(RADIATOR) SessionDatabase SQL
Hugh Irvine
hugh at open.com.au
Sun Aug 10 04:41:58 CDT 2003
Ciao Andrea -
Thanks for sending the trace - everything looks fine as far as the
access request is concerned. And the Session Database also appears to
be working as far as it can because we see the DELETE happen when the
access request is received and processed. However, there are no radius
accounting requests shown in the trace so that is undoubtedly your
problem - if the access point does not send radius accounting requests
then the session database will never show anything because it is the
accounting start that causes a record to be inserted in the RADONLINE
table (and the accounting stop causes the record to be removed).
So the first thing to find out is whether you can turn on radius
accounting in the access point.
regards
Hugh
On Sunday, Aug 10, 2003, at 12:25 Australia/Melbourne, Andrea
Brancatelli wrote:
> Hello Everybody.
>
> After a period of test (a couple of month ago I made some other stupid
> questions <grin>) the client I'm working for has bought Radiator and
> now I'm in the phase of putting the radius server in production, thus
> activating everything we need in Radiator.
>
> In the test version, whose configuration I basically moved to the
> complete one, I just made some quick and dirty setups to allow an XP
> supplicant to log in a network with a (sucky) D-Link 900AP+ reading
> users, password, and client lists from the database. Everything went
> smooth. Under the new machine, with the complete radiator I had been
> able to quickly restore everything smoothly, but now I'm facing some
> problems.
>
> I'm developing a PHP interface to Radius (or, better, to all it's
> [mysql] tables) - maybe that if it comes out good enough I'll publish
> it - so basically I wanted to activate almost everything that was
> DB-related.... AuthBy SQL, SessionDatabase SQL, AuthLog SQL, StatsLog
> SQL and such.
>
> Making a long story short (since I'm attaching the CFG file I think
> there's no need to explain anything more) the Session's Table it's
> always empty, as the AuthLog's table. I created the DB in standard way
> so we can assume everything is going fine on that side.
>
> Furthermore I can't understand why everytime a supplicant logs in the
> log file gets filled with at least... 5 or 6 consequent requests. Is
> it a DLink stupidness? We are moving to Sparklan's Access Point so if
> it's an AP-related problem I won't care at all.
>
> Closing an important question not strictly Radiator related....
> Actually we are testing all this stuff only with XP and XP SP1
> machines but we will need to give access to Win98 and Linux machines.
> Do Wireless card work smoothly with such OSses? How do they handle
> authentication? I mean, XP has got internal's PEAP stuff... how do
> Win98 works? All I have seen on the internet were people using no WEP
> nor Authentication when a Win98 client was involved just to use a VPN
> client later on, but this sucks badly. Do anybody here have any
> experience about this?
>
> Going back to my SQL problem, here's the "clean" version of my CFG
> (that basically is just a eap_multi.cfg expanded):
>
> PS:
>
> You'll note that the <SessionDatabase SQL> is copied in every section.
> Do I need to do this? I suppose not, but since it wasn't working i
> tried that also.
>
> PPS:
>
> The special logfiles, live ClientList's logfile or AcctLogFileName and
> PasswordLogFileName ain't working either.
>
> PPPS:
>
> 30KB of log for just 1 access? Yep, I'm full trace but I think that
> there's something wrong there with my Config!
>
> PPPPS:
>
> don't worry if there's any password around it's just a testing machine
> in a private net as of now.
>
> LogDir /var/log/radiator
> DbDir /etc/radiator
> Trace 4
>
> AuthPort 1645,1812
> AcctPort 1646,1813
>
> LogFile %L/%Y-%m-%d-radiator.log
>
> User radiator
> Group radiator
>
> RewriteUsername s/(.*)\\(.*)/$2/
>
> <ClientListSQL>
> DBSource dbi:mysql:radiator
> DBUsername radiator
> DBAuth xxxxxxxx
> <Log FILE>
> Filename %L/%N-%Y-%m.log
> </Log>
> </ClientListSQL>
>
> <AuthBy SQL>
> Identifier SQLBase
> NoDefault
> DBSource dbi:mysql:radiator
> DBUsername radiator
> DBAuth xxxxxxxx
> </AuthBy>
>
> <SessionDatabase SQL>
> DBSource dbi:mysql:radiator
> DBUsername radiator
> DBAuth xxxxxxxx
> </SessionDatabase>
>
> <AuthLog SQL>
> DBSource dbi:mysql:radiator
> DBUsername radiator
> DBAuth xxxxxxxx
> </AuthLog>
>
> <Handler TunnelledByPEAP=1>
> RewriteUsername s/(.*)\\(.*)/$2/
>
> <AuthBy SQL>
> Identifier SQLBase
> NoDefault
> DBSource dbi:mysql:radiator
> DBUsername radiator
> DBAuth xxxxxxxx
>
> EAPType MSCHAP-V2,TTLS,TLS,MD5-Challenge
> EAPTLS_CAFile %D/certificates/demoCA/cacert.pem
> EAPTLS_CertificateFile %D/certificates/cert-srv.pem
> EAPTLS_CertificateType PEM
> EAPTLS_PrivateKeyFile %D/certificates/cert-srv.pem
> EAPTLS_PrivateKeyPassword whatever
> EAPTLS_MaxFragmentSize 500
> </AuthBy>
> AcctLogFileName %L/detail-PEAP
> PasswordLogFileName %L/password-PEAP.log
> RejectHasReason
> MaxSessions 1
>
> <SessionDatabase SQL>
> DBSource dbi:mysql:radiator
> DBUsername radiator
> DBAuth xxxxxxxx
> </SessionDatabase>
>
> <AuthLog SQL>
> DBSource dbi:mysql:radiator
> DBUsername radiator
> DBAuth xxxxxxxx
> </AuthLog>
>
> </Handler>
>
> <Handler TunnelledByTTLS=1>
> <AuthBy SQL>
> Identifier SQLBase
> NoDefault
> DBSource dbi:mysql:radiator
> DBUsername radiator
> DBAuth xxxxxxxx
>
> EAPType MSCHAP-V2,MD5,TLS
> EAPTLS_CAFile %D/certificates/demoCA/cacert.pem
> EAPTLS_CertificateFile %D/certificates/cert-srv.pem
> EAPTLS_CertificateType PEM
> EAPTLS_PrivateKeyFile %D/certificates/cert-srv.pem
> EAPTLS_PrivateKeyPassword whatever
> </AuthBy>
> AcctLogFileName %L/detail-TTLS
> PasswordLogFileName %L/password-TTLS.log
> RejectHasReason
> MaxSessions 1
>
> <SessionDatabase SQL>
> DBSource dbi:mysql:radiator
> DBUsername radiator
> DBAuth xxxxxxxx
> </SessionDatabase>
>
> <AuthLog SQL>
> DBSource dbi:mysql:radiator
> DBUsername radiator
> DBAuth xxxxxxxx
> </AuthLog>
>
> </Handler>
>
>
> <Handler>
> <AuthBy SQL>
> Identifier SQLBase
> NoDefault
> DBSource dbi:mysql:radiator
> DBUsername radiator
> DBAuth xxxxxxxx
>
> EAPType PEAP,TTLS,TLS,MD5
> EAPTLS_CAFile %D/certificates/demoCA/cacert.pem
> EAPTLS_CertificateFile %D/certificates/cert-srv.pem
> EAPTLS_CertificateType PEM
> EAPTLS_PrivateKeyFile %D/certificates/cert-srv.pem
> EAPTLS_PrivateKeyPassword whatever
> EAPTLS_MaxFragmentSize 1024
> AutoMPPEKeys
> SSLeayTrace 4
> </AuthBy>
> AcctLogFileName %L/detail-base
> PasswordLogFileName %L/password-base.log
> RejectHasReason
> MaxSessions 1
>
> <SessionDatabase SQL>
> DBSource dbi:mysql:radiator
> DBUsername radiator
> DBAuth xxxxxxxx
> </SessionDatabase>
>
> <AuthLog SQL>
> DBSource dbi:mysql:radiator
> DBUsername radiator
> DBAuth xxxxxxxx
> </AuthLog>
>
> </Handler> Fri Aug 8 05:58:55 2003: DEBUG: Packet dump:
> *** Received from 195.238.63.21 port 64450 ....
> Code: Access-Request
> Identifier: 133
> Authentic:
> a<127><200><237><187><189>N<230><252>Q.<182><242>'<177><188>
> Attributes:
> User-Name = "skeyby"
> NAS-IP-Address = 172.31.0.230
> NAS-Port = 0
> Called-Station-Id = "00-80-C8-AC-64-92"
> Calling-Station-Id = "00-80-C8-B1-4D-B9"
> NAS-Identifier = "DWL-900AP+"
> Framed-MTU = 1380
> NAS-Port-Type = Wireless-IEEE-802-11
> EAP-Message = <2><27><0><11><1>skeyby
> Message-Authenticator =
> Q<246><238><19><250><205><184><214>|<221>.<195><187><133><19><194>
>
> Fri Aug 8 05:58:55 2003: DEBUG: Rewrote user name to skeyby
> Fri Aug 8 05:58:55 2003: DEBUG: Handling request with Handler ''
> Fri Aug 8 05:58:55 2003: DEBUG: Deleting session for skeyby,
> 172.31.0.230, 0
> Fri Aug 8 05:58:55 2003: DEBUG: do query is: 'delete from RADONLINE
> where NASIDENTIFIER='172.31.0.230' and NASPORT=00':
>
> Fri Aug 8 05:58:55 2003: DEBUG: Query is: 'select NASIDENTIFIER,
> NASPORT, ACCTSESSIONID, FRAMEDIPADDRESS from RADONLINE where
> USERNAME='skeyby'':
>
> Fri Aug 8 05:58:55 2003: DEBUG: Handling with Radius::AuthSQL
> Fri Aug 8 05:58:55 2003: DEBUG: Handling with Radius::AuthSQL: SQLBase
> Fri Aug 8 05:58:55 2003: DEBUG: Handling with EAP: code 2, 27, 11
> Fri Aug 8 05:58:55 2003: DEBUG: Response type 1
> Fri Aug 8 05:58:55 2003: DEBUG: Access challenged for
> skeyby at MangoNet: EAP PEAP Challenge
> Fri Aug 8 05:58:55 2003: DEBUG: Packet dump:
> *** Sending to 195.238.63.21 port 64450 ....
> Code: Access-Challenge
> Identifier: 133
> Authentic:
> a<127><200><237><187><189>N<230><252>Q.<182><242>'<177><188>
> Attributes:
> EAP-Message = <1><28><0><6><25>!
> Message-Authenticator =
> <0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
>
> Fri Aug 8 05:58:56 2003: DEBUG: Packet dump:
> *** Received from 195.238.63.21 port 64450 ....
> Code: Access-Request
> Identifier: 134
> Authentic: &fFi<26>k<194>l!<207>cA5<27><142>~
> Attributes:
> User-Name = "skeyby"
> NAS-IP-Address = 172.31.0.230
> NAS-Port = 0
> Called-Station-Id = "00-80-C8-AC-64-92"
> Calling-Station-Id = "00-80-C8-B1-4D-B9"
> NAS-Identifier = "DWL-900AP+"
> Framed-MTU = 1380
> NAS-Port-Type = Wireless-IEEE-802-11
> EAP-Message =
> <2><28><0>p<25><128><0><0><0>f<22><3><1><0>a<1><0><0>]<3><1>?3
> <22><151><<144><203><207><143>!<1><18><218>B<224><234><28><232><189>QX<
> 232><193><208>n<141><168><2><222>-<239>
> <155><243>a*<135>5<176><128><154>+<248><169>m<1>f<246><238><204><243><1
> 94>f<29>iYy<141><12>.<133>!<134>?<0><22><0><4><0><5><0><10><0><9><0>d<0
> >b<0><3><0><6><0><19><0><18><0>c<1><0>
> Message-Authenticator =
> <13><141>G<252>Rep<1>Z<148><9><179><0><28><1><218>
>
> Fri Aug 8 05:58:56 2003: DEBUG: Rewrote user name to skeyby
> Fri Aug 8 05:58:56 2003: DEBUG: Handling request with Handler ''
> Fri Aug 8 05:58:56 2003: DEBUG: Deleting session for skeyby,
> 172.31.0.230, 0
> Fri Aug 8 05:58:56 2003: DEBUG: do query is: 'delete from RADONLINE
> where NASIDENTIFIER='172.31.0.230' and NASPORT=00':
>
> Fri Aug 8 05:58:56 2003: DEBUG: Query is: 'select NASIDENTIFIER,
> NASPORT, ACCTSESSIONID, FRAMEDIPADDRESS from RADONLINE where
> USERNAME='skeyby'':
>
> Fri Aug 8 05:58:56 2003: DEBUG: Handling with Radius::AuthSQL
> Fri Aug 8 05:58:56 2003: DEBUG: Handling with Radius::AuthSQL: SQLBase
> Fri Aug 8 05:58:56 2003: DEBUG: Handling with EAP: code 2, 28, 112
> Fri Aug 8 05:58:56 2003: DEBUG: Response type 25
> Fri Aug 8 05:58:56 2003: DEBUG: EAP TLS SSL_accept result: -1, 2, 8576
> Fri Aug 8 05:58:56 2003: DEBUG: Access challenged for
> skeyby at MangoNet: EAP PEAP Challenge
> Fri Aug 8 05:58:56 2003: DEBUG: Packet dump:
> *** Sending to 195.238.63.21 port 64450 ....
> Code: Access-Challenge
> Identifier: 134
> Authentic: &fFi<26>k<194>l!<207>cA5<27><142>~
> Attributes:
> EAP-Message =
> <1><29><4><10><25><192><0><0><8>P<22><3><1><0>J<2><0><0>F<3><1>?3
> <0><25><186><225><210><147>n<27><25><194><181>8<191><205><197><163>1-
> H<222><11><8>e<177><208>C+l<27>
> r<156><5><133><144>h<4><175>*Ww<168><221>1<187><174><131><225>w<209><16
> 6>y4y<17>:<240><160>y<23><13><177><0><4><0><22><3><1><7><27><11><0><7><
> 23><0><7><20><0><2><209>0<130><2><205>0<130><2>6<160><3><2><1><2><2><1>
> <2>0<13><6><9>*<134>H<134><247><13><1><1><4><5><0>0<129><202>1<11>0<9><
> 6><3>U<4><6><19><2>AU1<17>0<15><6><3>U<4><8><19><8>Victoria1<18>0<16><6
> ><3>U<4><7><19><9>Melbourne1<30>0<28><6><3>U<4><10><19><21>OSC Demo
> Certificates1!0<31><6><3>U<4><11><19><24>Test Certificate Sec
> EAP-Message = tion1/0-<6><3>U<4><3><19>&OSC Test CA (do not use in
> production)1
> 0<30><6><9>*<134>H<134><247><13><1><9><1><22><17>mikem at open.com.au0<30>
> <23><13>030227061500Z<23><13>040227061500Z0u1<11>0<9><6><3>U<4><6><19><
> 2>AU1<17>0<15><6><3>U<4><8><19><8>Victoria1<18>0<16><6><3>U<4><7><19><9
> >Melbourne1<24>0<22><6><3>U<4><10><19><15>My Test
> Company1%0#<6><3>U<4><3><19><28>test.server.some.company.com0<129><159>
> 0<13><6><9>*<134>H<134><247><13><1><1>
> EAP-Message =
> <1><5><0><3><129><141><0>0<129><137><2><129><129><0><196><186>)<217><24
> 5><205><159>@<144><133><177><255>0<165><3><215>cGR<136><231><253>9<193>
> <13><255>m@<220>y^<160><244><236>Sa'<198>^<231><158>4<156>"<242>IS<151>
> <30><211>$<142><196>!}R<146><166><129>yh<17><162><207><196><0><171>5s<1
> 87><229><139>2<250><146><1><187><207><226><203>5<251><178><1><212><178>
> <141><219>O<253><134><213>N|<172>:J<23><173><161><191><141><25>&<198>Fi
> <17><181><137>Fy<0><177><210><215><186>x<141><197><212>s<145><235>\<164
> ><8>!<2><3><1><0><1><163><23>0<21>0<19><6><3>U<29>%<4><12>0<10><6><8>+<
> 6><1><5><5><7><3><1>0<13><6><9>*<134>H<134><247><13><1><1><4><5><0><3><
> 129><129><0><20>m<159><141><185><184><252><248><201>FM<195>PB(^<127>3<2
> 4><136><172><19><211><137><132>EF<170>9<236>^<187><146><253><171><200><
> 183><230><148><142><21>_<9>^<227><10>3<162><186><214><206><197>Tq<219><
> 4>r<239>?<1><16><203>
> EAP-Message =
> T<0><161>wm<173>S<4><0>)<141><209><<197>tT<228><150>P<156><22>^zes^<202
> >u<161><176>F3=<4><200><229><154>q<146><194>cy<23>z*o><219><28><206>t<1
> 96><188><3><195>.%<19>mD<242><149><237>O<138><193><0><4>=0<130><4>90<13
> 0><3><162><160><3><2><1><2><2><1><0>0<13><6><9>*<134>H<134><247><13><1>
> <1><4><5><0>0<129><202>1<11>0<9><6><3>U<4><6><19><2>AU1<17>0<15><6><3>U
> <4><8><19><8>Victoria1<18>0<16><6><3>U<4><7><19><9>Melbourne1<30>0<28><
> 6><3>U<4><10><19><21>OSC Demo
> Certificates1!0<31><6><3>U<4><11><19><24>Test Certificate
> Section1/0-<6><3>U<4><3><19>&OSC Test CA (do not
> EAP-Message = use in production)1 0<30>
> Message-Authenticator =
> <0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
>
> Fri Aug 8 05:58:57 2003: DEBUG: Packet dump:
> *** Received from 195.238.63.21 port 64450 ....
> Code: Access-Request
> Identifier: 135
> Authentic: <17>$<148><24><198><150>\<150><144><148>y<158>-{<152><149>
> Attributes:
> User-Name = "skeyby"
> NAS-IP-Address = 172.31.0.230
> NAS-Port = 0
> Called-Station-Id = "00-80-C8-AC-64-92"
> Calling-Station-Id = "00-80-C8-B1-4D-B9"
> NAS-Identifier = "DWL-900AP+"
> Framed-MTU = 1380
> NAS-Port-Type = Wireless-IEEE-802-11
> EAP-Message = <2><29><0><6><25><0>
> Message-Authenticator =
> <184>Q<162>e<240>><133><179><157><185><230><134><254>0<228><210>
>
> Fri Aug 8 05:58:57 2003: DEBUG: Rewrote user name to skeyby
> Fri Aug 8 05:58:57 2003: DEBUG: Handling request with Handler ''
> Fri Aug 8 05:58:57 2003: DEBUG: Deleting session for skeyby,
> 172.31.0.230, 0
> Fri Aug 8 05:58:57 2003: DEBUG: do query is: 'delete from RADONLINE
> where NASIDENTIFIER='172.31.0.230' and NASPORT=00':
>
> Fri Aug 8 05:58:57 2003: DEBUG: Query is: 'select NASIDENTIFIER,
> NASPORT, ACCTSESSIONID, FRAMEDIPADDRESS from RADONLINE where
> USERNAME='skeyby'':
>
> Fri Aug 8 05:58:57 2003: DEBUG: Handling with Radius::AuthSQL
> Fri Aug 8 05:58:57 2003: DEBUG: Handling with Radius::AuthSQL: SQLBase
> Fri Aug 8 05:58:57 2003: DEBUG: Handling with EAP: code 2, 29, 6
> Fri Aug 8 05:58:57 2003: DEBUG: Response type 25
> Fri Aug 8 05:58:57 2003: DEBUG: Access challenged for
> skeyby at MangoNet: EAP PEAP Challenge
> Fri Aug 8 05:58:57 2003: DEBUG: Packet dump:
> *** Sending to 195.238.63.21 port 64450 ....
> Code: Access-Challenge
> Identifier: 135
> Authentic: <17>$<148><24><198><150>\<150><144><148>y<158>-{<152><149>
> Attributes:
> EAP-Message =
> <1><30><4><6><25>@<6><9>*<134>H<134><247><13><1><9><1><22><17>mikem at ope
> n.com.au0<30><23><13>030227061411Z<23><13>050226061411Z0<129><202>1<11>
> 0<9><6><3>U<4><6><19><2>AU1<17>0<15><6><3>U<4><8><19><8>Victoria1<18>0<
> 16><6><3>U<4><7><19><9>Melbourne1<30>0<28><6><3>U<4><10><19><21>OSC
> Demo Certificates1!0<31><6><3>U<4><11><19><24>Test Certificate
> Section1/0-<6><3>U<4><3><19>&OSC Test CA (do not use in production)1
> 0<30><6><9>*<134>H<134><247><13><1><9>
> EAP-Message =
> <1><22><17>mikem at open.com.au0<129><159>0<13><6><9>*<134>H<134><247><13>
> <1><1><1><5><0><3><129><141><0>0<129><137><2><129><129><0><193>@h<28><1
> 85>'<7><254><247>{9<233><245>3S<209>=<173>>c<144>Z<239>?b<150><224><171
> ><219><170><170>i<226><251><234>\Jwi<210><141><249><141><148><224>|<188
> >V<24><209><8><223>f?<149><172><6><226><18><232>1<249><227>$<176>G<164>
> 'Y<193><160>$n<160>e<153>V<166>x<2><162><<244><4><225>T>n<18><<204><210
> ><135><162>T<16><221><6>Pn<9>7<141><197><160><197><245><155>6<3><172><1
> 54>p<230><210>Z<159><149><192>C<255><154><220><149><3>*<156>q<2><3><1><
> 0><1><163><130><1>+0<130><1>'0<29><6><3>U<29><14><4><22><4><20><180><27
> ><24>R'<27><169>)<152><148>o<139>c<198><6>9\<249>s<196>0<129><247><6><3
> >U<29>#<4><129><239>0<129><236><128><20><180><27><24>R'<27><169>)<152><
> 148>o<139>c<198><6>9
> EAP-Message =
> \<249>s<196><161><129><208><164><129><205>0<129><202>1<11>0<9><6><3>U<4
> ><6><19><2>AU1<17>0<15><6><3>U<4><8><19><8>Victoria1<18>0<16><6><3>U<4>
> <7><19><9>Melbourne1<30>0<28><6><3>U<4><10><19><21>OSC Demo
> Certificates1!0<31><6><3>U<4><11><19><24>Test Certificate
> Section1/0-<6><3>U<4><3><19>&OSC Test CA (do not use in production)1
> 0<30><6><9>*<134>H<134><247><13><1><9><1><22><17>mikem at open.com.au<130>
> <1><0>0<12><6><3>U<29><19><4><5>0<3><1><1><255>0<13><6><9>*<134>H<134><
> 247><13><1><1><4><5><0><3><129><129><0>A<130>
> EAP-Message =
> 4<253><23>-
> <13><9><9><222>3<19><171>aj<23><187><195>gs<145><194>w<164>1m#<242>t<23
> 3><144><146>&g<162><190><234><145>H<159><10>^6IQ<223><219><193>@><204>b
> <245><12><6><133><147><132><192>fU<165><197><180>k<136>:<8><198><152><1
> 65>*%<221><237><188><23><251><255><172>'n<142>H<25>q<173>t<215><212><22
> 1><239><20>FZyd<205><240>Wbd<143><139>q]h<236><127><16><143>tA<163>4I<2
> 36><230><147><218>><175>B^<130><0>*9<22><3><1><0><220><13><0><0><212><2
> ><1><2><0><207><0><205>0<129><202>1<11>0<9><6><3>U<4><6><19><2>AU1<17>0
> <15><6><3>U<4><8><19><8>Victoria1<18>0<16><6><3>U<4><7><19><9>Melbourne
> 1<30>0<28><6><3>U<4><10><19><21>OSC Demo
> Certificates1!0<31><6><3>U<4><11><19><24>Test Certific
> EAP-Message = ate Section1/0-<6><3>U
> Message-Authenticator =
> <0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
>
> Fri Aug 8 05:58:58 2003: DEBUG: Packet dump:
> *** Received from 195.238.63.21 port 64450 ....
> Code: Access-Request
> Identifier: 136
> Authentic:
> <234><198><172>A<167><220><20>jI^<9><160><140><158><245><224>
> Attributes:
> User-Name = "skeyby"
> NAS-IP-Address = 172.31.0.230
> NAS-Port = 0
> Called-Station-Id = "00-80-C8-AC-64-92"
> Calling-Station-Id = "00-80-C8-B1-4D-B9"
> NAS-Identifier = "DWL-900AP+"
> Framed-MTU = 1380
> NAS-Port-Type = Wireless-IEEE-802-11
> EAP-Message = <2><30><0><6><25><0>
> Message-Authenticator =
> <155><240><209><192><190><22><208>4<232><1>e2F-ev
>
> Fri Aug 8 05:58:58 2003: DEBUG: Rewrote user name to skeyby
> Fri Aug 8 05:58:58 2003: DEBUG: Handling request with Handler ''
> Fri Aug 8 05:58:58 2003: DEBUG: Deleting session for skeyby,
> 172.31.0.230, 0
> Fri Aug 8 05:58:58 2003: DEBUG: do query is: 'delete from RADONLINE
> where NASIDENTIFIER='172.31.0.230' and NASPORT=00':
>
> Fri Aug 8 05:58:58 2003: DEBUG: Query is: 'select NASIDENTIFIER,
> NASPORT, ACCTSESSIONID, FRAMEDIPADDRESS from RADONLINE where
> USERNAME='skeyby'':
>
> Fri Aug 8 05:58:58 2003: DEBUG: Handling with Radius::AuthSQL
> Fri Aug 8 05:58:58 2003: DEBUG: Handling with Radius::AuthSQL: SQLBase
> Fri Aug 8 05:58:58 2003: DEBUG: Handling with EAP: code 2, 30, 6
> Fri Aug 8 05:58:58 2003: DEBUG: Response type 25
> Fri Aug 8 05:58:58 2003: DEBUG: Access challenged for
> skeyby at MangoNet: EAP PEAP Challenge
> Fri Aug 8 05:58:58 2003: DEBUG: Packet dump:
> *** Sending to 195.238.63.21 port 64450 ....
> Code: Access-Challenge
> Identifier: 136
> Authentic:
> <234><198><172>A<167><220><20>jI^<9><160><140><158><245><224>
> Attributes:
> EAP-Message = <1><31><0>V<25><0><4><3><19>&OSC Test CA (do not use in
> production)1
> 0<30><6><9>*<134>H<134><247><13><1><9><1><22><17>mikem at open.com.au<14><
> 0><0><0>
> Message-Authenticator =
> <0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
>
> Fri Aug 8 05:59:00 2003: DEBUG: Packet dump:
> *** Received from 195.238.63.21 port 64450 ....
> Code: Access-Request
> Identifier: 137
> Authentic: [><211><174><170><158><5>-K%<229>,_<236>-<216>
> Attributes:
> User-Name = "skeyby"
> NAS-IP-Address = 172.31.0.230
> NAS-Port = 0
> Called-Station-Id = "00-80-C8-AC-64-92"
> Calling-Station-Id = "00-80-C8-B1-4D-B9"
> NAS-Identifier = "DWL-900AP+"
> Framed-MTU = 1380
> NAS-Port-Type = Wireless-IEEE-802-11
> EAP-Message =
> <2><31><0><199><25><128><0><0><0><189><22><3><1><0><141><11><0><0><3><0
> ><0><0><16><0><0><130><0><128>L|<253>P<164><139>c_<191>><189><3><11><17
> 2>1<166><209><238><192>w<182><179><150><157>tA1<188>P~e<164><174>B<230>
> f<253><6>=-
> <244>~<174><172><6>q<145>'A?<186><242><11><197><196>_<242><14><17><188>
> 6u<191>e&<144><247><255><148><164>P<171>2<130><182><152><227><151><253>
> <209><237><127><216>BS<204>p4%<193><29><159><20>Z<202>+<12>f<176>)O<164
> ><190><253>+<228><170>2r<14><2><230>[<8><170><13><154><188>P<159><17><1
> 59>7E<162>OX"<20><3><1><0><1><1><22><3><1><0>
> <28><147>EN<154>\<132><222><13><246><152><241>Y<216><220>^a<160><216>EM
> <163><242>I<231><161><3>rq<10><X
> Message-Authenticator =
> Dg<140><191><253>YS?'<210>m<246><172><148><189>!
>
> Fri Aug 8 05:59:00 2003: DEBUG: Rewrote user name to skeyby
> Fri Aug 8 05:59:00 2003: DEBUG: Handling request with Handler ''
> Fri Aug 8 05:59:00 2003: DEBUG: Deleting session for skeyby,
> 172.31.0.230, 0
> Fri Aug 8 05:59:00 2003: DEBUG: do query is: 'delete from RADONLINE
> where NASIDENTIFIER='172.31.0.230' and NASPORT=00':
>
> Fri Aug 8 05:59:00 2003: DEBUG: Query is: 'select NASIDENTIFIER,
> NASPORT, ACCTSESSIONID, FRAMEDIPADDRESS from RADONLINE where
> USERNAME='skeyby'':
>
> Fri Aug 8 05:59:00 2003: DEBUG: Handling with Radius::AuthSQL
> Fri Aug 8 05:59:00 2003: DEBUG: Handling with Radius::AuthSQL: SQLBase
> Fri Aug 8 05:59:00 2003: DEBUG: Handling with EAP: code 2, 31, 199
> Fri Aug 8 05:59:00 2003: DEBUG: Response type 25
> Fri Aug 8 05:59:00 2003: DEBUG: EAP TLS SSL_accept result: 1, 0, 3
> Fri Aug 8 05:59:00 2003: DEBUG: Access challenged for
> skeyby at MangoNet: EAP PEAP Challenge
> Fri Aug 8 05:59:00 2003: DEBUG: Packet dump:
> *** Sending to 195.238.63.21 port 64450 ....
> Code: Access-Challenge
> Identifier: 137
> Authentic: [><211><174><170><158><5>-K%<229>,_<236>-<216>
> Attributes:
> EAP-Message = <1>
> <0>5<25><128><0><0><0>+<20><3><1><0><1><1><22><3><1><0>
> <187><198>DQ<250><172><17>Zr<130>$<178>d<128><217><212>H<191>KLr<175>9<
> 26>Gu<20><238><244><233><166><4>
> Message-Authenticator =
> <0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
>
> Fri Aug 8 05:59:01 2003: DEBUG: Packet dump:
> *** Received from 195.238.63.21 port 64450 ....
> Code: Access-Request
> Identifier: 138
> Authentic: <231>)p<224><190><5><238><30>z<209><174><153><185>K<154>@
> Attributes:
> User-Name = "skeyby"
> NAS-IP-Address = 172.31.0.230
> NAS-Port = 0
> Called-Station-Id = "00-80-C8-AC-64-92"
> Calling-Station-Id = "00-80-C8-B1-4D-B9"
> NAS-Identifier = "DWL-900AP+"
> Framed-MTU = 1380
> NAS-Port-Type = Wireless-IEEE-802-11
> EAP-Message = <2> <0><6><25><0>
> Message-Authenticator =
> j<245>jC<190><16><148><180><233>r-<130>r0<5><200>
>
> Fri Aug 8 05:59:01 2003: DEBUG: Rewrote user name to skeyby
> Fri Aug 8 05:59:01 2003: DEBUG: Handling request with Handler ''
> Fri Aug 8 05:59:01 2003: DEBUG: Deleting session for skeyby,
> 172.31.0.230, 0
> Fri Aug 8 05:59:01 2003: DEBUG: do query is: 'delete from RADONLINE
> where NASIDENTIFIER='172.31.0.230' and NASPORT=00':
>
> Fri Aug 8 05:59:01 2003: DEBUG: Query is: 'select NASIDENTIFIER,
> NASPORT, ACCTSESSIONID, FRAMEDIPADDRESS from RADONLINE where
> USERNAME='skeyby'':
>
> Fri Aug 8 05:59:01 2003: DEBUG: Handling with Radius::AuthSQL
> Fri Aug 8 05:59:01 2003: DEBUG: Handling with Radius::AuthSQL: SQLBase
> Fri Aug 8 05:59:01 2003: DEBUG: Handling with EAP: code 2, 32, 6
> Fri Aug 8 05:59:01 2003: DEBUG: Response type 25
> Fri Aug 8 05:59:01 2003: DEBUG: Access challenged for
> skeyby at MangoNet: EAP PEAP Challenge
> Fri Aug 8 05:59:01 2003: DEBUG: Packet dump:
> *** Sending to 195.238.63.21 port 64450 ....
> Code: Access-Challenge
> Identifier: 138
> Authentic: <231>)p<224><190><5><238><30>z<209><174><153><185>K<154>@
> Attributes:
> EAP-Message =
> <1>!<0><28><25><0><23><3><1><0><17><152><231>%<222>gB7<191><11>d<198>b<
> 250><236><181><222><129>
> Message-Authenticator =
> <0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
>
> Fri Aug 8 05:59:02 2003: DEBUG: Packet dump:
> *** Received from 195.238.63.21 port 64450 ....
> Code: Access-Request
> Identifier: 139
> Authentic:
> <134><129><199><181>Pu<251>,P)<221><127><128><212><150><218>
> Attributes:
> User-Name = "skeyby"
> NAS-IP-Address = 172.31.0.230
> NAS-Port = 0
> Called-Station-Id = "00-80-C8-AC-64-92"
> Calling-Station-Id = "00-80-C8-B1-4D-B9"
> NAS-Identifier = "DWL-900AP+"
> Framed-MTU = 1380
> NAS-Port-Type = Wireless-IEEE-802-11
> EAP-Message =
> <2>!<0>"<25><0><23><3><1><0><23><17>h;\W+2<194><160><186><145><30><250>
> ]_<196>[<207><158><130><30><151>3
> Message-Authenticator = <16>?<170>#R5<172>%<239><198>Z<135><185>zbs
>
> Fri Aug 8 05:59:02 2003: DEBUG: Rewrote user name to skeyby
> Fri Aug 8 05:59:02 2003: DEBUG: Handling request with Handler ''
> Fri Aug 8 05:59:02 2003: DEBUG: Deleting session for skeyby,
> 172.31.0.230, 0
> Fri Aug 8 05:59:02 2003: DEBUG: do query is: 'delete from RADONLINE
> where NASIDENTIFIER='172.31.0.230' and NASPORT=00':
>
> Fri Aug 8 05:59:02 2003: DEBUG: Query is: 'select NASIDENTIFIER,
> NASPORT, ACCTSESSIONID, FRAMEDIPADDRESS from RADONLINE where
> USERNAME='skeyby'':
>
> Fri Aug 8 05:59:02 2003: DEBUG: Handling with Radius::AuthSQL
> Fri Aug 8 05:59:02 2003: DEBUG: Handling with Radius::AuthSQL: SQLBase
> Fri Aug 8 05:59:02 2003: DEBUG: Handling with EAP: code 2, 33, 34
> Fri Aug 8 05:59:02 2003: DEBUG: Response type 25
> Fri Aug 8 05:59:02 2003: DEBUG: EAP PEAP inner authentication request
> for anonymous
> Fri Aug 8 05:59:02 2003: DEBUG: PEAP Tunnelled request Packet dump:
> Code: Access-Request
> Identifier: UNDEF
> Authentic: <134><211>z<26>#<221><140>^<146>+o<190>x$<161>N
> Attributes:
> EAP-Message = <2>!<0><7><1>skeyby
> Message-Authenticator =
> <0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
> User-Name = "anonymous"
> NAS-IP-Address = 172.31.0.230
> NAS-Identifier = "DWL-900AP+"
> NAS-Port = 0
> Calling-Station-Id = "00-80-C8-B1-4D-B9"
>
> Fri Aug 8 05:59:02 2003: DEBUG: Handling request with Handler
> 'TunnelledByPEAP=1'
> Fri Aug 8 05:59:02 2003: DEBUG: Rewrote user name to anonymous
> Fri Aug 8 05:59:02 2003: DEBUG: Deleting session for , 172.31.0.230,
> 0
> Fri Aug 8 05:59:02 2003: DEBUG: do query is: 'delete from RADONLINE
> where NASIDENTIFIER='172.31.0.230' and NASPORT=00':
>
> Fri Aug 8 05:59:02 2003: DEBUG: Query is: 'select NASIDENTIFIER,
> NASPORT, ACCTSESSIONID, FRAMEDIPADDRESS from RADONLINE where
> USERNAME=''':
>
> Fri Aug 8 05:59:02 2003: DEBUG: Handling with Radius::AuthSQL
> Fri Aug 8 05:59:02 2003: DEBUG: Handling with Radius::AuthSQL: SQLBase
> Fri Aug 8 05:59:02 2003: DEBUG: Handling with EAP: code 2, 33, 7
> Fri Aug 8 05:59:02 2003: DEBUG: Response type 1
> Fri Aug 8 05:59:02 2003: DEBUG: Access challenged for anonymous: EAP
> MSCHAP-V2 Challenge
> Fri Aug 8 05:59:02 2003: DEBUG: Access challenged for
> skeyby at MangoNet: EAP PEAP inner authentication redespatched to a
> Handler
> Fri Aug 8 05:59:02 2003: DEBUG: Packet dump:
> *** Sending to 195.238.63.21 port 64450 ....
> Code: Access-Challenge
> Identifier: 139
> Authentic:
> <134><129><199><181>Pu<251>,P)<221><127><128><212><150><218>
> Attributes:
> EAP-Message =
> <1>"<0>D<25><0><23><3><1><0>9<135><215><236><198><185><206>W<132>W<220>
> <184>_<234><222>;<127>[X<129>q<139><132><179><203>ha<151><191><9><190><
> 237><205><243>:<233><130>J<186><28><210><248><174>Q>5<202>.<16><24><151
> >x<201><224><24><241><168><223>
> Message-Authenticator =
> <0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
>
> Fri Aug 8 05:59:04 2003: DEBUG: Packet dump:
> *** Received from 195.238.63.21 port 64450 ....
> Code: Access-Request
> Identifier: 140
> Authentic: U<149><181><192><225>?N<158>7<221><28><191><168>-<170>Z
> Attributes:
> User-Name = "skeyby"
> NAS-IP-Address = 172.31.0.230
> NAS-Port = 0
> Called-Station-Id = "00-80-C8-AC-64-92"
> Calling-Station-Id = "00-80-C8-B1-4D-B9"
> NAS-Identifier = "DWL-900AP+"
> Framed-MTU = 1380
> NAS-Port-Type = Wireless-IEEE-802-11
> EAP-Message =
> <2>"<0>X<25><0><23><3><1><0>M!<211><208>L<214><195>b<136>^_n<237><198><
> 231><142>/
> :<253><172><219><0><203>f\<189><12>?<26><146>V<195><235><172><164>Iv/%
> @<232><164><153>E<197>*({<250><213><6><182>#<208><166>w<142><21><7><212
> >V<158>D(<22>a<0>E<232><180><160><159><253><6><196><184>v
> Message-Authenticator =
> \<28>S{<7><31>0<13>[<251><182><142><209><164>O<222>
>
> Fri Aug 8 05:59:04 2003: DEBUG: Rewrote user name to skeyby
> Fri Aug 8 05:59:04 2003: DEBUG: Handling request with Handler ''
> Fri Aug 8 05:59:04 2003: DEBUG: Deleting session for skeyby,
> 172.31.0.230, 0
> Fri Aug 8 05:59:04 2003: DEBUG: do query is: 'delete from RADONLINE
> where NASIDENTIFIER='172.31.0.230' and NASPORT=00':
>
> Fri Aug 8 05:59:04 2003: DEBUG: Query is: 'select NASIDENTIFIER,
> NASPORT, ACCTSESSIONID, FRAMEDIPADDRESS from RADONLINE where
> USERNAME='skeyby'':
>
> Fri Aug 8 05:59:04 2003: DEBUG: Handling with Radius::AuthSQL
> Fri Aug 8 05:59:04 2003: DEBUG: Handling with Radius::AuthSQL: SQLBase
> Fri Aug 8 05:59:04 2003: DEBUG: Handling with EAP: code 2, 34, 88
> Fri Aug 8 05:59:04 2003: DEBUG: Response type 25
> Fri Aug 8 05:59:04 2003: DEBUG: EAP PEAP inner authentication request
> for anonymous
> Fri Aug 8 05:59:04 2003: DEBUG: PEAP Tunnelled request Packet dump:
> Code: Access-Request
> Identifier: UNDEF
> Authentic: <128>#XLJ at G<15><167><200><149><13>8<220><180>q
> Attributes:
> EAP-Message =
> <2>"<0>=<26><2>"<0><1<170><140><10><24>C<241>un,"=+X<2>l<142><0><0><0><
> 0><0><0><0><0><162><224>*<189><129><208><199>~<252><238><212><150><153>
> %e<27>T<222>I<250>V<217>u<27><0>skeyby
> Message-Authenticator =
> <0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
> User-Name = "anonymous"
> NAS-IP-Address = 172.31.0.230
> NAS-Identifier = "DWL-900AP+"
> NAS-Port = 0
> Calling-Station-Id = "00-80-C8-B1-4D-B9"
>
> Fri Aug 8 05:59:04 2003: DEBUG: Handling request with Handler
> 'TunnelledByPEAP=1'
> Fri Aug 8 05:59:04 2003: DEBUG: Rewrote user name to anonymous
> Fri Aug 8 05:59:04 2003: DEBUG: Deleting session for , 172.31.0.230,
> 0
> Fri Aug 8 05:59:04 2003: DEBUG: do query is: 'delete from RADONLINE
> where NASIDENTIFIER='172.31.0.230' and NASPORT=00':
>
> Fri Aug 8 05:59:04 2003: DEBUG: Query is: 'select NASIDENTIFIER,
> NASPORT, ACCTSESSIONID, FRAMEDIPADDRESS from RADONLINE where
> USERNAME=''':
>
> Fri Aug 8 05:59:04 2003: DEBUG: Handling with Radius::AuthSQL
> Fri Aug 8 05:59:04 2003: DEBUG: Handling with Radius::AuthSQL: SQLBase
> Fri Aug 8 05:59:04 2003: DEBUG: Handling with EAP: code 2, 34, 61
> Fri Aug 8 05:59:04 2003: DEBUG: Response type 26
> Fri Aug 8 05:59:04 2003: DEBUG: Query is: 'select PASSWORD from
> SUBSCRIBERS where USERNAME='skeyby'':
>
> Fri Aug 8 05:59:04 2003: DEBUG: Radius::AuthSQL looks for match with
> skeyby
> Fri Aug 8 05:59:04 2003: DEBUG: Radius::AuthSQL ACCEPT:
> Fri Aug 8 05:59:04 2003: DEBUG: Access challenged for anonymous: EAP
> MSCHAP V2 Challenge: Success
> Fri Aug 8 05:59:04 2003: DEBUG: Access challenged for
> skeyby at MangoNet: EAP PEAP inner authentication redespatched to a
> Handler
> Fri Aug 8 05:59:04 2003: DEBUG: Packet dump:
> *** Sending to 195.238.63.21 port 64450 ....
> Code: Access-Challenge
> Identifier: 140
> Authentic: U<149><181><192><225>?N<158>7<221><28><191><168>-<170>Z
> Attributes:
> EAP-Message =
> <1>#<0>T<25><0><23><3><1><0>IE<12><231><231>["&<227>E<14><151><150>NV<2
> 6><0><31>pG<179>x<149>r<213><249>n<221><127><140><152><200><220><228>}<
> 22><216>)S<28><218><215><18><5>lv1u<151><200>w6<26>$Zm<236>qn]M5<239>{s
> <207><168>~W<255><144><242>)<27>
> Message-Authenticator =
> <0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
>
> Fri Aug 8 05:59:06 2003: DEBUG: Packet dump:
> *** Received from 195.238.63.21 port 64450 ....
> Code: Access-Request
> Identifier: 141
> Authentic: <214>9+<187>O#<227><237>tVeRc<151><199>[
> Attributes:
> User-Name = "skeyby"
> NAS-IP-Address = 172.31.0.230
> NAS-Port = 0
> Called-Station-Id = "00-80-C8-AC-64-92"
> Calling-Station-Id = "00-80-C8-B1-4D-B9"
> NAS-Identifier = "DWL-900AP+"
> Framed-MTU = 1380
> NAS-Port-Type = Wireless-IEEE-802-11
> EAP-Message =
> <2>#<0><29><25><0><23><3><1><0><18>79sZ<14><171><188><223><156>uB\<161>
> <221><19><216>Y<27>
> Message-Authenticator =
> <253><153>$<10><220><222>7(<226>[<185><198><127>k<208><130>
>
> Fri Aug 8 05:59:06 2003: DEBUG: Rewrote user name to skeyby
> Fri Aug 8 05:59:06 2003: DEBUG: Handling request with Handler ''
> Fri Aug 8 05:59:06 2003: DEBUG: Deleting session for skeyby,
> 172.31.0.230, 0
> Fri Aug 8 05:59:06 2003: DEBUG: do query is: 'delete from RADONLINE
> where NASIDENTIFIER='172.31.0.230' and NASPORT=00':
>
> Fri Aug 8 05:59:06 2003: DEBUG: Query is: 'select NASIDENTIFIER,
> NASPORT, ACCTSESSIONID, FRAMEDIPADDRESS from RADONLINE where
> USERNAME='skeyby'':
>
> Fri Aug 8 05:59:06 2003: DEBUG: Handling with Radius::AuthSQL
> Fri Aug 8 05:59:06 2003: DEBUG: Handling with Radius::AuthSQL: SQLBase
> Fri Aug 8 05:59:06 2003: DEBUG: Handling with EAP: code 2, 35, 29
> Fri Aug 8 05:59:06 2003: DEBUG: Response type 25
> Fri Aug 8 05:59:06 2003: DEBUG: EAP PEAP inner authentication request
> for anonymous
> Fri Aug 8 05:59:06 2003: DEBUG: PEAP Tunnelled request Packet dump:
> Code: Access-Request
> Identifier: UNDEF
> Authentic: <186>h<206><129><21><30><207>A<8>H<23><164>l<230>\<240>
> Attributes:
> EAP-Message = <2>#<0><2><26><3>
> Message-Authenticator =
> <0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
> User-Name = "anonymous"
> NAS-IP-Address = 172.31.0.230
> NAS-Identifier = "DWL-900AP+"
> NAS-Port = 0
> Calling-Station-Id = "00-80-C8-B1-4D-B9"
>
> Fri Aug 8 05:59:06 2003: DEBUG: Handling request with Handler
> 'TunnelledByPEAP=1'
> Fri Aug 8 05:59:06 2003: DEBUG: Rewrote user name to anonymous
> Fri Aug 8 05:59:06 2003: DEBUG: Deleting session for , 172.31.0.230,
> 0
> Fri Aug 8 05:59:06 2003: DEBUG: do query is: 'delete from RADONLINE
> where NASIDENTIFIER='172.31.0.230' and NASPORT=00':
>
> Fri Aug 8 05:59:06 2003: DEBUG: Query is: 'select NASIDENTIFIER,
> NASPORT, ACCTSESSIONID, FRAMEDIPADDRESS from RADONLINE where
> USERNAME=''':
>
> Fri Aug 8 05:59:06 2003: DEBUG: Handling with Radius::AuthSQL
> Fri Aug 8 05:59:06 2003: DEBUG: Handling with Radius::AuthSQL: SQLBase
> Fri Aug 8 05:59:06 2003: DEBUG: Handling with EAP: code 2, 35, 2
> Fri Aug 8 05:59:06 2003: DEBUG: Response type 26
> Fri Aug 8 05:59:06 2003: DEBUG: Access accepted for anonymous
> Fri Aug 8 05:59:06 2003: DEBUG: Access challenged for
> skeyby at MangoNet: EAP PEAP inner authentication redespatched to a
> Handler
> Fri Aug 8 05:59:06 2003: DEBUG: Packet dump:
> *** Sending to 195.238.63.21 port 64450 ....
> Code: Access-Challenge
> Identifier: 141
> Authentic: <214>9+<187>O#<227><237>tVeRc<151><199>[
> Attributes:
> EAP-Message =
> <1>$<0>&<25><0><23><3><1><0><27><8><144><158><199><23>7M<139>l<1><190>#
> Ng<161><131><228>oH<194>3<26><150>CLO;
> Message-Authenticator =
> <0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
>
> Fri Aug 8 05:59:07 2003: DEBUG: Packet dump:
> *** Received from 195.238.63.21 port 64450 ....
> Code: Access-Request
> Identifier: 142
> Authentic: <139>?{C<136><194>A<230><230>?<215><229>o<251>)<218>
> Attributes:
> User-Name = "skeyby"
> NAS-IP-Address = 172.31.0.230
> NAS-Port = 0
> Called-Station-Id = "00-80-C8-AC-64-92"
> Calling-Station-Id = "00-80-C8-B1-4D-B9"
> NAS-Identifier = "DWL-900AP+"
> Framed-MTU = 1380
> NAS-Port-Type = Wireless-IEEE-802-11
> EAP-Message =
> <2>$<0>&<25><0><23><3><1><0><27><23><2><183>\<147><137><179><181>(<146>
> <135><5>P<24><187><151><167>7<224><127>B9<254><195><235><174><149>
> Message-Authenticator =
> ^<183>,<136><155><141>Gq<7><160><172>G<8><199><188>r
>
> Fri Aug 8 05:59:07 2003: DEBUG: Rewrote user name to skeyby
> Fri Aug 8 05:59:07 2003: DEBUG: Handling request with Handler ''
> Fri Aug 8 05:59:07 2003: DEBUG: Deleting session for skeyby,
> 172.31.0.230, 0
> Fri Aug 8 05:59:07 2003: DEBUG: do query is: 'delete from RADONLINE
> where NASIDENTIFIER='172.31.0.230' and NASPORT=00':
>
> Fri Aug 8 05:59:07 2003: DEBUG: Query is: 'select NASIDENTIFIER,
> NASPORT, ACCTSESSIONID, FRAMEDIPADDRESS from RADONLINE where
> USERNAME='skeyby'':
>
> Fri Aug 8 05:59:07 2003: DEBUG: Handling with Radius::AuthSQL
> Fri Aug 8 05:59:07 2003: DEBUG: Handling with Radius::AuthSQL: SQLBase
> Fri Aug 8 05:59:07 2003: DEBUG: Handling with EAP: code 2, 36, 38
> Fri Aug 8 05:59:07 2003: DEBUG: Response type 25
> Fri Aug 8 05:59:07 2003: DEBUG: Access accepted for skeyby at MangoNet
> Fri Aug 8 05:59:07 2003: DEBUG: Packet dump:
> *** Sending to 195.238.63.21 port 64450 ....
> Code: Access-Accept
> Identifier: 142
> Authentic: <139>?{C<136><194>A<230><230>?<215><229>o<251>)<218>
> Attributes:
> MS-MPPE-Send-Key =
> "<251>7Y<228>'(<164>^?]<204>+<238><162><221>Am<250><170><251><181><22>E
> <199><214><208><236>/<23><172><23><179>3Z<135><18>42F/
> <244><155><149>A<195><29><156><153>A<213>"
> MS-MPPE-Recv-Key =
> "<179>hc<150><182>6<178><214><225><128><211>k<6><175><250>c<20><16>u%<2
> 18><194><246><208><169>{<5>{+<216>W<211><221><216><248><151><189><153><
> 157>[sy<212>(q<185><167><141><163>;"
> EAP-Message = <3>$<0><4>
> Message-Authenticator =
> <0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
>
NB: have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list