I'm not sure what the question really is? You compile the acc module with radius (edit the Makefile). See the README in modules/acc and the radius guide on iptel.org. Basically, you define the accounting flag (ex. 1) and define how to log and every time in ser.cfg you want a message to be accounted, you do setflag(1). SER will send RADIUS accounting messages to port 1813 of your RADIUS server. g-)
---- Original Message ---- From: Ozan Blotter To: serusers@lists.iptel.org Sent: Wednesday, May 11, 2005 12:31 PM Subject: [Serusers] SER 0.9.0 on Mandrake 10.0 with 3rd Party Radius AAA
Hi List,
Is there anyone using "Advanced VoIP Billing Software", i have a few questions regarding to it :
Both Billing Software and SER installed on same machine and LAN IP is 192.168.1.11 (test system)
Linux Dist : Mandrake 10.0 (OS) Apache : Installed (base web server) Java : Installed (important for tomcat) Tomcat : Installed (important for web interface) Perl & PHP : Installed (and a few perl modules for various applications) MySql : Installed (advanced voip needs it and creates to database like "raddb" and "voipbilling") PostgreSql : Installed (no need for it at this time) Radiusclient-ng : Installed (it's needed for SER itself)
I followed steps on http://www.iptel.org/ser/doc/ser_radius/ser_radius.html except freeradius server as normal.
I've installed SER from RPM's for Mandrake:
ser-0.9.0-1mdk.i586.rpm ser-jabber-0.9.0-1mdk.i586.rpm ser-mysql-0.9.0-1mdk.i586.rpm ser-radius-0.9.0-1mdk.i586.rpm
<<<<< SER.CFG >>>>>
[root@localhost ser]# cat ser.cfg # # $Id: ser.cfg,v 1.27 2005/03/10 14:16:25 andrei Exp $ # # simple quick-start config script #
# ----------- global configuration parameters ------------------------
#debug=3 # debug level (cmd line: -dddddddddd) #fork=yes #log_stderror=no # (cmd line: -E) #memlog=5 # memory debug log level #log_facility=LOG_LOCAL0 # sets the facility used for logging (see syslog(3))
/* Uncomment these lines to enter debugging mode fork=no log_stderror=yes */
check_via=no # (cmd. line: -v) dns=no # (cmd. line: -r) rev_dns=no # (cmd. line: -R) #port=5060 #children=4 fifo="/tmp/ser_fifo" #user=ser #group=ser #fifo_user=ser # owner of the ser fifo #fifo_group=ser #fifo_mode=0660 # fifo's permissions #disable_core=yes #disables core dumping #open_fd_limit=1024 # sets the open file descriptors limit #mhomed=yes # usefull for multihomed hosts, small performance penalty #disable_tcp=yes #tcp_accept_aliases=yes # accepts the tcp alias via option (see NEWS)
# ------------------ module loading ----------------------------------
loadmodule "/usr/lib/ser/modules/sl.so" loadmodule "/usr/lib/ser/modules/tm.so" loadmodule "/usr/lib/ser/modules/rr.so" loadmodule "/usr/lib/ser/modules/maxfwd.so" loadmodule "/usr/lib/ser/modules/usrloc.so" loadmodule "/usr/lib/ser/modules/registrar.so" loadmodule "/usr/lib/ser/modules/textops.so" loadmodule "/usr/lib/ser/modules/auth.so" loadmodule "/usr/lib/ser/modules/acc.so" loadmodule "/usr/lib/ser/modules/auth_radius.so" loadmodule "/usr/lib/ser/modules/xlog.so"
# ----------------- setting module-specific parameters ---------------
modparam("auth_radius", "radius_config", "/usr/local/etc/radiusclient-ng/radiusclient.conf") modparam("auth_radius", "service_type", 15) modparam("rr", "enable_full_lr", 1)
# ------------------------- request routing logic -------------------
# main routing logic
route{
# initial sanity checks -- messages with # max_forwards==0, or excessively long requests if (!mf_process_maxfwd_header("10")) { sl_send_reply("483","Too Many Hops"); break; }; if (msg:len >= max_len ) { sl_send_reply("513", "Message too big"); break; }; # we record-route all messages -- to make sure that # subsequent messages will go through our proxy; that's # particularly good if upstream and downstream entities # use different transport protocol if (!method=="REGISTER") record_route(); # subsequent messages withing a dialog should take the # path determined by record-routing if (loose_route()) { # mark routing logic in request append_hf("P-hint: rr-enforced\r\n"); route(1); break; }; if (!uri==myself) { # mark routing logic in request append_hf("P-hint: outbound\r\n"); route(1); break; }; # if the request is for other domain use UsrLoc # (in case, it does not work, use the following command # with proper names and addresses in it) if (uri==myself) { if (method=="REGISTER") {# Uncomment this if you want to use digest authentication if (!radius_www_authorize("")) { www_challenge("","0"); break; };
save("location"); break; }; lookup("aliases"); if (!uri==myself) { append_hf("P-hint: outbound alias\r\n"); route(1); break; }; # native SIP destinations are handled using ourUSRLOC DB if (!lookup("location")) { sl_send_reply("404", "Not Found"); break; }; }; append_hf("P-hint: usrloc applied\r\n"); route(1); }
route[1] { # send it out now; use stateful forwarding as it works reliably # even for UDP2TCP if (!t_relay()) { sl_reply_error(); }; }
<<<<< SER --- When I run it >>>>>
[root@localhost root]# ser -c 0(2178) WARNING: fix_socket_list: could not rev. resolve 192.168.1.11 0(2178) WARNING: fix_socket_list: could not rev. resolve 192.168.1.11 Listening on udp: 127.0.0.1 [127.0.0.1]:5060 udp: 192.168.1.11 [192.168.1.11]:5060 tcp: 127.0.0.1 [127.0.0.1]:5060 tcp: 192.168.1.11 [192.168.1.11]:5060 Aliases: tcp: localhost:5060 udp: localhost:5060
config file ok, exiting... [root@localhost root]
<<<<< RADIUS --- When I run it >>>>>
[root@localhost advradius]# ./runserver.sh
Wed, 11 May 2005 13:05:58 095: FINE:
<GlobalConf> AuthenticationPort = 1812 AccountingPort = 1813 BindAddress = null DictionaryFile = /billing/advradius/conf/dictionary LogDirectory = /billing/advradius/log LogLevel = FINE ConsoleWrite = true FileWrite = true ConsiderSrcIPAsNASIP = false </GlobalConf>
Wed, 11 May 2005 13:05:58 739: FINE:
<ThreadPoolManager> NumThreads = 10 MaximumWorkTime = 5000 KeepAliveTime = -1 ExpiryThreadSleepInterval = 5000 </ThreadPoolManager>
Wed, 11 May 2005 13:05:58 882: FINE:
<Client DEFAULT> NASIdentifier = default Secret = mysecret Realm = db </Client>
Wed, 11 May 2005 13:05:58 917: FINE:
<Realm db> 18AuthBy = [db] AcctPolicy = BACK-UP Accounting = [db, file_acct] Session = db </Realm>
Wed, 11 May 2005 13:05:59 708: FINE:
<DBParams DEFAULT> DriverName = org.gjt.mm.mysql.Driver DBURL = jdbc:mysql://127.0.0.1:3306/voipbilling UserName = root UserPassword = </DBParams>
Wed, 11 May 2005 13:05:59 967: FINE:
<AuthBy db> CheckList = [(5, (260, 0)) , (6, (0, 0)) ] ReplyList = [(1, (101, 9)) , (2, (102, 9)) , (3, (103, 9)) , (4, (6, 0)) , (7, (0, 0)) ] BackStore = DB PwdEncType = 0 SimultaneousLogin = 0 BackStore = DB DBParams = null AuthQuery = Select CallAmnt, CallTime, ReturnCode, AuthServiceType, Password, OtherCheckItems, OtherReplyItems from TblActiveSessions where AuthConfID = $cisco-h323-conf-id and AuthType = @GetRequestNumber@ AttribMapping = ColMapped </AuthBy>
Wed, 11 May 2005 13:05:59 990: FINE:
<Session db> BackStore = DB InsertSession = Insert INTO TblActiveSessions ( UserName, TimeStart, AuthType, CalledNumber, AuthCallingNumber, AuthNASIPAddress, AuthNASPort, AuthNASPortType, AuthConfID, CallOrigin, CallType, AcctSessionID ) values ($User-Name, $Event-Time, 3, $Called-Station-Id, $Calling-Station-Id, $NAS-IP-Address, $NAS-Port, $NAS-Port-Type, $cisco-h323-conf-id, $cisco-h323-call-origin, $cisco-h323-call-type, $Acct-Session-Id) DeleteSession = Delete from TblActiveSessions where AuthConfID = $cisco-h323-conf-id CountSession = Select count(*) from TblActiveSessions where LoginName = $User-Name and AuthConfId=$cisco-h323-conf-id BackStore = DB </Session>
Wed, 11 May 2005 13:06:00 039: FINE:
<Accounting db> BackStore = DB InsertAcct = Insert INTO TblCallsRad ( TimeClose, UserName, ActualDuration, CallingNumber, CalledNumber, ConfID, CallOrigin, CallType, AcctSessionID, NASIPAddress, BytesIn, BytesOut, DelayTime, AcctStatusType, RemoteAddress, RemoteGatewayID, TerminationCause, ) values ( $Event-Time, $User-Name, $Acct-Session-Time:NUMBER, $Calling-Station-Id, $Called-Station-Id, $cisco-h323-conf-id, $cisco-h323-call-origin, $cisco-h323-call-type, $Acct-Session-Id, $NAS-IP-Address, $Acct-Input-Octets:NUMBER, $Acct-Output-Octets:NUMBER, $Acct-Delay-Time:NUMBER, $Acct-Status-Type, $cisco-h323-remote-address, $cisco-h323-gw-id, $cisco-h323-disconnect-cause, ) QueueLength = 5000 RecordAcctStart = FALSE DBParams = null InsertCheckpointAcct = null </Accounting>
Wed, 11 May 2005 13:06:00 070: FINE:
<Accounting file_acct> BackStore = FILE InsertAcct = null QueueLength = 5000 RecordAcctStart = TRUE
FileNameFormat = yyyy-MM-dd-HH.csv AcctDirectory = AcctLog</Accounting>
Your evaluation license will expire in 25 day(s).
Wed, 11 May 2005 13:06:00 137: INFO: Listener started at: 1812
Wed, 11 May 2005 13:06:00 143: INFO: Listener started at: 1813 Started Successfully <<<
Anyone have any idea how to implement this valuable software in SER because we're gonna pay for it.
Serusers mailing list serusers@lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers