(RADIATOR) More EAP/TLS

Jesus Rodriguez jesusr at endercom.com
Wed Apr 16 10:29:45 CDT 2003


Hi,

Trying to setup EAP/TLS with USR2249 AP, Radiator 3.5 and Radiator 3.6,
FreeBSD 4.8-STABLE and Windows XP as client.

I've installed these ports:

p5-Net-SSLeay-1.17
p5-Digest-HMAC-1.01
p5-Digest-MD5-2.22
p5-Digest-SHA1-2.02
p5-Crypt-SSLeay-0.49

I've generated certs with mkcertificate.sh from goodies/ and these are the
errors i have:

With Radiator 3.6:

Wed Apr 16 17:18:08 2003: DEBUG: Packet dump:
*** Received from 192.168.1.254 port 1740 ....
Code:       Access-Request
Identifier: 83
Authentic:  <179><170><237><131><18>V<27>(<213><189><232><31><9>a<141><227>
Attributes:
        User-Name = "jesusr"
        NAS-IP-Address = 192.168.1.254
        NAS-Port = 0
        Called-Station-Id = "00-C0-49-A6-A6-C7"
        Calling-Station-Id = "00-C0-49-BC-E8-A8"
        NAS-Identifier = "voztelecom"
        Framed-MTU = 1380
        NAS-Port-Type = Wireless-IEEE-802-11
        EAP-Message = <2><10><0><6><13><0>
        Message-Authenticator =
<228>;<223><132>~<161><147>X<209>r<0p<177><228>o

Wed Apr 16 17:18:08 2003: DEBUG: Handling request with Handler 'Realm=DEFAULT'
Wed Apr 16 17:18:08 2003: DEBUG:  Deleting session for jesusr, 192.168.1.254,
0
Wed Apr 16 17:18:08 2003: DEBUG: Handling with Radius::AuthFILE:
Wed Apr 16 17:18:08 2003: DEBUG: Handling with EAP: code 2, 10, 6
Wed Apr 16 17:18:08 2003: DEBUG: Response type 13
Wed Apr 16 17:18:08 2003: DEBUG: Radius::AuthFILE looks for match with jesusr
Wed Apr 16 17:18:08 2003: DEBUG: Radius::AuthFILE ACCEPT:
Wed Apr 16 17:18:08 2003: ERR: Could not handle an EAP request: Can't locate auto/Net/SSLeay/get_client_.al in @INC (@INC contains: .  /usr/local/lib/perl5/site_perl/5.005/i386-freebsd /usr/local/lib/perl5/site_perl/5.005 . /usr/libdata/perl/5.00503/mach /usr/libdata/perl/5.00503) at Radius/TLS.pm line 34

Wed Apr 16 17:18:08 2003: INFO: Access rejected for jesusr: Could not handle
an EAP request


Really there is not in my system any get_client_.al file and it's not made by
SSLeay perl module.


And this is the error with Radiator 3.5:

*** Received from 192.168.1.254 port 2192 ....
Code:       Access-Request
Identifier: 38
Authentic:  Vm70^(a<3><236>@@<172><151><1><247><13>
Attributes:
        User-Name = "jesusr"
        NAS-IP-Address = 192.168.1.254
        NAS-Port = 0
        Called-Station-Id = "00-C0-49-A6-A6-C7"
        Calling-Station-Id = "00-C0-49-BC-E8-A8"
        NAS-Identifier = "voztelecom"
        Framed-MTU = 1380
        NAS-Port-Type = 19
        EAP-Message =
<2><20><0>P<13><128><0><0><0>F<22><3><1><0>A<1><0><0>=<3><1>><157>N<162><171><3>cB<242>2jV<189><209>ZhP<28><160><1>IH<192><175>IT&<176><163>;,3<0><0><22><0><4><0><5><0><10><0><9><0>d<0>b<0><3><0><6><0><19><0><18><0>c<1><0>
        Message-Authenticator =
$n<26>"<164><145><169><224><28>g"ii<167><160><136>

Wed Apr 16 14:40:51 2003: DEBUG: Handling request with Handler 'Realm=DEFAULT'
Wed Apr 16 14:40:51 2003: DEBUG:  Deleting session for jesusr, 192.168.1.254,
0
Wed Apr 16 14:40:51 2003: DEBUG: Handling with Radius::AuthFILE:
Wed Apr 16 14:40:51 2003: DEBUG: Handling with EAP: code 2, 20, 80
Wed Apr 16 14:40:51 2003: DEBUG: Response type 13
Wed Apr 16 14:40:51 2003: ERR: EAP TLS error: -1, 1, 8466,  95889: 1 - error:1408A0C1:SSL routines:SSL3_GET_CLIENT_HELLO:no shared cipher

Wed Apr 16 14:40:51 2003: INFO: Access rejected for jesusr: EAP TLS error

Some hint?

Thanks in advance.

Saludos
JesusR.

-------------------------------
Jesus Rodriguez
Endercom Comunicaciones, S.L.
jesusr at endercom.com
http://www.endercom.com
Tel. +34 934424293
-------------------------------
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.


More information about the radiator mailing list