Hello all,
Thanks for you help on my last message, unfortunatly i'm still having
problems.
Here is a recap on the situation:
my radius <------> telcos radius <-----> BT's radius and racks
when the telcos radius proxies request to our server it states that it is
responding too late. The attached file "freeradius.debug_from_parent_proxy2"
shows that my server is responding to the requests in a minimal amount of
time. But on the telcos server they recieve the following messages:
Thu Oct 10 16:33:29 2002 : Auth: Login OK: [kyle] (from client bt-radius1
port 108 cli 1744889565)
Thu Oct 10 16:36:20 2002 : Error: Invalid operator for item
Calling-Station-Id: reverting to '=='
Thu Oct 10 16:36:20 2002 : Auth: Login OK: [nd12] (from client bt-radius1
port 584 cli 1647231124)
Thu Oct 10 16:36:47 2002 : Auth: Invalid user (rlm_ldap: Access Attribute
denies access): [test/cheaper] (from client bt-radius1 port 322 cli
1303262252)
Thu Oct 10 16:36:47 2002 : Error: Reply from home server lcradius:1645
arrived too late for request 2243. Try increasing 'retry_delay' or
'max_request_time'
Thu Oct 10 16:36:58 2002 : Error: Reply from home server lcradius:1645
arrived too late for request 2243. Try increasing 'retry_delay' or
'max_request_time'
Thu Oct 10 16:37:08 2002 : Error: Reply from home server lcradius:1645
arrived too late for request 2243. Try increasing 'retry_delay' or
'max_request_time'
Next i tried using the rad test program from various internet locations and
this works fine using my radius. Even from the telcos server it works fine as
shown below:
[root@rad-1 raddb]# radtest test cheaper 62.189.246.65 0 <secret>
Sending Access-Request of id 173 to 62.189.246.65:1645
User-Name = "test"
User-Password = "=\373\370.~\030$\211\257\372\247Hjn\321\260"
NAS-IP-Address = rad-1.freezone.co.uk
NAS-Port-Id = "0"
rad_recv: Access-Accept packet from host 62.189.246.65:1645, id=173, length=20
[root@rad-1 raddb]#
My server and the telcos server are located in the same rack in the same
location, does anyone have any ideas why i'm getting late replies? I've been
told by the engineer that he has tried increasing the 'max_request_time' but
i cant not be sure on this.
Thanks in advance.
Mark
--
--------------------------------
http://www.thedumbterminal.co.uk
rad_recv: Access-Request packet from host 62.189.246.1:1647, id=10, length=118
User-Name = "test"
NAS-IP-Address = 212.140.88.194
NAS-Port = 322
Service-Type = Framed-User
Framed-Protocol = PPP
Called-Station-Id = "8089933144"
Calling-Station-Id = "1303262252"
Proxy-State = 0x42543030323333633561663036
NAS-Port-Type = Async
User-Password = "`\367bAE\230Fl\323\355@\017H(\257\221"
Proxy-State = 0x323232
modcall: entering group authorize
modcall[authorize]: module "preprocess" returns ok
rlm_realm: Looking up realm NULL for User-Name = "test"
rlm_realm: No such realm NULL
modcall[authorize]: module "suffix" returns noop
users: Matched DEFAULT at 152
users: Matched DEFAULT at 171
users: Matched DEFAULT at 183
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
rad_check_password: Found Auth-Type System
auth: type "System"
modcall: entering group authenticate
HASH: user test found in hashtable bucket 2070
modcall[authenticate]: module "unix" returns ok
modcall: group authenticate returns ok
Sending Access-Accept of id 10 to 62.189.246.1:1647
Framed-IP-Address = 255.255.255.254
Framed-MTU = 576
Service-Type = Framed-User
Framed-Protocol = PPP
Framed-Compression = Van-Jacobson-TCP-IP
Proxy-State = 0x42543030323333633561663036
Proxy-State = 0x323232
Finished request 29
Going to the next request
--- Walking the entire request list ---
Waking up in 6 seconds...
--- Walking the entire request list ---
Cleaning up request 29 ID 10 with timestamp 3da59ce5
Nothing to do. Sleeping until we see a request.
rad_recv: Access-Request packet from host 62.189.246.1:1647, id=10, length=118
User-Name = "test"
NAS-IP-Address = 212.140.88.194
NAS-Port = 322
Service-Type = Framed-User
Framed-Protocol = PPP
Called-Station-Id = "8089933144"
Calling-Station-Id = "1303262252"
Proxy-State = 0x42543030323333633561663036
NAS-Port-Type = Async
User-Password = "`\367bAE\230Fl\323\355@\017H(\257\221"
Proxy-State = 0x323232
modcall: entering group authorize
modcall[authorize]: module "preprocess" returns ok
rlm_realm: Looking up realm NULL for User-Name = "test"
rlm_realm: No such realm NULL
modcall[authorize]: module "suffix" returns noop
users: Matched DEFAULT at 152
users: Matched DEFAULT at 171
users: Matched DEFAULT at 183
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
rad_check_password: Found Auth-Type System
auth: type "System"
modcall: entering group authenticate
HASH: user test found in hashtable bucket 2070
modcall[authenticate]: module "unix" returns ok
modcall: group authenticate returns ok
Sending Access-Accept of id 10 to 62.189.246.1:1647
Framed-IP-Address = 255.255.255.254
Framed-MTU = 576
Service-Type = Framed-User
Framed-Protocol = PPP
Framed-Compression = Van-Jacobson-TCP-IP
Proxy-State = 0x42543030323333633561663036
Proxy-State = 0x323232
Finished request 30
Going to the next request
--- Walking the entire request list ---
Waking up in 6 seconds...
--- Walking the entire request list ---
Cleaning up request 30 ID 10 with timestamp 3da59cf0
Nothing to do. Sleeping until we see a request.
rad_recv: Access-Request packet from host 62.189.246.1:1647, id=10, length=118
User-Name = "test"
NAS-IP-Address = 212.140.88.194
NAS-Port = 322
Service-Type = Framed-User
Framed-Protocol = PPP
Called-Station-Id = "8089933144"
Calling-Station-Id = "1303262252"
Proxy-State = 0x42543030323333633561663036
NAS-Port-Type = Async
User-Password = "`\367bAE\230Fl\323\355@\017H(\257\221"
Proxy-State = 0x323232
modcall: entering group authorize
modcall[authorize]: module "preprocess" returns ok
rlm_realm: Looking up realm NULL for User-Name = "test"
rlm_realm: No such realm NULL
modcall[authorize]: module "suffix" returns noop
users: Matched DEFAULT at 152
users: Matched DEFAULT at 171
users: Matched DEFAULT at 183
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
rad_check_password: Found Auth-Type System
auth: type "System"
modcall: entering group authenticate
HASH: user test found in hashtable bucket 2070
modcall[authenticate]: module "unix" returns ok
modcall: group authenticate returns ok
Sending Access-Accept of id 10 to 62.189.246.1:1647
Framed-IP-Address = 255.255.255.254
Framed-MTU = 576
Service-Type = Framed-User
Framed-Protocol = PPP
Framed-Compression = Van-Jacobson-TCP-IP
Proxy-State = 0x42543030323333633561663036
Proxy-State = 0x323232
Finished request 31
Going to the next request
--- Walking the entire request list ---
Waking up in 6 seconds...
--- Walking the entire request list ---
Cleaning up request 31 ID 10 with timestamp 3da59cfa
Nothing to do. Sleeping until we see a request.
rad_recv: Access-Request packet from host 62.189.246.1:1647, id=10, length=118
User-Name = "test"
NAS-IP-Address = 212.140.88.194
NAS-Port = 322
Service-Type = Framed-User
Framed-Protocol = PPP
Called-Station-Id = "8089933144"
Calling-Station-Id = "1303262252"
Proxy-State = 0x42543030323333633561663036
NAS-Port-Type = Async
User-Password = "`\367bAE\230Fl\323\355@\017H(\257\221"
Proxy-State = 0x323232
modcall: entering group authorize
modcall[authorize]: module "preprocess" returns ok
rlm_realm: Looking up realm NULL for User-Name = "test"
rlm_realm: No such realm NULL
modcall[authorize]: module "suffix" returns noop
users: Matched DEFAULT at 152
users: Matched DEFAULT at 171
users: Matched DEFAULT at 183
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
rad_check_password: Found Auth-Type System
auth: type "System"
modcall: entering group authenticate
HASH: user test found in hashtable bucket 2070
modcall[authenticate]: module "unix" returns ok
modcall: group authenticate returns ok
Sending Access-Accept of id 10 to 62.189.246.1:1647
Framed-IP-Address = 255.255.255.254
Framed-MTU = 576
Service-Type = Framed-User
Framed-Protocol = PPP
Framed-Compression = Van-Jacobson-TCP-IP
Proxy-State = 0x42543030323333633561663036
Proxy-State = 0x323232
Finished request 32
Going to the next request
--- Walking the entire request list ---
Waking up in 6 seconds...
--- Walking the entire request list ---
Cleaning up request 32 ID 10 with timestamp 3da59d04
Nothing to do. Sleeping until we see a request.
rad_recv: Access-Request packet from host 62.189.246.1:1647, id=10, length=118
User-Name = "test"
NAS-IP-Address = 212.140.88.194
NAS-Port = 322
Service-Type = Framed-User
Framed-Protocol = PPP
Called-Station-Id = "8089933144"
Calling-Station-Id = "1303262252"
Proxy-State = 0x42543030323333633561663036
NAS-Port-Type = Async
User-Password = "`\367bAE\230Fl\323\355@\017H(\257\221"
Proxy-State = 0x323232
modcall: entering group authorize
modcall[authorize]: module "preprocess" returns ok
rlm_realm: Looking up realm NULL for User-Name = "test"
rlm_realm: No such realm NULL
modcall[authorize]: module "suffix" returns noop
users: Matched DEFAULT at 152
users: Matched DEFAULT at 171
users: Matched DEFAULT at 183
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
rad_check_password: Found Auth-Type System
auth: type "System"
modcall: entering group authenticate
HASH: user test found in hashtable bucket 2070
modcall[authenticate]: module "unix" returns ok
modcall: group authenticate returns ok
Sending Access-Accept of id 10 to 62.189.246.1:1647
Framed-IP-Address = 255.255.255.254
Framed-MTU = 576
Service-Type = Framed-User
Framed-Protocol = PPP
Framed-Compression = Van-Jacobson-TCP-IP
Proxy-State = 0x42543030323333633561663036
Proxy-State = 0x323232
Finished request 33
Going to the next request
--- Walking the entire request list ---
Waking up in 6 seconds...
--- Walking the entire request list ---
Cleaning up request 33 ID 10 with timestamp 3da59d0e
Nothing to do. Sleeping until we see a request.
rad_recv: Access-Request packet from host 62.189.246.1:1647, id=10, length=118
User-Name = "test"
NAS-IP-Address = 212.140.88.194
NAS-Port = 322
Service-Type = Framed-User
Framed-Protocol = PPP
Called-Station-Id = "8089933144"
Calling-Station-Id = "1303262252"
Proxy-State = 0x42543030323333633561663036
NAS-Port-Type = Async
User-Password = "`\367bAE\230Fl\323\355@\017H(\257\221"
Proxy-State = 0x323232
modcall: entering group authorize
modcall[authorize]: module "preprocess" returns ok
rlm_realm: Looking up realm NULL for User-Name = "test"
rlm_realm: No such realm NULL
modcall[authorize]: module "suffix" returns noop
users: Matched DEFAULT at 152
users: Matched DEFAULT at 171
users: Matched DEFAULT at 183
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
rad_check_password: Found Auth-Type System
auth: type "System"
modcall: entering group authenticate
HASH: user test found in hashtable bucket 2070
modcall[authenticate]: module "unix" returns ok
modcall: group authenticate returns ok
Sending Access-Accept of id 10 to 62.189.246.1:1647
Framed-IP-Address = 255.255.255.254
Framed-MTU = 576
Service-Type = Framed-User
Framed-Protocol = PPP
Framed-Compression = Van-Jacobson-TCP-IP
Proxy-State = 0x42543030323333633561663036
Proxy-State = 0x323232
Finished request 34
Going to the next request
--- Walking the entire request list ---
Waking up in 6 seconds...
--- Walking the entire request list ---
Cleaning up request 34 ID 10 with timestamp 3da59d18
Nothing to do. Sleeping until we see a request.
rad_recv: Access-Request packet from host 62.189.246.1:1647, id=10, length=118
User-Name = "test"
NAS-IP-Address = 212.140.88.194
NAS-Port = 322
Service-Type = Framed-User
Framed-Protocol = PPP
Called-Station-Id = "8089933144"
Calling-Station-Id = "1303262252"
Proxy-State = 0x42543030323333633561663036
NAS-Port-Type = Async
User-Password = "`\367bAE\230Fl\323\355@\017H(\257\221"
Proxy-State = 0x323232
modcall: entering group authorize
modcall[authorize]: module "preprocess" returns ok
rlm_realm: Looking up realm NULL for User-Name = "test"
rlm_realm: No such realm NULL
modcall[authorize]: module "suffix" returns noop
users: Matched DEFAULT at 152
users: Matched DEFAULT at 171
users: Matched DEFAULT at 183
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
rad_check_password: Found Auth-Type System
auth: type "System"
modcall: entering group authenticate
HASH: user test found in hashtable bucket 2070
modcall[authenticate]: module "unix" returns ok
modcall: group authenticate returns ok
Sending Access-Accept of id 10 to 62.189.246.1:1647
Framed-IP-Address = 255.255.255.254
Framed-MTU = 576
Service-Type = Framed-User
Framed-Protocol = PPP
Framed-Compression = Van-Jacobson-TCP-IP
Proxy-State = 0x42543030323333633561663036
Proxy-State = 0x323232
Finished request 35
Going to the next request
--- Walking the entire request list ---
Waking up in 6 seconds...
--- Walking the entire request list ---
Cleaning up request 35 ID 10 with timestamp 3da59d22
Nothing to do. Sleeping until we see a request.
rad_recv: Access-Request packet from host 62.189.246.1:1647, id=10, length=118
User-Name = "test"
NAS-IP-Address = 212.140.88.194
NAS-Port = 322
Service-Type = Framed-User
Framed-Protocol = PPP
Called-Station-Id = "8089933144"
Calling-Station-Id = "1303262252"
Proxy-State = 0x42543030323333633561663036
NAS-Port-Type = Async
User-Password = "`\367bAE\230Fl\323\355@\017H(\257\221"
Proxy-State = 0x323232
modcall: entering group authorize
modcall[authorize]: module "preprocess" returns ok
rlm_realm: Looking up realm NULL for User-Name = "test"
rlm_realm: No such realm NULL
modcall[authorize]: module "suffix" returns noop
users: Matched DEFAULT at 152
users: Matched DEFAULT at 171
users: Matched DEFAULT at 183
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
rad_check_password: Found Auth-Type System
auth: type "System"
modcall: entering group authenticate
HASH: user test found in hashtable bucket 2070
modcall[authenticate]: module "unix" returns ok
modcall: group authenticate returns ok
Sending Access-Accept of id 10 to 62.189.246.1:1647
Framed-IP-Address = 255.255.255.254
Framed-MTU = 576
Service-Type = Framed-User
Framed-Protocol = PPP
Framed-Compression = Van-Jacobson-TCP-IP
Proxy-State = 0x42543030323333633561663036
Proxy-State = 0x323232
Finished request 36
Going to the next request
--- Walking the entire request list ---
Waking up in 6 seconds...
--- Walking the entire request list ---
Cleaning up request 36 ID 10 with timestamp 3da59d2c
Nothing to do. Sleeping until we see a request.
rad_recv: Access-Request packet from host 62.189.246.1:1647, id=10, length=118
User-Name = "test"
NAS-IP-Address = 212.140.88.194
NAS-Port = 322
Service-Type = Framed-User
Framed-Protocol = PPP
Called-Station-Id = "8089933144"
Calling-Station-Id = "1303262252"
Proxy-State = 0x42543030323333633561663036
NAS-Port-Type = Async
User-Password = "`\367bAE\230Fl\323\355@\017H(\257\221"
Proxy-State = 0x323232
modcall: entering group authorize
modcall[authorize]: module "preprocess" returns ok
rlm_realm: Looking up realm NULL for User-Name = "test"
rlm_realm: No such realm NULL
modcall[authorize]: module "suffix" returns noop
users: Matched DEFAULT at 152
users: Matched DEFAULT at 171
users: Matched DEFAULT at 183
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
rad_check_password: Found Auth-Type System
auth: type "System"
modcall: entering group authenticate
HASH: user test found in hashtable bucket 2070
modcall[authenticate]: module "unix" returns ok
modcall: group authenticate returns ok
Sending Access-Accept of id 10 to 62.189.246.1:1647
Framed-IP-Address = 255.255.255.254
Framed-MTU = 576
Service-Type = Framed-User
Framed-Protocol = PPP
Framed-Compression = Van-Jacobson-TCP-IP
Proxy-State = 0x42543030323333633561663036
Proxy-State = 0x323232
Finished request 37
Going to the next request
--- Walking the entire request list ---
Waking up in 6 seconds...
--- Walking the entire request list ---
Cleaning up request 37 ID 10 with timestamp 3da59d36
Nothing to do. Sleeping until we see a request.
