(RADIATOR) Linux PPP concentrator problems

Hugh Irvine hugh at open.com.au
Fri Jul 11 00:20:20 CDT 2003 

Hello Craig -

Thanks for your mail.

As you can see from the trace below, there is no NAS-Port-Type 
attribute present in the request.

Here is the dictionary definition from Radiator 3.6:

ATTRIBUTE       NAS-Port-Type                   61      integer

I think you will need to check the configuration of the client software.

BTW - you may also find it useful to check an ethereal (or any packet 
sniffer) packet dump to see what is contained in the requests.

regards

Hugh


On Friday, Jul 11, 2003, at 08:57 Australia/Melbourne, Craig Gittens 
wrote:

> Hey guys, I hope someone can help. I am using a linux PPP concentrator 
> with
> a radius plugin client to send a request to my radiator server. The
> NAS-Port-Type is set to come in as Virtual but I am not seeing it on 
> the
> radiator server. I am wondering what is happening. A debug is pasted 
> below.
> If I send it to a Vircom server it works fine, I get the attributes 
> coming
> through. Could this be a dictionary thing?
>
> Thanks in Advance,
>
> Craig
>
>
> Code:       Access-Request
> Identifier: 161
> Authentic:  s<129><208>U<174><230><132>~z[<195>X@<213><13>0
> Attributes:
> 	Service-Type = Framed-User
> 	Framed-Protocol = PPP
> 	User-Name = "testvpn"
> 	User-Password = "#<151><194><246>k)Z<163>{<193>?<208><144><29><175>d"
> 	NAS-Identifier = "linuxvpn"
> 	NAS-Port = 0
>
> Thu Jul 10 18:22:04 2003: DEBUG: Handling request with Handler
> 'Realm=sunbeach.net'
> Thu Jul 10 18:22:04 2003: DEBUG: Rewrote user name to testvpn
> Thu Jul 10 18:22:04 2003: DEBUG: Rewrote user name to testvpn
> Thu Jul 10 18:22:04 2003: DEBUG:  Deleting session for testvpn,
> 205.214.195.103, 0
> Thu Jul 10 18:22:04 2003: DEBUG: do query is: 'delete from RADONLINE 
> where
> NASIDENTIFIER = '205.214.195.103' and NASPORT = 0':
>
> Thu Jul 10 18:22:04 2003: DEBUG: Handling with Radius::AuthSQL
> Thu Jul 10 18:22:04 2003: DEBUG: Handling with Radius::AuthSQL:
> Thu Jul 10 18:22:04 2003: DEBUG: Query is: 'select LoginPassword, 
> CheckAttr,
> ReplyAttr from Authenticate('testvpn', '', '07/10/2003 18:22:04', '')':
>
> Thu Jul 10 18:22:04 2003: DEBUG: Radius::AuthSQL looks for match with
> testvpn
> Thu Jul 10 18:22:04 2003: DEBUG: Radius::AuthSQL REJECT: Check item
> NAS-Port-Type expression 'Virtual' does not match '' in request
> Thu Jul 10 18:22:04 2003: INFO: Access rejected for testvpn: Check item
> NAS-Port-Type expression 'Virtual' does not match '' in request
> Thu Jul 10 18:22:04 2003: DEBUG: do query is: 'insert into RadLog 
> (Priority,
> Message, User_Name, FailedPass) values (1, 'Check item NAS-Port-Type
> expression ''Virtual'' does not match '''' in request', 'testvpn', 
> 'test')':
>
> Thu Jul 10 18:22:04 2003: DEBUG: Packet dump:
> *** Sending to 205.214.195.103 port 32779 ....
> Code:       Access-Reject
> Identifier: 161
> Authentic:  s<129><208>U<174><230><132>~z[<195>X@<213><13>0
> Attributes:
> 	Reply-Message = "Check item NAS-Port-Type expression 'Virtual' does 
> not
> match '' in request"
>
>
> ===
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
>
>

NB: have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.

More information about the radiator mailing list