(RADIATOR) Quidway Huawei - accounting request not coming ---

Hugh Irvine hugh at open.com.au
Wed Nov 30 15:36:00 CST 2005 

Hello Hakim -

Thanks for the log and configuration file.

As you say, Radiator is operating correctly, so if the NAS is not  
starting a session there must be some issue with the NAS.

It is possible that you will need to send additional radius reply  
attributes in the access accept, but you will need to check with your  
vendor's technical support to find out either how to configure it or  
what additional reply attributes are required.

regards

Hugh



On 30 Nov 2005, at 22:49, Hakim wrote:

> hi,
> configuration for huwaei A8010 expert... the NAS does not seem to  
> be sending any accounting back to radius, neither is session being  
> estatblished (some PPP failure on the modem is shown) even though  
> radius is accepting the user.
>
> help appreciate!
> Hakim
> =============TRACE 4 ==========
> Wed Nov 30 12:41:44 2005: DEBUG: Finished reading configuration  
> file 'c:\radiator\rad.cfg'
> Wed Nov 30 12:41:44 2005: DEBUG: Reading dictionary file 'dictionary'
> Wed Nov 30 12:41:44 2005: DEBUG: Creating authentication port  
> 0.0.0.0:1812
> Wed Nov 30 12:41:44 2005: DEBUG: Creating accounting port 0.0.0.0:1813
> Wed Nov 30 12:41:44 2005: NOTICE: Server started: Radiator 3.13 on  
> testwinkccg (LOCKED)
> Wed Nov 30 12:46:31 2005: DEBUG: Packet dump:
> *** Received from xxx.xxx.xxx.xxx port 14921 ....
> Code:       Access-Request
> Identifier: 0
> Authentic:  <0><0><8>^<0><0>%@<0><0>q<128><0><0>I<16>
> Attributes:
> 	User-Name = "test"
> 	User-Password = mn<160>)<213><11>T<3><173> 
> \<13><27><129><208><230><233>
> 	NAS-IP-Address = xxx.xxx.xxx.xxx
> 	NAS-Port = 2
> 	Service-Type = Framed-User
> 	Framed-Protocol = PPP
> 	Called-Station-Id = "816666"
> 	Calling-Station-Id = "2415149"
> 	NAS-Identifier = "TEC-NAS"
> 	NAS-Port-Type = Async
> 	Connect-Info = "45333/28800 V90/V42bis/LAPM"
>
> Wed Nov 30 12:46:31 2005: DEBUG: Handling request with Handler ''
> Wed Nov 30 12:46:31 2005: DEBUG: a3visp_session Deleting session  
> for test, xxx.xxx.xxx.xxx, 2
> Wed Nov 30 12:46:32 2005: DEBUG: do query is: 'delete from  
> RADONLINE where NASIDENTIFIER='xxx.xxx.xxx.xxx' and NASPORT=02':
> Wed Nov 30 12:46:32 2005: DEBUG: Query is: 'select NASIDENTIFIER,  
> NASPORT, ACCTSESSIONID, FRAMEDIPADDRESS from RADONLINE where  
> USERNAME='test'':
> Wed Nov 30 12:46:32 2005: DEBUG: Handling with Radius::AuthSQL
> Wed Nov 30 12:46:32 2005: DEBUG: Handling with Radius::AuthSQL: ASQL
> Wed Nov 30 12:46:32 2005: DEBUG: Query is: 'select  
> PASSWORD,BALANCETIME from AUTHENTICATIONTABLE where USERNAME='test'  
> and  balancetime > 0 and (expirydate is null or expirydate> getdate 
> ()) and active='Y'':
> Wed Nov 30 12:46:32 2005: DEBUG: Radius::AuthSQL looks for match  
> with test
> Wed Nov 30 12:46:32 2005: DEBUG: Radius::AuthSQL ACCEPT:
> Wed Nov 30 12:46:32 2005: DEBUG: AuthBy SQL result: ACCEPT,
> Wed Nov 30 12:46:32 2005: DEBUG: Access accepted for test
> Wed Nov 30 12:46:32 2005: DEBUG: Packet dump:
> *** Sending to xxx.xxx.xxx.xxx port 14921 ....
> Code:       Access-Accept
> Identifier: 0
> Authentic:  <0><0><8>^<0><0>%@<0><0>q<128><0><0>I<16>
> Attributes:
> 	Session-Timeout = 12900
> 	Service-Type = Framed-User
> 	Framed-Protocol = PPP
> =====end of TRACE 4 ============
>
>
>
>
>
>
>
> Foreground
> LogStdout
> LogDir		c:\radiator
> LogFile  	%L\%Y-%m-2logfile.log
> PidFile  	%L\radius.pid
> DbDir		.
> DictionaryFile dictionary
> Trace 		4
> AuthPort 1812
> AcctPort 1813
>
>
> <Client xxx.xxx.xxx.xxxx>
> 	Secret xxxxxx
> 	DupInterval 0
> </Client>
>
> <SessionDatabase SQL>
> 	Identifier 	a3visp_session
> 	DBSource	dbi:ODBC:radiusodbc
> 	DBUsername      xxxx
> 	DBAuth	        xxxx
>
> 	AddQuery	insert into RADONLINE \
> 				(USERNAME, NASIDENTIFIER, NASPORT, TIME_STAMP, FRAMEDIPADDRESS,  
> NASPORTTYPE, SERVICETYPE) \
> 			values \
> 			('%n', '%{NAS-IP-Address}', %{NAS-Port}, %{Timestamp}, '%{Framed- 
> IP-Address}', '%{NAS-Port-Type}', '%{Service-Type}')
>
> 	
> </SessionDatabase>
> <Handler>
> 	MaxSessions 1
> 	#AuthByPolicy ContinueUntilReject
>
> 	<AuthBy SQL>
> 		Identifier ASQL
> 		DBSource	dbi:ODBC:radiusodbc
> 		DBUsername	xxxx
> 		DBAuth		xxxx
> 		AuthSelect select PASSWORD,BALANCETIME from AUTHENTICATIONTABLE  
> where USERNAME='%n' and  balancetime > 0 and (expirydate is null or  
> expirydate> getdate()) and active='Y'
> 		AuthColumnDef	0,User-Password,check
> 		#AuthColumnDef	1,Ascend-Maximum-Time,reply
> 		AuthColumnDef	1,Session-Timeout,reply
> 		#AddToReply    Service-Type=Framed-User,Framed-Protocol = PPP
> 		
> 		#DefaultReply Service-Type = Framed,Framed-Protocol = PPP
> 		# You can add to or change these if you want.
> 		AccountingStopsOnly
> 		AccountingTable AccountingTable
> 		AcctColumnDef	USERNAME,User-Name
> 		AcctColumnDef	logofftime,Timestamp,integer-date
> 		AcctColumnDef	FRAMEDIPADDRESS,Framed-IP-Address
> 		AcctColumnDef	NASIDENTIFIER,NAS-IP-Address
> 		AcctColumnDef	NASPORT,NAS-Port,integer
> 		AcctColumnDef	Acctsessiontime,Acct-Session-Time,integer
> 		AcctSQLStatement update authenticationtable \
> 					set balancetime = balancetime - %{Acct-Session-Time},  
> startdate = getdate(), \
> 					expirydate = (select DateAdd(day,(select expires from  
> accountplan A,authenticationtable B where a.accountid = b.accountid  
> and b.username='%n'), getdate())) \
> 					where username='%n' \
> 					and STARTDATE is  null \
> 					and expirydate is null
> 		AcctSQLStatement update authenticationtable set balancetime =  
> balancetime - %{Acct-Session-Time} where username='%n' and  
> STARTDATE is not null and expirydate is not null
> 	</AuthBy>
>
> </Handler>


NB:

Have you read the reference manual ("doc/ref.html")?
Have you searched the mailing list archive (www.open.com.au/archives/ 
radiator)?
Have you had a quick look on Google (www.google.com)?
Have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.


--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.

More information about the radiator mailing list