[RADIATOR] Radiator CoA

Subash Comerica (subashtc) subashtc at cisco.com
Tue Jun 22 23:18:42 CDT 2010 

Hi Soren,
    Thanks for the details. I am aware of corresponding attributes to be sent in CoA Ack/Nak as per NAS's requirements.
    My question is mainly due to the fact that Message Authenticator is computed over the complete packet and is Radiator able to compute MA if the input attribute passed on as zero(Like freeradius radclient does)

Thanks & Regards,
. . . . Subash
Changing the Way We Live, Work, Play and Learn

-----Original Message-----
From: soeren.schroeder at gmail.com [mailto:soeren.schroeder at gmail.com] On Behalf Of Søren Schrøder
Sent: Wednesday, June 23, 2010 12:54 AM
To: Subash Comerica (subashtc)
Cc: Hugh Irvine; radiator at open.com.au
Subject: Re: [RADIATOR] Radiator CoA

Hi.

I'm using Radiator to do CoA DM Against NAS-boxes from Juniper (BRAS), Errisson (SASN) and Starent (GGSN)

They all differ a bit on what AVP's they need for the CoA DM message.
For example, the Starent GGSN needs the following AVP's:

Acct-Session-Id
Event-Timestamp

These are available from the Accounting messages (Start/Alive). So I collect the accounting, and stores them in MySQL (using my own AuthBy module, based on AuthTEST). I also store the NAS-IP-Address, so I know which NAS-box is responsible for the actual PPP session.

CoA DM can be sent using radpwtest:

perl radpwtst -code Disconnect-Request -s $NASIP \
    -noauth -noacct -nostart -nostop -auth_port 3799 -acct_port 3799 \
    -secret $SECRET -dictionary PATH_TO_DICTIONARY \
    Acct-Session-Id=$SESSID  Event-Timestamp=$TIMESTAMP

sample output:

Tue Jun 22 21:17:30 2010: DEBUG: Reading dictionary file '/xxxxxxxxxxxx/dictionary'
Tue Jun 22 21:17:30 2010: DEBUG: Reading dictionary file '/xxxxxxxxxxxx/STARENT.SN.DICT'
sending Disconnect-Request...
Tue Jun 22 21:17:30 2010: DEBUG: Packet dump:
*** Sending to foo.foo.foo.foo port 3799 ....

Packet length = 44
Code:       Disconnect-Request
Identifier: 195
Authentic:  (<31><1blablabba99><174>Yy<161>$<165>z<1>QC
Attributes:
        Acct-Session-Id = "D45848C410B61CA7"
        Event-Timestamp = 1277234191

OK

Hope this guides you a bit into the mystery of CoA DM.


--
Søren Schrøder.
Obey Gravity - It's the law !

More information about the radiator mailing list