(RADIATOR) Proxy again

Hugh Irvine hugh at open.com.au
Wed Oct 17 18:25:26 CDT 2001


Hello Oscar -

On Thursday 18 October 2001 06:47, Oscar Zovo wrote:
> Hello!
>
> Me again.
>  Well, I've the following configuration on Radiator:
>
> ---- begin ---
> AuthPort 1812
> AcctPort 1813
>
> # You will probably want to add other Clients to suit your site,
> # one for each NAS you want to work with
> <Client 111.222.222.33>
>         Secret  this-secret
>         DupInterval 0
> </Client>
> <Client DEFAULT>
>         Secret  common-secret
>         DupInterval 0
> </Client>
>
> <Handler Realm=teste1>
>        RewriteUsername s/^([^@]+).*/$1/
>         <AuthBy FILE>
>                 Filename %D/users
>         </AuthBy>
> </Handler>
> ------ end ---
>
> And have a user this user file
>
> ------- begin ---
> teste   Password = "n0p4ss"
>         Service-Type = Framed-User,
>         Framed-Protocol = PPP,
>         Framed-IP-Netmask = 255.255.255.0,
>         Framed-Routing = None,
>         Framed-MTU = 1500,
>         Framed-Compression = Van-Jacobson-TCP-IP,
>         Session-Timeout = 30
>
> --- end ---
>
>
> There is a cistron-radius server that proxies all requests for
> authentication and "redirects" the ones with @teste1 realm to Radiator. If
> I use radpwtst OR radtest for testing it works well, no error.
> But when I'm doing a real life test, connecting via dial-up, I got the
> following error:
>
> Wed Oct 17 21:25:09 2001: WARNING: Could not find a handler for teste:
> request is ignored
>
> Complete message follows with trace 4:
>
> Wed Oct 17 21:25:09 2001: DEBUG: Packet dump:
> *** Received from 196.29.xxx.yy port 1812 ....
> Code:       Access-Request
> Identifier: 8
> Authentic:  \n<2>A<144><236><188><242>^<194><157>>g<192><246><230>
> Attributes:
>         NAS-IP-Address = 64.110.xx.yy
>         NAS-Port = 11
>         User-Name = "teste"
>         User-Password = "GH$<129>MPR<242>t"<28>U~<152><185>^"
>         Service-Type = Framed-User
>         Framed-Protocol = PPP
>         Proxy-State = 0008
>
> Wed Oct 17 21:25:09 2001: DEBUG: Check if Handler Realm=teste1 should be
> used to handle this request Wed Oct 17 21:25:09 2001: WARNING: Could not
> find a handler for teste: request is ignored
>
>
> I'm unable to figure out what's going on.
>

The configuration that you show above will only process usernames of the form:

	user at teste1

The request that is being sent is for the username only with no realm:

	teste

Therefore Radiator correctly reports that is is unable to process the 
request, because there is no realm suffix on the username.

There are many ways of configuring Radiator, so if you can give me a bit more 
detail on what you want to do, I will try to make some sensible suggestoins.

regards

Hugh


-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.


More information about the radiator mailing list