(RADIATOR) Weird Ascend filter behaviour

Craig Gittens cgittens at sunbeach.net
Mon Oct 20 16:43:41 CDT 2003


Here is the debug Hugh. It still doesn't work with the simplified filter
below. DNS does work now that I am not specifying a port but let all UDP
through, surfing to the site on that IP does not work and everything is
denied. So I guess the real issue is that the "dstip" lines are wrong?

Craig.




Mon Oct 20 17:16:44 2003: DEBUG: Packet dump:
*** Received from 196.3.210.94 port 2048 ....
Code:       Access-Request
Identifier: 240
Authentic:  1<141> 5<28><24>"6<16><158><181>H<31><215><252>A
Attributes:
	User-Password = "%Zn<234>O1u<235><151><29>F<30>(<180><209><188>"
	NAS-Identifier = "5"
	User-Name = "sunbeach777"
	Acct-Session-Id = "000210A7"
	Called-Station-Id = "2929700"
	Calling-Station-Id = "2462280430"
	NAS-Port = 1167
	NAS-Port-Type = Async
	Framed-Protocol = PPP
	Service-Type = Framed-User

Mon Oct 20 17:16:44 2003: DEBUG: Handling request with Handler
'Realm=sunbeach.net'
Mon Oct 20 17:16:44 2003: DEBUG: Rewrote user name to sunbeach777
Mon Oct 20 17:16:44 2003: DEBUG: Rewrote user name to sunbeach777
Mon Oct 20 17:16:44 2003: DEBUG:  Deleting session for sunbeach777,
196.3.210.94, 1167
Mon Oct 20 17:16:44 2003: DEBUG: do query is: 'delete from RADONLINE where
NASIDENTIFIER = '196.3.210.94' and NASPORT = 1167':

Mon Oct 20 17:16:44 2003: DEBUG: Handling with Radius::AuthSQL
Mon Oct 20 17:16:45 2003: DEBUG: Handling with Radius::AuthSQL:
Mon Oct 20 17:16:45 2003: DEBUG: Query is: 'blh blah blah':

Mon Oct 20 17:16:45 2003: DEBUG: Radius::AuthSQL looks for match with
sunbeach777
Mon Oct 20 17:16:45 2003: DEBUG: Radius::AuthSQL ACCEPT:
Mon Oct 20 17:16:45 2003: DEBUG: Access accepted for sunbeach777
Mon Oct 20 17:16:45 2003: DEBUG: Packet dump:
*** Sending to 196.3.210.94 port 2048 ....
Code:       Access-Accept
Identifier: 240
Authentic:  1<141> 5<28><24>"6<16><158><181>H<31><215><252>A
Attributes:
	Ascend-Data-Filter = ip in forward udp
	Ascend-Data-Filter = ip in forward dstip 205.214.199.52 tcp dstport = 80
	Ascend-Data-Filter = ip in forward dstip 205.214.199.52 tcp dstport = 443
	Ascend-Data-Filter = ip in drop
	Service-Type = Framed-User


===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.


More information about the radiator mailing list