> strange though. could you post the complete log of the freeradius during
> the failure? i think you already did but there we seemed to know
> the reason.
The log follows.
Also the ethreal text file, from the windows authentication.
(i included only the radius protocol to shorten the text)
Ready to process requests.
rad_recv: Access-Request packet from host 192.168.1.100:1024, id=123,
length=127
User-Name = "usr003002"
NAS-IP-Address = 192.168.1.100
Called-Station-Id = "00053C059AB0"
Calling-Station-Id = "00053C058A96"
NAS-Identifier = "WDAP5000"
NAS-Port = 1
Framed-MTU = 1400
NAS-Port-Type = Wireless-802.11
EAP-Message = "\002z\000\016\001usr003002"
Message-Authenticator = 0xec3d0be4aafc84bd38879deef713f468
modcall: entering group authorize
modcall[authorize]: module "preprocess" returns ok
modcall[authorize]: module "eap" returns updated
rlm_realm: No '@' in User-Name = "usr003002", looking up realm NULL
rlm_realm: No such realm NULL
modcall[authorize]: module "suffix" returns noop
users: Matched DEFAULT at 152
modcall[authorize]: module "files" returns ok
modcall: group authorize returns updated
rad_check_password: Found Auth-Type EAP
auth: type "EAP"
modcall: entering group authenticate
rlm_eap: processing type tls
modcall[authenticate]: module "eap" returns ok
modcall: group authenticate returns ok
Sending Access-Challenge of id 123 to 192.168.1.100:1024
Session-Timeout = 60
EAP-Message = "\001{\000\006\r "
Message-Authenticator = 0x00000000000000000000000000000000
State =
0xd7fb379b89c26050d0d688b46e2450274dc6923d0d95d5127a97d22a8e5563ebcac7101f
Finished request 0
Going to the next request
--- Walking the entire request list ---
Waking up in 6 seconds...
rad_recv: Access-Challenge packet from host 192.168.1.100:1024, id=123,
length=90
Reply packet code 11 sent to a non-proxy reply port from client
intel-AP:1024 - ID 123 : IGNORED
rl_next: returning NULL
Waking up in 6 seconds...
rad_recv: Access-Challenge packet from host 192.168.1.100:1024, id=123,
length=90
Reply packet code 11 sent to a non-proxy reply port from client
intel-AP:1024 - ID 123 : IGNORED
--- Walking the entire request list ---
Waking up in 4 seconds...
--- Walking the entire request list ---
Cleaning up request 0 ID 123 with timestamp 3d92c64d
Nothing to do. Sleeping until we see a request.
rad_recv: Access-Request packet from host 192.168.1.100:1024, id=125,
length=127
User-Name = "usr003002"
NAS-IP-Address = 192.168.1.100
Called-Station-Id = "00053C059AB0"
Calling-Station-Id = "00053C058A96"
NAS-Identifier = "WDAP5000"
NAS-Port = 1
Framed-MTU = 1400
NAS-Port-Type = Wireless-802.11
EAP-Message = "\002|\000\016\001usr003002"
Message-Authenticator = 0xb9021587ca16fb6ea9294f8f7cad40cc
modcall: entering group authorize
modcall[authorize]: module "preprocess" returns ok
modcall[authorize]: module "eap" returns updated
rlm_realm: No '@' in User-Name = "usr003002", looking up realm NULL
rlm_realm: No such realm NULL
modcall[authorize]: module "suffix" returns noop
users: Matched DEFAULT at 152
modcall[authorize]: module "files" returns ok
modcall: group authorize returns updated
rad_check_password: Found Auth-Type EAP
auth: type "EAP"
modcall: entering group authenticate
rlm_eap: processing type tls
modcall[authenticate]: module "eap" returns ok
modcall: group authenticate returns ok
Sending Access-Challenge of id 125 to 192.168.1.100:1024
Session-Timeout = 60
EAP-Message = "\001}\000\006\r "
Message-Authenticator = 0x00000000000000000000000000000000
State =
0x636c165eb2ce25caeacde0f5532d7f456dc6923d2e0e4ff66f415f44ecb39b0cb0f1cf93
Finished request 3
Going to the next request
--- Walking the entire request list ---
Waking up in 6 seconds...
rad_recv: Access-Challenge packet from host 192.168.1.100:1024, id=125,
length=90
Reply packet code 11 sent to a non-proxy reply port from client
intel-AP:1024 - ID 125 : IGNORED
rl_next: returning NULL
Waking up in 6 seconds...
rad_recv: Access-Challenge packet from host 192.168.1.100:1024, id=125,
length=90
Reply packet code 11 sent to a non-proxy reply port from client
intel-AP:1024 - ID 125 : IGNORED
--- Walking the entire request list ---
Waking up in 4 seconds...
--- Walking the entire request list ---
Cleaning up request 3 ID 125 with timestamp 3d92c66d
Nothing to do. Sleeping until we see a request.
MASTER: exit on signal (2)
>From ethereal:
Frame 3 (193 on wire, 193 captured)
Radius Protocol
Code: Access Request (1)
Packet identifier: 0x8c (140)
Length: 151
Authenticator
Attribute value pairs
t:User Name(1) l:23, Value:"user1"
t:NAS IP Address(4) l:6, Value:10.0.1.56
t:Called Station Id(30) l:14, Value:"00053C059AB0"
t:Calling Station Id(31) l:14, Value:"00053C058A96"
t:NAS identifier(32) l:10, Value:"WDAP5000"
t:NAS Port(5) l:6, Value:1
t:Framed MTU(12) l:6, Value:1400
t:NAS Port Type(61) l:6, Value:Wireless IEEE 802.11(19)
t:EAP Message(79) l:28
Extensible Authentication Protocol
Code: Response (2)
Id: 139
Length: 26
Type: Identity [RFC2284] (1)
Identity (21 bytes): user1
t:Message Authenticator(80) l:18,
Value:19F56126C435EEA11B8990A313167673
Frame 6 (118 on wire, 118 captured)
Radius Protocol
Code: Access challenge (11)
Packet identifier: 0x8c (140)
Length: 76
Authenticator
Attribute value pairs
t:Session Timeout(27) l:6, Value:30
t:EAP Message(79) l:8
Extensible Authentication Protocol
Code: Request (1)
Id: 140
Length: 6
Type: EAP-TLS [RFC2716] [Aboba] (13)
Flags(0x20): Start
t:State(24) l:24, Value:04B500BB0000013700010A00010A000000010000016A
t:Message Authenticator(80) l:18,
Value:1D68A4686F71AF3C70FBDE03C32BFE87
Frame 7 (271 on wire, 271 captured)
Radius Protocol
Code: Access Request (1)
Packet identifier: 0x8d (141)
Length: 229
Authenticator
Attribute value pairs
t:User Name(1) l:23, Value:"user1"
t:NAS IP Address(4) l:6, Value:10.0.1.56
t:Called Station Id(30) l:14, Value:"00053C059AB0"
t:Calling Station Id(31) l:14, Value:"00053C058A96"
t:NAS identifier(32) l:10, Value:"WDAP5000"
t:NAS Port(5) l:6, Value:1
t:Framed MTU(12) l:6, Value:1400
t:NAS Port Type(61) l:6, Value:Wireless IEEE 802.11(19)
t:EAP Message(79) l:82
Extensible Authentication Protocol
Code: Response (2)
Id: 140
Length: 80
Type: EAP-TLS [RFC2716] [Aboba] (13)
Flags(0x80): Length
Length: 70
Secure Socket Layer
TLS Record Layer: Client Hello
Content Type: Handshake (22)
Version: TLS 1.0 (0x0301)
Length: 65
Handshake Protocol: Client Hello
Handshake Type: Client Hello (1)
Length: 61
Version: TLS 1.0 (0x0301)
Random.gmt_unix_time: Jul 26, 2002
15:00:30.000000000
Random.bytes
Session ID Length: 0
Cipher Suites Length: 22
Cipher Suites (11 suites)
Cipher Suite: TLS_RSA_WITH_RC4_128_MD5
(0x0004)
Cipher Suite: TLS_RSA_WITH_RC4_128_SHA
(0x0005)
Cipher Suite: TLS_RSA_WITH_3DES_EDE_CBC_SHA
(0x000a)
Cipher Suite: TLS_RSA_WITH_DES_CBC_SHA
(0x0009)
Cipher Suite:
TLS_RSA_EXPORT1024_WITH_RC4_56_SHA (0x0064)
Cipher Suite:
TLS_RSA_EXPORT1024_WITH_DES_CBC_SHA (0x0062)
Cipher Suite: TLS_RSA_EXPORT_WITH_RC4_40_MD5
(0x0003)
Cipher Suite:
TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5 (0x0006)
Cipher Suite:
TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA (0x0013)
Cipher Suite: TLS_DHE_DSS_WITH_DES_CBC_SHA
(0x0012)
Cipher Suite:
TLS_DHE_DSS_EXPORT1024_WITH_DES_CBC_SHA (0x0063)
Compression Methods Length: 1
Compression Methods (1 method)
Compression Method: null (0)
t:State(24) l:24, Value:04B500BB0000013700010A00010A000000010000016A
t:Message Authenticator(80) l:18,
Value:62D3056C32F057E8B1D9AFFDA3A02075
Frame 8 (1514 on wire, 1514 captured)
Radius Protocol
Code: Access challenge (11)
Packet identifier: 0x8d (141)
Length: 1478
Authenticator
Attribute value pairs
t:Session Timeout(27) l:6, Value:30
t:EAP Message(79) l:255
EAP fragment
t:EAP Message(79) l:255
EAP fragment
t:EAP Message(79) l:255
EAP fragment
t:EAP Message(79) l:255
EAP fragment
t:EAP Message(79) l:255
EAP fragment
t:EAP Message(79) l:135
EAP fragment
Extensible Authentication Protocol
Code: Request (1)
Id: 141
Length: 1398
Type: EAP-TLS [RFC2716] [Aboba] (13)
Flags(0xC0): Length More
Length: 4229
EAP-TLS Fragments
Frame:8 payload:0-1387
Frame:11 payload:1388-2779
Frame:14 payload:2780-4171
Frame:17 payload:4172-4228
Secure Socket Layer
TLS Record Layer: Multiple Handshake Messages
Content Type: Handshake (22)
Version: TLS 1.0 (0x0301)
Length: 4224
Handshake Protocol: Server Hello
Handshake Type: Server Hello (2)
Length: 70
Version: TLS 1.0 (0x0301)
Random.gmt_unix_time: Apr 14, 1982
20:24:15.000000000
Random.bytes
Session ID Length: 32
Session ID (32 bytes)
Cipher Suite: TLS_RSA_WITH_RC4_128_MD5 (0x0004)
Compression Method: null (0)
Handshake Protocol: Certificate
Handshake Type: Certificate (11)
Length: 1674
Certificates Length: 1671
Certificates (1671 bytes)
Certificate Length: 1668
Certificate (1668 bytes)
Handshake Protocol: Certificate Request
Handshake Type: Certificate Request (13)
Length: 2464
Certificate types count: 2
Certificate types (2 types)
Certificate type: RSA Sign (1)
Certificate type: DSS Sign (2)
Distinguished Names Length: 2459
Distinguished Names (2459 bytes)
Distinguished Name Length: 196
Distinguished Name (196 bytes)
Distinguished Name Length: 196
Distinguished Name (196 bytes)
Distinguished Name Length: 212
Distinguished Name (212 bytes)
Distinguished Name Length: 210
Distinguished Name (210 bytes)
Distinguished Name Length: 134
Distinguished Name (134 bytes)
Distinguished Name Length: 206
Distinguished Name (206 bytes)
Distinguished Name Length: 97
Distinguished Name (97 bytes)
Distinguished Name Length: 97
Distinguished Name (97 bytes)
Distinguished Name Length: 196
Distinguished Name (196 bytes)
Distinguished Name Length: 71
Distinguished Name (71 bytes)
Distinguished Name Length: 119
Distinguished Name (119 bytes)
Distinguished Name Length: 196
Distinguished Name (196 bytes)
Distinguished Name Length: 112
Distinguished Name (112 bytes)
Distinguished Name Length: 105
Distinguished Name (105 bytes)
Distinguished Name Length: 114
Distinguished Name (114 bytes)
Distinguished Name Length: 166
Distinguished Name (166 bytes)
Handshake Protocol: Server Hello Done
Handshake Type: Server Hello Done (14)
Length: 0
t:State(24) l:24, Value:04B500BB0000013700010A00010A000000010000016A
[Unreassembled Packet: RADIUS]
Frame 9 (60 on wire, 60 captured)
Data (6 bytes)
0000 00 05 3c 05 9a b0 00 b0 d0 f9 88 63 08 00 45 00 ..<........c..E.
0010 00 1a 09 b5 00 b9 80 11 1a 24 0a 00 01 0a 0a 00 .........$......
0020 01 38 8c 10 ec bd 8e bf 00 00 00 00 00 00 00 00 .8..............
0030 00 00 00 00 00 00 00 00 00 00 00 00 ............
Frame 10 (197 on wire, 197 captured)
Radius Protocol
Code: Access Request (1)
Packet identifier: 0x8e (142)
Length: 155
Authenticator
Attribute value pairs
t:User Name(1) l:23, Value:"user1"
t:NAS IP Address(4) l:6, Value:10.0.1.56
t:Called Station Id(30) l:14, Value:"00053C059AB0"
t:Calling Station Id(31) l:14, Value:"00053C058A96"
t:NAS identifier(32) l:10, Value:"WDAP5000"
t:NAS Port(5) l:6, Value:1
t:Framed MTU(12) l:6, Value:1400
t:NAS Port Type(61) l:6, Value:Wireless IEEE 802.11(19)
t:EAP Message(79) l:8
Extensible Authentication Protocol
Code: Response (2)
Id: 141
Length: 6
Type: EAP-TLS [RFC2716] [Aboba] (13)
Flags(0x0):
t:State(24) l:24, Value:04B500BB0000013700010A00010A000000010000016A
t:Message Authenticator(80) l:18,
Value:E198D0CF032B9A870495D6EB88F4017D
Frame 11 (1514 on wire, 1514 captured)
Radius Protocol
Code: Access challenge (11)
Packet identifier: 0x8e (142)
Length: 1478
Authenticator
Attribute value pairs
t:Session Timeout(27) l:6, Value:30
t:EAP Message(79) l:255
EAP fragment
t:EAP Message(79) l:255
EAP fragment
t:EAP Message(79) l:255
EAP fragment
t:EAP Message(79) l:255
EAP fragment
t:EAP Message(79) l:255
EAP fragment
t:EAP Message(79) l:135
EAP fragment
Extensible Authentication Protocol
Code: Request (1)
Id: 142
Length: 1398
Type: EAP-TLS [RFC2716] [Aboba] (13)
Flags(0x40): More
EAP-TLS Fragments
Frame:8 payload:0-1387
Frame:11 payload:1388-2779
Frame:14 payload:2780-4171
Frame:17 payload:4172-4228
Secure Socket Layer
TLS Record Layer: Multiple Handshake Messages
Content Type: Handshake (22)
Version: TLS 1.0 (0x0301)
Length: 4224
Handshake Protocol: Server Hello
Handshake Type: Server Hello (2)
Length: 70
Version: TLS 1.0 (0x0301)
Random.gmt_unix_time: Apr 14, 1982
20:24:15.000000000
Random.bytes
Session ID Length: 32
Session ID (32 bytes)
Cipher Suite: TLS_RSA_WITH_RC4_128_MD5 (0x0004)
Compression Method: null (0)
Handshake Protocol: Certificate
Handshake Type: Certificate (11)
Length: 1674
Certificates Length: 1671
Certificates (1671 bytes)
Certificate Length: 1668
Certificate (1668 bytes)
Handshake Protocol: Certificate Request
Handshake Type: Certificate Request (13)
Length: 2464
Certificate types count: 2
Certificate types (2 types)
Certificate type: RSA Sign (1)
Certificate type: DSS Sign (2)
Distinguished Names Length: 2459
Distinguished Names (2459 bytes)
Distinguished Name Length: 196
Distinguished Name (196 bytes)
Distinguished Name Length: 196
Distinguished Name (196 bytes)
Distinguished Name Length: 212
Distinguished Name (212 bytes)
Distinguished Name Length: 210
Distinguished Name (210 bytes)
Distinguished Name Length: 134
Distinguished Name (134 bytes)
Distinguished Name Length: 206
Distinguished Name (206 bytes)
Distinguished Name Length: 97
Distinguished Name (97 bytes)
Distinguished Name Length: 97
Distinguished Name (97 bytes)
Distinguished Name Length: 196
Distinguished Name (196 bytes)
Distinguished Name Length: 71
Distinguished Name (71 bytes)
Distinguished Name Length: 119
Distinguished Name (119 bytes)
Distinguished Name Length: 196
Distinguished Name (196 bytes)
Distinguished Name Length: 112
Distinguished Name (112 bytes)
Distinguished Name Length: 105
Distinguished Name (105 bytes)
Distinguished Name Length: 114
Distinguished Name (114 bytes)
Distinguished Name Length: 166
Distinguished Name (166 bytes)
Handshake Protocol: Server Hello Done
Handshake Type: Server Hello Done (14)
Length: 0
t:State(24) l:24, Value:04B500BB0000013700010A00010A000000010000016A
[Unreassembled Packet: RADIUS]
Frame 13 (197 on wire, 197 captured)
Radius Protocol
Code: Access Request (1)
Packet identifier: 0x8f (143)
Length: 155
Authenticator
Attribute value pairs
t:User Name(1) l:23, Value:"user1"
t:NAS IP Address(4) l:6, Value:10.0.1.56
t:Called Station Id(30) l:14, Value:"00053C059AB0"
t:Calling Station Id(31) l:14, Value:"00053C058A96"
t:NAS identifier(32) l:10, Value:"WDAP5000"
t:NAS Port(5) l:6, Value:1
t:Framed MTU(12) l:6, Value:1400
t:NAS Port Type(61) l:6, Value:Wireless IEEE 802.11(19)
t:EAP Message(79) l:8
Extensible Authentication Protocol
Code: Response (2)
Id: 142
Length: 6
Type: EAP-TLS [RFC2716] [Aboba] (13)
Flags(0x0):
t:State(24) l:24, Value:04B500BB0000013700010A00010A000000010000016A
t:Message Authenticator(80) l:18,
Value:48B0D575B0857F663A1DB9417EBDD323
Frame 14 (1514 on wire, 1514 captured)
Radius Protocol
Code: Access challenge (11)
Packet identifier: 0x8f (143)
Length: 1478
Authenticator
Attribute value pairs
t:Session Timeout(27) l:6, Value:30
t:EAP Message(79) l:255
EAP fragment
t:EAP Message(79) l:255
EAP fragment
t:EAP Message(79) l:255
EAP fragment
t:EAP Message(79) l:255
EAP fragment
t:EAP Message(79) l:255
EAP fragment
t:EAP Message(79) l:135
EAP fragment
Extensible Authentication Protocol
Code: Request (1)
Id: 143
Length: 1398
Type: EAP-TLS [RFC2716] [Aboba] (13)
Flags(0x40): More
EAP-TLS Fragments
Frame:8 payload:0-1387
Frame:11 payload:1388-2779
Frame:14 payload:2780-4171
Frame:17 payload:4172-4228
Secure Socket Layer
TLS Record Layer: Multiple Handshake Messages
Content Type: Handshake (22)
Version: TLS 1.0 (0x0301)
Length: 4224
Handshake Protocol: Server Hello
Handshake Type: Server Hello (2)
Length: 70
Version: TLS 1.0 (0x0301)
Random.gmt_unix_time: Apr 14, 1982
20:24:15.000000000
Random.bytes
Session ID Length: 32
Session ID (32 bytes)
Cipher Suite: TLS_RSA_WITH_RC4_128_MD5 (0x0004)
Compression Method: null (0)
Handshake Protocol: Certificate
Handshake Type: Certificate (11)
Length: 1674
Certificates Length: 1671
Certificates (1671 bytes)
Certificate Length: 1668
Certificate (1668 bytes)
Handshake Protocol: Certificate Request
Handshake Type: Certificate Request (13)
Length: 2464
Certificate types count: 2
Certificate types (2 types)
Certificate type: RSA Sign (1)
Certificate type: DSS Sign (2)
Distinguished Names Length: 2459
Distinguished Names (2459 bytes)
Distinguished Name Length: 196
Distinguished Name (196 bytes)
Distinguished Name Length: 196
Distinguished Name (196 bytes)
Distinguished Name Length: 212
Distinguished Name (212 bytes)
Distinguished Name Length: 210
Distinguished Name (210 bytes)
Distinguished Name Length: 134
Distinguished Name (134 bytes)
Distinguished Name Length: 206
Distinguished Name (206 bytes)
Distinguished Name Length: 97
Distinguished Name (97 bytes)
Distinguished Name Length: 97
Distinguished Name (97 bytes)
Distinguished Name Length: 196
Distinguished Name (196 bytes)
Distinguished Name Length: 71
Distinguished Name (71 bytes)
Distinguished Name Length: 119
Distinguished Name (119 bytes)
Distinguished Name Length: 196
Distinguished Name (196 bytes)
Distinguished Name Length: 112
Distinguished Name (112 bytes)
Distinguished Name Length: 105
Distinguished Name (105 bytes)
Distinguished Name Length: 114
Distinguished Name (114 bytes)
Distinguished Name Length: 166
Distinguished Name (166 bytes)
Handshake Protocol: Server Hello Done
Handshake Type: Server Hello Done (14)
Length: 0
t:State(24) l:24, Value:04B500BB0000013700010A00010A000000010000016A
[Unreassembled Packet: RADIUS]
Frame 16 (197 on wire, 197 captured)
Radius Protocol
Code: Access Request (1)
Packet identifier: 0x90 (144)
Length: 155
Authenticator
Attribute value pairs
t:User Name(1) l:23, Value:"user1"
t:NAS IP Address(4) l:6, Value:10.0.1.56
t:Called Station Id(30) l:14, Value:"00053C059AB0"
t:Calling Station Id(31) l:14, Value:"00053C058A96"
t:NAS identifier(32) l:10, Value:"WDAP5000"
t:NAS Port(5) l:6, Value:1
t:Framed MTU(12) l:6, Value:1400
t:NAS Port Type(61) l:6, Value:Wireless IEEE 802.11(19)
t:EAP Message(79) l:8
Extensible Authentication Protocol
Code: Response (2)
Id: 143
Length: 6
Type: EAP-TLS [RFC2716] [Aboba] (13)
Flags(0x0):
t:State(24) l:24, Value:04B500BB0000013700010A00010A000000010000016A
t:Message Authenticator(80) l:18,
Value:698D0C62D050EA2DD493A767C5BA9644
Frame 17 (175 on wire, 175 captured)
Radius Protocol
Code: Access challenge (11)
Packet identifier: 0x90 (144)
Length: 133
Authenticator
Attribute value pairs
t:Session Timeout(27) l:6, Value:30
t:EAP Message(79) l:65
Extensible Authentication Protocol
Code: Request (1)
Id: 144
Length: 63
Type: EAP-TLS [RFC2716] [Aboba] (13)
Flags(0x0):
EAP-TLS Fragments
Frame:8 payload:0-1387
Frame:11 payload:1388-2779
Frame:14 payload:2780-4171
Frame:17 payload:4172-4228
Secure Socket Layer
TLS Record Layer: Multiple Handshake Messages
Content Type: Handshake (22)
Version: TLS 1.0 (0x0301)
Length: 4224
Handshake Protocol: Server Hello
Handshake Type: Server Hello (2)
Length: 70
Version: TLS 1.0 (0x0301)
Random.gmt_unix_time: Apr 14, 1982
20:24:15.000000000
Random.bytes
Session ID Length: 32
Session ID (32 bytes)
Cipher Suite: TLS_RSA_WITH_RC4_128_MD5 (0x0004)
Compression Method: null (0)
Handshake Protocol: Certificate
Handshake Type: Certificate (11)
Length: 1674
Certificates Length: 1671
Certificates (1671 bytes)
Certificate Length: 1668
Certificate (1668 bytes)
Handshake Protocol: Certificate Request
Handshake Type: Certificate Request (13)
Length: 2464
Certificate types count: 2
Certificate types (2 types)
Certificate type: RSA Sign (1)
Certificate type: DSS Sign (2)
Distinguished Names Length: 2459
Distinguished Names (2459 bytes)
Distinguished Name Length: 196
Distinguished Name (196 bytes)
Distinguished Name Length: 196
Distinguished Name (196 bytes)
Distinguished Name Length: 212
Distinguished Name (212 bytes)
Distinguished Name Length: 210
Distinguished Name (210 bytes)
Distinguished Name Length: 134
Distinguished Name (134 bytes)
Distinguished Name Length: 206
Distinguished Name (206 bytes)
Distinguished Name Length: 97
Distinguished Name (97 bytes)
Distinguished Name Length: 97
Distinguished Name (97 bytes)
Distinguished Name Length: 196
Distinguished Name (196 bytes)
Distinguished Name Length: 71
Distinguished Name (71 bytes)
Distinguished Name Length: 119
Distinguished Name (119 bytes)
Distinguished Name Length: 196
Distinguished Name (196 bytes)
Distinguished Name Length: 112
Distinguished Name (112 bytes)
Distinguished Name Length: 105
Distinguished Name (105 bytes)
Distinguished Name Length: 114
Distinguished Name (114 bytes)
Distinguished Name Length: 166
Distinguished Name (166 bytes)
Handshake Protocol: Server Hello Done
Handshake Type: Server Hello Done (14)
Length: 0
t:State(24) l:24, Value:04B500BB0000013700010A00010A000000010000016A
t:Message Authenticator(80) l:18,
Value:FC847CCDD2752989DA821BB5470E6E41
Frame 18 (1514 on wire, 1514 captured)
Radius Protocol
Code: Access Request (1)
Packet identifier: 0x91 (145)
Length: 1653
Authenticator
Attribute value pairs
t:User Name(1) l:23, Value:"user1"
t:NAS IP Address(4) l:6, Value:10.0.1.56
t:Called Station Id(30) l:14, Value:"00053C059AB0"
t:Calling Station Id(31) l:14, Value:"00053C058A96"
t:NAS identifier(32) l:10, Value:"WDAP5000"
t:NAS Port(5) l:6, Value:1
t:Framed MTU(12) l:6, Value:1400
t:NAS Port Type(61) l:6, Value:Wireless IEEE 802.11(19)
t:EAP Message(79) l:255
EAP fragment
t:EAP Message(79) l:255
EAP fragment
t:EAP Message(79) l:255
EAP fragment
t:EAP Message(79) l:255
EAP fragment
t:EAP Message(79) l:255
EAP fragment
t:EAP Message(79) l:231
EAP fragment
[Unreassembled Packet: RADIUS]
Frame 20 (118 on wire, 118 captured)
Radius Protocol
Code: Access challenge (11)
Packet identifier: 0x91 (145)
Length: 76
Authenticator
Attribute value pairs
t:Session Timeout(27) l:6, Value:30
t:EAP Message(79) l:8
Extensible Authentication Protocol
Code: Request (1)
Id: 145
Length: 6
Type: EAP-TLS [RFC2716] [Aboba] (13)
Flags(0x0):
t:State(24) l:24, Value:04B500BB0000013700010A00010A000000010000016A
t:Message Authenticator(80) l:18,
Value:93F44DFA4EE6E4DA2F0DB90A4797361B
Frame 21 (646 on wire, 646 captured)
Radius Protocol
Code: Access Request (1)
Packet identifier: 0x92 (146)
Length: 604
Authenticator
Attribute value pairs
t:User Name(1) l:23, Value:"user1"
t:NAS IP Address(4) l:6, Value:10.0.1.56
t:Called Station Id(30) l:14, Value:"00053C059AB0"
t:Calling Station Id(31) l:14, Value:"00053C058A96"
t:NAS identifier(32) l:10, Value:"WDAP5000"
t:NAS Port(5) l:6, Value:1
t:Framed MTU(12) l:6, Value:1400
t:NAS Port Type(61) l:6, Value:Wireless IEEE 802.11(19)
t:EAP Message(79) l:255
EAP fragment
t:EAP Message(79) l:202
EAP fragment
Extensible Authentication Protocol
Code: Response (2)
Id: 145
Length: 453
Type: EAP-TLS [RFC2716] [Aboba] (13)
Flags(0x0):
Secure Socket Layer
[Malformed Packet: SSL]
Frame 22 (165 on wire, 165 captured)
Radius Protocol
Code: Access challenge (11)
Packet identifier: 0x92 (146)
Length: 123
Authenticator
Attribute value pairs
t:Session Timeout(27) l:6, Value:30
t:EAP Message(79) l:55
Extensible Authentication Protocol
Code: Request (1)
Id: 146
Length: 53
Type: EAP-TLS [RFC2716] [Aboba] (13)
Flags(0x80): Length
Length: 43
Secure Socket Layer
TLS Record Layer: Change Cipher Spec
Content Type: Change Cipher Spec (20)
Version: TLS 1.0 (0x0301)
Length: 1
Change Cipher Spec Message
TLS Record Layer: Encrypted Handshake Message
Content Type: Handshake (22)
Version: TLS 1.0 (0x0301)
Length: 32
Handshake Protocol: Encrypted Handshake Message
t:State(24) l:24, Value:04B500BB0000013700010A00010A000000010000016A
t:Message Authenticator(80) l:18,
Value:9D138B721603E06DD7B95FCB41DFDC89
Frame 23 (197 on wire, 197 captured)
Radius Protocol
Code: Access Request (1)
Packet identifier: 0x93 (147)
Length: 155
Authenticator
Attribute value pairs
t:User Name(1) l:23, Value:"user1"
t:NAS IP Address(4) l:6, Value:10.0.1.56
t:Called Station Id(30) l:14, Value:"00053C059AB0"
t:Calling Station Id(31) l:14, Value:"00053C058A96"
t:NAS identifier(32) l:10, Value:"WDAP5000"
t:NAS Port(5) l:6, Value:1
t:Framed MTU(12) l:6, Value:1400
t:NAS Port Type(61) l:6, Value:Wireless IEEE 802.11(19)
t:EAP Message(79) l:8
Extensible Authentication Protocol
Code: Response (2)
Id: 146
Length: 6
Type: EAP-TLS [RFC2716] [Aboba] (13)
Flags(0x0):
t:State(24) l:24, Value:04B500BB0000013700010A00010A000000010000016A
t:Message Authenticator(80) l:18,
Value:895B18E98B4244292DFA43300F88A6C4
Frame 24 (270 on wire, 270 captured)
Radius Protocol
Code: Access Accept (2)
Packet identifier: 0x93 (147)
Length: 228
Authenticator
Attribute value pairs
t:EAP Message(79) l:6
Extensible Authentication Protocol
Code: Success (3)
Id: 146
Length: 4
t:Framed Protocol(7) l:6, Value:PPP(1)
t:Service Type(6) l:6, Value:Framed(2)
t:Vendor Specific(26) l:58, Vendor:Microsoft(311)
t:MS MPPE Send Key(16) l:52,
Value:82CB00309D98C57A39597EEB9620454271C17C9EFAB69E974E5F9633491BB66CB3B7A6
ACD79C77717A9D08DFAD08DC7D27DF
t:Vendor Specific(26) l:58, Vendor:Microsoft(311)
t:MS MPPE Recv Key(17) l:52,
Value:82CCB369EE19F7834510524CF1D5127E96208B44B46F421231CC85D2D43A7498222231
F6EF1BD8470EF39C8FB588808605C1
t:Class(25) l:32,
Value:2B04041D0000013700010A00010A01C22CA27B1C298400000000000009F0
t:Vendor Specific(26) l:12, Vendor:Microsoft(311)
t:MS MPPE Encryption Policy(7) l:6, Value:00000002
t:Vendor Specific(26) l:12, Vendor:Microsoft(311)
t:MS MPPE Encryption Type(8) l:6, Value:0000000E
t:Message Authenticator(80) l:18,
Value:282E52CA6A4F13458FA41026EFCBD823
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
