(RADIATOR) Xsupplicant Radiator EAP_TLS problems
Mike McCauley
mikem at open.com.au
Sun Jan 11 04:16:49 CST 2004
Hello Alex,
Im not sure what is going on here.
Looks like Radiator is send back its certificate fine, but then the client
does not send its certificate.
I suspect that there is a problem innthe clinet: either it does not like the
servers certificate, or else it cant access or decode it own certificate.
Suggest you have a close look at the XSupplicant log.
We have tested Radiator against XSupplicant and TLS successfully here.
Cheers.
On Sat, 10 Jan 2004 01:21 am, Lopez, A. wrote:
> Dear all,
> I am trying to make EAP-TLS work between Xsupplicant and Radiator. But I
> am having some problems.
> I generated the certidficates using Openssl and authentication works
> perfectly when authenticating against Radiator from a windows
> supplicant. The problem only appears when using Xsupplicant (under
> GNU/Debian).
> In my notebook I installed:
> Xsupplicant 0.8b
> Openssl 0.9.7b
> Libpcap 0.7.2
> Lindnet 1.7
> Below there is the 1.conf I used for Xsupplicant and the output
> generated by Radiator during the authentication process.
> I would appreciate any idea.
> Thanks in advance
> Alex
>
> /etc/1x/1x.conf
> --------------------------
> default : id = a.lopez at amuse_tls.nl
> default : cert = /etc/1x/certs/certs_amuse/a.lopez at amuse_tls.nl.der
> default : key = /etc/1x/certs/certs_amuse/a.lopez at amuse_tls.nl.pem
> default : root = /etc/1x/certs/certs_amuse/root.pem
> default :auth = EAP
> default : pref = tls
> default : random_file = /dev/random
> default : after_auth = "/bin/echo I authenticated"
>
> =================================
>
> RADIATOR OUTPUT:
> ------------------------
> Fri Jan 9 14:12:25 2004: DEBUG: Reading users file
> /etc/radiator/users_tls
> Fri Jan 9 14:12:25 2004: DEBUG: Reading users file /etc/radiator/users
> Fri Jan 9 14:12:25 2004: DEBUG: Reading users file /etc/radiator/users
> Fri Jan 9 14:12:25 2004: DEBUG: Finished reading configuration file
> '/etc/radiator/radius.cfg'
> This Radiator license will expire on 2004-02-01
> This Radiator license will stop operating after 1000 requests
> To purchase an unlimited full source version of Radiator, see
> http://www.open.com.au/ordering.html
> To extend your evaluation period, contact admin at open.com.au
>
> Fri Jan 9 14:12:25 2004: DEBUG: Reading dictionary file
> '/etc/radiator/dictionary'
> Fri Jan 9 14:12:26 2004: DEBUG: Creating authentication port
> 0.0.0.0:1812
> Fri Jan 9 14:12:26 2004: DEBUG: Creating accounting port 0.0.0.0:1813
> Fri Jan 9 14:12:26 2004: NOTICE: Server started: Radiator 3.7.1 on
> phoenix (EVALUATION)
> Fri Jan 9 14:13:54 2004: DEBUG: Packet dump:
> *** Received from 131.155.193.92 port 1035 ....
> Code: Access-Request
> Identifier: 5
> Authentic:
> <233>,<246><157>.<209><178><150><24>8<255><25><185><151><30><161>
> Attributes:
> User-Name = "a.lopez at amuse_tls.nl"
> NAS-IP-Address = 131.155.193.92
> Called-Station-Id = "004096310d73"
> Calling-Station-Id = "00022d0292be"
> NAS-Identifier = "ap340-2"
> NAS-Port = 29
> Framed-MTU = 1400
> NAS-Port-Type = Wireless-IEEE-802-11
> EAP-Message = <2><0><0><25><1>a.lopez at amuse_tls.nl
> Message-Authenticator =
> <200><181><130><228>DP<195><234><152><140>T<229><24><24><201>`
>
> Fri Jan 9 14:13:54 2004: DEBUG: Handling request with Handler
> 'Realm=amuse_tls.nl'
> Fri Jan 9 14:13:54 2004: DEBUG: Deleting session for
> a.lopez at amuse_tls.nl, 131.155.193.92, 29
> Fri Jan 9 14:13:54 2004: DEBUG: Handling with Radius::AuthFILE:
> Fri Jan 9 14:13:54 2004: DEBUG: Handling with EAP: code 2, 0, 25
> Fri Jan 9 14:13:54 2004: DEBUG: Response type 1
> Fri Jan 9 14:13:55 2004: DEBUG: EAP result: 3, EAP TLS Challenge
> Fri Jan 9 14:13:55 2004: DEBUG: Access challenged for
> a.lopez at amuse_tls.nl: EAP TLS Challenge
> Fri Jan 9 14:13:55 2004: DEBUG: Packet dump:
> *** Sending to 131.155.193.92 port 1035 ....
> Code: Access-Challenge
> Identifier: 5
> Authentic:
> <233>,<246><157>.<209><178><150><24>8<255><25><185><151><30><161>
> Attributes:
> EAP-Message = <1><1><0><6><13>
> Message-Authenticator =
> <0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
>
> Fri Jan 9 14:13:55 2004: DEBUG: Packet dump:
> *** Received from 131.155.193.92 port 1036 ....
> Code: Access-Request
> Identifier: 6
> Authentic:
> <247><214><254><245><146>p<189><133><221><24><183><178><177>:<11><192>
> Attributes:
> User-Name = "a.lopez at amuse_tls.nl"
> NAS-IP-Address = 131.155.193.92
> Called-Station-Id = "004096310d73"
> Calling-Station-Id = "00022d0292be"
> NAS-Identifier = "ap340-2"
> NAS-Port = 29
> Framed-MTU = 1400
> NAS-Port-Type = Wireless-IEEE-802-11
> EAP-Message =
> <2><1><0>n<13><128><0><0><0>d<22><3><1><0>_<1><0><0>[<3><1>?<254><169><2
> 37>k<233><229>|<206>I<248><166>
> U<25><208><130>M<237><229><188><218><152><210><187>Y<9><219><172><139><2
> 28><141><22><0><0>4<0>9<0>8<0>5<0><22><0><19><0><10><
> 0>3<0>2<0>/<0>f<0><5><0><4><0>c<0>b<0>a<0><21><0><18><0><9><0>e<0>d<0>`<
> 0><20><0><17><0><8><0><6><0><3><1><0>
>
> Message-Authenticator =
> <15><180><202><136><208>;<153>Q<224><29>}Z<243>K<7><21>
>
> Fri Jan 9 14:13:55 2004: DEBUG: Handling request with Handler
> 'Realm=amuse_tls.nl'
> Fri Jan 9 14:13:55 2004: DEBUG: Deleting session for
> a.lopez at amuse_tls.nl, 131.155.193.92, 29
> Fri Jan 9 14:13:55 2004: DEBUG: Handling with Radius::AuthFILE:
> Fri Jan 9 14:13:55 2004: DEBUG: Handling with EAP: code 2, 1, 110
> Fri Jan 9 14:13:55 2004: DEBUG: Response type 13
> Fri Jan 9 14:13:55 2004: DEBUG: EAP result: 3, EAP TLS Challenge
> Fri Jan 9 14:13:55 2004: DEBUG: Access challenged for
> a.lopez at amuse_tls.nl: EAP TLS Challenge
> Fri Jan 9 14:13:55 2004: DEBUG: Packet dump:
> *** Sending to 131.155.193.92 port 1036 ....
> Code: Access-Challenge
> Identifier: 6
> Authentic:
> <247><214><254><245><146>p<189><133><221><24><183><178><177>:<11><192>
> Attributes:
> EAP-Message =
> <1><2><4><10><13><192><0><0><8><2><22><3><1><0>J<2><0><0>F<3><1>?<254><1
> 69><19><213><19>s<234><181><128
>
> ><253>3~<204><146><134>{y<237>Za<171>y.<252>Z<135>j<138><212>I<199>
>
> <159><17>)5<217><156><183><213>Z<136><193><137><175>DTMHa
> <129><166><242>!y<146><229>VQ<189>+<183><153><30><0>5<0><22><3><1><6><23
> 3><11><0><6><229><0><6><226><0><2><243>0<130><2><239>
> 0<130><2>X<160><3><2><1><2><2><1><1>0<13><6><9>*<134>H<134><247><13><1><
> 1><4><5><0>0<129><174>1<11>0<9><6><3>U<4><6><19><2>NL
> 1<20>0<18><6><3>U<4><8><19><11>Netherlands1<18>0<16><6><3>U<4><7><19><9>
> Eindhoven1*0(<6><3>U<4><10><19>!Technische Universite it
> Eindhoven1<16>0<14><6><3>U<4><11><19><7>TTE-E
>
> EAP-Message =
> CO1<24>0<22><6><3>U<4><3><20><15>silmarillion_ca1<29>0<27><6><9>*<134>H<
> 134><247><13><1><9><1><22><14>a
> .lopez at tue.nl0<30><23><13>031219130601Z<23><13>041218130601Z0<129><178>1
> <11>0<9><6><3>U<4><6><19><2>NL1<20>0<18><6><3>U<4><8>
> <19><11>Netherlands1<18>0<16><6><3>U<4><7><19><9>Eindhoven1*0(<6><3>U<4>
> <10><19>!Technische Universiteit Eindhoven1<16>0<14><
> 6><3>U<4><11><19><7>TTE-ECO1<28>0<26><6><3>U<4><3><20><19>server_silmari
> llion1<29>0<27><6><9>*<134>H<134><247><13>
>
> EAP-Message =
> <1><9><1><22><14>a.lopez at tue.nl0<129><159>0<13><6><9>*<134>H<134><247><1
> 3><1><1><1><5><0><3><129><141><
> 0>0<129><137><2><129><129><0><193><217>kQ<132>a<147>7#=&O<172><238><149>
> <188><28><172><133>E*<187><143><172>KP!<194>T<253><23
> 0>Y<222>r<11><20><22>(<214>o<<166><171><173><186>'<185>YW<19><255><14>zS
> <231>'B<156>U<239><27>TW<159>;<160><134><255>\<164><1
> 52>s<155><144><250><28>n<11>}-<129><8><197><191><214><172>{<241><142><12
>
> ><163><159>tFg<197>,tQ<20>x<144>_<211>^<31><216><200>
>
> }<200>><129>E<210><135><29><232><1><192>&<146><140><247>K%7<236><167><2>
> <3><1><0><1><163><23>0<21>0<19><6><3>U<29>%<4><12>0<1
> 0><6><8>+<6><1><5><5><7><3><1>0<13><6><9>*<134>H<134><247><13><1><1><4><
> 5><0><3><129><129><0><161>y<206><242><182><178><154><
> 15><16><181>E<181><142>.<189><249><223><161>;<174><211><148>._<7>M<240><
> 222>
>
> EAP-Message =
> <193>X<144><148><172><133><236><226><141><14><132>Z><147><164><21>?j:4\E
> <6><235>C<141><245><203>p<31><1
> 64><174>4<156>7<135><19><226>(]<128>#<29><199>C<245><154>8<141>_<133><31
>
> ><182><144>m<19>D<199>l<255><159><170>8*<240><249>"<2
>
> 53><11><25><148><248><175>K!<247><144><253><241>Wc<186>K\<236><30><242><
> 185><238>E<128>K+t<154>@<254>.o<238><0><3><233>0<130>
> <3><229>0<130><3>N<160><3><2><1><2><2><1><0>0<13><6><9>*<134>H<134><247>
> <13><1><1><4><5><0>0<129><174>1<11>0<9><6><3>U<4><6><
> 19><2>NL1<20>0<18><6><3>U<4><8><19><11>Netherlands1<18>0<16><6><3>U<4><7
>
> ><19><9>Eindhoven1*0(<6><3>U<4><10><19>!Technische Un iversiteit
>
> Eindhoven1<16>0<14><6><3>U<4><11><19><7>TTE-EC
>
> EAP-Message = O1<24>0<22><6><3>U<4><3><20><15>silmarilli
> Message-Authenticator =
> <0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
>
> Fri Jan 9 14:13:55 2004: DEBUG: Packet dump:
> *** Received from 131.155.193.92 port 1037 ....
> Code: Access-Request
> Identifier: 7
> Authentic: <9><24>`J<194><160>r<201><144><137><175>K<151>#<166><171>
> Attributes:
> User-Name = "a.lopez at amuse_tls.nl"
> NAS-IP-Address = 131.155.193.92
> Called-Station-Id = "004096310d73"
> Calling-Station-Id = "00022d0292be"
> NAS-Identifier = "ap340-2"
> NAS-Port = 29
> Framed-MTU = 1400
> NAS-Port-Type = Wireless-IEEE-802-11
> EAP-Message = <2><2><0><6><13><0>
> Message-Authenticator =
> <161><189><171><156><137><205><200><159><215>:Y<142>U<23><140>z
>
> Fri Jan 9 14:13:55 2004: DEBUG: Handling request with Handler
> 'Realm=amuse_tls.nl'
> Fri Jan 9 14:13:55 2004: DEBUG: Deleting session for
> a.lopez at amuse_tls.nl, 131.155.193.92, 29
> Fri Jan 9 14:13:55 2004: DEBUG: Handling with Radius::AuthFILE:
> Fri Jan 9 14:13:55 2004: DEBUG: Handling with EAP: code 2, 2, 6
> Fri Jan 9 14:13:55 2004: DEBUG: Response type 13
> Fri Jan 9 14:13:55 2004: DEBUG: EAP result: 3, EAP TLS Challenge
> Fri Jan 9 14:13:55 2004: DEBUG: Access challenged for
> a.lopez at amuse_tls.nl: EAP TLS Challenge
> Fri Jan 9 14:13:55 2004: DEBUG: Packet dump:
> *** Sending to 131.155.193.92 port 1037 ....
> Code: Access-Challenge
> Identifier: 7
> Authentic: <9><24>`J<194><160>r<201><144><137><175>K<151>#<166><171>
> Attributes:
> EAP-Message =
> <1><3><4><6><13>@on_ca1<29>0<27><6><9>*<134>H<134><247><13><1><9><1><22>
> <14>a.lopez at tue.nl0<30><23><13>
> 031219130528Z<23><13>040118130528Z0<129><174>1<11>0<9><6><3>U<4><6><19><
> 2>NL1<20>0<18><6><3>U<4><8><19><11>Netherlands1<18>0<
> 16><6><3>U<4><7><19><9>Eindhoven1*0(<6><3>U<4><10><19>!Technische
> Universiteit Eindhoven1<16>0<14><6><3>U<4><11><19><7>TTE-EC
> O1<24>0<22><6><3>U<4><3><20><15>silmarillion_ca1<29>0<27><6><9>*<134>H<1
> 34><247><13><1><9><1><22><14>a.lopez at tue.nl0<129>
>
> EAP-Message =
> <159>0<13><6><9>*<134>H<134><247><13><1><1><1><5><0><3><129><141><0>0<12
> 9><137><2><129><129><0><196>*<1
> 35><211><234><210><150>7]<165><209><242><129><29>v<163><12>p<215>h<139><
> 172><234>o<179><227><205><159>^><207><165><182><1>7<1
> 53>cw<247><236><248>|<194><163>"<220>>K&<167><1><137>UD<8><21>@<157><0>L
> <255><174><215><205>Aa%K<1>n<193>1<249>{(<152><199>`<
> 205><133>Y|XI}<1><225>F<167><19><219>q<9>T<140><176><10><14>"@<17><132><
> 184><14>+1<231>P<23><241>M<239><151><8><178><154><228
>
> ><181><170><150><228>d<235><145>HL<186><181><2><3><1><0><1><163><130><1>
>
> <15>0<130><1><11>0<29><6><3>U<29><14><4><22><4><20>\-
> <136><218><218><244>N<178><10><165><225>t<170><150>2L<178>T<20>u0<129><2
> 19><6><3>U<29>#<4><129><211>0<129><208><128><20>\-<13
> 6><218><218><244>N<178><10><165><225>t<170><150>2L<178>T<20>u<161><129><
> 180><164><129><177>0<129><174>1<11>0<9><6><3>U<4><6>
>
> EAP-Message =
> <19><2>NL1<20>0<18><6><3>U<4><8><19><11>Netherlands1<18>0<16><6><3>U<4><
> 7><19><9>Eindhoven1*0(<6><3>U<4 ><10><19>!Technische Universiteit
> Eindhoven1<16>0<14><6><3>U<4><11><19><7>TTE-ECO1<24>0<22><6><3>U<4><3><2
> 0><15>silmarillion_
> ca1<29>0<27><6><9>*<134>H<134><247><13><1><9><1><22><14>a.lopez at tue.nl<1
> 30><1><0>0<12><6><3>U<29><19><4><5>0<3><1><1><255>0<1
> 3><6><9>*<134>H<134><247><13><1><1><4><5><0><3><129><129><0>ib<160><147>
> <199><198><180><186><165>8<215><161><160><203>h<228><
> 255><204><166><247><143><231>,fy+<25><193><229>z<176>F<168><196><7><131>
> n<138><138>RJTD<25>S<156><172><241>?<182><191><158>
>
> EAP-Message =
> <191><5><11>tl{<237>wtcMLy)H<144>k<192>5q~<178><225><212><17>7<153><152>
> <154><29><148><3><137>7<158>Z<1
> 75>"<232><192><213><233><190><20><1><204><215><20><160><255><209><213><2
> 5>~<242>7N<133><180>8r<215>F<226><13><131><165><192>|
> <210><137><147><247><151><181><248><22><3><1><0><192><13><0><0><184><2><
> 1><2><0><179><0><177>0<129><174>1<11>0<9><6><3>U<4><6
>
> ><19><2>NL1<20>0<18><6><3>U<4><8><19><11>Netherlands1<18>0<16><6><3>U<4>
>
> <7><19><9>Eindhoven1*0(<6><3>U<4><10><19>!Technische Universiteit
> Eindhoven1<16>0<14><6><3>U<4><11><19><7>TTE-ECO1<24>0<22><6><3>U<4><3><2
> 0><15>silmarillion_ca1<29>0<27><6><9>*<1 34>H<134><247><13><1><9><1>
>
> EAP-Message = <22><14>a.lopez at tue.nl<14><0>
> Message-Authenticator =
> <0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
>
> Fri Jan 9 14:13:56 2004: DEBUG: Packet dump:
> *** Received from 131.155.193.92 port 1038 ....
> Code: Access-Request
> Identifier: 8
> Authentic:
> <142><21><200><145><176><24><188>RO<193><246>~<188><15><<172>
> Attributes:
> User-Name = "a.lopez at amuse_tls.nl"
> NAS-IP-Address = 131.155.193.92
> Called-Station-Id = "004096310d73"
> Calling-Station-Id = "00022d0292be"
> NAS-Identifier = "ap340-2"
> NAS-Port = 29
> Framed-MTU = 1400
> NAS-Port-Type = Wireless-IEEE-802-11
> EAP-Message = <2><3><0><6><13><0>
> Message-Authenticator =
> W<223>2<136>><153><160>a<172><173>H<15><226><148><237>I
>
> Fri Jan 9 14:13:56 2004: DEBUG: Handling request with Handler
> 'Realm=amuse_tls.nl'
> Fri Jan 9 14:13:56 2004: DEBUG: Deleting session for
> a.lopez at amuse_tls.nl, 131.155.193.92, 29
> Fri Jan 9 14:13:56 2004: DEBUG: Handling with Radius::AuthFILE:
> Fri Jan 9 14:13:56 2004: DEBUG: Handling with EAP: code 2, 3, 6
> Fri Jan 9 14:13:56 2004: DEBUG: Response type 13
> Fri Jan 9 14:13:56 2004: DEBUG: EAP result: 3, EAP TLS Challenge
> Fri Jan 9 14:13:56 2004: DEBUG: Access challenged for
> a.lopez at amuse_tls.nl: EAP TLS Challenge
> Fri Jan 9 14:13:56 2004: DEBUG: Packet dump:
> *** Sending to 131.155.193.92 port 1038 ....
> Code: Access-Challenge
> Identifier: 8
> Authentic:
> <142><21><200><145><176><24><188>RO<193><246>~<188><15><<172>
> Attributes:
> EAP-Message = <1><4><0><8><13><0><0><0>
> Message-Authenticator =
> <0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
>
> Fri Jan 9 14:13:56 2004: DEBUG: Packet dump:
> *** Received from 131.155.193.92 port 1039 ....
> Code: Access-Request
> Identifier: 9
> Authentic: f<249><168><236><130>%<167>t<252>N<198>K<2><247>Y<11>
> Attributes:
> User-Name = "a.lopez at amuse_tls.nl"
> NAS-IP-Address = 131.155.193.92
> Called-Station-Id = "004096310d73"
> Calling-Station-Id = "00022d0292be"
> NAS-Identifier = "ap340-2"
> NAS-Port = 29
> Framed-MTU = 1400
> NAS-Port-Type = Wireless-IEEE-802-11
> EAP-Message = <2><4><0><6><13><0>
> Message-Authenticator =
> <169><132>%h<239><217><5>!<197><239>pU<154><179>jx
>
> Fri Jan 9 14:13:56 2004: DEBUG: Handling request with Handler
> 'Realm=amuse_tls.nl'
> Fri Jan 9 14:13:56 2004: DEBUG: Deleting session for
> a.lopez at amuse_tls.nl, 131.155.193.92, 29
> Fri Jan 9 14:13:56 2004: DEBUG: Handling with Radius::AuthFILE:
> Fri Jan 9 14:13:56 2004: DEBUG: Handling with EAP: code 2, 4, 6
> Fri Jan 9 14:13:56 2004: DEBUG: Response type 13
> Fri Jan 9 14:13:56 2004: DEBUG: EAP result: 2, EAP TLS Nothing to read
> or write
> Fri Jan 9 14:13:57 2004: DEBUG: Packet dump:
> *** Received from 131.155.193.92 port 1039 ....
> Code: Access-Request
> Identifier: 9
> Authentic: f<249><168><236><130>%<167>t<252>N<198>K<2><247>Y<11>
> Attributes:
> User-Name = "a.lopez at amuse_tls.nl"
> NAS-IP-Address = 131.155.193.92
> Called-Station-Id = "004096310d73"
> Calling-Station-Id = "00022d0292be"
> NAS-Identifier = "ap340-2"
> NAS-Port = 29
> Framed-MTU = 1400
> NAS-Port-Type = Wireless-IEEE-802-11
> EAP-Message = <2><4><0><6><13><0>
> Message-Authenticator =
> <169><132>%h<239><217><5>!<197><239>pU<154><179>jx
>
> Fri Jan 9 14:13:57 2004: INFO: Duplicate request id 9 received from
> 131.155.193.92(1039): ignored
> Fri Jan 9 14:13:58 2004: DEBUG: Packet dump:
> *** Received from 131.155.193.92 port 1039 ....
> Code: Access-Request
> Identifier: 9
> Authentic: f<249><168><236><130>%<167>t<252>N<198>K<2><247>Y<11>
> Attributes:
> User-Name = "a.lopez at amuse_tls.nl"
> NAS-IP-Address = 131.155.193.92
> Called-Station-Id = "004096310d73"
> Calling-Station-Id = "00022d0292be"
> NAS-Identifier = "ap340-2"
> NAS-Port = 29
> Framed-MTU = 1400
> NAS-Port-Type = Wireless-IEEE-802-11
> EAP-Message = <2><4><0><6><13><0>
> Message-Authenticator =
> <169><132>%h<239><217><5>!<197><239>pU<154><179>jx
>
> Fri Jan 9 14:13:58 2004: DEBUG: Handling request with Handler
> 'Realm=amuse_tls.nl'
> Fri Jan 9 14:13:58 2004: DEBUG: Deleting session for
> a.lopez at amuse_tls.nl, 131.155.193.92, 29
> Fri Jan 9 14:13:58 2004: DEBUG: Handling with Radius::AuthFILE:
> Fri Jan 9 14:13:58 2004: DEBUG: Handling with EAP: code 2, 4, 6
> Fri Jan 9 14:13:58 2004: DEBUG: Response type 13
> Fri Jan 9 14:13:58 2004: DEBUG: EAP result: 2, EAP TLS Nothing to read
> or write
> Fri Jan 9 14:13:59 2004: DEBUG: Packet dump:
> *** Received from 131.155.193.92 port 1039 ....
> Code: Access-Request
> Identifier: 9
> Authentic: f<249><168><236><130>%<167>t<252>N<198>K<2><247>Y<11>
> Attributes:
> User-Name = "a.lopez at amuse_tls.nl"
> NAS-IP-Address = 131.155.193.92
> Called-Station-Id = "004096310d73"
> Calling-Station-Id = "00022d0292be"
> NAS-Identifier = "ap340-2"
> NAS-Port = 29
> Framed-MTU = 1400
> NAS-Port-Type = Wireless-IEEE-802-11
> EAP-Message = <2><4><0><6><13><0>
> Message-Authenticator =
> <169><132>%h<239><217><5>!<197><239>pU<154><179>jx
>
> Fri Jan 9 14:13:59 2004: INFO: Duplicate request id 9 received from
> 131.155.193.92(1039): ignored
> Fri Jan 9 14:14:00 2004: DEBUG: Packet dump:
> *** Received from 131.155.193.92 port 1039 ....
> Code: Access-Request
> Identifier: 9
> Authentic: f<249><168><236><130>%<167>t<252>N<198>K<2><247>Y<11>
> Attributes:
> User-Name = "a.lopez at amuse_tls.nl"
> NAS-IP-Address = 131.155.193.92
> Called-Station-Id = "004096310d73"
> Calling-Station-Id = "00022d0292be"
> NAS-Identifier = "ap340-2"
> NAS-Port = 29
> Framed-MTU = 1400
> NAS-Port-Type = Wireless-IEEE-802-11
> EAP-Message = <2><4><0><6><13><0>
> Message-Authenticator =
> <169><132>%h<239><217><5>!<197><239>pU<154><179>jx
>
> Fri Jan 9 14:14:00 2004: DEBUG: Handling request with Handler
> 'Realm=amuse_tls.nl'
> Fri Jan 9 14:14:00 2004: DEBUG: Deleting session for
> a.lopez at amuse_tls.nl, 131.155.193.92, 29
> Fri Jan 9 14:14:00 2004: DEBUG: Handling with Radius::AuthFILE:
> Fri Jan 9 14:14:00 2004: DEBUG: Handling with EAP: code 2, 4, 6
> Fri Jan 9 14:14:00 2004: DEBUG: Response type 13
> Fri Jan 9 14:14:00 2004: DEBUG: EAP result: 2, EAP TLS Nothing to read
> or write
> Fri Jan 9 14:14:01 2004: DEBUG: Packet dump:
> *** Received from 131.155.193.92 port 1039 ....
> Code: Access-Request
> Identifier: 9
> Authentic: f<249><168><236><130>%<167>t<252>N<198>K<2><247>Y<11>
> Attributes:
> User-Name = "a.lopez at amuse_tls.nl"
> NAS-IP-Address = 131.155.193.92
> Called-Station-Id = "004096310d73"
> Calling-Station-Id = "00022d0292be"
> NAS-Identifier = "ap340-2"
> NAS-Port = 29
> Framed-MTU = 1400
> NAS-Port-Type = Wireless-IEEE-802-11
> EAP-Message = <2><4><0><6><13><0>
> Message-Authenticator =
> <169><132>%h<239><217><5>!<197><239>pU<154><179>jx
>
> Fri Jan 9 14:14:01 2004: INFO: Duplicate request id 9 received from
> 131.155.193.92(1039): ignored
> Fri Jan 9 14:14:02 2004: DEBUG: Packet dump:
> *** Received from 131.155.193.92 port 1039 ....
> Code: Access-Request
> Identifier: 9
> Authentic: f<249><168><236><130>%<167>t<252>N<198>K<2><247>Y<11>
> Attributes:
> User-Name = "a.lopez at amuse_tls.nl"
> NAS-IP-Address = 131.155.193.92
> Called-Station-Id = "004096310d73"
> Calling-Station-Id = "00022d0292be"
> NAS-Identifier = "ap340-2"
> NAS-Port = 29
> Framed-MTU = 1400
> NAS-Port-Type = Wireless-IEEE-802-11
> EAP-Message = <2><4><0><6><13><0>
> Message-Authenticator =
> <169><132>%h<239><217><5>!<197><239>pU<154><179>jx
>
> Fri Jan 9 14:14:02 2004: DEBUG: Handling request with Handler
> 'Realm=amuse_tls.nl'
> Fri Jan 9 14:14:02 2004: DEBUG: Deleting session for
> a.lopez at amuse_tls.nl, 131.155.193.92, 29
> Fri Jan 9 14:14:02 2004: DEBUG: Handling with Radius::AuthFILE:
> Fri Jan 9 14:14:02 2004: DEBUG: Handling with EAP: code 2, 4, 6
> Fri Jan 9 14:14:02 2004: DEBUG: Response type 13
> Fri Jan 9 14:14:02 2004: DEBUG: EAP result: 2, EAP TLS Nothing to read
> or write
> Fri Jan 9 14:14:03 2004: DEBUG: Packet dump:
> *** Received from 131.155.193.92 port 1039 ....
> Code: Access-Request
> Identifier: 9
> Authentic: f<249><168><236><130>%<167>t<252>N<198>K<2><247>Y<11>
> Attributes:
> User-Name = "a.lopez at amuse_tls.nl"
> NAS-IP-Address = 131.155.193.92
> Called-Station-Id = "004096310d73"
> Calling-Station-Id = "00022d0292be"
> NAS-Identifier = "ap340-2"
> NAS-Port = 29
> Framed-MTU = 1400
> NAS-Port-Type = Wireless-IEEE-802-11
> EAP-Message = <2><4><0><6><13><0>
> Message-Authenticator =
> <169><132>%h<239><217><5>!<197><239>pU<154><179>jx
>
> Fri Jan 9 14:14:03 2004: INFO: Duplicate request id 9 received from
> 131.155.193.92(1039): ignored
> Fri Jan 9 14:14:04 2004: DEBUG: Packet dump:
> *** Received from 131.155.193.92 port 1039 ....
> Code: Access-Request
> Identifier: 9
> Authentic: f<249><168><236><130>%<167>t<252>N<198>K<2><247>Y<11>
> Attributes:
> User-Name = "a.lopez at amuse_tls.nl"
> NAS-IP-Address = 131.155.193.92
> Called-Station-Id = "004096310d73"
> Calling-Station-Id = "00022d0292be"
> NAS-Identifier = "ap340-2"
> NAS-Port = 29
> Framed-MTU = 1400
> NAS-Port-Type = Wireless-IEEE-802-11
> EAP-Message = <2><4><0><6><13><0>
> Message-Authenticator =
> <169><132>%h<239><217><5>!<197><239>pU<154><179>jx
>
> Fri Jan 9 14:14:04 2004: DEBUG: Handling request with Handler
> 'Realm=amuse_tls.nl'
> Fri Jan 9 14:14:04 2004: DEBUG: Deleting session for
> a.lopez at amuse_tls.nl, 131.155.193.92, 29
> Fri Jan 9 14:14:04 2004: DEBUG: Handling with Radius::AuthFILE:
> Fri Jan 9 14:14:04 2004: DEBUG: Handling with EAP: code 2, 4, 6
> Fri Jan 9 14:14:04 2004: DEBUG: Response type 13
> Fri Jan 9 14:14:04 2004: DEBUG: EAP result: 2, EAP TLS Nothing to read
> or write
>
>
> ===
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
--
Mike McCauley mikem at open.com.au
Open System Consultants Pty. Ltd Unix, Perl, Motif, C++, WWW
9 Bulbul Place Currumbin Waters QLD 4223 Australia http://www.open.com.au
Phone +61 7 5598-7474 Fax +61 7 5598-7070
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP etc on Unix, Windows, MacOS etc.
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list