[RADIATOR] rapwtst and CoA-Request Error-Cause

Hugh Irvine hugh at open.com.au
Sat Jul 31 04:32:27 CDT 2010 

Hello Vangelis -

Thanks for reporting this - now fixed in the latest Radiator 4.6 patches.

regards

Hugh


On 30 Jul 2010, at 21:20, Hugh Irvine wrote:

> 
> Hello Vangelis -
> 
> You are quite right - I'll fix this tomorrow.
> 
> regards
> 
> Hugh
> 
> 
> On 30 Jul 2010, at 17:04, Vangelis Kyriakakis wrote:
> 
>> Hello Hugh, Bruno,
>> 
>>       I'm using -trace 4. Here is the log output of both the NAS and the radpwtst:
>> 
>> NAS:
>> Jul 26 18:17:03.173: RADIUS: COA  received from id 48 xxx.xxx.xxx.xxx:11678, CoA Request, len 77
>> Jul 26 18:17:03.173: COA: 212.251.84.21 request queued
>> Jul 26 18:17:03.173: RADIUS:  authenticator 65 1B F5 01 6D 6F 96 A1 - CA 21 E3 21 EC 89 AC D7
>> Jul 26 18:17:03.173: RADIUS:  Vendor, Cisco       [26]  47 
>> Jul 26 18:17:03.173: RADIUS:   Cisco AVpair       [1]   41  "ip:sub-qos-policy-in=ADSL-10Mbps-policy"
>> Jul 26 18:17:03.173: RADIUS:  Acct-Session-Id     [44]  10  "015B4AA9"
>> Jul 26 18:17:03.173:  ++++++ CoA Attribute List ++++++
>> Jul 26 18:17:03.173: 231FC340 0 00000009 sub-qos-policy-in(371) 18 ADSL-10Mbps-policy
>> Jul 26 18:17:03.173: 231F3BD4 0 00000001 session-id(362) 4 22760105(15B4AA9)
>> Jul 26 18:17:03.173:
>> Jul 26 18:17:03.173: RADIUS(00000000): sending
>> Jul 26 18:17:03.173: RADIUS(00000000): Send CoA Nack Response to xxx.xxx.xxx.xxx:11678 id 48, len 88
>> Jul 26 18:17:03.173: RADIUS:  authenticator B5 AC 44 56 F1 9B 50 02 - 9C 2F BA 91 02 11 E0 EB
>> Jul 26 18:17:03.173: RADIUS:  Vendor, Cisco       [26]  44 
>> Jul 26 18:17:03.173: RADIUS:   Cisco AVpair       [1]   38  "sub-qos-policy-in=ADSL-10Mbps-policy"
>> Jul 26 18:17:03.173: RADIUS:  Reply-Message       [18]  18 
>> Jul 26 18:17:03.173: RADIUS:   4E 6F 20 76 61 6C 69 64 20 53 65 73 73 69 6F 6E  [ No valid Session]
>> Jul 26 18:17:03.173: RADIUS:  Dynamic-Author-Error[101] 6   Session Context Not Found [503]
>> 
>> radpwtst:
>> 
>> Mon Jul 26 18:17:03 2010: DEBUG: Reading dictionary file '/etc/radiator/dictionary'
>> sending Change-Filter-Request...
>> Mon Jul 26 18:17:03 2010: DEBUG: Packet dump:
>> *** Sending to XXX.XXX.XXX.XXX port 1816 ....
>> Code:       Change-Filter-Request
>> 
>> Identifier: 48
>> Authentic:  e<27><245><1>mo<150><161><202>!<227>!<236><137><172><215>
>> Attributes:
>>        cisco-avpair = "ip:sub-qos-policy-in=ADSL-10Mbps-policy"
>>        Acct-Session-Id = "015B4AA9"
>> 
>> OK
>> 
>> As you can see although the NAS sends back a CoA-NAK packet with Session Context Not Found, radpwtst outputs just OK.
>> Any Ideas?
>> 
>>              Regards
>>                     Vangelis
>> 
>> 
>> On 30/7/2010 1:11 πμ, Hugh Irvine wrote:
>>> Hello Vangelis -
>>> 
>>> Bruno is correct -
>>> 
>>> 	perl radpwtst -trace 4 ……
>>> 
>>> regards
>>> 
>>> Hugh
>>> 
>>> 
>>> On 30 Jul 2010, at 00:08, Bruno Tiago Rodrigues wrote:
>>> 
>>> 
>>>> Vangelis:
>>>> Have you tried adding the -trace option to radpwtst?
>>>> 
>>>> On Jul 29, 2010, at 12:48 PM, Vangelis Kyriakakis wrote:
>>>> 
>>>> 
>>>>> Hello,
>>>>> 
>>>>>    We are using radpwtst to send CoA packets to a Cisco NAS. If there 
>>>>> is a problem the NAS sends back a CoA NAK packet which contains the 
>>>>> Error-Cause attribute. Radpwtst just reports OK without taking note of 
>>>>> the Error-Cause attribute. Is there any way to print it?
>>>>> 
>>>>>              Regards
>>>>>                   Vangelis
>>>>> _______________________________________________
>>>>> radiator mailing list
>>>>> 
>>>>> radiator at open.com.au
>>>>> http://www.open.com.au/mailman/listinfo/radiator
>>>> _______________________________________________
>>>> radiator mailing list
>>>> 
>>>> radiator at open.com.au
>>>> http://www.open.com.au/mailman/listinfo/radiator
>>> 
>>> 
>>> NB: 
>>> 
>>> Have you read the reference manual ("doc/ref.html")?
>>> Have you searched the mailing list archive (
>>> www.open.com.au/archives/radiator
>>> )?
>>> Have you had a quick look on Google (
>>> www.google.com
>>> )?
>>> Have you included a copy of your configuration file (no secrets), 
>>> together with a trace 4 debug showing what is happening?
>>> 
>>> 
> 
> 
> 
> NB: 
> 
> Have you read the reference manual ("doc/ref.html")?
> Have you searched the mailing list archive (www.open.com.au/archives/radiator)?
> Have you had a quick look on Google (www.google.com)?
> Have you included a copy of your configuration file (no secrets), 
> together with a trace 4 debug showing what is happening?
> 
> -- 
> Radiator: the most portable, flexible and configurable RADIUS server
> anywhere. Available on *NIX, *BSD, Windows, MacOS X.
> Includes support for reliable RADIUS transport (RadSec),
> and DIAMETER translation agent.
> -
> Nets: internetwork inventory and management - graphical, extensible,
> flexible with hardware, software, platform and database independence.
> -
> CATool: Private Certificate Authority for Unix and Unix-like systems.
> 
> 
> 
> _______________________________________________
> radiator mailing list
> radiator at open.com.au
> http://www.open.com.au/mailman/listinfo/radiator



NB: 

Have you read the reference manual ("doc/ref.html")?
Have you searched the mailing list archive (www.open.com.au/archives/radiator)?
Have you had a quick look on Google (www.google.com)?
Have you included a copy of your configuration file (no secrets), 
together with a trace 4 debug showing what is happening?

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
Includes support for reliable RADIUS transport (RadSec),
and DIAMETER translation agent.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.

More information about the radiator mailing list