Home

FreeNIBS/STArad

Contents

1. NETSHe 0 1 x 3 gt ber B A s Lj e http localhost 5556 suite provideriindex php action sys ResOperators table_view amp id 8 amp page 0 i2 x E Google 7 AO D Find next Author mode E show images jFitto width Dialn Y Reports Provider Data Y a New T Home Help d Logout Operators for Title Name Provider Reseller Responsible person Option 12 ifach operator lfach hoteles lfach Raul Hurtado Xo 31 SHIFACH Hotellfach Ifach Raul Hurtado SRE Total 0 Help e New 8 Edit Q Find x Delete a Lock o Grant access to Dialln tariffs B a 0t 0a R Cnwcok pashustik 2 radsuite EM Terminal e n Mo PE ONE 3 13 02 06 And go to the tariffs access control for a specific operator Note You can create a new operator NETSHe 0 11 Opera 2 Oe File Edit View Bookmarks Widgets Mail Tools Help apego EE EET een 44 9 be SZ LH S ntpulocalhost5556 suite provider index php action rad ProvTariff2 operators view amp id t 2apage 2 v G coogle Lx Q Find in page L2 Find next 3 Author mode EJ Show images Fitto width 100 Dialln Repors v Provider Data Y ESI am New D Home i Help d Logout Help x E New Yy Access to tariff is granted for x Access to tariff is disabled for Time to live for account Operator Operator le days Users Option 1 1102 X 20 Valencia Palace 24h donot draw do n
2. 0 00 Input data in a highligted fields NETSHe 0 1 Josep t3 QN wErSHe o E Terminal m E Terminal m gt radsute O f amp Mewemxep o k 100 SM V a o fo0 11 09 Total limit in the tab Limitations is set to 10080 minutes The main distinction of such tariff is the price list I NETSHe 0 1 Opera l NETSHe 0 1 Opera ff a e Eile Edit View Bookmarks Widgets Mail Tools Help newtab amp mnses C hneva O EZ NN mage rap Profile pa E gt p 7 hitp localhost 5556 suite provider index php action rad Price2 edit amp gid 1 0 amp tos 1 amp dir 0 LZ iG Google ixi 8 Q Find in page Find next Di Author mode E Show images GAY Fitto width 100 v a Dialln Y Reports Provider Data Y m Home Help B Logout Time cost per hour Time 00 00 00 59 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 01 00 01 59 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 02 00 02 59 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 03 00 03 59 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 04 00 04 59 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 Kl 05 00 05 59 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 06 00 06 59 1 000000 1 000000 1 000000 1 000000 1 00
3. Save Reset Input data in a highligted fields NETSHe 0 1 Korsakov B dy tNetsHe 0 1 7 E Terminal mc E Terminal mc radsuite Open m 6 x E37 a 23 11 43 NETSHe 0 1 Opera fi File Edit View Bookmarks Widgets Mail Tools Help Dre ig a eee a GHQerrEersres e http localhost 5556 suite rootindex php action sys Companies edit amp id 28 amp page 0 2 lZ IG coogie vil D Find next Author mode E snow images Fit to width Addons URL E mail State Province Work phone Town Palma de Mallorca Exten Street Fax Ext add Cell phone Save Reset Input data in a highligted fields NETSHe 0 1 Korsakov t3 Q9 tNETSHe 0 11 Ell Terminal mc El Terminal mc radsuite Open 9 x In order to enter people choose the menu item Data People I gt TNETSHe 0 1 Opera NETSHe 0 1 Opera 2D e File Edit View Bookmarks Widgets Mail Tools Help Cwww emawen C rea sc NN 44 gt b gt 2 d g e http localhost 5556 suite root index php action sys People table_view amp page 0 LZ IG Google MI Q Find in page Find next E Author mode E Show images os Fitto width 100 7 Dialln Y Reports Datay Addons EE T m Home Help B Logout People First Last Ix Home Work Cell av Entrance Name Name
4. TB Be tt oa Cnucok ashustik ETS i2 radsuite Terminal 9 a P a NETSH f le This table contains such information as subscriber number login tariff sum on account available credit some statistical data and buttons for subscriber management Subscriber editing creation form is very similar the tariff editing form NETSHe 0 11 Opera M 096 Eile Edit View Bookmarks Widgets Mail Tools Help New tab X Transfers LJ WP Received L3 4 AX http ocalhost 5556 suite provider index php action rad ProvU ser2 add amp page 0 IG Googie ixl Et 2 NETSHe 0 1 x g Q Find in page P Find next B Author mode E Show images n Fitto width 100 M Dialln Y Reports Provider Data Y a Table view D Home Help B Logout Create new user General Assigment Limitations Tariff Valencia Palace 1h B Login new_user Password eem Password confirmation und Billing type do not draw Count traffic do not count v remove money from account do not draw store statistics only v Charge fixed sum do not draw ixi Fixed sum 0 Funds on account 0 Available credit 0 Time to live for account days 0 Input data in a highligted fields Ps NETSHe 0 1 Raul 100 ws E GNE 2 120947 radsuite E Terminal e b B t 0t 0a R Cnwcok pashustik 4 NETSH Below is the subscr
5. Terminal mc 2 radsuite Open 1 7 W T100 E 3 2 lo 00 20 30 There are no additional limitations for the subscriber to this tariff NETSHe 0 11 Opera ff 2 2 2 File Edit View Bookmarks Widgets Mail Tools Help T a C Newiab j amp manser 9 Ana E E ue Sl E gt p 2 d Lj e http localhost 5556 suite provider index php action rad Price2 edit amp gid 6 3 amp tos 2 amp dir 2 a LZ IG Google LJ qQ Find in page Find next 3 Author mode 7 KJ Show images Fitto width amp 100 v Dialln Reports Provider Data Y it Home Help B Logout Incoming traffic costs per MB Time 00 00 00 59 2 000000 1 000000 3 000000 3 000000 2 000000 2 000000 1 000000 2 000000 01 00 01 59 2 000000 1 000000 3 000000 3 000000 2 000000 2 000000 1 000000 2 000000 02 00 02 59 2 000000 1 000000 3 000000 3 000000 2 000000 2 000000 1 000000 2 000000 03 00 03 59 2 000000 1 000000 3 000000 3 000000 2 000000 2 000000 1 000000 2 000000 04 00 04 59 2 000000 1 000000 3 000000 3 000000 2 000000 2 000000 1 000000 2 000000 05 00 05 59 2 000000 1 000000 3 000000 3 000000 2 000000 2 000000 1 000000 2 000000 06 00 06 59 2 000000 1 000000 3 000000 3 000000 2 000000 2 000000 1 000000 2 000000 07 00 07 59 2 000000 1 000000 3 000000 3 000000 2 000000 2 000000 1 000000 2 000000 08 00 08 59 2 000000 1 000000 3 000000 3 000000 2 000000 2 000000 1 000000 2 000000 09 00 09 59 2 000000 1 000000 3 000000 3 0
6. lt xml versionz 1 0 encoding UTF 8 gt lt response gt lt response_code gt ok lt response_code gt lt response gt or lt xml version 1 0 encoding UTF 8 gt lt response gt lt response_code gt fail lt response_code gt lt response gt 7 create_user function Parameters are sequence_id as F session service as string tariff_id as number cause as string Cause is a message that contains cause of user creation action from payment gateway etc Example of invocation http url vpi mux php action create_user amp sequince_id YYY amp service rad amp tariff_id 15 cause XXX Return value xml file with an ok username password user_id and rechrgable flag yes or no or fail in a case of error lt xml version 1 0 encoding UTF 8 gt lt response gt lt response_code gt ok lt response_code gt lt username gt TEST lt username gt lt password gt 123 lt password gt lt user_id gt 15008 lt user_id gt lt can_be_recharged gt yes lt can_be_recharged gt lt response gt Created user has zero account balance and has disabled or lt xml version 1 0 encoding UTF 8 gt lt response gt lt response_code gt fail lt response_code gt lt response gt 8 proceed_payment function Parameters are sequence_id as F session service as string user id as number sum as number currency as string doc id as string cause as string hash as string Cause should contain type of payment PayPal Credit c
7. Creation cancellation of holidays is performed by simple mouse click on the right date Note Holidays are to be defined only when using tariffs with billing type time traffic without gradations and time traffic Holidays data structure for RDBMS MySQL Table holidays holiday date varchar 5 date of holiday in MM DD format comment varchar 64 description of holiday After the definition of the tariffs and the holidays you can enter the subscribers Creating and editing subscribers Creation of subscribers in the system can be performed by the following two methods e By means of creation of prepaid cards where a card is referred to a certain tariff and contains all the necessary connection data login password etc In this case the subscribers are created as a group and logins passwords are generated automatically All cards subscribers within the series have identical settings The system has the necessary tools for creation of individual images csv file generation with logins passwords and card printing pdf files are generated and login password sending to the subscriber as an SMS clicatell service is supported but other services can be used as well e By means of entering new subscribers In this case subscribers are created one by one Let us review both methods beginning with the prepaid cards method To work with series of prepaid cards choose the menu item Dialin 2Cards
8. 0 If there is no deposit then the access is denied error 1 If the subscriber is not activated users activated 0 then the filter checks whether the subscriber addition date is more than the current date users add date now deny access error 31 If the subscriber addition date is equal to zero users add date 0 then the addition date will be set to the current date users add date now If the activation time is equal to zero packet activation time 0 then the login expiry time is set to zero and ignored users expired 0 If the activation time is more than zero packet activation time gt 0 and if the date for the activation is less than the login expiry date now packets activation time users expired then the expiry date is substituted with the new date users expired now packets activation time Subscriber activation users activated 1 If the login expiry date is not equal to zero and if it is less or equal to the current date users expired lt now then the access is denied error 2 If the subscriber is blocked users blocked 1 then the access is denied error 3 If the total time limit is more than zero packets total time limit gt 0 and if the total sum of the subscribers time is more or equal to the limit users total_time gt packets total_time_limit then the access is denied error 11 If the month time limit is more than zero packets month_t
9. 2 max40xx Lucent finger finger command No netserver USR 3com telnet CPAN Net Telnet Yes pathras Cyclades telnet CPAN Net Telnet Yes patton Patton SNMP SNMP No portslave finger finger command No pr3000 Cyclades SNMP snmpwalk command No pr4000 Cyclades SNMP snmpwalk command No tc USR 3com _ telnet CPAN Net Telnet Yes usrhyper USR 38com SNMP SNMP No 3 versanet VersaNet SNMP SNMP No 1 The following settings are to be made in the configuration file login SNMP password required community 2 Needs at least ComOS 3 5 SNMP enabled 3 Set Reported Port Density to 256 default The second parameter allows to check for the double connection and determine stale sessions by means of ALIVE packet arrival time calculation It is applicable for any types of NAS but requires appropriate ALIVE configuration This parameter operates as follows The value of last change is taken from the table actions and the value of Acct Interim Interval is taken from users other params Stale session is calculated by the following formula now last change gt Acct Interim Interval alive max interval i e if within alive max interval seconds the expected ALIVE does not arrive the session is considered stale Note Session is considered stale if the connection is established from the port and the access server which are already specified in the table actions as Online Such sessions are closed automatically Annex 3
10. Per sec or per min charging Holidays Activation from the first connection and for the set period of time Setting of login expiry date Setting of login validity start time Possibility to use the service on credit Corporate bills Login blocking Assignment of fixed IP addresses for each login Back call number assignment for each login Complete information about the connections statistics Easy and flexible system management via the web interface Operation with prepaid cards Limit for the access time and date Live statistics support Subscriber disconnection reset at various conditions Any methods of password checking by means of other modules of the radius server Individual subscriber price lists version 2 0 and above Different price lists for groups and subscribers for different access servers version 2 0 and above Concurrent prepaid and postpaid modes Subscriber authorization by automatic number identifier Subscriber authorization by IP address Subscriber authorization by mac address made possible due to other components introduced for some hardware access servers Service scopes Billing is based on the scope of rendered services which can be determined by the total duration of the subscriber sessions time logging subscriber traffic size traffic logging number of sessions and any combination thereof Logging of the number of sessions is charging of payment from the subsc
11. Tariff editing Assigment Limitations Name Test traffic tariff 2 Billing type traffic 7 traffic incoming money from account draw and check funds i Charge fixed sum do not draw 5 E Fixed sum 0 00 Funds on account 10 Credit available 1 Time to live for account days 0 Input data in a highligted fields L4 9 NETSHe 0 1 Josep Q NETSHe 0 1 Ell Terminal mc E Terminal mc B radsuite Open an 00 20 06 B Billing type traffic is specified on the tab General It is also specified that the incoming traffic is to be counted When a new subscriber is created the sum on account will be 10 units of money The subscriber s account can be overdrawn in the amount of 1 unit of money NETSHe 0 1 Opera V File Edit View Bookmarks Widgets Mail Tools Help ii New tab 9 zem a A C b L e http localhost 5556 suite provider index php action rad ProvTariff2 edit amp id 63 amp page 0 i2 1 IG acoge vil 2 Dialln v Reports Provider Data Author mode B Show images Fit to width D Table view ps Home Help f Logout Tariff editing Limitations Limits Time mins 0 Traffic MB Money 0 00 Input data in a highligted fields NETSHe 0 1 Josep B dy twETsHe01 1 Ell Terminal mc
12. packets week traffic limit gt 0 then the time for the current week is calculated in accordance with the table actions If the calculated traffic is more or equal to the limit week_traffic gt packets week_traffic_limit then the access is denied error 23 e If the day traffic limit is more than zero packets day_traffic_limit gt 0 then the time for the current day is calculated in accordance with the table actions If the calculated traffic is more or equal to the limit day_traffic gt packets day_traffic_limit then the access is denied error 24 e If the login time is limited packets login time 0 0 and if the allowed login time is not equal to the current time packets login_time now then the access is denied error 40 What is the format of the parameter login time If it is necessary to set the interval for the night tariff e g from 23 00 to 7 00 will it be takei into account when calculating session timeout login time This parameter will be taken into account when calculating session timeout Parameter format is very easy intervals divided by commas and consisting of the day and time DDHHMM HHMM or just the day DD The following days are supported Su Sunday Mo Monday Tu Tuesday We Wednesday Th Thursday Fr Friday Sa Saturday Wk working days Mo Tu We Th Fr Al all days HI holidays Example Wk0000 0800 Sa Su HI2200 1000 It means access
13. sessions 1 There are no limitations with regards to the number of concurrently used access server ports Maximum session time is not explicitly limited Idle time is limited to 10 minutes Access server settings are used to assign the address to the subscriber empty field means that RADIUS does not participate in the process of address assignment There are no limitations with regards to connection time and access server Tariff is not blocked Subscribers are not enabled by default n order to gain access the subscriber is to enter password Statistics is tracked for every subscriber of the tariff Callback is disabled TNETSHe 0 11 Opera ff 2 2 2 File Edit View Bookmarks Widgets Mail Tools Help C weww mm Ljifmeewa E ETIN NNNM HES y 4 http ocalhost 5556 suite provider index php action rad ProvTariff2 edit amp id 19 amp page 0 MI IG Googie P4 63 Q Find in page Find next D Author mode EJ Show images Fitto width 100 MI Dialln Y Reports Provider Data Y LO Tabie view Ifi Home Help 4 Logout Tariff editing General Assigment E Limits per Day per Week per Month Total Time mins 0 0 0 60 Traffic MB 0 0 0 0 Money 0 00 0 00 0 00 0 00 Save Input data in a highligted fields e NETSHe 0 1 Raul B 4o t NETSHe o E Terminal m E Terminal m gt radsuite O p Meuemxep
14. w e 100 eB A 23 33 21 Limitations tab contains information about the subscriber activity within the lifetime of the login and particularly the following see the example above Limit for the accumulated duration of the sessions per day per week per month and the total limit Limit for subscriber traffic in megabytes per day per week per month and total Please remember that in this case the billing type is to be traffic incoming outgoing maximum minimum incoming outgoing or total Limit for spent money per day per week per month and the total limit Any limits in any combination can be set The following rule is to be taken into account when setting limits Day limit 2 week limit 2 month limit total limit Because billing type is not set for this tariff it lacks any price list How the subscriber of this tariff is managed Subscriber login deactivation time is set at the start of the first session This time is set as current time 24 hours Session timeout is calculated function min subscriber deactivation time current time 20 minutes Session start and end time is stored updated for each subscriber session Now we can review the tariff with billing type time File Edit View Bookmarks Widgets Mail Tools Help New tab Sumansem i O qerr Sere e http localhost 5556 suite providerindex php action rad ProvTariff2 edit amp id 1 0 amp page 0 i2 M IG Googie Q Find in
15. 00 until 08 59 59 h9 double 8 6 is the charge per hour from 09 00 00 until 09 59 59 input9 double 8 6 is the charge for incoming traffic from 09 00 00 until 09 59 59 output9 double 8 6 is the charge for outgoing traffic from 09 00 00 until 09 59 59 h10 double 8 6 is the charge per hour from 10 00 00 until 10 59 59 input10 double 8 6 is the charge for incoming traffic from 10 00 00 until 10 59 59 output10 double 8 6 is the charge for outgoing traffic from 10 00 00 until 10 59 59 h11 double 8 6 is the charge per hour from 11 00 00 until 11 59 59 input 1 double 8 6 is the charge for incoming traffic from 11 00 00 until 11 59 59 output1 1 double 8 6 is the charge for outgoing traffic from 11 00 00 until 11 59 59 h12 double 8 6 is the charge per hour from 12 00 00 until 12 59 59 input12 double 8 6 is the charge for incoming traffic from 12 00 00 until 12 59 59 outputi2 double 8 6 is the charge for outgoing traffic from 12 00 00 until 12 59 59 h13 double 8 6 is the charge per hour from 13 00 00 until 13 59 59 input13 double 8 6 is the charge for incoming traffic from 13 00 00 until 13 59 59 output13 double 8 6 is the charge for outgoing traffic from 13 00 00 until 13 59 59 h14 double 8 6 is the charge per hour from 14 00 00 until 14 59 59 input14 double 8 6 is the charge for incoming traffic from 14 00 00 until 14 59 59 outputi4 double 8 6 is the charge for outgoing traffic from 14 00 00 until 14 5
16. 511 2 ROD mE rales 1h 18 80 do not draw 6 50 0 00 1 501 DIRO 58 Ingles 24h 12 Euros dono do not draw 12 00 0 00 2 502 AIRO EE Salach 1h ConA do not draw 6 50 0 00 1 200 8 RD EN Eo aona do not draw 12 00 0 00 10 208 a 9e D T Help x Altea Hills 1h do not 45 48 do not dra n um 6 5Euros draw J p Presets aee e New 74 Edit Q Find Xx Delete t Lock o Price ea Hills s on E a 12Euros draw cluichs pe EE Do Florazar 1h fong do not draw 6 50 0 00 1 299 8 RD ee Llorszar aeons ee do not draw 12 00 0 00 2 300 LRD B 4 t NETSHe 0 E Terminal m E Terminal m gt radsuite 0 f Meuemxep n e 100 Wc H eB A 23 31 58 List of tariffs in the system Tariffs The following operations are available creation of a new tariff editing of an existing tariff deletion of the tariff and statistics The table contains basic information about the tariffs tariff name billing type time traffic etc sum on the account of the newly created subscriber of the tariff number of subscribers for each tariff etc It should be noted that adding of a new tariff is to be performed ONLY from the provider s or reseller s interface with relevant rights Note 1 Tariff properties set to 0 or empty fields mean that there are no restrictions with regards to the given parameter and or the access server settings are used Note 2 Setting of the same subscriber attributes to the values which di
17. Description of external subscriber service management interface External management API 1 session start function Should be first in a sequence Parameters are username md5 password key message Key is a randomly generated sequence Msg is a message that contains a description of an operation payment method etc Like PayPal payment Example of invocation http url vpi mux php action session_start amp username payment_gw amp password XXX amp key YOUR_KEY amp messa ge YYY Return value xml file with session id string length 128bit or with fail in case of error lt xml version 1 0 encoding UTF 8 gt lt response gt lt response_code gt ok lt response_code gt lt session gt 34VDNI123AAWQERWVC56 lt session gt lt response gt or lt xml version 1 0 encoding UTF 8 gt lt response gt lt response_code gt fail lt response_code gt lt response gt 2 session_end function Should be last in a sequence Parameter are sequence_id as F session All sessions have time limits It increases error_counter for client when session was not ended with session_end call And may cause client blocking Example of invocation http url vpi mux php action session_end amp sequince_id YYY Return values xml file with ok or fail lt xml versionz 1 0 encoding UTF 8 gt lt response gt lt response_code gt ok lt response_code gt lt response gt or lt xml version 1 0 encoding UTF 8 gt lt resp
18. F n 1 for step n and
19. TNETSHe 0 11 Opera ff 22 2 File Edit View Bookmarks Widgets Mail Tools Help 4 l2 L e http localhost 5556 suite provider index php actionzrad ProvCard2 table view amp page 0 LZ iG Google LZ q Find in page gt Find next 3 Author mode 7 E Show images 0 Fitto width 100 Lv Dialln Reports Provider Data Y s new Next mom B Logout Click on card to send Login Password to customer via SMS Card series Cost of c Image card Creation date Users Tariff Description Option GKOPLC High Speed Internet 1970 01 01 55 12 00 00 00 00 100 Valencia Palace 24h Valencia Palace 24 horas E 3 B L GKOPLC High Speed Internet 1970 01 01 r 61 6 50 Heti 100 Valencia Palace 1h ValPalace1h203rs axLid GICOPLC High Speed Intemet 1970 01 01 1 68 12 00 00 00 00 nl Valencia Palace 24h fixproblem E 3 El GIKKOPLC High Speed hine 1970 01 01 i 69 6 50 00 00 00 100 Valencia Palace 1h Florazar 1h a P4 D Q we d f bt oa R Cnwcok 3 pashustik radsuite EM Terminal a 10096 ub SEQQ 2 osos The table contains card image specifies card price number of cards in the series tariff etc The column Options shows which operations can be performed with the card series locking deletion printing to csv file or paf file etc A special form is used for creation of a new card series gt NETSHe 0 11 Opera M File Edit View Boo
20. Town Street Address phone phone phone Organization Option 22 alteahills Altea Hills SH x 10 proldan Enter Name 8 x 32 SHINGLES Hotel Ingles 8 R 33 SHFLORAZAR Hotel rd I 34 SHVILLAGADEA Hotel Villa Gadea 8 P4 Li 35 SHALTEAHILLS Hotel Altea Hills x 36 SHIFACH Hotel Ifach IR 16 ifach Ifach hoteles SH I 9 ingles Ingles Boutique SH 8 P4 27 jasensi jasensi jasensi x 18 jmari Javier Mar gt 4 gt in EE Y 87 new I Edit CX Find 9 Delete B Lock X 6 jpocalles Josep Pocalles EKOPLC sx A aa Xl 2 100 WE EE Eg 3 o f2314 29 B 4 t NETSHe 01 1 E Terminal mc Ej Terminal mc iz radsuite Open a Procedure similar to the entry deletion editing of the companies People input dialog has at least three important elements e login for entrance into the system e password e user privilege level security level Security level set the following features bob User role in the system who the user can act as 20 Operator User can view some objects in the system 24 Operator User can add some objects in the system 27 Operator User can edit some objects in the system 29 Operator User can delete some objects from the system 30 Provider operator As a rule the user has all the rights of the operator E User role in the system who the user can act as 34 Provider operator User can add some objects in th
21. cost of rendered services is calculated in accordance with a special price list e Day of service rendering is the day of the week within which the subscriber had at least one session e Session is the communication session within which the subscriber used the service Session starts from the moment of successful subscriber authorization at the radius server e Service scope is an agreed method of rendered service measurement It can have various measurement units duration traffic fact of connection or any combination thereof e Limit is a rule applied to rendering of service to the subscriber The utmost limit is the denial permanent or temporary to provide the service Example of a limit is the number of concurrent logins FEATURES e All subscribers and groups packets are stored in the database e Various databases can be used MySQL Postgesal Oracle etc e Bills management e Creation of unlimited number of packets with various configurations e Operation in traffic time and traffic time counting mode e Counting of any traffic e Network capability VPN e Operation in limited mode with regards to the funds on account time and or traffic Limits for a day a week a month and a total limit Operation in fixed day rate mode Operation in mixed modes Setting of rate per each hour at any day of the week and at holiday Setting of traffic cost up to 24 traffic sizes Setting of throughput for the subscriber
22. of billing rules and service rendering parameters for subscriber groups access servers and individual subscribers The module operates on all platforms and in all operating systems where FreeRADIUS radius server and STArad radius server are operational FreeRADIUS is a radius server for UNIX like operating systems which is also distributed as source code under the GPL license See the official web page http www freeradius org for details The module as well as the radius server are freeware The module is distributed as source code under the GPL license ver 2 Access server configured for termination of vpn or ppp pppoe pptp connections It is also to be configured to be able to send authorization accounting start accounting stop and accounting alive requests Communication channel Communication channel Dialin subscribers Server with FreeRADIUS and FreeNIBS for management and billing of dialin subscribers Hardware and software requirements This software operates under Linux family operating systems Debian RedHat and similar OS s Gentoo etc FreeBSD NetBSD OpenBSD There are no major problems preventing this software to operate under Solaris and MacOS This software has not been run under Windows family operating systems This software requires an installed and tuned RDBMS server such as MySQL PostgreSQL or Oracle version 3 0 0 uses PostgreSQL as the main data storage This soft
23. page D Find next author mode E Snow images Fito width 100 Dialn Y Reports Provider Data Y D Ta Table view im Home Help 2 Logout Tariff editing Assigment Limitations Name 7 days Billing type time xl traffic do not count v money from account draw and check funds i Charge fixed sum do not draw BA Fixed sum 0 00 Funds on account 30 00 Credit available 0 00 Time to live for account days 7 Save Input data in a highligted fields L4 9 NETSHe 0 1 Josep 4 NETSHe 0 Gal Terminal m E Terminal m gt radsuite 0 Meuemxep E eduiioo Nm EE Ba amp po 10 35 B Billing type time is specified on the tab General Time to live for account is set to 7 days When a new subscriber is created the sum on account will be 30 units of money Assignments tab has the same settings as the above shown tariff NETSHe 0 1 Opera File Edit View Bookmarks Widgets Mail Tools Help ii New tab d eee a GHQerrEersres e http localhost 5556 suite provider index php action rad ProvTariff2 edit amp id 1 0 amp page 0 2 lZ C Googie vil TE Dialln v Reports Provider Data Author mode E Show images j Fitto width D Table view ps Home Help f Logout Tariff editing Limitations Limits per Day Time mins 0 Traffic MB Money
24. 0000 1 000000 1 000000 1 000000 07 00 07 59 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 08 00 08 59 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 09 00 09 59 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 10 00 10 59 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 11 00 11 59 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 12 00 12 59 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 13 00 13 59 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 14 00 14 59 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 15 00 15 59 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 16 00 16 59 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 m 17 00 17 59 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 18 00 18 59 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 19 00 19 59 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 20 00 20 59 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 21 00 21 59 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 1 000000 iv i NETSHe t E Terminal m E Terminal m gt radsuite 0 f MeHegxep n e 100 an B 3 lo 00 17 2 Price list is a tab
25. 00000 2 000000 2 000000 1 000000 2 000000 10 00 10 59 2 000000 1 000000 3 000000 3 000000 2 000000 2 000000 1 000000 2 000000 11 00 11 59 2 000000 1 000000 3 000000 3 000000 2 000000 2 000000 1 000000 2 000000 12 00 12 2 000000 1 000000 3 000000 3 000000 2 000000 2 000000 1 000000 2 000000 13 00 13 59 2 000000 1 000000 3 000000 3 000000 2 000000 2 000000 1 000000 2 000000 14 00 14 59 2 000000 1 000000 3 000000 3 000000 2 000000 2 000000 1 000000 2 000000 15 00 15 59 2 000000 1 000000 3 000000 3 000000 2 000000 2 000000 1 000000 2 000000 16 00 16 59 2 000000 1 000000 3 000000 3 000000 2 000000 2 000000 1 000000 2 000000 a 17 00 17 59 2 000000 1 000000 3 000000 3 000000 2 000000 2 000000 1 000000 2 000000 18 00 18 59 2 000000 1 000000 3 000000 3 000000 2 000000 2 000000 1 000000 2 000000 19 00 19 59 2 000000 1 000000 3 000000 3 000000 2 000000 2 000000 1 000000 2 000000 20 00 20 59 2 000000 1 000000 3 000000 3 000000 2 000000 2 000000 1 000000 2 000000 21 00 21 59 2 000000 1 000000 3 000000 3 000000 2 000000 2 000000 1 000000 2 000000 iv 4 INETSHe 0 1 Ell Terminal mc EM Terminal mc radsuite Open 6 100 an eB A lo 00 21 2 Price list for this tariff contains prices for 1 Mb of the traffic Prices are specified for every hour of the day and for every day of the week including days off In case of incoming and outgoing traffic counting as well as traffic time counting the price list e
26. 9 59 h15 double 8 6 is the charge per hour from 15 00 00 until 15 59 59 input15 double 8 6 is the charge for incoming traffic from 15 00 00 until 15 59 59 output 5 double 8 6 is the charge for outgoing traffic from 15 00 00 until 15 59 59 h16 double 8 6 is the charge per hour from 16 00 00 until 16 59 59 input16 double 8 6 is the charge for incoming traffic from 16 00 00 until 16 59 59 output 6 double 8 6 is the charge for outgoing traffic from 16 00 00 until 16 59 59 h17 double 8 6 is the charge per hour from 17 00 00 until 17 59 59 input17 double 8 6 is the charge for incoming traffic from 17 00 00 until 17 59 59 outputi7 double 8 6 is the charge for outgoing traffic from 17 00 00 until 17 59 59 h18 double 8 6 is the charge per hour from 18 00 00 until 18 59 59 input18 double 8 6 is the charge for incoming traffic from 18 00 00 until 18 59 59 output18 double 8 6 is the charge for outgoing traffic from 18 00 00 until 18 59 59 h19 double 8 6 is the charge per hour from 19 00 00 until 19 59 59 input19 double 8 6 is the charge for incoming traffic from 19 00 00 until 19 59 59 output19 double 8 6 is the charge for outgoing traffic from 19 00 00 until 19 59 59 h20 double 8 6 is the charge per hour from 20 00 00 until 20 59 59 input20 double 8 6 is the charge for incoming traffic from 20 00 00 until 20 59 59 output20 double 8 6 is the charge for outgoing traffic from 20 00 00 until 20 59 59 h21
27. Dialin gt Holidays Exact data modification rights are determined by the additional system operator assignments I gt TNETSHe 0 1 Opera NETSHe 0 1 Opera 9 9 Eile Edit View Bookmarks Widgets Mail Tools Help jd New tab X Transfers J ha Received j EN TSHe01 2 si z 4 gt p 5 4 g e http localhost 5556 suite provider index php action sys Holy calendar IG Google ul 65 Q Find in page DP Find next _ Author mode B show images Fitto width Q 100 v Dialin Y Reports Y Provider Data v it Home Help B Logout lt lt 2008 gt anuary 2008 February 2008 March 2008 April 2008 MonTueWedThu Fri SatSunMonTueWedThu Fri SatSunMonTueWedThu Fri SatSunMonTueWedThu Fri SatSu 3456 13 3 i I S 91171 47H45 0 79279709354 ETE SL 17 18 19 20 11 12 13 14 15 16 17 10 11 12 13 14 15 June 2008 Jule 2008 August 2008 MonTueWedThu Fri SatSunMonTueWedThu Fri SatSunMonTueWedThu Fri SatSunMonTueWedThu Fri SatSui 1234 12 3 19 20 21 22 23 24 25 16 17 18 19 20 21 2 21 2 September 2008 Oktober 2008 November 2008 December 2008 MonTueWedThu Fri SatSunMonTueWedThu Fri SatSunMonTueWedThu Fri SatSunMonTueWedThu Fri SatSui 72 134 2 1179 7I 24 25 26 27 28 20 21 23 24 25 26 17 18 19 20 21 22 23 22 23 27 28 30 31 24 25 26 27 28 29 30 29 30 100 mE E oW 12040 b B a 0t 0a R Cnwcok pashustik 4 t NETSH gt radsuite E Terminal i
28. FreeNIBS STArad Web interface and authorization authentication and billing module for FreeRADIUS server User Manual Stanislav Korsakov STAsoft net c 2001 2008 Yaroslavl TABLE OF CONTENTS Installation peculiarities of various versions and the general development plan 6 How to support the development of Free NIBS R PAradT ui rit c i i cti ces eina fi Obec whin the Mod le soia dos aoi a a E fi Description of black white list systemi ODETS DOE ui ici clade oe inb doa aoc Ro teo didici tasas 14 TOR RT RTT 16 Web qmteriace control VUE Lui ato odio ede Sor aai etude ess tonat nied rates esae 17 General NBETSHe system COBCODL iii coo co iib EISE Ek dos PER aiaa ai 17 gan pic a A 18 Entry of companies people providers and other basic information eeenee 18 t Be iu eulos ERE 26 Creating and editing subscribers esssssss eene eneneririririririririririiiriris isis isis iss i iiri 40 Statistical data and REG RD 46 ADIER Meraai E E rc A A PIT ERU E EUR 47 Annex 2 Setting of individual parameters eeseeeseeseeseeesesressrseresessesstsrtesstesresssrsssereresrereserreseree 48 SACRE Ua NIRE Rem 48 Annex 3 Description of external subscriber service management interface sees 50 INTRODUCTION This User Manual is based on the manual for FreeNIBS v0 0 3 and contains the original text and authors personal opinions This Manu
29. G Google ill IQ Find In page Find next Author mode Showimages Fitto width A 100 Dialln Y Reports Provider Data Y i 2 c New Es Home Y Help d Logout Resellers Companies Responsible Title Name CEO CFO CAO CTO person Document Option Josep Josep Josep Josep Tryp Florazar PTIMIZA Pocalles Pocalles Pocalles Pocalles Baul Hurtado 9 x amp Meli Valencia Josep Jose Jose Josep Palace Palace hotel Pocalles Pocalles Pocalles Pocalles Baul Hurtado 9 amp Meli Ingl s Josep Josep Jose Josep Boutique Ingles hotel Pocalles Pocalles Pocalles Pocalles Ba l Hurtada 9 x3 H Josep Josep Josep Josep S nanas Hiisi Pocalles Pocalles Pocalles Pocalles Douce 9 x B Jose Josep Josep Jose lfach lach hotel Pocalles Pocalles Pocalles Pocalles Baul Hurtado 9 R Josep Josel Josej Josep Villa Gadea Hotel Villa Gadea 50528 yen rri Z Baul Hurtado IRB Jose Jose Jose Josel 17 AlteaHills Hotel Altea Hills 59888 Paul Hurtado IRB Total 7 E New 4 Edit Q Find x Delete G Lock amp Operators 100 m am ow 2 1 01 34 R B f bt oa R Cnwcok 3 pashustik radsuite E Terminal e Choose the list of operators of the corresponding reseller in the column Options NETSHe 0 1 Opera M Eile Edit View Bookmarks Widgets Mail Tools Help OH New tab
30. Q Find in page DP Find next Author mode E snow images Fito width amp 100 v Dialln Reports Datay Addons i New im Home Help b4 Logout Companies Tax Ext Work Cell Title Organization num Town Street add phone Fax phone Palma de 28 TEST FOR A company for tests 121212 Mallorca 11 EKOPLC EKOPLC 1 EE Mallorca 20 HLG L 38 Altea Hills Hotel Altea Hills 1 Palma 26 Hein Costa Hoteles Costa Blanca 1 Spain anca 37 Villa Gadea Hotel Villa Gadea Heip x Ed str rl E new I Eat amp Find 9 Delete Lil Lock 13 Ingles Ingles hotel 17 INSOTEL 4 OPTIMIZA OPTIMIZA 1 Valencia 15 Palace Palace hotel 1 Palma 24 TRASMEDITERRANEA Total 12 T B E Terminal mc E Terminal mc gt radsuite Open a 100 NE aM C fe 231013 This will display all the companies in the system Here we can enter new companies edit and delete existing companies A typical window for entering a new company editing the existing company has the following outlook Input of contact information of the company NETSHe 0 11 Opera M File Edit View Bookmarks Widgets Mail Tools Help um emp ELM a 4 o e oco v GB A TK BP ntipilocalhostS5Se suite rootindex php action sys Companies edit amp id 28 amp page 0 2 lZ IG Googie vil D Find next Author mode E snow images Fit to width Dialln Reports Data Addons m Table view p Home Help Logout
31. al will be updated as far as possible and if new functional properties of FreeNIBS STArad appear This software product includes software of the third parties The author of this Manual does not undertake any obligations for any update of this document and of the whole FreeNIBS STArad module The author expresses his gratitude to the following people and institutions e Sergey Derkach Neon the author of the first FreeNIBS versions e Pavel Bochkaryov for the help rendered during development and debugging e Josep Pocalles for ideological and financial support e Soporte Bankoi for financial support e EkoPLC for financial support What is FreeNIBS STArad FreeNIBS STArad is the authorization authentication and billing module for dialin subscribers subscribers accessing the service by way of PPP PPPOE PPTP protocols and through the services requiring using authorization accounting via the radius server This module operates together with the FreeRADIUS radius server or the radius server from STAsoft net The module operates with MySQL PgSQL and Oracle databases Drivers for other relational database management systems RDBMS can also be developed The module performs subscriber billing on a real time basis in prepaid mode rendering of service after pre payment postpaid mode rendering of service with subsequent payment as well in combined mode The module has comprehensive tuning capabilities In particular it allows setting
32. allowed from Monday till Friday only from 0 to 8 a m on Saturday and Sunday round the clock and on holidays from 10 p m to 10 a m e Checking for the forbidden telephone number If the number is forbidden then error 50 In this respect the following section is to be reviewed in detail Description of black white list system operation Comparison of the telephone number received from the subscriber s equipment with the number stored in the database is performed from left to right i e the numbers received from the public exchange are to be equal in length Symbol in the mask coincides with any symbol of the telephone number whereas symbol coincides with all the remaining symbols of the telephone number up to the end For instance 8815245 coincides with all the telephone numbers of the city of Murmansk which begin with 45 it is implied that the public exchange sends the numbers with the long distance prefix 8 This can be different depending on the settings of your hardware and the public exchange of your telephone access carrier 8815245432 coincides with the telephone numbers of the city of Murmansk which begin with 45432 and end with any number PLEASE NOTE that 88152 45 is actually equivalent to 88152 because coincides with all the remaining symbols of the telephone number up to the end see above Checking of group subscriber binding is performed in accordance with the following rule e f u
33. ard VISA etc Currency currency sign for payment because suite is a multicurrency application Doc id is a unique transaction id from payment gateway processing software Example of invocation http url vpi mux php action proceed_payment amp sequince_id YYY amp service rad amp user_id 15 amp sum 10 amp currenc y Euro amp doc id 123 amp cause XXX amp hash ZZZ where hash is md5 concatenation of values of all parameters from left to right Return value xml file with an ok and amount or fail in a case of error lt xml versionz 1 0 encoding UTF 8 gt lt response gt lt response_code gt ok lt response_code gt lt amount gt 12 lt amount gt lt response gt or lt xml version 1 0 encoding UTF 8 gt lt response gt lt response_code gt fail lt response_code gt lt response gt 9 get_user_id function Parameters are sequence_id as F session as string service as string rad for example uname as string username passwd as string users password Example of invocation http url vpi mux php action get_user_id amp seqence_id XXX amp service rad amp uname test1 amp passwd abra Return value xml file with on ok user id and rechargable flag or fail in a case of error lt xml versionz 1 0 encoding UTF 8 gt lt response gt lt response_code gt ok lt response_code gt lt user_id gt 15009 lt user_id gt lt can_be_recharged gt no lt can_be_recharged gt lt response gt or lt xml
34. arrival of the packet Access Request from the subscriber pppd Cisco etc The packet text looks like as follows Service Type Framed User Framed Protocol PPP User Name test User Password pass NAS IP Address 192 168 0 1 NAS Port 5 Radius starts the process authorize The billing system itself is interested only in the login and password and maybe also a little bit in the port and the access server IP Login and password are checked and if something is not correct Access Reject does not grant access If all the parameters are correct the relevant attributes are set and sent as Access Accept Service Type Framed User Framed Protocol PPP Framed IP Address 192 168 1 5 Framed Compression Van Jacobson TCP IP Idle Timeout 900 Session Timeout 3600 The billing system can add the following attributes in response e assigned IP Framed IP Address e number for callback Callback Number e session timeout Session Timeout If the current time price per time unit and the funds on account are known then it is possible to calculate the time which corresponds to the funds on account and set Session Time for this time If subscriber does not terminate the session then the access server will disconnect him as soon as this time expires In case of the charge per traffic it is impossible to set an exact timeout You can only try and work out some approximate values based on the analysis of the traff
35. bscriber to establish connection from the number 8152541234 although the access for his group from this number is forbidden e If there is an error during the check then error 1 e f everything is OK then error 0 If the filter does not return 0 then the access is forbidden and the module will return REJECT Otherwise the module will return OK If the process post auth also returns OK then the software product will allow the Accounting ACCT START packet arrives Radius starts the process accounting Module rlm nibs is invoked Function rlm nibs accounting is executed Subscriber availability is checked e f the subscriber is found and if statistics in the packet is disabled packet no acct 1 then the module will return OK e Session start entry is made in the table actions The module returns OK e lf there is no such subscriber in the database then the module will return NOOP ACCT ALIVE packet arrives Radius starts the process accounting Module rlm nibs is invoked Function rlm nibs accounting is executed Subscriber availability is checked e f the subscriber is found and if statistics in the packet is disabled packet no acct 1 then the module will return OK e If there is no session start entry in the table actions for this ALIVE packet then such entry is added to this table e Function nibs billing is executed statistics and money counting If the server does not return Acct Terminate Cau
36. charge for outgoing traffic from 02 00 00 until 02 59 59 h3 double 8 6 is the charge per hour from 03 00 00 until 03 59 59 input3 double 8 6 is the charge for incoming traffic from 03 00 00 until 03 59 59 output3 double 8 6 is the charge for outgoing traffic from 03 00 00 until 03 59 59 h4 double 8 6 is the charge per hour from 04 00 00 until 04 59 59 input4 double 8 6 is the charge for incoming traffic from 04 00 00 until 03 59 59 output4 double 8 6 is the charge for outgoing traffic from 04 00 00 until 04 59 59 h5 double 8 6 is the charge per hour from 05 00 00 until 05 59 59 input5 double 8 6 is the charge for incoming traffic from 05 00 00 until 05 59 59 output5 double 8 6 is the charge for outgoing traffic from 05 00 00 until 05 59 59 h6 double 8 6 is the charge per hour from 06 00 00 until 06 59 59 input6 double 8 6 is the charge for incoming traffic from 06 00 00 until 06 59 59 output6 double 8 6 is the charge for outgoing traffic from 06 00 00 until 06 59 59 h7 double 8 6 is the charge per hour from 07 00 00 until 07 59 59 input7 double 8 6 is the charge for incoming traffic from 07 00 00 until 07 59 59 output7 double 8 6 is the charge for outgoing traffic from 07 00 00 until 07 59 59 h8 double 8 6 is the charge per hour from 08 00 00 until 08 59 59 input8 double 8 6 is the charge for incoming traffic from 08 00 00 until 08 59 59 output8 double 8 6 is the charge for outgoing traffic from 08 00
37. diting form automatically invokes the corresponding parts Below is the description of the subscriber billing procedure in case of such tariff Service value is calculated continuously during the session upon arrival of START ALIVE and STOP packets The calculated amount is deducted from the run on the account As soon as the sum on the account is zero or less 0 sum_credit the software application will try to disconnect the subscriber from the service Data structure for price lists is shown by the example of software for RDBMS MySQL Table prices gid integer is the group number it must match the group number in the table users week day tinyint 1 is the day of the week as follows 0 Sunday 1 Monday 2 Tuesday 3 Wednesday 4 Thursday 5 Friday 6 Saturday 7 holiday hO double 8 6 is charge per hour from 00 00 00 until 00 59 59 inputO double 8 6 is the charge for incoming traffic from 00 00 00 until 00 59 59 outputO double 8 6 is the charge for outgoing traffic from 00 00 00 until 00 59 59 h1 double 8 6 is the charge per hour from 01 00 00 until 01 59 59 input1 double 8 6 is the charge for incoming traffic from 01 00 00 until 01 59 59 output double 8 6 is the charge for outgoing traffic from 01 00 00 until 01 59 59 h2 double 8 6 is the charge per hour from 02 00 00 until 02 59 59 input2 double 8 6 is the charge for incoming traffic from 02 00 00 until 02 59 59 output2 double 8 6 is the
38. double 8 6 is the charge per hour from 21 00 00 until 21 59 59 input21 double 8 6 is the charge for incoming traffic from 21 00 00 until 21 59 59 output21 double 8 6 is the charge for outgoing traffic from 21 00 00 until 21 59 59 h22 double 8 6 is the charge per hour from 22 00 00 until 22 59 59 input22 double 8 6 is the charge for incoming traffic from 22 00 00 until 22 59 59 output22 double 8 6 is the charge for outgoing traffic from 22 00 00 until 22 59 59 h23 double 8 6 is the charge per hour from 23 00 00 until 23 59 59 input23 double 8 6 is the charge for incoming traffic from 23 00 00 until 23 59 59 output23 double 8 6 is the charge for outgoing traffic from 23 00 00 no 23 59 59 Below is the tariffs data structure shown by the example of the description of the table packets version 2 0 for RDBMS MySQL Table packets num Integer is the packet number packet varchar 128 is the packet s name prefix varchar 4 is the packet s prefix gid integer is the group number deposit double is the initial account value credit double is the initial credit value tos tinyint 1 is what is to be charged 0 means do not charge 1 means charge for time 2 means charge for traffic 3 means charge for time traffic do with tos tinyint 1 draw money from the deposit and check whether the account is in funds 0 no only enter in the statistics table used only when worki
39. e provider index php actionzrad ProvUser2 table view amp page 0 iG Google q Find in page L2 Find next Dialn Y Reports Provider Data Y 2 5 as New lt Find Next End it Home Help B Logout Users list Used Funds on Available Last Used time traffic Used Login Tariff account credit Expired connection hh mm ss MB money 1 hour 2007 07 05 1970 01 01 100 ekosago7 dE 6 00 0 00 rp e 0 0 0 0 0 00 IRO 1 hour 2007 07 06 1970 01 01 x 101 ekosasos Ji 6 00 0 00 E etal 0 0 0 0 0 00 IRO 1 hour 2007 07 06 1970 01 01 x 102 ekosagog dA 6 00 0 00 ein MOT 0 0 0 0 0 00 IRO 1 hour 2007 07 06 1970 01 01 103 ekoxai0 dE 6 00 0 00 Dd 0 0 0 0 0 00 IRO 1 hour 2007 07 07 1970 01 01 104 ekosastt DE 6 00 0 00 ae Hein 0 0 0 0 0 00 IRO 1 hour 2007 0712 1970 01 01 m 105 eko34s12 dP 6 00 0 00 P ase 0 0 0 0 0 00 IRO 1 hour 2007 07 14 1970 01 01 m 106 eko34313 i0 6 00 0 00 2 be cae 0 0 0 0 0 00 IRO 1 hour 2007 08 22 1970 01 01 E 107 ekco4gi4 JP 6 00 0 00 Sees Ted 0 0 0 0 0 00 IRO 1 hour 2007 08 22 1970 01 01 a 108 eko3a3i5 6 00 0 00 ee dal 0 0 0 0 0 00 IRO 1hour 2007 08 23 1970 01 01 T 109 ekosaa16 Ji 6 00 0 00 rp Deuce 0 0 0 0 0 00 SIRO 1 hour 2007 08 23 1970 01 01 Fm 110 ekos4317 St 6 00 0 00 eee artes 0 0 0 0 0 00 IRO Aole msan ADTA 4 Da ADTA DA 4 D m lx hoo c FSB a 13 08 36
40. e system including operators and resellers 37 Provider operator User can edit some objects in the system including operators and resellers 39 Provider operator User can delete some objects from the system including operators and resellers 40 System operator As a rule the user has all the rights of the provider operator A4 System operator User can add some objects in the system including operators and resellers 47 System operator User can edit some objects in the system including operators and resellers 49 System operator User can delete some objects from the system including operators and resellers I gt NETSHe 0 1 Opera NETSHe 0 1 Opera 9 9 e Eile Edit View Bookmarks Widgets Mail Tools Help Cjwewub mama o difesa 9 Sis NN 44 SE b d e http localhost 5556 suite root index php action sys People edit amp id 3 amp page 0 z iG Google MI 65 Q Find in page Find next m Author mode E Show images Fitto width 100 MI Dialln Y Reports Data Addons 7 a Ta Table view T Home Help B Logout Edit User Contact Accounting Documents Other Active Yes Security level 99 Title Date of birth 1970 01 01 e First Name Korsakov Organization Last Name Stanislav Departament Middle Name Role Entrance stas Password expiration date 1970 01 01 ex b Password Confirm password Save Reset Minimal security level Cur
41. ession timeout or the calculated time e Addition of Port Limit if necessary packet port limit e Addition of Huntgroup Name if necessary packet huntgroup name e Addition of other attributes packet other params Check for setting Auth Type Nibs If not then Auth Type will be set to Nibs Auth Type Nibs If Auth Type is set to Nibs the module will return OK If the subscriber is not found in the database e f Auth Type is set to Nibs Auth Type Nibs then the access is denied and the module will return REJECT e f Auth Type is not equal to Nibs then the module will return NOOP continue checking with other modules If the process authorize returns OK then Radius starts the process authenticate If Auth Type is set to Nibs then the module rlm nibs is invoked Function rlm nibs authenticate is executed Subscriber availability check is performed If the subscriber is found then the password is checked If the password does not correspond to the password in the database then the access is denied and the module will return REJECT Otherwise the module will return OK subscriber access is allowed If the process authenticate returns OK then the process post auth will be started Filter nibs filter is started which performs the following checks If the subscriber uses the account packets tos gt 0 then the filter checks whether there is any deposit on the account users deposit users credit gt
42. ew im Home Help 2 Logout Add new Operator x Provider Reseller OPTIMIZA Active Yes v Name Korsakov z Input missed data Title OPERATOR KORSAKOV Description Input data in a highligted fields Reset a E 7100 SS EE Eg 3 o 222042 B E Terminal mc E Terminal mc 7 radsuite Open a Remember that the entry of resellers and operators is to be performed from the provider s interface After the entry of providers and operators it is necessary to specify the currencies and list of services for each provider from the provider s interface NETSHe 0 1 Opera fi File Edit View Bookmarks Widgets Mail Tools Help Wd f New tab A e be uet e http localhost 5556 suite rootindex php action sys Currency table_view i2 1 IG cwoogie iT D Find next Author mode E Show images j Fitto width Dialln Y Reports Data Addons 7 as New is Home MS Help Logout Currency Total 1 E New 9 tan Find Delete M Lock B Q wETSHe 03 1 Ell Terminal mc Terminal mc 2 radsuite Open E xij loo m E B a2 22 21 40 Definition of services NETSHe 0 1 Opera l File Edit View Bookmarks Widgets Mail Tools Help Bi MB SER CHR CER CER CR ye fe ye fe je ye ye fe fe ye je RR RR RO CR ERA t e gt by P d k nttp localhosti
43. ffer from the values of the tariff results in the use of the values of the subscriber attributes Example If there is no individual price list defined for the subscriber then the price list of the tariff is used Tariff editing form has three tabs General Assignments Limitations gt NETSHe 0 1 Opera f 9 9 6 Eile Edit View Bookmarks Widgets Mail Tools Help Clem Strader G9 ened 9 IMS Sere httpillocalhost 5556 suite provideriindex php action rad ProvTariff2 edit amp id 19 amp page 0 2 z G coogie ind IQ Find in page D Find next Author mode E show images F Fitto width 100 pag ag M Dialn Y Reports Provider Data Y Ta Table view im Home IO Help d Logout Tariff editing annan Assigment Limitations Name Valencia Palace 1h Billing type do not draw traffic do not count v money from account draw and check funds Li Charge fixed sum do not draw lxi Fixed sum 0 00 Funds on account 6 50 Credit available 0 00 Time to live for account days 4 Save Input data in a highligted fields L4 NETSHe 0 1 Raul 100 WE EE NE 523249 perenne a n 7 B E Terminal m E Terminal m gt radsuite 0 f Meuemxep e The General tab in the above screenshot provides the following information name of the tariff billing type billing is not performed traffic type t
44. ffic cost specific for incoming traffic specific for outgoing traffic within these limits is used Up to 24 traffic sizes can be set Traffic sizes are specified as the lower and the upper limit In both cases the price per 1 Mb of the traffic is specified Example 0 300 1 5 1 5 300 1000 1 4 1 4 1000 0 1 2 1 2 In this example a price list with three traffic sizes is shown from 0 Mb to 300 Mb with the cost of incoming and outgoing traffic of 1 ruble 50 kopecks from 300 Mb to 1 000 Mb with the traffic cost within this range of 1 ruble 40 kopecks and from 1 000 Mb upwards with the traffic cost of 1 ruble 20 kopeks Time logging is performed even if the service cost calculation is not time dependent Session start time session end time and session duration are logged as minimum Service cost calculation is based on the price list packet price list individual subscriber price list or access server price list The price list contains information about the cost of 1 hour of service for each hour of the day day of the week and for a special day Session duration is counted per second or rounded up to minutes HOW FreeNIBS OPERATES Authorization Authorization is a very easy process The system receives login and password checks the availability of the subscriber in the database compares the password checks the accounts password expiry dates and decides whether to grant access or not Everything starts with the
45. iber data structure in RDBMS MySQL Table Subscribers user varchar 64 subscriber login must be of lowercase letters of the English alphabet can contain numbers as well as symbols and must not begin with a number passwd varchar 254 password erypt method tinyint 1 type of password encryption 0 not encrypted password 1 encrypted Crypt 2 encrypted MD5 3 encrypted SHA1 uid integer unique subscriber ID gid integer group packet ID by default deposit double deposit credit double credit If Deposit Credit lt 0 at packet tos gt 0 then access is denied fio varchar 128 subscriber name phone varchar 128 contact phone number address varchar 128 address prim varchar 254 note add date date YYYY MM DD time of subscriber creation activation If during subscriber creation the field has 0000 00 00 then it will be set to the current fate If the field value supersedes the current date then access for the subscriber will be denied until the defined date blocked tinyint 1 if the value is 1 then access is denied activated tinyint 1 if the value is 0 then during logging in will be set to 1 and if packets activation time is more than 0 then the expired field will be corrected expired current date number of seconds in packets activation time expired date YYYY MM DD login exp
46. ic size during the previous connection calculate an average data transfer rate etc You can also take some average data transfer rate e g 21 000 and calculate the timeout for this rate However these are only approximations and the subscribers can be disconnected either too early or too late There were some trial variants of the parameter Session Octets Limit for setting traffic limit per session Nevertheless not all the access servers support this feature The detailed description of the above procedure is as follows Module rlm nibs is invoked Function rlm nibs authorize is executed Subscriber availability in the database is checked and if the subscriber is found then specific attributes are added nibs add attrs function e Address assignment for the subscriber Framed IP Address if necessary packets framed ip or users framed ip e Assignment of the netmask for the user Framed IP Netmask if necessary packets framed_ip or users framed_ip e Addition of a callback number Callback Number if necessary users callback number e Setting of maximum idle timeout time upon which expiry the session will be terminated if no packets arrive to from the subscriber for the session Idle Timeout if necessary packet idle timeout e Setting of the number of simultaneous connections Simultaneous Use if necessary packet simultaneous use e Setting of the maximum session timeout Session Timeout if necessary packet s
47. id NULL and gid NULL then the rule refers to ALL subscribers will be checked in the first place e f uid NULL and gid lt integer gt then the rule refers to the subscribers of the group with gid lt integer gt will be checked in the second place has higher priority as the first check and can change the result of the first check e f uid lt integer gt and gid NULL then the rule refers to the subscriber with uid lt integer gt will be checked in the last place has the highest priority and can change the result of the first two checks e f uid lt integer gt and gid lt integer gt then the action is NOT DEFINED In case the latter two checks reveal the coincidence with the group or the subscriber and the permit is equal to y then by default the access will be FORBIDDEN i e if there is at least one allowed number for the group or the subscriber the access will be granted only from that number if there are no other rules Checks are performed until the first coincidence in each of the three cases Example NULL 8152451000 NULL NULL 8152450000 NULL 8152541234 NULL 1000 815254 1 The software product will allow the subscriber with uid 500 to establish connection only from the number 8152451000 2 The software product will prohibit any subscribers to establish connection from the number 8152450000 In case there is a subscriber with uid 100 and gid 1000 3 The software product will allow this su
48. ime_limit gt 0 then the time for the current calendar month is calculated in accordance with the table actions If the calculated time is more or equal to the limit Ymonth_time gt packets month_time_limit then the access is denied error 12 If the week time limit is more than zero packets week_time_limit gt 0 then the time for the current week is calculated in accordance with the table actions If the calculated time is more or equal to the limit week_time gt packets week_time_limit then the access is denied error 13 If the day time limit is more than zero packets day_time_limit gt 0 then the time for the current day is calculated in accordance with the table actions If the calculated time is more or equal to the limit day_time gt packets day time limit then the access is denied error 14 If the total traffic limit is more than zero packets total traffic limit gt 0 and if the total subscriber traffic is more or equal to zero users total traffic gt packets total traffic limit then the access is denied error 21 If the month traffic limit is more than zero packets month traffic limit gt 0 then the time for the current calendar month is calculated in accordance with the table actions If the calculated traffic is more or equal to the limit month_traffic gt packets month traffic limit then the access is denied error 22 e If the week traffic limit is more than zero
49. iry date If the value is 0 then ignored total time int 10 time counter in seconds Used for comparison with the field packets total time limit and as soon as its value exceeds the value of the latter the access is denied total traffic bigint 15 traffic counter in bytes Used for comparison with the field packets total traffic limit and as soon as its value exceeds the value of the latter the access is denied total money double spent money counter Used for comparison with the field packets total money limit and as soon as its value exceeds the value of the latter the access is denied last connection date YYYY MM DD last connection date Used for charging the fixed sum framed ip varchar 16 assigned IP framed mask varchar 16 assigned mask callback number varchar 64 callback number if allowed in packets allow callback f the field is empty and packets allow callback for this group is set to 1 then the subscriber will be invited to enter any number Statistics of subscriber sessions can be viewed by clicking the buttons in the column Options NETSHe 0 1 Opera l File Edit View Bookmarks Widgets Mail Tools Help New tab Stransiors ji5Reevwa O ECC NNNM 4 E D p d Lj e http localhost 5556 suite provider index php action rad Actions2 table_view amp user PLC648 amp page 7 IG Google Lx 65 Q Find in page Find next B Author mode KJ Show images n Fitt
50. kmarks Widgets Mail Tools Help Drvo S EESTI ee v lo d p localhost suite provider index php actionzrad ProvCard2 page Google Ix i AE Z A ES ntpulocalhostssse ider index php ad ProvCard2 add amp o G zl Find in page D Find next Author mode E show images Fitto width 100 x Dialn Y Reports Provider Data Y D i Table view im Home Help B Logout x First number 1 total number of card 100 Cost of card 10 Tariff Valencia Palace 1h ly Description Choose image for a card I Choose Input data in a highligted fields 100 WE EEO 3 13 07 02 BuNEEENB p 5 b B a 0t 0a R Cnwcok pashustik radsuite Ej Terminal 8 In order to generate a series of cards choose the tariff enter login prefix initial login symbols which are common for all the cards in the series first card number in the series number of cards in the series and cost of the card The newly created cards appear in the general list of subscribers and deletion of the card series leads to deletion of all the cards subscribers in that series To manage subscribers including creation of new subscribers one my one choose the menu item Dialin Subscribers NETSHe 0 1 Opera V File Edit View Bookmarks Widgets Mail Tools Help T7 New tab amp Tra 2 NETSHe 0 1 x e EZ b D A Lj 2 http localhost 5556 suit
51. le where every hour of the day in every day of the week is assigned a certain price This price is specified in units of money per hour Note Mouse click on the column leads to automatic filling of all the cells in that column with the value taken from the top cell Note Mouse click on the row leads to automatic filling of all the cells in that row with the value taken from the left cell Billing procedure for a subscriber to this tariff Time to live for the subscriber is set to 30 days from the moment of the first session start Sum on the account of the subscriber is reduced in accordance with the duration of the sessions and the price list for the connection time The service is aborted as soon as one of the following conditions arises e 30 days from the moment of the first session start expired e Total duration of all the sessions amounts to or exceeds 10080 minutes e Subscriber s balance sum on the account is zero or negative Let us now review the tariff with billing type traffic File Edit View Bookmarks Widgets Mail Tools Help newe emanser 9 HiReceved O CIUS x ess 4 gt h amp A 4 e http localhost 5556 suite provider index php action rad ProvT ariff2 edit amp id 63 amp page 0 B iG Google ind 65 Q Find in page D Find next L Authormode E show images Fitto width EL 100 Dialn Y Reports Provider Data Y D C Table view im Home Help 2 Logout
52. ng with monetary limits 1 yes and enter in the statistics table direction tinyint 1 when charging for traffic count traffic 0 do not count 1 outgoing 2 incoming 3 total 4 bigger for the entire connection 5 lesser for the entire connection fixed tinyint 1 draw fixed sum 0 do not draw 1 once per day if there was a connection 2 for each day including the previous day 3 with every connection fixed cost double amount of money to be drawn activated tinyint 1 initial value of activated activation time int 10 activatibo time in seconds blocked tinyint 1 if the value is 1 them all packet is blocked total time limit int 10 total time limit month time limit int 10 mouth time limit week time limit int 10 week time limit day time limit int 10 day time limit total traffic limit bigint 15 total traffic limit month traffic limit bigint 15 month traffic limit week traffic limit bigint 15 week traffic limit day traffic limit bigint 15 day traffic limit total money limit double total money limit month money limit double month money limit week money limit double week money limit day money limit double day money limit login time varchar 254 special format string to define the allowed time intervals for the connection huntgroup name varchar 64 IP g
53. o width 100 v Dialn Y Reports Provider Data Y Find m Home Help d Logout Session history Ordered by PLC648 contains Session start Session Call Session Duration Sent Received Termination date end date from Server Port Address hh mm ss KB KB Billed Cause PLC648 rasal E BFAA 0 0 0 0 28 192 168 182 121 1 0 1 478 7230 0 Sisslon 18 44 45 19 44 46 8E 17 eee oe ona Timeout Total records found 1 time hh mm ss 1 0 1 sent KB 478 received KB 7230 sum 0 000000 gt L NETSHe 0 1 Raul 100 ms SRB 3 13 11 23 radsuite Edi i im e b B a 0t 0a R Cnwcok pashustik Below is the sessions data structure in RDBMS MySQL Table actions user varchar 64 subscriber login gid integer group the subscriber is currently in id varchar 32 connection ID unique id varchar 64 unique connection ID time on int 12 connection duration in seconds start_time datetime YYYY MM DD HH MM SS connection start date and time stop time datetime YYYY MM DD HH MM SS connection stop date and time in bytes bigint 15 received bytes out bytes bigint 15 transferred bytes ip varchar 15 subscriber IP server varchar 15 access server IP client ip varchar 15 real access server IP port int 12 access server port call to varchar 64 phone number which ha
54. onse gt lt response_code gt fail lt response_code gt lt response gt 3 get_provider_list function Parameters are sequence_id as F session service as string Example of invocation http url vpi mux php action get_provider_list amp sequince_id YYY amp service rad Return value xml file with a list of providers or fail in a case of error lt xml version 1 0 encoding UTF 8 gt lt response gt lt response_code gt ok lt response_code gt lt providers gt lt provider gt lt id gt 1 lt id gt lt name gt EkoPLC lt name gt lt provider gt lt provider gt lt id gt 2 lt id gt lt name gt Another Provider lt name gt lt provider gt lt providers gt lt response gt or lt xml version 1 0 encoding UTF 8 gt lt response gt lt response_code gt fail lt response_code gt lt response gt 4 get_tariff_list function Parameters are sequence_id as F session service as string provider_id as number Example of invocation http url vpi mux php action get_tariff_list amp sequince_id YYY amp service rad amp provider_id 15 Return value xml file with a list of tariffs or fail in a case of error lt xml versionz 1 0 encoding UTF 8 gt lt response gt lt response_code gt ok lt response_code gt lt tariffs gt lt tariff gt lt id gt 1 lt id gt lt name gt Best time lt name gt lt subject gt Time lt subject gt lt cost gt 2 lt cost gt lt currency gt EUR lt currency gt lt
55. ot draw 15 00 0 00 2 552 3 a Godea 1h 8 00 donot draw do not draw 6 50 0 00 1 730 x uros BE ern donot draw do not draw 15 00 0 00 2 511 x uros 57 Ingles 1h 6 50 Euros do not draw do not draw 6 50 0 00 1 501 gt 4 58 Ingles 24h 12 Euros do not draw donot draw 12 00 0 00 2 502 3 46 Sollfach 1h 6 5Euros do not draw donot draw 6 50 0 00 1 200 y Sol Ifach 24hs 47 12Euros do not draw donot draw 12 00 0 00 10 208 y 48 Altea Hills 1h 6 5Euros do not draw donot draw 6 50 0 00 1 200 X Altea Hills 24hs 48 Euros donot draw do not draw 12 00 0 00 2 200 3 Tryp Florazar 1h 50g eEuros donot draw do not draw 6 50 0 00 1 299 3 I 51 Top Peen sie e do not draw do not draw 12 00 0 00 2 300 3 uros 54 Stat Palace do not draw donot draw 0 00 0 00 2 1101 3 remium i SESS 2 a we B a bt oa R Cnwcok 3 pashustik radsuite E Terminal 6 p Then by mouse click in the field Options change the accessibility of the tariff for the given operator Note In the general list of tariffs you will see only the tariffs of the given provider By making specific tariffs accessible for the operator you thereby allow viewing statistics for the given subscriber tariff creating editing subscribers and modifying the tariff After the definition of the tariffs and their accessibility to the system operators you can define the holidays special days To do this choose the menu item
56. raffic is not counted fixed sum it is not charged etc All newly added subscribers of this tariff will have 2 units of money on their account rubles Euros dollars etc Credit is not available for the subscribers of this tariff Login effective period for this tariff is 1 day from the start of the first session NETSHe 0 11 Opera 096 File Edit View Bookmarks Widgets Mail Tools Help i newtao Sitransere C ecched 2 isc NNNM Sl b 48 2 http localhost 5556 suite provider index php action rad ProvTariff2 edit amp id 19 amp page 0 7 IG Google Lx 63 Q Find in page Find next B Author mode EJ Show images D Fitto width 100 ix Dialn Y Reports Provider Data Y in Table view m Home 5 7 Help d Logout Tariff editin General ia Limitations Concurrent logins sessions 1 ports 0 Maximum time for session mins oo E idle mins 10 Assigned IE mask Enabled login time huntgroups NAS RADIUS reply Acct Interim Interval 60 L Blocked All logings are active Without password Without statistics Enable callback Save Input data in a highligted fields 4l NETSHe 0 1 Raul B Terminal m Terminal m radsuite 0 Meuemxep eo 100 m A25 23 33 07 iz mu Assignments tab contains information with regards to the service rules such as see example above Number of concurrent logins
57. releases will include only the elimination of possible errors and the features from the older versions which can be ported without changing the data structure Versions 3 x x include the features of the versions 2 x x and have totally refactored data structure which was necessary in order to introduce new features authorization by mac address automatic number identifier etc postpaid billing and to ensure normal consistent operation with other modules Version 4 x x is a future proof and the next stable software branch It will include all the newest solutions from version 3 and the SQLite backend Beginning from version 4 the software product will be called STArad How to support the development of FreeNIBS STArad We will greatly appreciate your support in the development of FreeNIBS Your help and support can be as follows Joint development of the module Code compilation and testing at 64 bit architectures Testing and Debugging Data definition and data manipulation for various RDBMS s Writing drivers for other RDBMS s Writing scripts and service utilities Joint development of web interfaces Writing documentation and configuration examples for different access servers Conceptualization of the module Development and planning of the module s features Translation of the documentation Financial support Development group and FreeNIBS users will greatly appreciate your help and support in any form Objects wi
58. rent security level means x s 20Reseller Operator User can view some objects in the system 24Reseller Operator User can add some objects in the system 27Reseller Operator User can edit some objects in the system 29Reseller Operator User can delete some objects from the system Provider Operator As rule The user has all of the rights of the reseller operator and can view more objects in the system 34Provider Operator User can add some objects in the system including resellers and operators 37Provider Operator User can edit some objects in the system including resellers and operators 39Provider Operator User can delete some objects in the system including resellers and operators oSystem Operator The user has all of the rights of the provider operator and can view more objects in the system 44System Operator User can add resellers operators and providers 47System Operator User can edit resellers operators and providers 49System Operator User can delete resellers operators and providers B 4 t NETSHe 01 1 E Terminal mc E Terminal mc gt radsuite Open e 100 WS EE 37 3 23 15 06 Security level 99 allows to perform any operations in the system Then at least one provider is to be entered NETSHe 0 11 Opera l LO Eile Edit View Bookmarks Widgets Mail Tools Help z a3 Newtab nsfer G Y S e gt be B T Lj e http localhost 5556 suite
59. riber for each executed session Payment is charged in accordance with the packet settings individual subscriber settings at session start Traffic logging is counting of the traffic size passed from to the subscriber through the access server It is determined by the price list of the service The following types of traffic can be logged incoming traffic to the access server outgoing traffic from the access server total traffic incoming outgoing maximum traffic from the incoming and outgoing traffic minimum traffic It should be noted that the maximum and minimum traffic is determined for the period of time between arrivals of alive packets from the access server and therefore ii is inaccurate to speak of the maximum incoming or minimum outgoing traffic Service cost calculation by the traffic size can be performed by two methods as follows e Depending on the time of the day day of the week irrespective of the traffic size e Depending on the traffic size irrespective of the time of the day day of the week In both cases service cost calculation is based on the packet price list individual subscriber price list or access server price list In the first instance a price list with individual cost settings for incoming and outgoing traffic for each hour of each day of the week including individual settings for each hour of the holiday is used In the second instance a price list with the settings of used traffic limits and tra
60. rootindex php action sys Providers table_view amp page 0 2 e Google x oOo q Find in page Find next B Author mode E show images n Fitto width ON 100 B Dialln Y Reports Datay Addons 4 as New Es Home Help B Logout Providers Responsible Title CFO CAO person Document Option OPTIMIZA ine f RZYGI EKOPLC D f RZAGI INSOTEL Bocales Pocales TrA Paas poda 2 X5o002 HLG HLG Poles Pomiea Eonar Pommes Paia Xx290023 TRASMEDITERRANEA Josen TA m IRZBOSQD Hoteles Costa Blanca Pocalles r4 x amp e amp e Total 6 NETSHe 0 1 Korsakov New 8 Edit Q Find x Delete ir Lock amp Operators e Resellers L3 Services e Equipment B QV tNeTSHe01 7 E Terminal mc E Terminal mc gt radsuite Open 6 US 100 WEE H SES 23 16 02 NETSHe 0 1 Opera File Edit View Bookmarks Widgets Mail Tools Help ii New tab 0 ef GHQerrEersres e http localhost 5556 suite rootindex php action sys Providers add amp page 0 2 lZ C Googie vil D Find next Author mode E Show images j Fitto width Yes v INSOTEL NSOTEL iz Input data in a highligted fields B NETSHe 0 1 Korsakov B dy tNetsHe 0 1 7 E Terminal mc E Terminal mc radsuite Open m ex E37 3 9 2317448 And the operator for this pro
61. roup name etc raddb huntgroups simultaneous use smallint 5 number of simultaneously connected subscribers port limit smallint 5 post limit for one login session timeout int 10 session timeout idle timeout int 10 idle timeout allowed prefixes varchar 64 allowed prefixes for the change of the tariff framed ip varchar 16 framed IP address recommended with symbol at the end e g 192 168 100 0 framed mask varchar 16 framed mask for the packet e g 255 255 255 255 no pass tinyint 1 if the value is 1 then grant access to all the subscribers of this packet without password no acct tinyint 1 if the value is 1 then do not track statistics for the subscribers of this packet money will not be counted either allow callback tinyint 1 allow callabal for this packet other params varchar 254 text field for the values transferred to the access server format parameter value parameter value create system user tinyint 1 create system user when creating user in the database Setting of the tariffs visibility for operators resellers Login as provider s operator Choose menu item Providers Resellers NETSHe 0 11 Opera ff 9 File Edit View Bookmarks Widgets Mail Tools Help E New tab S Transfers H Beceived C NETSHe 0 1 x 7 gt p D L e http localhost 5556 suite provider index php action sys ProvResellers table_view amp page 0 2 I I
62. s been called call from varchar 64 subscriber phone number connect info varchar 254 connection information protocol varchar 32 used protocol terminate cause varchar 64 connection termination cause hour in bytes bigint 15 bytes received for the last current hour hour out bytes bigint 15 bytes transferred for the last current hour hour traffic money double charge incurred for the traffic of the last current hour last change int 10 timestamp of the last record update before billing double account status at connection start biliing minus double amount of money drawn for the connection Statistical data and reports The following statistical data and reports are available in the system main items listed only I l I Viewing of online subscribers Viewing of all sessions of the subscriber Reports on the traffic time and incurred charges for the services Reports on the subscribers with expired lifetime Annex 1 Abbreviations Request ha C d Vf 96i l 9om N p S t ou A C D H L M R 96S T U YN YY L used in SQL requests in nibs conf Description Equivalent Protocol SLIP PPP Framed Protocol Callback Number Callback Number Request date DD Framed IP address Framed IP Address Calling Station ID Calling Station Id Request timestamp Request month MM NAS IP address NAS IP Address Port n
63. s for system owners root 0 Access for providers Access for reseller Restricted access for operator Access for subscriber end user Operator Operator Provider Provider Provider Provider Operator Operator Operator Operator Resellers Resellers Resellers Resellers Resellers Operator Operator Operator Operator Operator a eee ns eee ewe Getting started In order to get started it is necessary to at least specify the required number of providers operators access servers specific for each provider tariffs specific for each provider specify days off specific for each provider and enter the required number of subscribers specific for each provider Immediately after the system installation only root access is possible with login admin and password admin Entry of companies people providers and other basic information Remember that the system owner any provider or reseller are companies they are to be entered in the system as companies and any operator is to be entered as people In order to enter companies it is necessary to choose the menu item Data Companies NETSHe 0 1 Opera V 096 Eile Edit View Bookmarks Widgets Mail Tools Help Cjwwws Tanes 9 received 9 LS la 4 gt h 2 Pd Lj le http localhost 5556 suite root index php action sys Companies table view amp page 0 2 T iG Google Lz 63
64. se then e Acct Terminate Cause is set to User Request e Fields deposit total traffic and total time are corrected in the table Subscribers if necessary e Fields in bytes out bytes time on and framed ip are corrected in the table actions e f kill_by_alive 1 then the function nibs filter is executed ist operation is similar to the procedure described in the AUTH part e f error 0 then the function nibs user kill is started which will invoke kill_program e The module will return OK e lf there is no such subscriber in the database then the module will return NOOP ACCT STOP packet arrives Radius starts the process accounting Module rlm nibs is invoked Function rlm nibs accounting is executed Subscriber availability is checked and if the subscriber is found then e f the subscriber is found and if statistics in the packet is disabled packet no acct 1 then the module will return OK e f there is no session start entry in the table actions for this STOP packet then such entry is added to this table Function nibs billing is executed statistics and money counting e f the access server does not return Acct Terminate Cause then Acct Terminate Cause is set to User Request e Fields deposit total traffic and total time are corrected in the table Subscribers if necessary e Session start entry in the table actions is substituted with session end entry The module will re
65. suite provider index php action sys Services add amp page 0 amp provider 3 2 4 IG Googie 6 Q Find in page Find next Author mode 7 E show images D Fitto width ON 100 B Active Title Currency i Round type Amount signs after point Price DialIn service using radius Description You should input data in a highligth fields Hi E 2 redsute openoticeorg Be no BE Bee 3 ries It should be noted that resellers and their operators can be entered at any time as required Tariffs for the subscribers gt TNETSHe 0 1 Opera NETSHe 0 11 Opera 299 File Edit View Bookmarks Widgets Mail Tools Help ry New tab Transfers J e Received iE N TSHe 0 1 meti 3l Z T M b D a 4 http localhost 5556 suite provider index php action rad ProvTariff2 table_view amp page 0 IG Google Lx 6o q Find in page Find next P Author mode E Show images T Fitto width 10096 v Dialln Y Reports Provider Data Y E nme Help B Logout A Billing Charge fixed Funds on Credit Time to live for account 4 Name type sum account available days Users Option 19 Valencia Palace 1h cona do not draw 6 50 0 00 1 110 I ROB 20 Valencia Palace 24h do not do not draw 15 00 0 00 2 2552 I ROB ae e do not draw 6 50 0 00 1 730 2 RED L ee do not do not draw 15 00 0 00 2
66. tariff gt lt tariff gt lt id gt 2 lt id gt lt name gt Another tariff lt name gt lt subject gt Traffic lt subject gt lt cost gt 2 lt cost gt lt currency gt USD lt currency gt lt tariff gt lt tariff gt lt id gt 2 lt id gt lt name gt Hotel 24 hours lt name gt lt subject gt Fixed lt subject gt lt cost gt 12 lt cost gt lt currency gt EUR lt currency gt lt tariff gt lt tariffs gt lt response gt or lt xml version 1 0 encoding UTF 8 gt lt response gt lt response_code gt fail lt response_code gt lt response gt 5 disable user function Parameters are sequence id as F session service as string user id as number cause as string Example of invocation http url vpi mux php action disable_user amp sequince_id YYY amp service rad amp user_id 15 cause XXX Return value xml file with an ok or fail in a case of error lt xml versionz 1 0 encoding UTF 8 gt lt response gt lt response_code gt ok lt response_code gt lt response gt or lt xml version 1 0 encoding UTF 8 gt lt response gt lt response_code gt fail lt response_code gt lt response gt 6 enable_user function Parameters are sequence_id as F session service as string user_id as number cause as string Example of invocation http url vpi mux php action enable_user amp sequince_id YYY amp service rad amp user_id 15 cause XXX Return value xml file with an ok or fail in a case of error
67. thin the module The module operates with a set of objects Each object has a property set The properties describe service rendering conditions and conditions of payment for the scope of rendered services billing rules Objects in the sense of the module are as follows Radius server s is a means of subscriber authorization accounting and billing What is RADIUS RADIUS is a protocol consisting of 2 parts AUTH authorization part and ACCT part accounting AUTH part receives authorization requests password checking and responds with permission or denial ACCT part receives data with regards to session start session end and what is possible session in progress The packets corresponding to the protocol use udp protocol and go to the ports each part to its port 1812 udp 1645 udp Radius auth 1813 udp 1646 udp Radius acct Both parts operate independently e Access server s is a means of subscriber access to the service e Subscriber with a unique ID login and password as a minimum property set e Subscriber group or packet which defines the general set of properties for several subscribers e Price list which defines the cost of rendered services for each individual packet access server or subscriber e Access time is the time within which the subscriber all subscribers of the packet can access the service It is also the time of communication session e Holiday special day is the day when the
68. to individual services e g Internet access and accounting With regards to its functional capabilities FreeNIBS supersedes many commercial products At the moment 3 branches of FreeNIBS are available Versions 1 x x are totally compatible with the original FreeNIBS from Neon with refactored code here and there eliminated errors and the new or improved functional capabilities which the developers had managed to introduce without changing the data structure At the moment the development of the versions 1 x x is terminated New releases will include only the elimination of possible errors and features from the older versions which can be ported without changing the data structure At the moment any development and support of the versions 1 x x is terminated We strongly recommend that the users of the original FreeNIBS and the versions 1 x x should upgrade to the version 2 x Versions 2 x x include the features of the versions 1 x x and have a slightly modified data structure in order to ensure some new features Special emphasis was placed upon the subscriber billing on the basis of the traffic with various charges depending on the size of the traffic the so called billing with traffic gradations Besides this version allows setting of various price lists for various access servers At the time the development of the branch 2 x x versions is completed Version 2 x x is a stable and fully functional software solution New
69. turn OK e fthere is no such subscriber in the database then the module will return NOOP Web interface control interface FreeNIBS STArad control interface is a software component which extends NETSHe control shell and is integrated therein This component operates in the standard browser with enabled JavaScript support No additional software is required General NETSHe system concept NETSHe system concept can be generally described as hierarchical relationships e System owner e One or more service providers e Several resellers for each provider Providers and resellers have authorized operators Rights of individual operators in the system are adjustable Providers render one or more services e g Internet access hosting equipment rental The rules and parameters of the providers services are determined by the tariffs The tariffs describe the payment procedure for the rendered services payment dates and other service related parameters As a rule resellers re sell the services of the providers Not all of the provider s tariffs can be accessible to them and subsequently to the subscribers and their operations in the system can be restricted The system has functions related to charging for the use of services and execution of settlements between the system owners and providers providers and resellers providers and subscribers There are several web interface levels in the system see the diagram below 0 Acces
70. umber NAS Port ld NAS Port Speed PW CONNECT INFO Connect Info Request in ctime format User name User Name radacct_dir config radacctdir clientname Request date YYYYMMDD Request hour radlog dir 9e config logdir MTU Framed MTU radius_dir contig raddbdir Request timestamp in SQL format Request timestamp in database format Stripped User name Stripped User Name Request Authenticator Verified None Request year YYYY All request attributes except password must have a big buffer Annex 2 Setting of individual parameters Stale sessions There are two parameters in nibs conf file deletestalesessions by checkrad yes deletestalesessions by alive yes The first parameter allows to check for double connections and determine stale sessions by means of checkrad script invocation This parameter is applicable only for hardware access servers NAS Correct tuning of clients conf is required and especially the following parameters nastype server type login login for connection password password Below is the list oa supported servers taken from the original FreeRadius documentation Type Manufacturer Access method Required items Password required ascend Lucent SNMP SNMP No bay Nortel finger finger command No Cisco Cisco SNMP SNMP Optional 1 computone Computone finger finger command No CVX Nortel SNMP SNMP No digitro Digitro rusers rusers command No livingston Livingston SNMP SNMP No
71. version 1 0 encoding UTF 8 gt lt response gt lt response_code gt fail lt response_code gt lt response gt 10 get_tariff_list_enabled function Parameters are sequence_id as F session service as string Example of invocation http url vpi mux php action get_tariff_list_enabled amp sequince_id YYY amp service rad Return value xml file with a list of tariffs enabled for this gateway s username password or fail in a case of error lt xml versionz 1 0 encoding UTF 8 gt lt response gt lt response_code gt ok lt response_code gt lt tariffs gt lt tariff gt lt id gt 1 lt id gt lt name gt Best time lt name gt lt subject gt Time lt subject gt lt cost gt 2 lt cost gt currency EUR currency lt tariff gt lt tariff gt lt id gt 2 lt id gt lt name gt Another tariff lt name gt lt subject gt Traffic lt subject gt lt cost gt 2 lt cost gt lt currency gt USD lt currency gt lt tariff gt lt tariff gt lt id gt 2 lt id gt lt name gt Hotel 24 hours lt name gt lt subject gt Fixed lt subject gt lt cost gt 12 lt cost gt lt currency gt EUR lt currency gt lt tariff gt lt tariffs gt lt response gt or lt xml version 1 0 encoding UTF 8 gt lt response gt lt response_code gt fail lt response_code gt lt response gt All invocation is performed by GET method F session is md5 YOUR_KEY SESSION_ID for step 1 First call after session_start md5
72. vider NETSHe 0 11 Opera V File Edit View Bookmarks Widgets Mail Tools Help newis Sansome E reed 3 E a 4 gt ber SZ ra Lj e http localhost 5556 suite root index php action sys Operators table view amp id 3 amp page 0 2 iG Google ill q Find in page Find next B Author mode E show images cay Fit to width ON 100 i Dialln Reports Datay Addons al New T Home Help d Logout Operators for 3 Title Name Provider Reseller Responsible person Option 10 josevi Josevi Enguidanos OPTIMIZA Josep Pocalles x 3 Director Comercial Raul Hurtado OPTIMIZA Josep Pocalles 8 sx T tryp florazar Tryp Florazar OPTIMIZA Josep Pocalles x 27 Informatica Please enter name Please enter surname OPTIMIZA Korsakov Stanislav sx Total 4 Help 8 New I Eat CX Find F Delete fl Look J100 E SA07 23 19 24 B dy tNersHeo11 E Terminal mc E Terminal mc i radsuite Open 6 X NETSHe 0 1 Opera V y 2 6 File Edit View Bookmarks Widgets Mail Tools Help if New tab 4 gt be Pd Lj e http localhost 5556 suite root index php actionzsys Operators add amp page 0 amp provider 3 2 D iG Google 68 Q Find in page D Find next Author mode E show images Fit to width A 100 Dialln Reports Datay Addons NETSHe 0 1 x EUIS Ta able vi
73. ware product requires an installed Perl language interpreter and version 4 or 5 PHP language interpreter for version 5 it is recommended to use the relevant versions of TCPDF and JpGraph modules The computer is to be also provided with the relevant development tools in order to install and assemble the software e Compiler from the language C e automake e m4 The system also requires a web server for the web interface apache lighthttpd Version 3 0 0 uses and integrated nanoWeb web server At present the versions are numbered as follows Numbering 1 x x is used instead of 0 1 x Numbering 2 x x is used instead of 0 2 x Development of the versions 1 x and 2 x is terminated Support of the versions 1 x is terminated Version 3 of the FreeNIBS module and version 4 of STArad are being developed at the moment See the official web page of the project http stasoft net freenibs for details Installation peculiarities of various versions and the general development plan FreeNIBS STArad is a popular product in ex USSR countries which has at least several hundreds installations as per the assessment of the author of this Manual Software solutions based on this product are also installed in Europe USA and India FreeNIBS STArad is widely used by Internet service providers and in Ethernet networks Besides FreeNIBS and FreeNIBS based software solutions can be used at the corporate level for the arrangement of controlled access

Download Pdf Manuals

Related Search

FreeNIBS/STArad

Related Contents

  Téléchargement au format PDF  Bien imprimer - Albi Degriff` Micro  パソコン設定ガイド（PDF形式）  Spirit industrial wmi 220  TG - Solar Energy  Preventive Maintenance  FORA V30-4242 user guide-315-4242100-010  Otterbox BNN4-NOOKX-20-E4OTR  2013 63rd GSC Agenda Items (Spanish)  

Copyright © All rights reserved. Failed to retrieve file