Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    [Freeradius - 0.15.10_1] Need pagination enabled for the user page

    pfSense Packages
    3
    4
    281
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • I
      izanatos
      last edited by

      Hi,

      I've created 15000 users in the /cf/conf/config.xml and this is working fine.

      However the cheer amount of user causes the browser to crash, so would it be possible to implement pagination on the user page ?

      thanks,

      NogBadTheBadN GertjanG 2 Replies Last reply Reply Quote 0
      • NogBadTheBadN
        NogBadTheBad @izanatos
        last edited by

        @izanatos Pop in a request here:-

        https://redmine.pfsense.org/

        Andy

        1 x Netgate SG-4860 - 3 x Linksys LGS308P - 1 x Aruba InstantOn AP22

        1 Reply Last reply Reply Quote 0
        • GertjanG
          Gertjan @izanatos
          last edited by

          @izanatos said in [Freeradius - 0.15.10_1] Need pagination enabled for the user page:

          However the cheer amount of user causes the browser to crash, so would it be possible to implement pagination on the user page ?

          I've been looking myself for another solution.
          I'm using a MySQL (Mariadb) server for the Freeradius "scratch pad" needs.
          What about not using a flat text file use by Freeradius, created by pfSense upon FreeRadius start (actually User page config page save) : /usr/local/etc/raddb/mods-config/files/authorize, but a database table, already present on the MySQL server ?
          This way I can use phpmyadmin or whatever other tool to add/modify/remove my captive portal user list, just by modifying the user table.

          For a "15000" users list this would be far easier to handle them in a database. Your pfSense config.xml is probably also rather big.

          Have a loo at the 'master' config file : /usr/local/etc/raddb/sites-enabled/default - the keyword 'files' in the section "authorize" handles the authorization.
          The database (in my case) is only used for accounting, like start (and eventually stop) and quantity of byres send/received.

          I did some testing.
          Condition : you should already have a MySQL database set up for FreeRadius usage.

          First : some reading : guide/SQL HOWTO
          Looks like it isn't rocket science after all 😊

          I've created these 3 test users, to be entered in the "radcheck" table :

          bd8bb1eb-b7da-439d-9841-dff75c0fa385-image.png

          Some more settings in the "radreply" table :

          b85c01e3-ec64-47aa-94cf-6eebe82575f4-image.png

          Let's fool around with the /usr/local/etc/raddb/sites-enabled/default file. For this to happen, edit
          /usr/local/pkg/freeradius.inc
          and lcoate all the "files" :
          line 1466 - change it for :

          ## files

          Same for line 1577 and line 2202.
          Maybe also 2268, but I didn't change that one.
          =>That's all that needs to be done, you'll see.

          Now, goto Services > FreeRADIUS > Settings and without changing anything, save the settings.
          I've checked my /usr/local/etc/raddb/sites-enabled/default - the "files" were now prepended with "##".
          I stopped FreeRadius on the pfSense dashboard ( ! )
          I opened a SSH access, and fired freeradius up manually, in debug mode

          radiusd -X

          In another SSH session, I used "radtest"

          Take note : radius is my secret key as set up in the pfSense Freeradius settings. Please don't tell no one.

          [23.09.1-RELEASE][root@pfSense.bhf.net]/root: radtest 001 climat 192.168.2.1 10 radius
Sent Access-Request Id 169 from 0.0.0.0:10f8 to 192.168.2.1:1812 length 73
        User-Name = "001"
        User-Password = "climat"
        NAS-IP-Address = 192.168.1.1
        NAS-Port = 10
        Message-Authenticator = 0x00
        Cleartext-Password = "climat"
Received Access-Accept Id 169 from 192.168.2.1:714 to 192.168.2.1:4344 length 26
        Acct-Interim-Interval = 600

          I got a "Access-Accept" back !! and the returned value for "Acct-Interim-Interval" is "600".

          This is very promising !

          More changes are most probably needed, as it can't be that easy...

          My FreeRadius wasn't using the pfSense GUI FreeRadius Users page !

          I'm still wondering how you managed to maintain 15000 users on that pfSense Freeradius Users page.
          That must have been painful. You never wondered how to make the system work for you ?? Or work for you with more comfort ? These things are machines, you need to tell them what to do for you 😊

          No "help me" PM's please. Use the forum, the community will thank you.
          Edit : and where are the logs ??

          I 1 Reply Last reply Reply Quote 1
          • I
            izanatos @Gertjan
            last edited by

            @Gertjan thanks for all the work done above.

            You are absolutely right this was an oversight on our side and yes we've decided, as per the same analytical process you went through, to use SQL as a back end instead of files and ditching pfsense altogether.

            The appeal of pfsense was that it is almost he only decent GUI to manage freeradius which help with the adoption internally.

            Thanks a lot for the reply.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.