(RADIATOR) Radiator and Livingston PM3
David Hayes-Moats
david-lists at kalnet.net
Wed Feb 20 17:15:04 CST 2002
Ok, I just deleted the Framed-IP-Address = 255.255.255.254 from each record
and the is still show connecting. Here is the Trace 4, config file and an
example user entry.
Wed Feb 20 18:06:41 2002: INFO: Duplicate request id 146 received from
65.162.142.7(1029): ignored
Wed Feb 20 18:07:21 2002: DEBUG: Packet dump:
*** Received from 65.162.142.7 port 1029 ....
Code: Access-Request
Identifier: 147
Authentic: <169>[<232><223><179><232><162>K<147><177>)~<220>6#<24>
Attributes:
User-Name = "franstrand"
Password = "<239>|<243>B<194>Q<206><196>?<184>x<17><137>C<162><18>"
NAS-IP-Address = 65.162.142.7
NAS-Port = 24
NAS-Port-Type = Async
Service-Type = Framed-User
Framed-Protocol = PPP
Connect-Info = "24000 LAPM/V42BIS"
Wed Feb 20 18:07:21 2002: DEBUG: Handling request with Handler
'Realm=DEFAULT'
Wed Feb 20 18:07:21 2002: DEBUG: Deleting session for franstrand,
65.162.142.7, 24
Wed Feb 20 18:07:21 2002: DEBUG: Handling with Radius::AuthFILE:
Wed Feb 20 18:07:21 2002: DEBUG: Radius::AuthFILE looks for match with
franstrand
Wed Feb 20 18:07:21 2002: DEBUG: Radius::AuthFILE ACCEPT:
Wed Feb 20 18:07:21 2002: DEBUG: Access accepted for franstrand
Wed Feb 20 18:07:21 2002: DEBUG: Packet dump:
*** Sending to 65.162.142.7 port 1029 ....
Code: Access-Accept
Identifier: 147
Authentic: <169>[<232><223><179><232><162>K<147><177>)~<220>6#<24>
Attributes:
Service-Type = Framed-User
Framed-Protocol = PPP
Framed-IP-Netmask = 255.255.255.0
Framed-Routing = Broadcast-Listen
Framed-Compression = Van-Jacobson-TCP-IP
Framed-MTU = 1500
Idle-Timeout = 900
Wed Feb 20 18:07:24 2002: DEBUG: Packet dump:
*** Received from 65.162.142.7 port 1029 ....
Code: Access-Request
Identifier: 147
Authentic: <169>[<232><223><179><232><162>K<147><177>)~<220>6#<24>
Attributes:
User-Name = "franstrand"
Password = "<239>|<243>B<194>Q<206><196>?<184>x<17><137>C<162><18>"
NAS-IP-Address = 65.162.142.7
NAS-Port = 24
NAS-Port-Type = Async
Service-Type = Framed-User
Framed-Protocol = PPP
Connect-Info = "24000 LAPM/V42BIS"
Wed Feb 20 18:07:24 2002: DEBUG: Handling request with Handler
'Realm=DEFAULT'
Wed Feb 20 18:07:24 2002: DEBUG: Deleting session for franstrand,
65.162.142.7, 24
Wed Feb 20 18:07:24 2002: DEBUG: Handling with Radius::AuthFILE:
Wed Feb 20 18:07:24 2002: DEBUG: Radius::AuthFILE looks for match with
franstrand
Wed Feb 20 18:07:24 2002: DEBUG: Radius::AuthFILE ACCEPT:
Wed Feb 20 18:07:24 2002: DEBUG: Access accepted for franstrand
Wed Feb 20 18:07:24 2002: DEBUG: Packet dump:
*** Sending to 65.162.142.7 port 1029 ....
Code: Access-Accept
Identifier: 147
Authentic: <169>[<232><223><179><232><162>K<147><177>)~<220>6#<24>
Attributes:
Service-Type = Framed-User
Framed-Protocol = PPP
Framed-IP-Netmask = 255.255.255.0
Framed-Routing = Broadcast-Listen
Framed-Compression = Van-Jacobson-TCP-IP
Framed-MTU = 1500
Idle-Timeout = 900
Wed Feb 20 18:07:27 2002: DEBUG: Packet dump:
*** Received from 65.162.142.7 port 1029 ....
Code: Access-Request
Identifier: 147
Authentic: <169>[<232><223><179><232><162>K<147><177>)~<220>6#<24>
Attributes:
User-Name = "franstrand"
Password = "<239>|<243>B<194>Q<206><196>?<184>x<17><137>C<162><18>"
NAS-IP-Address = 65.162.142.7
NAS-Port = 24
NAS-Port-Type = Async
Service-Type = Framed-User
Framed-Protocol = PPP
Connect-Info = "24000 LAPM/V42BIS"
Wed Feb 20 18:07:27 2002: DEBUG: Handling request with Handler
'Realm=DEFAULT'
Wed Feb 20 18:07:27 2002: DEBUG: Deleting session for franstrand,
65.162.142.7, 24
Wed Feb 20 18:07:27 2002: DEBUG: Handling with Radius::AuthFILE:
Wed Feb 20 18:07:27 2002: DEBUG: Radius::AuthFILE looks for match with
franstrand
Wed Feb 20 18:07:27 2002: DEBUG: Radius::AuthFILE ACCEPT:
Wed Feb 20 18:07:27 2002: DEBUG: Access accepted for franstrand
Wed Feb 20 18:07:27 2002: DEBUG: Packet dump:
*** Sending to 65.162.142.7 port 1029 ....
Code: Access-Accept
Identifier: 147
Authentic: <169>[<232><223><179><232><162>K<147><177>)~<220>6#<24>
Attributes:
Service-Type = Framed-User
Framed-Protocol = PPP
Framed-IP-Netmask = 255.255.255.0
Framed-Routing = Broadcast-Listen
Framed-Compression = Van-Jacobson-TCP-IP
Framed-MTU = 1500
Idle-Timeout = 900
Wed Feb 20 18:07:30 2002: DEBUG: Packet dump:
*** Received from 65.162.142.7 port 1029 ....
Code: Access-Request
Identifier: 147
Authentic: <169>[<232><223><179><232><162>K<147><177>)~<220>6#<24>
Attributes:
User-Name = "franstrand"
Password = "<239>|<243>B<194>Q<206><196>?<184>x<17><137>C<162><18>"
NAS-IP-Address = 65.162.142.7
NAS-Port = 24
NAS-Port-Type = Async
Service-Type = Framed-User
Framed-Protocol = PPP
Connect-Info = "24000 LAPM/V42BIS"
Wed Feb 20 18:07:30 2002: DEBUG: Handling request with Handler
'Realm=DEFAULT'
Wed Feb 20 18:07:30 2002: DEBUG: Deleting session for franstrand,
65.162.142.7, 24
Wed Feb 20 18:07:30 2002: DEBUG: Handling with Radius::AuthFILE:
Wed Feb 20 18:07:30 2002: DEBUG: Radius::AuthFILE looks for match with
franstrand
Wed Feb 20 18:07:30 2002: DEBUG: Radius::AuthFILE ACCEPT:
Wed Feb 20 18:07:30 2002: DEBUG: Access accepted for franstrand
Wed Feb 20 18:07:30 2002: DEBUG: Packet dump:
*** Sending to 65.162.142.7 port 1029 ....
Code: Access-Accept
Identifier: 147
Authentic: <169>[<232><223><179><232><162>K<147><177>)~<220>6#<24>
Attributes:
Service-Type = Framed-User
Framed-Protocol = PPP
Framed-IP-Netmask = 255.255.255.0
Framed-Routing = Broadcast-Listen
Framed-Compression = Van-Jacobson-TCP-IP
Framed-MTU = 1500
Idle-Timeout = 900
Wed Feb 20 18:07:33 2002: DEBUG: Packet dump:
*** Received from 65.162.142.7 port 1029 ....
Code: Access-Request
Identifier: 147
Authentic: <169>[<232><223><179><232><162>K<147><177>)~<220>6#<24>
Attributes:
User-Name = "franstrand"
Password = "<239>|<243>B<194>Q<206><196>?<184>x<17><137>C<162><18>"
NAS-IP-Address = 65.162.142.7
NAS-Port = 24
NAS-Port-Type = Async
Service-Type = Framed-User
Framed-Protocol = PPP
Connect-Info = "24000 LAPM/V42BIS"
Wed Feb 20 18:07:33 2002: DEBUG: Handling request with Handler
'Realm=DEFAULT'
Wed Feb 20 18:07:33 2002: DEBUG: Deleting session for franstrand,
65.162.142.7, 24
Wed Feb 20 18:07:33 2002: DEBUG: Handling with Radius::AuthFILE:
Wed Feb 20 18:07:33 2002: DEBUG: Radius::AuthFILE looks for match with
franstrand
Wed Feb 20 18:07:33 2002: DEBUG: Radius::AuthFILE ACCEPT:
Wed Feb 20 18:07:33 2002: DEBUG: Access accepted for franstrand
Wed Feb 20 18:07:33 2002: DEBUG: Packet dump:
*** Sending to 65.162.142.7 port 1029 ....
Code: Access-Accept
Identifier: 147
Authentic: <169>[<232><223><179><232><162>K<147><177>)~<220>6#<24>
Attributes:
Service-Type = Framed-User
Framed-Protocol = PPP
Framed-IP-Netmask = 255.255.255.0
Framed-Routing = Broadcast-Listen
Framed-Compression = Van-Jacobson-TCP-IP
Framed-MTU = 1500
Idle-Timeout = 900
Wed Feb 20 18:07:36 2002: DEBUG: Packet dump:
*** Received from 65.162.142.7 port 1029 ....
Code: Access-Request
Identifier: 147
Authentic: <169>[<232><223><179><232><162>K<147><177>)~<220>6#<24>
Attributes:
User-Name = "franstrand"
Password = "<239>|<243>B<194>Q<206><196>?<184>x<17><137>C<162><18>"
NAS-IP-Address = 65.162.142.7
NAS-Port = 24
NAS-Port-Type = Async
Service-Type = Framed-User
Framed-Protocol = PPP
Connect-Info = "24000 LAPM/V42BIS"
Wed Feb 20 18:07:36 2002: DEBUG: Handling request with Handler
'Realm=DEFAULT'
Wed Feb 20 18:07:36 2002: DEBUG: Deleting session for franstrand,
65.162.142.7, 24
Wed Feb 20 18:07:36 2002: DEBUG: Handling with Radius::AuthFILE:
Wed Feb 20 18:07:36 2002: DEBUG: Radius::AuthFILE looks for match with
franstrand
Wed Feb 20 18:07:36 2002: DEBUG: Radius::AuthFILE ACCEPT:
Wed Feb 20 18:07:36 2002: DEBUG: Access accepted for franstrand
Wed Feb 20 18:07:36 2002: DEBUG: Packet dump:
*** Sending to 65.162.142.7 port 1029 ....
Code: Access-Accept
Identifier: 147
Authentic: <169>[<232><223><179><232><162>K<147><177>)~<220>6#<24>
Attributes:
Service-Type = Framed-User
Framed-Protocol = PPP
Framed-IP-Netmask = 255.255.255.0
Framed-Routing = Broadcast-Listen
Framed-Compression = Van-Jacobson-TCP-IP
Framed-MTU = 1500
Idle-Timeout = 900
Wed Feb 20 18:07:39 2002: DEBUG: Packet dump:
*** Received from 65.162.142.7 port 1029 ....
Code: Access-Request
Identifier: 147
Authentic: <169>[<232><223><179><232><162>K<147><177>)~<220>6#<24>
Attributes:
User-Name = "franstrand"
Password = "<239>|<243>B<194>Q<206><196>?<184>x<17><137>C<162><18>"
NAS-IP-Address = 65.162.142.7
NAS-Port = 24
NAS-Port-Type = Async
Service-Type = Framed-User
Framed-Protocol = PPP
Connect-Info = "24000 LAPM/V42BIS"
Wed Feb 20 18:07:39 2002: DEBUG: Handling request with Handler
'Realm=DEFAULT'
Wed Feb 20 18:07:39 2002: DEBUG: Deleting session for franstrand,
65.162.142.7, 24
Wed Feb 20 18:07:39 2002: DEBUG: Handling with Radius::AuthFILE:
Wed Feb 20 18:07:39 2002: DEBUG: Radius::AuthFILE looks for match with
franstrand
Wed Feb 20 18:07:39 2002: DEBUG: Radius::AuthFILE ACCEPT:
Wed Feb 20 18:07:39 2002: DEBUG: Access accepted for franstrand
Wed Feb 20 18:07:39 2002: DEBUG: Packet dump:
*** Sending to 65.162.142.7 port 1029 ....
Code: Access-Accept
Identifier: 147
Authentic: <169>[<232><223><179><232><162>K<147><177>)~<220>6#<24>
Attributes:
Service-Type = Framed-User
Framed-Protocol = PPP
Framed-IP-Netmask = 255.255.255.0
Framed-Routing = Broadcast-Listen
Framed-Compression = Van-Jacobson-TCP-IP
Framed-MTU = 1500
Idle-Timeout = 900
Wed Feb 20 18:07:42 2002: DEBUG: Packet dump:
*** Received from 65.162.142.7 port 1029 ....
Code: Access-Request
Identifier: 147
Authentic: <169>[<232><223><179><232><162>K<147><177>)~<220>6#<24>
Attributes:
User-Name = "franstrand"
Password = "<239>|<243>B<194>Q<206><196>?<184>x<17><137>C<162><18>"
NAS-IP-Address = 65.162.142.7
NAS-Port = 24
NAS-Port-Type = Async
Service-Type = Framed-User
Framed-Protocol = PPP
Connect-Info = "24000 LAPM/V42BIS"
Wed Feb 20 18:07:42 2002: DEBUG: Handling request with Handler
'Realm=DEFAULT'
Wed Feb 20 18:07:42 2002: DEBUG: Deleting session for franstrand,
65.162.142.7, 24
Wed Feb 20 18:07:42 2002: DEBUG: Handling with Radius::AuthFILE:
Wed Feb 20 18:07:42 2002: DEBUG: Radius::AuthFILE looks for match with
franstrand
Wed Feb 20 18:07:42 2002: DEBUG: Radius::AuthFILE ACCEPT:
Wed Feb 20 18:07:42 2002: DEBUG: Access accepted for franstrand
Wed Feb 20 18:07:42 2002: DEBUG: Packet dump:
*** Sending to 65.162.142.7 port 1029 ....
Code: Access-Accept
Identifier: 147
Authentic: <169>[<232><223><179><232><162>K<147><177>)~<220>6#<24>
Attributes:
Service-Type = Framed-User
Framed-Protocol = PPP
Framed-IP-Netmask = 255.255.255.0
Framed-Routing = Broadcast-Listen
Framed-Compression = Van-Jacobson-TCP-IP
Framed-MTU = 1500
Idle-Timeout = 900
# livingCompat.cfg
#
# This is a simple Radiator config file that allows you
# to continue using a bog standard Livingston or
# similar users file with Radiator, It implements the
# Auth-Type="System" check item by using AuthBy UNIX
#
# You will probably want to change the definitions of
# DbDir, LogDir and the Filename parameters
#
# Author: Mike McCauley (mikem at open.com.au)
# Copyright (C) 1997 Open System Consultants
# $Id: livingCompat.cfg,v 1.3 1999/07/12 02:01:35 mikem Exp $
Foreground
LogStdout
Trace 4
DbDir c:\winnt\system32\drivers\etc\raddb
LogDir c:\usr\adm\radacct\65.162.142.7
# This clause defines a single client to listen to
# You will probably want to change localhost and mysecret
# to suit your site.
<Client www.xxx.yyy.zzz>
Secret
</Client>
<Client www.xxx.yyy.zzz>
Secret
</Client>
<Client localhost>
Secret
</Client>
<Client www.xxx.yyy.zzz>
Secret
</Client>
# This clause means we will handle any real that arrives
<Realm DEFAULT>
<AuthBy FILE>
Filename %D\users
</AuthBy>
# Log accounting to the detail file in LogDir
AcctLogFileName %L\detail
</Realm>
# This clause defines an authorisation method that will be used
# by any users in the database with Auth-Type="System". It will
# match the "Identifier System"
#<AuthBy UNIX>
# Identifier System
# Filename ./passwd
#</AuthBy>
user Password = "password"
Service-Type = Framed-User,
Framed-Protocol = PPP,
Framed-IP-Netmask = 255.255.255.0,
Framed-Routing = Broadcast-Listen,
Framed-Compression = Van-Jacobson-TCP-IP,
Framed-MTU = 1500,
Idle-Timeout = 900
----- Original Message -----
From: "Hugh Irvine" <hugh at open.com.au>
To: "David Hayes-Moats" <david-lists at kalnet.net>; <radiator at open.com.au>
Sent: Tuesday, February 19, 2002 6:58 PM
Subject: Re: (RADIATOR) Radiator and Livingston PM3
>
> Hello David -
>
> On Wed, 20 Feb 2002 07:03, David Hayes-Moats wrote:
> > I'm in the process of switching my radius servers from the Livingston
> > supplied server to Radiator. I'm using the same flat file that I did
> > before. I tried using the same dictionary and the dictionary.livingston
> > and Radiator said that they were missing Attributes, so I decided to use
> > the plain dictionary file that came with Radiator.
> >
> > Now the problem that I have is that if I tell the PM3 to use this radius
> > server for authentication, the username and password is received checked
> > and authenticated but the PM3 doesn't not allow the user to connect. I
can
> > successfully use the radpwtst with a username and password and it
passed.
> > Any help would be appreciated.
> >
>
> This is probably a problem with reply attributes.
>
> Could you please send me a copy of your configuration file (no secrets)
> together with a trace 4 debug from Radiator showing what is happening.
>
> thanks
>
> Hugh
>
> --
> Radiator: the most portable, flexible and configurable RADIUS server
> anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
> -
> Nets: internetwork inventory and management - graphical, extensible,
> flexible with hardware, software, platform and database independence.
> ===
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list