high fidelity ones. > > You mean, putting a bunch of small 1U Servers into a 19" 42RU? Yes, you may find that having two small boxes instead of bigger one gives better results performance-wise. You also have to test if SMP helps and how much. A beast with 16 cores is more powerful from a regular computer with 2 cores, but does it help in your setup? >> You can try NanoBSD and TinyBSD which are FreeBSD based and I >> believe can fit the bill. These two run with their filesystems >> read-only mounted which is ideal for flash memories. > > Can you recomment it for an ISP setup? It's FreeBSD running from a read-only mounted medium. No more, no less. Yes, it's fine for an ISP setup. > > Hmmm, I am right, that NanoBSD can be bootup over network? > (this would be another solution) NanoBSD is meant to run in embedded stand-alone devices. So, I *guess* that is conceptually very far from net booting. Nikos From owner-freebsd-isp@FreeBSD.ORG Fri Jul 24 15:05:45 2009 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8F4A91065673 for ; Fri, 24 Jul 2009 15:05:45 +0000 (UTC) (envelope-from bsd4michelle@tamay-dogan.net) Received: from webmail.codefoundry.com (webmail.codefoundry.com [62.231.42.10]) by mx1.freebsd.org (Postfix) with ESMTP id 1F0B28FC15 for ; Fri, 24 Jul 2009 15:05:44 +0000 (UTC) (envelope-from bsd4michelle@tamay-dogan.net) Received: from mail.private.tamay-dogan.net ([::ffff:82.113.106.144]) (AUTH: CRAM-SHA256 konzack.michelle.tamay-catchall@codefoundry.com) by webmail.codefoundry.com with esmtp; Fri, 24 Jul 2009 16:12:39 +0100 id 002B0273.4A69CF69.000022C2 Received: from michelle1.private.tamay-dogan.net (michelle1.private.tamay-dogan.net [::ffff:192.168.0.91]) by mail.private.tamay-dogan.net with esmtp; Fri, 24 Jul 2009 17:05:35 +0200 id 0002BF61.4A69CDBF.00004DFE Received: by michelle1.private.tamay-dogan.net (sSMTP sendmail emulation); Fri, 24 Jul 2009 17:00:44 +0200 Date: Fri, 24 Jul 2009 17:00:44 +0200 From: Michelle Konzack To: freebsd-isp@freebsd.org Message-ID: <20090724150044.GA18341@tamay-dogan.net> References: <20090715184054.GD29667@tamay-dogan.net> <4A68A34F.5040400@gmx.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Content-Disposition: inline In-Reply-To: <4A68A34F.5040400@gmx.com> X-Message-Flag: Improper configuration of Outlook is a breeding ground for viruses. Please take care your Client is configured correctly. Greetings Michelle. X-Disclaimer-DE: Eine weitere Verwendung oder die Veroeffentlichung dieser Mail oder dieser Mailadresse ist nur mit der Einwilligung des Autors gestattet. Organization: Tamay Dogan Network X-Operating-System: Linux michelle1 2.6.26-1-686 User-Agent: Mutt/1.5.18 (2008-05-17) Subject: Re: PPPoE server (high traffic in WDM network) X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 24 Jul 2009 15:05:45 -0000 Hello Nikos, sorry if I can not answer the next 3 or 5 days, but my Server has a hardware outage and I need to get a new one... :-/ Am 2009-07-23 20:52:15, schrieb Nikos Vassiliadis: > I *think* the number of clients is doable. I don't know about > the bandwidth. The main problem with the bandwidth is, that even the VOD/IPTV and VoIP traffic goes throug the PPPoE server which is very bad. I do not want to count the traffic to a specific /25 which hold the storage servers, mean, the VOD/IPTV and VoIP traffic must bypass the PPPoE server. and this reduce the traffic enormous... > I meant "filling a 10 Gbit pipe with a general purpose computer > architecture is a hard task". Packet forwarding at these rates is > tricky. Right, I would never try it... My idea is/was, to put the PPPoE server diretly byside the FTTH DSLAM's, which mean, each 96port DSLAM has an upstrem of 1 GE and even if I put 10 of them in a 42RU, it would normaly not fill the 10 GE ports of a professionel Server. And of corse, I can put always two or three together parallel. The problem is only, that I can not install 10 (or 20 redunant) 1U Sun Fire X4100M2, even if I can get up to 60% rebat of the listprice. I have not the place to put 20 additiona servers into, nor I like the power consumation ~70 Watt with the smalles CPU and only 4 GByte of RAM. > Yes, you may find that having two small boxes Your two small boxes are at lleast 10 servers with 1U supporting 10 GBit in summary or 20 if redunant. The villages we are cabeling are between 480 and 3200 hausholds. > instead of bigger one > gives better results performance-wise. You also have to test if SMP > helps and how much. A beast with 16 cores is more powerful from a > regular computer with 2 cores, but does it help in your setup? If I go with 1 U Sun Fire X4100M2 the Opteron has 4 Cores and 4 threads per core (AFAIK there is a 8 threads version too) >> Can you recomment it for an ISP setup? > > It's FreeBSD running from a read-only mounted medium. > No more, no less. Yes, it's fine for an ISP setup. If I have 4 GByte of memory, I could run entirely from RAMDISK... Memory is cheaper then the harddrives Thanks, Greetings and nice Day/Evening Michelle Konzack Systemadministrator Tamay Dogan Network Debian GNU/Linux Consultant -- Linux-User #280138 with the Linux Counter, http://counter.li.org/ ##################### Debian GNU/Linux Consultant ##################### Michelle Konzack c/o Vertriebsp. KabelBW Blumenstrasse 2 Jabber linux4michelle@jabber.ccc.de 77694 Kehl/Germany IRC #Debian (irc.icq.com) Tel. DE: +49 177 9351947 ICQ #328449886 Tel. FR: +33 6 61925193 From owner-freebsd-isp@FreeBSD.ORG Fri Jul 24 22:34:03 2009 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A18D2106564A for ; Fri, 24 Jul 2009 22:34:03 +0000 (UTC) (envelope-from spork@bway.net) Received: from xena.bway.net (xena.bway.net [216.220.96.26]) by mx1.freebsd.org (Postfix) with ESMTP id 43C448FC0A for ; Fri, 24 Jul 2009 22:34:03 +0000 (UTC) (envelope-from spork@bway.net) Received: (qmail 73429 invoked by uid 0); 24 Jul 2009 22:07:21 -0000 Received: from unknown (HELO office-dhcp-35.bway.net) (spork@216.220.107.35) by smtp.bway.net with (DHE-RSA-AES256-SHA encrypted) SMTP; 24 Jul 2009 22:07:21 -0000 Date: Fri, 24 Jul 2009 18:07:21 -0400 (EDT) From: Charles Sprickman X-X-Sender: spork@hotlap.local To: freebsd-isp@freebsd.org Message-ID: User-Agent: Alpine 2.00 (OSX 1167 2008-08-23) MIME-Version: 1.0 Content-Type: TEXT/PLAIN; format=flowed; charset=US-ASCII Subject: Radius server suggestions X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 24 Jul 2009 22:34:03 -0000 Hi all, I'm in the middle of redesigning a number of things here. Our main db of users will likely be changing format (vpopmal to postfix+dovecot). There will be additional columns in the database for dial access, usenet access and possibly pppoe access. Our current vpopmail setup stores these values in one column as a bitmask, which hurts my head, so I'm moving to something easier (ie: if "dialup" column = "1", they can have dialup). I'm out of touch on what radius implementations are popular. I need something that meets two basic requirements: -auth from mysql or pgsql -set the sql query based on which radius client the request comes from Any pointers on that? Thanks, Charles ___ Charles Sprickman NetEng/SysAdmin Bway.net - New York's Best Internet - www.bway.net spork@bway.net - 212.655.9344 From owner-freebsd-isp@FreeBSD.ORG Fri Jul 24 22:53:46 2009 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 4EB2D1065673 for ; Fri, 24 Jul 2009 22:53:46 +0000 (UTC) (envelope-from michael@staff.openaccess.org) Received: from aristotle.openaccess.org (aristotle.openaccess.org [66.114.32.142]) by mx1.freebsd.org (Postfix) with ESMTP id 0DB8B8FC0A for ; Fri, 24 Jul 2009 22:53:45 +0000 (UTC) (envelope-from michael@staff.openaccess.org) Received: from localhost (localhost [127.0.0.1]) by aristotle.openaccess.org (Postfix) with ESMTP id B7C04964C82 for ; Fri, 24 Jul 2009 15:35:12 -0700 (PDT) X-Virus-Scanned: amavisd-new at staff.openaccess.org Received: from aristotle.openaccess.org ([127.0.0.1]) by localhost (aristotle.openaccess.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sYPE6k2gq15O for ; Fri, 24 Jul 2009 15:35:12 -0700 (PDT) Received: from DeMan.local (mono-sis1.s.bli.openaccess.org [66.114.32.149]) by aristotle.openaccess.org (Postfix) with ESMTP id 1A9C8964C73 for ; Fri, 24 Jul 2009 15:35:11 -0700 (PDT) Message-ID: <4A6A371F.7050405@staff.openaccess.org> Date: Fri, 24 Jul 2009 15:35:11 -0700 From: Michael DeMan User-Agent: Thunderbird 2.0.0.22 (Macintosh/20090605) MIME-Version: 1.0 To: freebsd-isp@freebsd.org References: In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: Re: Radius server suggestions X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 24 Jul 2009 22:53:46 -0000 FreeRADIUS www.freeradius.org Charles Sprickman wrote: > Hi all, > > I'm in the middle of redesigning a number of things here. Our main db > of users will likely be changing format (vpopmal to postfix+dovecot). > There will be additional columns in the database for dial access, > usenet access and possibly pppoe access. Our current vpopmail setup > stores these values in one column as a bitmask, which hurts my head, > so I'm moving to something easier (ie: if "dialup" column = "1", they > can have dialup). > > I'm out of touch on what radius implementations are popular. I need > something that meets two basic requirements: > > -auth from mysql or pgsql > -set the sql query based on which radius client the request comes from > > Any pointers on that? > > Thanks, > > Charles > > ___ > Charles Sprickman > NetEng/SysAdmin > Bway.net - New York's Best Internet - www.bway.net > spork@bway.net - 212.655.9344 > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > From owner-freebsd-isp@FreeBSD.ORG Fri Jul 24 22:56:12 2009 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 9800D106564A for ; Fri, 24 Jul 2009 22:56:12 +0000 (UTC) (envelope-from rblayzor.bulk@inoc.net) Received: from mail3.albyny.inoc.net (mail3.albyny.inoc.net [64.22.32.73]) by mx1.freebsd.org (Postfix) with ESMTP id 42B7C8FC12 for ; Fri, 24 Jul 2009 22:56:12 +0000 (UTC) (envelope-from rblayzor.bulk@inoc.net) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=inoc.net; h=Received:From:To:Subject:Date; b=K1c04e6UZtwEIrnva8ITtFe8kvCeYdXBvXNPk84UX22/yZ7htF1rpDNEAomICHmjZG48gMD01yjxIy9vMilzm+oaRZvT80kzPXg7HH+pYm0g/Gh7RXU3CCANdxpk9ZiCicHcavY5sx1bSKsTJkWOtrSIughxoV+EQmFtyPed2pA=; X-Default-Received-SPF: pass (skip=loggedin (res=PASS)) x-ip-name=cpe-67-240-119-200.nycap.res.rr.com; Received: from [172.16.0.196] (cpe-67-240-119-200.nycap.res.rr.com [67.240.119.200]) by mail3.albyny.inoc.net (build v9.5.29) with ESMTP id 1960731-1941382 for multiple; Fri, 24 Jul 2009 22:56:10 +0000 Message-Id: From: Robert Blayzor To: Charles Sprickman In-Reply-To: Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes Content-Transfer-Encoding: 7bit Mime-Version: 1.0 (Apple Message framework v935.3) Date: Fri, 24 Jul 2009 18:56:08 -0400 References: X-Mailer: Apple Mail (2.935.3) Cc: freebsd-isp@freebsd.org Subject: Re: Radius server suggestions X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 24 Jul 2009 22:56:13 -0000 On Jul 24, 2009, at 6:07 PM, Charles Sprickman wrote: > I'm out of touch on what radius implementations are popular. I need > something that meets two basic requirements: > > -auth from mysql or pgsql > -set the sql query based on which radius client the request comes from > > Any pointers on that? Radiator http://www.open.com.au/ -- Robert Blayzor, BOFH INOC, LLC rblayzor@inoc.net http://www.inoc.net/~rblayzor/ From owner-freebsd-isp@FreeBSD.ORG Fri Jul 24 23:23:19 2009 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 928B01065673 for ; Fri, 24 Jul 2009 23:23:19 +0000 (UTC) (envelope-from steve@ibctech.ca) Received: from smtp.ibctech.ca (v6.ibctech.ca [IPv6:2607:f118::b6]) by mx1.freebsd.org (Postfix) with SMTP id 2D8A08FC19 for ; Fri, 24 Jul 2009 23:23:19 +0000 (UTC) (envelope-from steve@ibctech.ca) Received: (qmail 62744 invoked by uid 89); 24 Jul 2009 23:23:23 -0000 Received: from unknown (HELO ?IPv6:2607:f118::5?) (steve@ibctech.ca@2607:f118::5) by 2607:f118::b6 with ESMTPA; 24 Jul 2009 23:23:23 -0000 Message-ID: <4A6A41CE.2010901@ibctech.ca> Date: Fri, 24 Jul 2009 19:20:46 -0400 From: Steve Bertrand User-Agent: Thunderbird 2.0.0.17 (Windows/20080914) MIME-Version: 1.0 To: Michael DeMan References: <4A6A371F.7050405@staff.openaccess.org> In-Reply-To: <4A6A371F.7050405@staff.openaccess.org> X-Enigmail-Version: 0.96.0 Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg=sha1; boundary="------------ms080101050907020403080402" Cc: freebsd-isp@freebsd.org Subject: Re: Radius server suggestions X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 24 Jul 2009 23:23:19 -0000 This is a cryptographically signed message in MIME format. --------------ms080101050907020403080402 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Michael DeMan wrote: > FreeRADIUS > www.freeradius.org +1 It's *hugely* flexible and scalable. Steve --------------ms080101050907020403080402 Content-Type: application/x-pkcs7-signature; name="smime.p7s" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="smime.p7s" Content-Description: S/MIME Cryptographic Signature MIAGCSqGSIb3DQEHAqCAMIACAQExCzAJBgUrDgMCGgUAMIAGCSqGSIb3DQEHAQAAoIII/zCC AtowggJDoAMCAQICEEs5xg/J3t77QWJ4SatV1HcwDQYJKoZIhvcNAQEFBQAwYjELMAkGA1UE BhMCWkExJTAjBgNVBAoTHFRoYXd0ZSBDb25zdWx0aW5nIChQdHkpIEx0ZC4xLDAqBgNVBAMT I1RoYXd0ZSBQZXJzb25hbCBGcmVlbWFpbCBJc3N1aW5nIENBMB4XDTA5MDUwNzIzMTYxMFoX DTEwMDUwNzIzMTYxMFowQjEfMB0GA1UEAxMWVGhhd3RlIEZyZWVtYWlsIE1lbWJlcjEfMB0G CSqGSIb3DQEJARYQc3RldmVAaWJjdGVjaC5jYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBAJSTRAjP1RVa87/mnZn+PBTbENgyhhBJ4rWApmaNcthzRdk2DB/49KrXx3EQP60w Lj4KU0DFkiGNVj9BnVxRAx/WDXKxGC3uGGEG6gjyWv8KFMWMsH9mL7y7uNow1HueT6pZUf9o yY8Ewd+01QpGi7FfXOae7lGHhbEwnEJGwz08ytRfLmH0KtEzlZanZZhwDGX5s1kIHnyxdACh 3byXY6Z2bOrx0rcrQHCnHJppxddR60F7igjaMuBFstE51h9XTgXDNKJbglqTug5ghGihNuP6 VsBN7ue62y96UGIE22TvKEcAQ665vQGjHqZeSzZYy+hWNOa27pWFmhlqFjx0x8MCAwEAAaMt MCswGwYDVR0RBBQwEoEQc3RldmVAaWJjdGVjaC5jYTAMBgNVHRMBAf8EAjAAMA0GCSqGSIb3 DQEBBQUAA4GBAMOmjxjp2Xzk6ZHLwTgFDzVhm98RjRT3UXotKjNIR7SgwfWF5wkJrx4I+dXu ui5ztMEq4bTTRgJ344MqE6uZiZlg+tBIFHZGCJfKdzsX4QuV2jmw0sR5dMaYxG6tlDB0YUMv gTqzV7ZDpiusTMOZe9pP1PdxFhOcIJXtMQDj5LhuMIIC2jCCAkOgAwIBAgIQSznGD8ne3vtB YnhJq1XUdzANBgkqhkiG9w0BAQUFADBiMQswCQYDVQQGEwJaQTElMCMGA1UEChMcVGhhd3Rl IENvbnN1bHRpbmcgKFB0eSkgTHRkLjEsMCoGA1UEAxMjVGhhd3RlIFBlcnNvbmFsIEZyZWVt YWlsIElzc3VpbmcgQ0EwHhcNMDkwNTA3MjMxNjEwWhcNMTAwNTA3MjMxNjEwWjBCMR8wHQYD VQQDExZUaGF3dGUgRnJlZW1haWwgTWVtYmVyMR8wHQYJKoZIhvcNAQkBFhBzdGV2ZUBpYmN0 ZWNoLmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlJNECM/VFVrzv+admf48 FNsQ2DKGEEnitYCmZo1y2HNF2TYMH/j0qtfHcRA/rTAuPgpTQMWSIY1WP0GdXFEDH9YNcrEY Le4YYQbqCPJa/woUxYywf2YvvLu42jDUe55PqllR/2jJjwTB37TVCkaLsV9c5p7uUYeFsTCc QkbDPTzK1F8uYfQq0TOVlqdlmHAMZfmzWQgefLF0AKHdvJdjpnZs6vHStytAcKccmmnF11Hr QXuKCNoy4EWy0TnWH1dOBcM0oluCWpO6DmCEaKE24/pWwE3u57rbL3pQYgTbZO8oRwBDrrm9 AaMepl5LNljL6FY05rbulYWaGWoWPHTHwwIDAQABoy0wKzAbBgNVHREEFDASgRBzdGV2ZUBp YmN0ZWNoLmNhMAwGA1UdEwEB/wQCMAAwDQYJKoZIhvcNAQEFBQADgYEAw6aPGOnZfOTpkcvB OAUPNWGb3xGNFPdRei0qM0hHtKDB9YXnCQmvHgj51e66LnO0wSrhtNNGAnfjgyoTq5mJmWD6 0EgUdkYIl8p3OxfhC5XaObDSxHl0xpjEbq2UMHRhQy+BOrNXtkOmK6xMw5l72k/U93EWE5wg le0xAOPkuG4wggM/MIICqKADAgECAgENMA0GCSqGSIb3DQEBBQUAMIHRMQswCQYDVQQGEwJa QTEVMBMGA1UECBMMV2VzdGVybiBDYXBlMRIwEAYDVQQHEwlDYXBlIFRvd24xGjAYBgNVBAoT EVRoYXd0ZSBDb25zdWx0aW5nMSgwJgYDVQQLEx9DZXJ0aWZpY2F0aW9uIFNlcnZpY2VzIERp dmlzaW9uMSQwIgYDVQQDExtUaGF3dGUgUGVyc29uYWwgRnJlZW1haWwgQ0ExKzApBgkqhkiG 9w0BCQEWHHBlcnNvbmFsLWZyZWVtYWlsQHRoYXd0ZS5jb20wHhcNMDMwNzE3MDAwMDAwWhcN MTMwNzE2MjM1OTU5WjBiMQswCQYDVQQGEwJaQTElMCMGA1UEChMcVGhhd3RlIENvbnN1bHRp bmcgKFB0eSkgTHRkLjEsMCoGA1UEAxMjVGhhd3RlIFBlcnNvbmFsIEZyZWVtYWlsIElzc3Vp bmcgQ0EwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAMSmPFVzVftOucqZWh5owHUEcJ3f 6f+jHuy9zfVb8hp2vX8MOmHyv1HOAdTlUAow1wJjWiyJFXCO3cnwK4Vaqj9xVsuvPAsH5/Ef kTYkKhPPK9Xzgnc9A74r/rsYPge/QIACZNenprufZdHFKlSFD0gEf6e20TxhBEAeZBlyYLf7 AgMBAAGjgZQwgZEwEgYDVR0TAQH/BAgwBgEB/wIBADBDBgNVHR8EPDA6MDigNqA0hjJodHRw Oi8vY3JsLnRoYXd0ZS5jb20vVGhhd3RlUGVyc29uYWxGcmVlbWFpbENBLmNybDALBgNVHQ8E BAMCAQYwKQYDVR0RBCIwIKQeMBwxGjAYBgNVBAMTEVByaXZhdGVMYWJlbDItMTM4MA0GCSqG SIb3DQEBBQUAA4GBAEiM0VCD6gsuzA2jZqxnD3+vrL7CF6FDlpSdf0whuPg2H6otnzYvwPQc UCCTcDz9reFhYsPZOhl+hLGZGwDFGguCdJ4lUJRix9sncVcljd2pnDmOjCBPZV+V2vf3h9bG CE6u9uo05RAaWzVNd+NWIXiC3CEZNd4ksdMdRv9dX2VPMYIDZDCCA2ACAQEwdjBiMQswCQYD VQQGEwJaQTElMCMGA1UEChMcVGhhd3RlIENvbnN1bHRpbmcgKFB0eSkgTHRkLjEsMCoGA1UE AxMjVGhhd3RlIFBlcnNvbmFsIEZyZWVtYWlsIElzc3VpbmcgQ0ECEEs5xg/J3t77QWJ4SatV 1HcwCQYFKw4DAhoFAKCCAcMwGAYJKoZIhvcNAQkDMQsGCSqGSIb3DQEHATAcBgkqhkiG9w0B CQUxDxcNMDkwNzI0MjMyMDQ2WjAjBgkqhkiG9w0BCQQxFgQUoADjoWo9LoyBhb7wBn7L4nR7 SWYwUgYJKoZIhvcNAQkPMUUwQzAKBggqhkiG9w0DBzAOBggqhkiG9w0DAgICAIAwDQYIKoZI hvcNAwICAUAwBwYFKw4DAgcwDQYIKoZIhvcNAwICASgwgYUGCSsGAQQBgjcQBDF4MHYwYjEL MAkGA1UEBhMCWkExJTAjBgNVBAoTHFRoYXd0ZSBDb25zdWx0aW5nIChQdHkpIEx0ZC4xLDAq BgNVBAMTI1RoYXd0ZSBQZXJzb25hbCBGcmVlbWFpbCBJc3N1aW5nIENBAhBLOcYPyd7e+0Fi eEmrVdR3MIGHBgsqhkiG9w0BCRACCzF4oHYwYjELMAkGA1UEBhMCWkExJTAjBgNVBAoTHFRo YXd0ZSBDb25zdWx0aW5nIChQdHkpIEx0ZC4xLDAqBgNVBAMTI1RoYXd0ZSBQZXJzb25hbCBG cmVlbWFpbCBJc3N1aW5nIENBAhBLOcYPyd7e+0FieEmrVdR3MA0GCSqGSIb3DQEBAQUABIIB AGBd9kumVnuuTE81v3Exp4lGjIMf58rLXi9WHJ+uC11HWc3GYLs7V59G9Qfrk2ZVIZosL4lP m5w3ANmp1FYlF+nBQPO9wvTSmIgLtyThDG5wHLAc8lHOmuhnXx6d9N3cR+lIGl4NEhgpC1ih iu8++SD5GL4GRfeVnE4OHuV2Pj/01NI72wE/c7HLUy96xISSto8Vbm9hoN6+1ou6zRDBlOPH UtrY8tn3vweLtjHp7BrokEP2icUtlZKwBKRvEl3/uYaQnk7PUd0wdOrmC2IDxvQZVRpT+IHB GxvRd5SQffJz7N3ArcCQfAm34CEzc5wOHF5tpzncpRVJeORvCbij7lcAAAAAAAA= --------------ms080101050907020403080402-- From owner-freebsd-isp@FreeBSD.ORG Fri Jul 24 23:40:07 2009 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id AA83F106566C for ; Fri, 24 Jul 2009 23:40:07 +0000 (UTC) (envelope-from deichert@wrench.com) Received: from mx1a.swcp.com (mx1a.swcp.com [216.184.2.64]) by mx1.freebsd.org (Postfix) with ESMTP id 6A4DD8FC14 for ; Fri, 24 Jul 2009 23:40:06 +0000 (UTC) (envelope-from deichert@wrench.com) Received: from ame2.swcp.com (ame2.swcp.com [216.184.2.119]) by mx1a.swcp.com (8.13.4/8.13.4/Debian-3sarge3) with ESMTP id n6ONEPWq022823 for ; Fri, 24 Jul 2009 17:14:25 -0600 Received: from chishio.swcp.com (chishio.swcp.com [216.184.2.87]) by ame2.swcp.com (8.14.2/8.13.6) with ESMTP id n6ONEMgB001632 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for ; Fri, 24 Jul 2009 17:14:23 -0600 (MDT) (envelope-from deichert@wrench.com) Received: from chishio.swcp.com (localhost [127.0.0.1]) by chishio.swcp.com (8.14.3/8.14.3/Debian-5) with ESMTP id n6ONELYJ029956 for ; Fri, 24 Jul 2009 17:14:21 -0600 Received: from localhost (deichert@localhost) by chishio.swcp.com (8.14.3/8.14.3/Submit) with ESMTP id n6ONELNv029951 for ; Fri, 24 Jul 2009 17:14:21 -0600 X-Authentication-Warning: chishio.swcp.com: deichert owned process doing -bs Date: Fri, 24 Jul 2009 17:14:21 -0600 (MDT) From: Diana Eichert X-X-Sender: deichert@chishio.swcp.com To: freebsd-isp@freebsd.org In-Reply-To: Message-ID: References: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed X-Scanned-By: MIMEDefang 2.64 on 216.184.2.127 X-Greylist: Message whitelisted by DRAC access database, not delayed by milter-greylist-4.2.2 (ame2.swcp.com [216.184.2.127]); Fri, 24 Jul 2009 17:14:23 -0600 (MDT) X-Virus-Scanned: ClamAV 0.94.2/9612/Fri Jul 24 11:42:58 2009 on ame2.swcp.com X-Virus-Status: Clean X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on ame2.swcp.com X-Spam-Level: X-Spam-Status: No, hits=-1.4 required=10.0 tests=ALL_TRUSTED autolearn=no version=3.2.5 Subject: Re: Radius server suggestions X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 24 Jul 2009 23:40:07 -0000 On Fri, 24 Jul 2009, Robert Blayzor wrote: > On Jul 24, 2009, at 6:07 PM, Charles Sprickman wrote: >> I'm out of touch on what radius implementations are popular. I need >> something that meets two basic requirements: >> >> -auth from mysql or pgsql >> -set the sql query based on which radius client the request comes from >> >> Any pointers on that? > > > > Radiator > http://www.open.com.au/ > > -- > Robert Blayzor, BOFH We use Radiator too, because our management still shies away from "free" software. Not much to say about it besides it works. diana From owner-freebsd-isp@FreeBSD.ORG Sat Jul 25 00:13:21 2009 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D63951065744 for ; Sat, 25 Jul 2009 00:13:21 +0000 (UTC) (envelope-from howie@thingy.com) Received: from mail.thingy.com (wotsit.thingy.com [212.21.100.67]) by mx1.freebsd.org (Postfix) with ESMTP id 3B7CD8FC08 for ; Sat, 25 Jul 2009 00:13:20 +0000 (UTC) (envelope-from howie@thingy.com) Received: (qmail 9852 invoked by uid 0); 25 Jul 2009 00:46:38 +0100 Received: from unknown (HELO ?192.168.1.56?) (howie@thingy.com@212.21.124.49) by wotsit3.thingy.com with AES256-SHA encrypted SMTP; 25 Jul 2009 00:46:38 +0100 Message-ID: <4A6A47D9.4090803@thingy.com> Date: Sat, 25 Jul 2009 00:46:33 +0100 From: Howard Jones User-Agent: Thunderbird 2.0.0.22 (Windows/20090605) MIME-Version: 1.0 To: Diana Eichert References: In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: freebsd-isp@freebsd.org Subject: Re: [freebsd-isp] Radius server suggestions X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 25 Jul 2009 00:13:22 -0000 Diana Eichert wrote: > On Fri, 24 Jul 2009, Robert Blayzor wrote: > >> On Jul 24, 2009, at 6:07 PM, Charles Sprickman wrote: >>> I'm out of touch on what radius implementations are popular. I need >>> something that meets two basic requirements: >>> >>> -auth from mysql or pgsql >>> -set the sql query based on which radius client the request comes from >>> >>> Any pointers on that? >> >> >> >> Radiator >> http://www.open.com.au/ >> >> -- >> Robert Blayzor, BOFH > > We use Radiator too, because our management still shies away from "free" > software. > > Not much to say about it besides it works. It's also the business if you want anything out of the ordinary, if you are (or have) a perl programmer, since it's very easy to extend and tweak. We added some plugins to stop our customers using static IPs that weren't allocated to them, for example. From owner-freebsd-isp@FreeBSD.ORG Sat Jul 25 00:32:41 2009 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id EDEFA1065672 for ; Sat, 25 Jul 2009 00:32:41 +0000 (UTC) (envelope-from neil@neely.cx) Received: from wa-out-1112.google.com (wa-out-1112.google.com [209.85.146.176]) by mx1.freebsd.org (Postfix) with ESMTP id CB01E8FC18 for ; Sat, 25 Jul 2009 00:32:41 +0000 (UTC) (envelope-from neil@neely.cx) Received: by wa-out-1112.google.com with SMTP id m38so409061waf.27 for ; Fri, 24 Jul 2009 17:32:41 -0700 (PDT) Received: by 10.114.37.13 with SMTP id k13mr266597wak.169.1248480359801; Fri, 24 Jul 2009 17:05:59 -0700 (PDT) Received: from ?192.168.1.50? ([72.36.32.41]) by mx.google.com with ESMTPS id m25sm7600580waf.9.2009.07.24.17.05.57 (version=SSLv3 cipher=RC4-MD5); Fri, 24 Jul 2009 17:05:58 -0700 (PDT) Message-ID: <4A6A4C6A.2010107@neely.cx> Date: Fri, 24 Jul 2009 18:06:02 -0600 From: Neil Neely User-Agent: Thunderbird 2.0.0.22 (Windows/20090605) MIME-Version: 1.0 To: Diana Eichert References: In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-isp@freebsd.org Subject: Re: Radius server suggestions X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 25 Jul 2009 00:32:42 -0000 Diana Eichert wrote: > On Fri, 24 Jul 2009, Robert Blayzor wrote: > >> On Jul 24, 2009, at 6:07 PM, Charles Sprickman wrote: >>> I'm out of touch on what radius implementations are popular. I need >>> something that meets two basic requirements: >>> >>> -auth from mysql or pgsql >>> -set the sql query based on which radius client the request comes from >>> >>> Any pointers on that? >> >> >> >> Radiator >> http://www.open.com.au/ >> >> -- >> Robert Blayzor, BOFH > > We use Radiator too, because our management still shies away from "free" > software. I've used Radiator for many years (>10? Not certain exactly. I expect not long after it was released) and it's been rock solid. It is very flexible, easy to configure and not hard to customize if you need to do something unique. Used it for dialup, DSL, web, wireless mesh (WPA PEAP/LEAP) and basic web site authentication. I also used FreeRadius for a few months for a specific project and found I didn't care for it as much. Overall radiator was well worth the cost. -- Neil Neely http://neil-neely.blogspot.com/ From owner-freebsd-isp@FreeBSD.ORG Sat Jul 25 08:19:53 2009 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B3B511065670 for ; Sat, 25 Jul 2009 08:19:53 +0000 (UTC) (envelope-from nvass9573@gmx.com) Received: from mail.gmx.com (unknown [213.165.64.42]) by mx1.freebsd.org (Postfix) with SMTP id BB31E8FC28 for ; Sat, 25 Jul 2009 08:19:52 +0000 (UTC) (envelope-from nvass9573@gmx.com) Received: (qmail invoked by alias); 25 Jul 2009 08:19:50 -0000 Received: from unknown (EHLO [169.254.0.10]) [79.107.191.116] by mail.gmx.com (mp-eu001) with SMTP; 25 Jul 2009 10:19:50 +0200 X-Authenticated: #46156728 X-Provags-ID: V01U2FsdGVkX18nHDUWveonfJhUfJt2zQHIjRc6SDHWi69V7KlGCU Z2IBxf9t6dNPcZ Message-ID: <4A6AC006.2040507@gmx.com> Date: Sat, 25 Jul 2009 11:19:18 +0300 From: Nikos Vassiliadis User-Agent: Thunderbird 2.0.0.22 (Windows/20090605) MIME-Version: 1.0 To: questions@freebsd.org, freebsd-isp@freebsd.org, Michelle Konzack Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Y-GMX-Trusted: 0 X-FuHaFi: 0.63 Cc: Subject: PPPoE server (high traffic in WDM network) X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 25 Jul 2009 08:19:54 -0000 Hello Michelle, I think you better ask about the performance you should expect out of a PPPoE server on the mpd forum. There people on the forum with real numbers. > If I go with 1 U Sun Fire X4100M2 the Opteron has 4 Cores and 4 threads > per core (AFAIK there is a 8 threads version too) I would ask about this as well. i386? amd64? number of cores? http://sourceforge.net/forum/forum.php?forum_id=44693 HTH, Nikos From owner-freebsd-isp@FreeBSD.ORG Sat Jul 25 23:04:29 2009 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C1D2610656C5 for ; Sat, 25 Jul 2009 23:04:29 +0000 (UTC) (envelope-from spork@bway.net) Received: from xena.bway.net (xena.bway.net [216.220.96.26]) by mx1.freebsd.org (Postfix) with ESMTP id 623F88FC0C for ; Sat, 25 Jul 2009 23:04:29 +0000 (UTC) (envelope-from spork@bway.net) Received: (qmail 39544 invoked by uid 0); 25 Jul 2009 23:04:28 -0000 Received: from unknown (HELO ?10.3.2.41?) (spork@96.57.144.66) by smtp.bway.net with (DHE-RSA-AES256-SHA encrypted) SMTP; 25 Jul 2009 23:04:28 -0000 Date: Sat, 25 Jul 2009 19:04:27 -0400 (EDT) From: Charles Sprickman X-X-Sender: spork@hotlap.local To: freebsd-isp@freebsd.org In-Reply-To: Message-ID: References: User-Agent: Alpine 2.00 (OSX 1167 2008-08-23) MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Subject: Re: Radius server suggestions X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 25 Jul 2009 23:04:30 -0000 Thanks all... I'm currently using gnu-radius. I remember looking at FreeRadius and found that it was "too flexible". I'll look at it again though, since it looks like that's the standard these days. I used Radiator long ago. It was great - I remember coding a pop-before-smtp hack for it, and I hardly knew perl at the time. I'd use it again if it were free. Charles On Fri, 24 Jul 2009, Charles Sprickman wrote: > Hi all, > > I'm in the middle of redesigning a number of things here. Our main db of > users will likely be changing format (vpopmal to postfix+dovecot). There > will be additional columns in the database for dial access, usenet access and > possibly pppoe access. Our current vpopmail setup stores these values in one > column as a bitmask, which hurts my head, so I'm moving to something easier > (ie: if "dialup" column = "1", they can have dialup). > > I'm out of touch on what radius implementations are popular. I need > something that meets two basic requirements: > > -auth from mysql or pgsql > -set the sql query based on which radius client the request comes from > > Any pointers on that? > > Thanks, > > Charles > > ___ > Charles Sprickman > NetEng/SysAdmin > Bway.net - New York's Best Internet - www.bway.net > spork@bway.net - 212.655.9344 > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" >