1RADZAP(1)                      FreeRADIUS Daemon                     RADZAP(1)
2
3
4

NAME

6       radzap - remove rogue entries from the active sessions database
7

SYNOPSIS

9       radzap  [-d raddb_directory] [-h] [-N nas_ip_address] [-P nas_port] [-u
10       user] [-U user] [-x] server[:port] secret
11

DESCRIPTION

13       The FreeRADIUS server can be configured to maintain an  active  session
14       database  in  a  file  called radutmp. Commands like radwho(1) use this
15       database. Sometimes that database can get out  of  sync,  and  then  it
16       might contain rogue entries. radzap can clean up this database.
17
18       As  of FreeRADIUS 1.1.0, radzap is a simple shell-script wrapper around
19       radwho(1) and radclient(1).
20
21       The sessions are "zapped" by sending an Accounting-Request packet which
22       contains the information necessary for the server to delete the session
23       record.  radzap sends a packet to the server, rather  than  writing  to
24       radutmp  directly,  because  session  records may also be maintained in
25       SQL.
26

OPTIONS

28       -d raddb_directory
29              The directory that  contains  the  RADIUS  configuration  files.
30              radzap  reads  radiusd.conf  to  determine  the  location of the
31              radutmp file.
32
33       -h     Print usage help information.
34
35       -N nas_ip_address
36              Zap the entries which match the given NAS IP address.
37
38       -P nas_port
39              Zap the entries which match the given NAS port.
40
41       -u user
42              Zap the entries which match the given  username  (case  insensi‐
43              tive).
44
45       -U user
46              Zap the entries which match the given username (case sensitive).
47
48       -x     Enable debugging output.
49
50       server[:port]
51              The  hostname  or  IP address of the remote server. Optionally a
52              UDP port can be specified. If no UDP port is  specified,  it  is
53              looked  up  in  /etc/services.  The  service  name looked for is
54              radacct for accounting packets, and radius  for  all  other  re‐
55              quests.  If  a  service  is not found in /etc/services, 1813 and
56              1812 are used respectively.
57
58       secret The shared secret for this client.  It needs to  be  defined  on
59              the  radius  server side too, for the IP address you are sending
60              the radius packets from.
61

SEE ALSO

63       radwho(1), radclient(1), radiusd(8), radiusd.conf(5).
64

AUTHOR

66       Alan DeKok <aland@ox.org>
67
68
69
70                                 8 April 2005                        RADZAP(1)
Impressum