<div dir="ltr"><div dir="ltr">Dear Geert Stappers</div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Mon, Jun 28, 2021 at 1:29 PM Geert Stappers via Dnsmasq-discuss <<a href="mailto:dnsmasq-discuss@lists.thekelleys.org.uk">dnsmasq-discuss@lists.thekelleys.org.uk</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">Please share the whole FreeRadius DHCP server configuration file with us. <br>
In the mailinglist archive ( <a href="https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2021q2/015180.html" rel="noreferrer" target="_blank">https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2021q2/015180.html</a>)<br>
is currently only the incomplete (and "broken") configuration.<br>
It is a good thing to give the mailing archive a working version.<br>
The complete version shows where to insert the extra settings<br>
and which syntax.<br>
<br></blockquote><div> As I stated in <a href="https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2021q2/015194.html">https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2021q2/015194.html</a> <br></div><div>That is, all things come from freeradius is sourced from my rest service.<br></div><div>for every data come from dhcp-relay, FreeRadius daemon will make a json http post to my rest service.<br></div><div>In response, my rest service will tell FreeRadius daemon what it need to tell to dhcp-relay.<br></div><div>So the core problem is not at FreeRadius daemon (and it's configuration), it's in my rest service codes.<br><br></div><div>My vault not telling it from the start of this discussion<br><br></div><div>Anyway, here they are:<br><div>#----------------------------</div><div><br></div></div><div>/etc/freeradius/sites-enabled/dhcp<br><div>#----------------------------</div><div><br></div><br>server dhcp {<br><br>listen {<br> type = dhcp<br> ipaddr = 10.10.254.1<br><br> port = 67<br><br> broadcast = no<br><br> performance {<br> skip_duplicate_checks = no<br> }<br>}<br><br>dhcp DHCP-Discover {<br> rest.authorize<br>}<br><br>dhcp DHCP-Request {<br> rest.authorize<br>}<br><br>dhcp DHCP-Decline {<br> update reply {<br> &DHCP-Message-Type = DHCP-Do-Not-Respond<br> }<br> reject<br>}<br><br>dhcp DHCP-Inform {<br> dhcp_common<br> ok<br>}<br><br><br>dhcp DHCP-Release {<br> rest.authorize<br>}<br><br><br>dhcp DHCP-Lease-Query {<br><br> if (&DHCP-Client-Hardware-Address) {<br> }<br><br> elsif (&DHCP-Your-IP-Address) {<br> }<br><br> elsif (&DHCP-Client-Identifier) {<br> }<br> else {<br> update reply {<br> &DHCP-Message-Type = DHCP-Lease-Unknown<br> }<br><br> ok<br><br> return<br> }<br><br> if (notfound) {<br> update reply {<br> &DHCP-Message-Type = DHCP-Lease-Unknown<br> }<br> ok<br> return<br> }<br><br><br><br> update reply {<br> &DHCP-Message-Type = DHCP-Lease-Unassigned<br> }<br><br>}<br><br>}<br><br></div><div>#-----------------------------------------<br></div><div>/etc/freeradius/mods-enabled</div><div><br></div><div>rest {<br> connect_uri = "<a href="http://127.0.0.1:8888/djenroll/freeradius/">http://127.0.0.1:8888/djenroll/freeradius/</a>"<br> authorize {<br> uri = "${..connect_uri}"<br> method = 'post'<br> body = 'json'<br> }<br> authenticate {<br> uri = "${..connect_uri}"<br> method = 'post'<br> body = 'json'<br> }<br><br> preacct {<br> uri = "${..connect_uri}"<br> method = 'post'<br> body = 'json'<br> }<br> accounting {<br> uri = "${..connect_uri}"<br> method = 'post'<br> body = 'json'<br> }<br> post-auth {<br> uri = "${..connect_uri}"<br> method = 'post'<br> body = 'json'<br> }<br><br> pool {<br> start = 0<br> min = 0<br> max = 5<br> spare = 0 <br> uses = 0<br> lifetime = 0<br> cleanup_interval = 30<br> idle_timeout = 60<br> retry_delay = 30<br> spread = no<br> }<br>}<br></div><div><br></div><div>#----------------------------</div><div><br></div><div><br></div><div><br></div><div>Sincerely<br></div><div>-bino-<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">
<br>
> So Nicolas Cavallari, I really appreciate your help.<br>
<br>
Yes, compliments to Nicolas for diagnosing the problem.<br>
<br>
<br>
<br>
> Sincerely<br>
> -bino-<br>
<br>
<br>
Please make reading in the discussion order possible,<br>
reply below previous text.<br>
<br>
<br>
<br>
Groeten<br>
Geert Stappers<br>
-- <br>
Silence is hard to parse<br>
<br>
_______________________________________________<br>
Dnsmasq-discuss mailing list<br>
<a href="mailto:Dnsmasq-discuss@lists.thekelleys.org.uk" target="_blank">Dnsmasq-discuss@lists.thekelleys.org.uk</a><br>
<a href="https://lists.thekelleys.org.uk/cgi-bin/mailman/listinfo/dnsmasq-discuss" rel="noreferrer" target="_blank">https://lists.thekelleys.org.uk/cgi-bin/mailman/listinfo/dnsmasq-discuss</a><br>
</blockquote></div></div>