(RADIATOR) Why is Broadwing/MegaPOP not taking our access-accept?
Mary Grace
radiator at diskserv.com
Thu Nov 8 12:49:52 CST 2001
This does not seem to be making it to the mail list? Sorry if there are
repeats :-(
*******************************************************
You will probably think this is almost an FAQ issue, but I can't find an FAQ
entry for authenticating through a US nationwide dialup provider like the
Broadwing/MegaPOP proxy system using realms. Please, if anyone can offer us a
reason/solution for why users are getting rejected by the Broadwing proxy
server after apparently Radiator sends an Access-Accept packet, we would
deeply
appreciate it! :-) A Macintosh user using the latest Powerbook G4 says his
connection is rejected by the remote server after speed is negotiated and PPP
starts.
The Level 4 debug is appended below, followed by our radius.cfg. The correct
reply attributes for MegaPOP/Broadwing are set.
This is an Active State PERL on WinNT4.0 installation, and of course it passed
all its startup testing using the Radiator tools. I don't understand what the
"Deleting session..." entry is in the debug output, or where it comes from
since it comes before the Access-Accept packet is logged as sent.
We tried both the default dictionary and the ascend dictionary - no change.
Thanks! - Mary Grace
*****************************************************************
*** Received from 216.143.197.130 port 34691 ....
Code: Access-Request
Identifier: 1
Authentic: o<178><180>SOP<224>e<249><206>64<18><13>E?
Attributes:
User-Name = "brwtest at xxxx.net"
User-Password = "y<3><7><7><215>M<172>*<3>R<246><201>=<30><239>W"
NAS-Identifier = "216.140.14.60"
NAS-Port = 17694981
Service-Type = Framed-User
Framed-Protocol = PPP
Client-Port-DNIS = "xxxxxxxxxx"
Caller-Id = "xxxxxxxxxx"
NAS-Port-Type = Async
Ascend-Data-Rate = 26400
Ascend-PreSession-Time = 27
Ascend-Xmit-Rate = 50667
Thu Nov 8 12:51:57 2001: DEBUG: Handling request with Handler
'Realm=xxxx.net'
Thu Nov 8 12:51:57 2001: DEBUG: Rewrote user name to brwtest at xxxx.net
Thu Nov 8 12:51:57 2001: DEBUG: Deleting session for brwtest at xxxx.net,
216.140.14.60, 17694981
Thu Nov 8 12:51:57 2001: DEBUG: Handling with Radius::AuthFILE:
Thu Nov 8 12:51:57 2001: DEBUG: Radius::AuthFILE looks for match with
brwtest at xxxx.net
Thu Nov 8 12:51:57 2001: ERR: Attribute number 79 is not defined in your
dictionary
Thu Nov 8 12:51:57 2001: DEBUG: Radius::AuthFILE ACCEPT:
Thu Nov 8 12:51:57 2001: DEBUG: Access accepted for brwtest at xxxx.net
Thu Nov 8 12:51:57 2001: DEBUG: Packet dump:
*** Sending to 216.143.197.130 port 34691 ....
Code: Access-Accept
Identifier: 1
Authentic: o<178><180>SOP<224>e<249><206>64<18><13>E?
Attributes:
Service-Type = Framed-User
Framed-Protocol = PPP
************************************************
Foreground
LogStdout
Trace 5
PidFile D:\raddb\radiusd.pid
AuthPort 1645
AcctPort 1646
LogDir D:\radlogs
DbDir D:\raddb
LogFile %L/logfile.log
DictionaryFile %D/dictionary.ascend
<Client 216.143.197.2>
Secret xxx
</Client>
<Client 216.143.198.2>
Secret xxx
</Client>
<Client 216.143.197.130>
Secret xxx
</Client>
<Client 216.143.193.146>
Secret xxx
</Client>
<Client 216.143.242.162>
Secret xxx
</Client>
<Realm xxxx.net>
RewriteUsername tr/[A-Z]/[a-z]/
MaxSessions 5
AcctLogFileName %L/detail.log
PasswordLogFileName %L/password.log
<AuthBy FILE>
Filename D:\raddb\users.wri
DefaultSimultaneousUse 2
RejectEmptyPassword
</AuthBy>
</Realm>
<Log FILE>
Filename %L/backuplog.log
Trace 4
</Log>
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list