(RADIATOR) Duplicate request detection?

Hugh Irvine hugh at open.com.au
Thu Apr 27 00:44:50 CDT 2006 

Hello Jan -

Duplicate request detection in Radiator is controlled by the  
DupInterval parameter in the Client clause(s).

By default, DupInterval is set to 2 (seconds). If you want to disable  
duplicate detection you should set DupInterval to 0.

See section 5.5.4 in the Radiator 3.14 reference manual ("doc/ 
ref.html").

regards

Hugh


On 26 Apr 2006, at 22:47, Jan Tomasek wrote:

> Hi,
>
> I'm having troubles with duplicate request detection. I'm using
> eapol_test to test if RADIUS is working. If i do 10tests in as fast as
> posible way I get:
>
> 1: semik: access-accept; 0
> 1: sova: access-accept; 3
> 2: semik: access-accept; 4
> 2: sova: access-accept; 4
> 3: semik: access-accept; 3
> 3: sova: access-accept; 3
> 4: semik: access-accept; 3
> 4: sova: access-accept; 3
> 5: semik: access-accept; 3
> 5: sova: access-accept; 4
>
> so only test "1: semik" was done in less than one second. Others are
> getting delayed by 3 or 4 seconds. Reason is in strace 4 output:
>
> *** Received from 195.113.134.138 port 33149 ....
> Code:       Access-Request
> Identifier: 0
> Authentic:   
> <180>p<235>a<235><12><143><237><181><170><215>20s<135><152>
> Attributes:
>         User-Name = "sova at orgA.etest.cesnet.cz"
>         NAS-IP-Address = 127.0.0.1
>         Calling-Station-Id = "70-6F-6C-69-73-68"
>         Framed-MTU = 1400
>         NAS-Port-Type = Wireless-IEEE-802-11
>         Connect-Info = "rad_eap_test + eapol_test"
>         EAP-Message = <2><0><0><31><1>sova at orgA.etest.cesnet.cz
>         Message-Authenticator = <185><12><160>Q...
>
> Wed Apr 26 13:38:07 2006: INFO: Duplicate request id 0 received from
> 195.113.134.138(33149): ignored
>
> My question is what to add to Access-Request to not triger Duplicate
> requests? If I'm observing what are sending our Cisco AP:
>
> *** Received from 195.113.205.152 port 1645 ....
> Code:       Access-Request
> Identifier: 49
> Authentic:  <209><182><239><197>=<223><155><146><3>9<204>c\<178>y<142>
> Attributes:
>         User-Name = "semik at cesnet.cz"
>         Framed-MTU = 1400
>         Called-Station-Id = "0013.8043.9bf0"
>         Calling-Station-Id = "0012.f016.c5c4"
>         Service-Type = Login-User
>         Message-Authenticator = o<184>ae...
>         EAP-Message = <2>....
>         NAS-Port-Type = Wireless-IEEE-802-11
>         NAS-Port = 3712
>         NAS-IP-Address = 195.113.205.152
>
> I can see that my test packets are missing NAS-Port and that they  
> always
> begins with Identifier = 0. Cisco number is growing...
>
> Any sugestions?
>
> -- 
> -----------------------
> Jan Tomasek aka Semik
> http://www.tomasek.cz/
>
> --
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.


NB:

Have you read the reference manual ("doc/ref.html")?
Have you searched the mailing list archive (www.open.com.au/archives/ 
radiator)?
Have you had a quick look on Google (www.google.com)?
Have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.


--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.

More information about the radiator mailing list