|<B>--attempts nB>||Specify the number of attempts to send the RADIUS packet to the server. This defaults to the magical number, 3. Retransmissions are reported to STDERR unless <B>--quietB> is specified.|
|<B>--timeout tB>||How much to wait for an answer before retrying, in seconds. Defaults to 3 seconds. Timeouts are reported to STDERR unless <B>--quietB> is specified.|
|<B>--nowaitB>||Causes rad-client to forego waiting for the response. This may be useful for some test scenarios. No retransmissions occur when this option is specified, so only one packet is sent.|
|<B>--server serverB>||Surprisingly, the server address to which to send the RADIUS packets.|
|<B>--port portB>||Correct. This is the server port where RADIUS packets should be sent. Defaults to 1812.|
|<B>--secret secretB>||The RADIUS shared secret used for packet authentication.|
|<B>--prompt [attribute]B>||Prompt the user and add a password-encoded RADIUS attribute to the request. By default, this works in the RADIUS attribute 2.|
|<B>--dictionary dictfile...B>||Specifies one or more dictionary files to use for crafting the RADIUS packet and for decoding the eventual response. Multiple files can be specified, causing the dictionaries to be loaded in order.|
|<B>--code codeB>||The RADIUS packet code. Defaults to Access-Request.|
Specifies the RADIUS packet authenticator. The authenticator defaults
to a semi-random string composed of printable characters, which seems
nice in the packet dumps.
Note that a great deal of the (limited) security of RADIUS depends on the use of strong authenticator strings, which should be random and unrelated to the request theyre protecting. The implementation used in this script is <B>NOTB> secure, as there is little randomness.
|<B>--identifier idB>||Specifies the RADIUS packet identifier. This defaults to a random number between 1 and 255.|
Parse attributes from the given file, where they must be specified one
per line. Comments following Perl syntax are allowed in said
file. Additional attributes can be specified in the command line.
The special file - means, as expected, to read STDIN.
|<B>--dump-requestB>||Causes the packet that rad-client crafted to be dumped to STDOUT before sending it.|
|<B>--quietB>||Supress warnings and indications.|
|<B>--helpB>||Shows this documentation, then exits.|
If the packet code is Access-Request (or another packet code requiring a password attribute), the special attributes Password and User-Password (with no vendor), will be encoded with the shared secret before sending the packet, as expected.
Any received packets will be dumped to STDOUT using Net::Radius::Packet->dump.
$Log$ Revision 1.3 2006/11/15 00:08:46 lem rad-client can now prompt for attribute values... Revision 1.2 2006/11/09 16:24:05 lem Only encode User-Password on packet codes other than Access-Request Revision 1.1 2006/11/09 10:28:47 lem Added rad-client to the distribution
This code and all accompanying software comes with NO WARRANTY. You use it at your own risk.
This code and all accompanying software can be used freely under the same terms as Perl version 5.8.6 itself.
Luis E. Munõz <firstname.lastname@example.org>
perl(1), Getopt::Long(3), Net::Radius::Server(3).
Hey! <B>The above document had some coding errors, which are explained below:B>
Around line 403: Non-ASCII character seen before =encoding in Munõz. Assuming UTF-8
|perl v5.20.3||RAD-CLIENT (1)||2009-09-20|