Mercurial > hg > freeDiameter

view extensions/app_diameap/README @ 1513:73e563165594

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Add 3GPP TS 29.468 V15.8.0 (2019-12) Add AVPs: - BMSC-Address, Address, code 3500, section 6.4.2 - BMSC-Port, Unsigned32, code 3501, section 6.4.3 - Common-Tunnel-Endpoint-Identifier, OctetString, code 3524, section 6.4.26 - FEC-Request, OctetString, code 3525, section 6.4.27 - FEC-Result, Unsigned32, code 3531, section 6.4.33 - Local-M1-Information, Grouped, code 3518, section 6.4.20 - Local-MB2-U-Information, Grouped, code 3519, section 6.4.21 - MB2U-Security, Unsigned32, code 3517, section 6.4.19 - MBMS-Bearer-Event, Unsigned32, code 3502, section 6.4.4 - MBMS-Bearer-Event-Notification, Grouped, code 3503, section 6.4.5 - MBMS-Bearer-Request, Grouped, code 3504, section 6.4.6 - MBMS-Bearer-Response, Grouped, code 3505, section 6.4.7 - MBMS-Bearer-Result, Unsigned32, code 3506, section 6.4.8 - MBMS-eNB-IP-Multicast-Address, Address, code 3520, section 6.4.22 - MBMS-eNB-IPv6-Multicast-Address, Address, code 3521, section 6.4.23 - MBMS-GW-SSM-IP-Address-29.468, Address, code 3522, section 6.4.24 - MBMS-GW-SSM-IPv6-Address-29.468, Address, code 3523, section 6.4.25 - MBMS-Start-Time, Time, code 3507, section 6.4.9 - Radio-Frequency-29.468, Unsigned32, code 3508, section 6.4.10 - ROHC-Full-Header-Periodicity, Float32, code 3527, section 6.4.29 - ROHC-Max-CID, Unsigned32, code 3532, section 6.4.34 - ROHC-Profile, Unsigned32, code 3528, section 6.4.30 - ROHC-Request, Grouped, code 3526, section 6.4.28 - ROHC-Result, Unsigned32, code 3530, section 6.4.32 - TMGI-Allocation-Request, Grouped, code 3509, section 6.4.11 - TMGI-Allocation-Response, Grouped, code 3510, section 6.4.12 - TMGI-Allocation-Result, Unsigned32, code 3511, section 6.4.13 - TMGI-Deallocation-Request, Grouped, code 3512, section 6.4.14 - TMGI-Deallocation-Response, Grouped, code 3513, section 6.4.15 - TMGI-Deallocation-Result, Unsigned32, code 3514, section 6.4.16 - TMGI-Expiry, Grouped, code 3515, section 6.4.17 - TMGI-Number, Unsigned32, code 3516, section 6.4.18 - Userplane-Protocol-Result, Grouped, code 3529, section 6.4.31 Note: Name conflict with 3GPP TS 29.061 MBMS-GW-SSM-IP-Address (924). 3GPP TS 29.061 V10.4.0 (2011-09) CR 0355 added MBMS-GW-SSM-IP-Address (924). 3GPP TS 29.468 V14.0.0 (2016-12) CR 0021 added MBMS-GW-SSM-IP-Address (3522). Fix: MBMS-GW-SSM-IP-Address (3522) renamed to MBMS-GW-SSM-IP-Address-29.468 (3522). Note: Name conflict with 3GPP TS 29.061 MBMS-GW-SSM-IPv6-Address (925). 3GPP TS 29.061 V10.4.0 (2011-09) CR 0355 added MBMS-GW-SSM-IPv6-Address (925). 3GPP TS 29.468 V14.0.0 (2016-12) CR 0021 added MBMS-GW-SSM-IPv6-Address (3523). Fix: MBMS-GW-SSM-IPv6-Address (3523) renamed to MBMS-GW-SSM-IPv6-Address-29.468 (3523). Note: Name conflict with 3GPP TS 32.299 Radio-Frequency (3462). 3GPP TS 29.468 V12.0.0 (2014-09) added Radio-Frequency (3508). 3GPP TS 32.299 V13.1.0 (2015-06) CR 0638 added Radio-Frequency (3462). Fix: Radio-Frequency (3508) renamed to Radio-Frequency-29.468 (3508).
author Luke Mewburn <luke@mewburn.net>
date Tue, 07 Apr 2020 19:38:33 +1000
parents c5e37091553a
children
line wrap: on
line source

DiamEAP (http://diameap.yagami.freediameter.net/)

Copyright (c) 2009-2010 Souheil Ben Ayed, Teraoka Laboratory of Keio University, and the WIDE Project.

Author: Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>



----- SUMMARY -----

DiamEAP is an implementation of the Diameter Extensible Authentication Protocol (EAP) Application (RFC 4072).
The Diameter protocol is a AAA protocol to securely carry Authentication, Authorization and Accounting informations between the AAA client and the AAA server.
Diameter EAP Application is a Diameter application that supports authentication using Extensible Authentication Protocol (RFC 3748).  

DiamEAP is designed to be extensible so that any new EAP method can be implemented separately as a shared library called 'EAP method plug-in'.
Currently, DiamEAP comprises two EAP Methods plug-ins: 
	- EAP MD5 plug-in : implementation of EAP-MD5 authentication method.
	- EAP TLS plug-in : implementation of EAP-TLS authentication method .

Other EAP methods are scheduled to be added in future releases. 	
	
DiamEAP is an extension for freeDiameter. Visit http://www.freediameter.net/ for more information on freeDiameter project.

For more information on DiamEAP project, visit http://diameap.yagami.freediameter.net/



----- REQUIREMENTS -----

Some packages are required to compile DiamEAP from source.

If you will install DiamEAP on Debian or Ubuntu system install the following packages: cmake flex bison libgnutls-dev libgcrypt-dev libmysqlclient-dev

	$ sudo apt-get install cmake flex bison libgnutls-dev libgcrypt-dev libmysqlclient-dev



----- INSTALLATION -----

1- Add DiamEAP extension to freeDiameter. 
	See freeDiameter documentation (http://www.freediameter.net/)

2-Create a new MySQL database and add tables using the sql script 'diameap.sql'.

3- Edit the extensions/CMakeList.txt file to add DiamEAP to freeDiameter.

Add the following lines:
   
	  OPTION(BUILD_APP_DIAMEAP "Build DiamEAP? (Diameter EAP Application - RFC 4072)" OFF)
	 	IF (BUILD_APP_DIAMEAP)
	 	   ADD_SUBDIRECTORY(app_diameap)
	 	ENDIF (BUILD_APP_DIAMEAP)

Note: you can enable DiamEAP to be built with freeDiameter by setting the BUILD_APP_DIAMEAP to ON. If you enable it here you don't need to enable it when building freeDiameter.

4- Enable DiamEAP by enabling BUILD_APP_DIAMEAP option with CMake:

cmake -DBUILD_APP_DIAMEAP:BOOl=ON ../



----- CONFIGURATION -----

DiamEAP requires a configuration file to start the DiamEAP server. 
It is advised to start by a copy of the sample file, and customize the configuration to fit your needs.
A sample configuration file 'diameap.conf.sample' can be find in extensions/app_diameap/ or in doc/ folder of freeDiameter. 
The file 'diameap.conf.sample' contains a description of all parameters that can be added to the DiamEAP configuration file.

*Specify connection parameters to DiamEAP MySQL database:
- username and password to connect to the MySQL Server
- database server : address to MySQL server.
- database name :  database for DiamEAP.

Example:

DiamEAP_MySQL = "UserName" , "MyPassword" , "localhost" , "drupal_ui";


*Add EAP Method plug-ins to be loaded with DiamEAP server. Note that EAP Identity must be add.

Example:

Load_plugin = "EAP MD5":4:0:"extensions/eap_md5.emp":"";
Load_plugin = "EAP TLS":13:0:"extensions/eap_tls.emp":"doc/eap_tls_plugin.app_diameap.conf";


* Enable Authorization with DiamEAP.

You can enable DiamEAP to check authorization of authenticated users. To enable authorization set authorization to 1. ( by default disabled).


* Multiple round trips timeout

This parameter indicates the maximum number of seconds provides the user to answer to a Diameter-EAP-Request. (by default set to 30 seconds)


* Invalid EAP Packets

This parameter defines the maximum number of invalid EAP packets that can be received before rejecting the connection. (by default set to 5 packets)


For more documentation on configuring DiamEAP, visit the documentation page of the project : http://diameap.yagami.freediameter.net/documentation



----- COPYRIGHT -----

See LICENSE file for legal information on this software.



----- CONTACT -----

Author: Souheil Ben Ayed (souheil@tera.ics.keio.ac.jp)


Current maintainers:
-Souheil Ben Ayed (Teraoka Laboratory of Keio University) 	
	souheil@tera.ics.keio.ac.jp
"Welcome to our mercurial repository"