Hi guys, we are making some major changes to our authentication and billing and want to implement the COA feature so that any plan changes mid cycle for customers can be pushed to the LNS. I know that Mikrotik supports COA by using the inbound radius options and it should do what we want but what I can't seem to find enough information on is how the radius server actually triggers the update to be sent to the LNS, can anybody here shine any light on that for me at all ? We really want to get this going as I hate having to kick somebody off just for their queue to change, but just can't seem to connect the dots..... Thanks Paul
Hi Paul, It is not a radius server initiated process. The idea is that you trigger some process to execute at the necessary time, and issue the COA request to the relevant router. This can be done using shell script, for example, that queries database for appropriate sessions, then sends radius update packet to the router. Cheers! Mike.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Paul Julian Sent: Monday, 13 April 2015 11:23 AM To: public@talk.mikrotik.com.au Subject: [MT-AU Public] COA with Freeradius and Mikrotik
Hi guys, we are making some major changes to our authentication and billing and want to implement the COA feature so that any plan changes mid cycle for customers can be pushed to the LNS.
I know that Mikrotik supports COA by using the inbound radius options and it should do what we want but what I can't seem to find enough information on is how the radius server actually triggers the update to be sent to the LNS, can anybody here shine any light on that for me at all ?
We really want to get this going as I hate having to kick somebody off just for their queue to change, but just can't seem to connect the dots.....
Thanks Paul _______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
Just to add to this, COA currently is implemented for Hotspot but not PPPoE; I've requested this previously. - Andrew On 13 April 2015 at 11:51, Mike Everest <mike@duxtel.com> wrote:
Hi Paul,
It is not a radius server initiated process. The idea is that you trigger some process to execute at the necessary time, and issue the COA request to the relevant router.
This can be done using shell script, for example, that queries database for appropriate sessions, then sends radius update packet to the router.
Cheers!
Mike.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Paul Julian Sent: Monday, 13 April 2015 11:23 AM To: public@talk.mikrotik.com.au Subject: [MT-AU Public] COA with Freeradius and Mikrotik
Hi guys, we are making some major changes to our authentication and billing and want to implement the COA feature so that any plan changes mid cycle for customers can be pushed to the LNS.
I know that Mikrotik supports COA by using the inbound radius options and it should do what we want but what I can't seem to find enough information on is how the radius server actually triggers the update to be sent to the LNS, can anybody here shine any light on that for me at all ?
We really want to get this going as I hate having to kick somebody off just for their queue to change, but just can't seem to connect the dots.....
Thanks Paul _______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
Mmm, OK Andrew that changes things a bit, I thought it did..... Regards Paul -----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Andrew Cox Sent: Monday, 13 April 2015 1:13 PM To: MikroTik Australia Public List Subject: Re: [MT-AU Public] COA with Freeradius and Mikrotik Just to add to this, COA currently is implemented for Hotspot but not PPPoE; I've requested this previously. - Andrew On 13 April 2015 at 11:51, Mike Everest <mike@duxtel.com> wrote:
Hi Paul,
It is not a radius server initiated process. The idea is that you trigger some process to execute at the necessary time, and issue the COA request to the relevant router.
This can be done using shell script, for example, that queries database for appropriate sessions, then sends radius update packet to the router.
Cheers!
Mike.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Paul Julian Sent: Monday, 13 April 2015 11:23 AM To: public@talk.mikrotik.com.au Subject: [MT-AU Public] COA with Freeradius and Mikrotik
Hi guys, we are making some major changes to our authentication and billing and want to implement the COA feature so that any plan changes mid cycle for customers can be pushed to the LNS.
I know that Mikrotik supports COA by using the inbound radius options and it should do what we want but what I can't seem to find enough information on is how the radius server actually triggers the update to be sent to the LNS, can anybody here shine any light on that for me at all ?
We really want to get this going as I hate having to kick somebody off just for their queue to change, but just can't seem to connect the dots.....
Thanks Paul _______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.co m.au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com. au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Andrew Cox Sent: Monday, 13 April 2015 1:13 PM To: MikroTik Australia Public List Subject: Re: [MT-AU Public] COA with Freeradius and Mikrotik
Just to add to this, COA currently is implemented for Hotspot but not PPPoE; I've requested this previously.
- Andrew
On 13 April 2015 at 11:51, Mike Everest <mike@duxtel.com> wrote:
Hi Paul,
It is not a radius server initiated process. The idea is that you trigger some process to execute at the necessary time, and issue the COA request to the relevant router.
This can be done using shell script, for example, that queries database for appropriate sessions, then sends radius update packet to
No, serious? :-o That's plain crazy - did they give any reason why? Cheers, Mike. the
router.
Cheers!
Mike.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Paul Julian Sent: Monday, 13 April 2015 11:23 AM To: public@talk.mikrotik.com.au Subject: [MT-AU Public] COA with Freeradius and Mikrotik
Hi guys, we are making some major changes to our authentication and billing and want to implement the COA feature so that any plan changes mid cycle for customers can be pushed to the LNS.
I know that Mikrotik supports COA by using the inbound radius options and it should do what we want but what I can't seem to find enough information on is how the radius server actually triggers the update to be sent to the LNS, can anybody here shine any light on that for me at all ?
We really want to get this going as I hate having to kick somebody off just for their queue to change, but just can't seem to connect the dots.....
Thanks Paul _______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.co m.au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com. au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
Strangely it is also not supported for DHCP-RADIUS. Workaround, set a low session-timeout. On Mon, Apr 13, 2015 at 3:59 PM, Mike Everest <mike@duxtel.com> wrote:
No, serious? :-o
That's plain crazy - did they give any reason why?
Cheers, Mike.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Andrew Cox Sent: Monday, 13 April 2015 1:13 PM To: MikroTik Australia Public List Subject: Re: [MT-AU Public] COA with Freeradius and Mikrotik
Just to add to this, COA currently is implemented for Hotspot but not PPPoE; I've requested this previously.
- Andrew
On 13 April 2015 at 11:51, Mike Everest <mike@duxtel.com> wrote:
Hi Paul,
It is not a radius server initiated process. The idea is that you trigger some process to execute at the necessary time, and issue the COA request to the relevant router.
This can be done using shell script, for example, that queries database for appropriate sessions, then sends radius update packet to the router.
Cheers!
Mike.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Paul Julian Sent: Monday, 13 April 2015 11:23 AM To: public@talk.mikrotik.com.au Subject: [MT-AU Public] COA with Freeradius and Mikrotik
Hi guys, we are making some major changes to our authentication and billing and want to implement the COA feature so that any plan changes mid cycle for customers can be pushed to the LNS.
I know that Mikrotik supports COA by using the inbound radius options and it should do what we want but what I can't seem to find enough information on is how the radius server actually triggers the update to be sent to the LNS, can anybody here shine any light on that for me at all ?
We really want to get this going as I hate having to kick somebody off just for their queue to change, but just can't seem to connect the dots.....
Thanks Paul _______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.co m.au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com. au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
Yah, That is how we do it with all of our radius that require excess shaping etc. i.e. terminate the session when the monthly quota is met, then check quota on auth-request, and send relevant data rate in access-accept accordingly. For pppoe, the sessions will generally recover fast enough that the customer does not even notice session drop-resume. Cheers! Mike.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Andrew Thrift Sent: Monday, 13 April 2015 3:06 PM To: MikroTik Australia Public List Subject: Re: [MT-AU Public] COA with Freeradius and Mikrotik
Strangely it is also not supported for DHCP-RADIUS. Workaround, set a low session-timeout.
On Mon, Apr 13, 2015 at 3:59 PM, Mike Everest <mike@duxtel.com> wrote:
No, serious? :-o
That's plain crazy - did they give any reason why?
Cheers, Mike.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Andrew Cox Sent: Monday, 13 April 2015 1:13 PM To: MikroTik Australia Public List Subject: Re: [MT-AU Public] COA with Freeradius and Mikrotik
Just to add to this, COA currently is implemented for Hotspot but not PPPoE; I've requested this previously.
- Andrew
On 13 April 2015 at 11:51, Mike Everest <mike@duxtel.com> wrote:
Hi Paul,
It is not a radius server initiated process. The idea is that you trigger some process to execute at the necessary time, and issue the COA request to the relevant router.
This can be done using shell script, for example, that queries database for appropriate sessions, then sends radius update packet to the router.
Cheers!
Mike.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Paul Julian Sent: Monday, 13 April 2015 11:23 AM To: public@talk.mikrotik.com.au Subject: [MT-AU Public] COA with Freeradius and Mikrotik
Hi guys, we are making some major changes to our authentication and billing and want to implement the COA feature so that any plan changes mid cycle for customers can be pushed to the LNS.
I know that Mikrotik supports COA by using the inbound radius options and it should do what we want but what I can't seem to find enough information on is how the radius server actually triggers the update to be sent to the LNS, can anybody here shine any light on that for me at all ?
We really want to get this going as I hate having to kick somebody off just for their queue to change, but just can't seem to connect the dots.....
Thanks Paul _______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikroti k.co m.au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.co m.au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com. au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
It would be nicer though if you could change those things on the fly, really it should be possible to do. Considering they say that the following is supported, why would it be that much harder to do on PPPOE than Hotspot ? Change of Authorization RADIUS disconnect and Change of Authorization (according to RFC3576) are supported as well. These attributes may be changed by a CoA request from the RADIUS server: Mikrotik-Group Mikrotik-Recv-Limit Mikrotik-Xmit-Limit Mikrotik-Rate-Limit Ascend-Data-Rate (only if Mikrotik-Rate-Limit is not present) Ascend-XMit-Rate (only if Mikrotik-Rate-Limit is not present) Mikrotik-Mark-Id Filter-Id Mikrotik-Advertise-Url Mikrotik-Advertise-Interval Session-Timeout Idle-Timeout Port-Limit Note that it is not possible to change IP address, pool or routes that way - for such changes a user must be disconnected first. -----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Mike Everest Sent: Monday, 13 April 2015 3:09 PM To: 'MikroTik Australia Public List' Subject: Re: [MT-AU Public] COA with Freeradius and Mikrotik Yah, That is how we do it with all of our radius that require excess shaping etc. i.e. terminate the session when the monthly quota is met, then check quota on auth-request, and send relevant data rate in access-accept accordingly. For pppoe, the sessions will generally recover fast enough that the customer does not even notice session drop-resume. Cheers! Mike.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Andrew Thrift Sent: Monday, 13 April 2015 3:06 PM To: MikroTik Australia Public List Subject: Re: [MT-AU Public] COA with Freeradius and Mikrotik
Strangely it is also not supported for DHCP-RADIUS. Workaround, set a low session-timeout.
On Mon, Apr 13, 2015 at 3:59 PM, Mike Everest <mike@duxtel.com> wrote:
No, serious? :-o
That's plain crazy - did they give any reason why?
Cheers, Mike.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Andrew Cox Sent: Monday, 13 April 2015 1:13 PM To: MikroTik Australia Public List Subject: Re: [MT-AU Public] COA with Freeradius and Mikrotik
Just to add to this, COA currently is implemented for Hotspot but not PPPoE; I've requested this previously.
- Andrew
On 13 April 2015 at 11:51, Mike Everest <mike@duxtel.com> wrote:
Hi Paul,
It is not a radius server initiated process. The idea is that you trigger some process to execute at the necessary time, and issue the COA request to the relevant router.
This can be done using shell script, for example, that queries database for appropriate sessions, then sends radius update packet to the router.
Cheers!
Mike.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Paul Julian Sent: Monday, 13 April 2015 11:23 AM To: public@talk.mikrotik.com.au Subject: [MT-AU Public] COA with Freeradius and Mikrotik
Hi guys, we are making some major changes to our authentication and billing and want to implement the COA feature so that any plan changes mid cycle for customers can be pushed to the LNS.
I know that Mikrotik supports COA by using the inbound radius options and it should do what we want but what I can't seem to find enough information on is how the radius server actually triggers the update to be sent to the LNS, can anybody here shine any light on that for me at all ?
We really want to get this going as I hate having to kick somebody off just for their queue to change, but just can't seem to connect the dots.....
Thanks Paul _______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikro ti k.co m.au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik. co m.au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com. au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com. au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
participants (4)
-
Andrew Cox
-
Andrew Thrift
-
Mike Everest
-
Paul Julian