[RADIATOR] Issues with Tacacs/Radius and v6 conversion

Patrik Forsberg patrik.forsberg at ip-only.se
Wed Jan 26 07:07:40 CST 2011


Hi,

I've recently tried to get a new radiator enviroment working with FreeBSD 8.1, Perl 5.10 and Radiator 4.7 with current patches.

Most stuff work as expected but I've ran into a small snag with my setup. I need to use a Handler to catch Calling-Station-Id but for some reason all Calling-Station-Id that end up in accounting and level 4 logs begin there ip with "::ffff:". The only IPs that exist on the machine are ipv4.
For some reason the Calling-Station-Id field becomes to short to handle this and up with something like " ::ffff:111.11.1 " <-- this is the correct number of characters replaced with 1s to protect internal information.
I've only been able to verify this issue with Tacacs so far.. maybe it's different with Radius calls.

Only place I could find a reference to "::ffff:" is in Util.pm and that was just to figure out if a conversion function were handling a v4 or v6 address..

The same issue appear in Level 4 trace with tacacs
Example
"
Wed Jan 11 11:12:13 2011: DEBUG: TacacsplusConnection Authorization REQUEST 6, 15, 1, 1, scrambled, telnet111, ::ffff:111.11.1, 2, service=shell cmd=
"

So I'm guessing it has to do with Tacacs not radius ?

Anyone else seen this or have it working somewhere that doesn't show this ?

Perhaps a fix ?

Thanks,
Patrik Forsberg



More information about the radiator mailing list