On Fri, 3 Mar 2000, Brian wrote:
With hiperarcs at least, you can look at the ip they are coming from, which you get as a standard enviroment variable when they hit a web page. You can then cross this with a username in the ARC's snmp. I would
That's what we do here... snmpwalk 1.3.6.1.4.1.429.4.10.1.1.9, find the IP address in there, and that gives us a port number. You can then get 1.3.6.1.4.1.429.4.10.1.1.18.$port_number and get the username. Fairly quick, always accurate. Radius logs stand a chance of getting out of whack in my experience, but that's mostly because we've got two Radius servers and entries could be logged to one of two machines if one goes down... and collecting it all back in one place is a pain -- unless you've got SQL capabilities in your Radius server. (We don't, yet. Haven't gotten around to it. :)
caution though, I think its possible for the user hitting your web page to modify the env variable for the ip address and pretend he is someone he is not.
Are you sure about that... on a standard Apache setup? Things like Squid make it harder to get the real IP address, but not impossible... Mike Andrews (MA12) * mandrews@dcr.net * http://www.bit0.com/ VP, sysadmin, & network guy, Digital Crescent Inc, Frankfort KY Internet services for Frankfort, Lawrenceburg, Owenton, Shelbyville "Don't sweat the petty things, and don't pet the sweaty things." - To unsubscribe to usr-tc, send an email to "majordomo@xmission.com" with "unsubscribe usr-tc" in the body of the message. For information on digests or retrieving files and old messages send "help" to the same address. Do not use quotes in your message.