Re: Stopping radius responding

Graeme Hinchliffe Fri, 18 Jul 2003 07:49:44 -0700

On Fri, 18 Jul 2003 15:35:54 +0100
Jo�o Filipe Frade <[EMAIL PROTECTED]> wrote:


> Strange,
> I've tried this configuration in freeradius 0.8.1 and it worked...

I thought it odd too.

> Do you have more radius servers configured?
> Do you have any other module in the authentication section?
> Are you shure that you get an auth-reject package?

my authentication section looks like this

---- START ----

authenticate {
        authtype PAP {
                pap
        }

        authtype CHAP {
                chap
        }
}
---- END ----

and my authorize section is:

---- START ----
authorize {
         redundant {
                sql1
                sql2
                handled
         }
}
---- END ----

And the dump from running radiusd -X gives  (NB: I have commented out the 
username/password and replaced them with xxxxxx )

---- START ----
rad_recv: Access-Request packet from host 127.0.0.1:42097, id=1, length=63
        User-Name = "xxxxxxxxxx"
        User-Password = "xxxxxxxxxx"
        NAS-Identifier = "office-137"
modcall: entering group authorize
modcall: entering group redundant
radius_xlat:  'xxxxxxxxxxx'
rlm_sql (sql1): sql_set_user escaped user --> 'xxxxxxxxxxx'
radius_xlat:  'SELECT id,UserName,Attribute,Value,op FROM radcheck WHERE Username = 
'xxxxxxxxxx' ORDER BY id'
rlm_sql (sql1): Ignoring unconnected handle
rlm_sql (sql1): Ignoring unconnected handle
rlm_sql (sql1): Ignoring unconnected handle
rlm_sql (sql1): Ignoring unconnected handle
rlm_sql (sql1): Ignoring unconnected handle
rlm_sql (sql1): There are no DB handles to use!
  modcall[authorize]: module "sql1" returns fail
radius_xlat:  'xxxxxxxxx'
rlm_sql (sql2): sql_set_user escaped user --> 'xxxxxxxxxxx'
radius_xlat:  'SELECT id,UserName,Attribute,Value,op FROM radcheck WHERE Username = 
'xxxxxxxxxxx' ORDER BY id'
rlm_sql (sql2): Ignoring unconnected handle
rlm_sql (sql2): Ignoring unconnected handle
rlm_sql (sql2): Ignoring unconnected handle
rlm_sql (sql2): Ignoring unconnected handle
rlm_sql (sql2): Ignoring unconnected handle
rlm_sql (sql2): There are no DB handles to use!
  modcall[authorize]: module "sql2" returns fail
  modcall[authorize]: module "handled" returns handled
modcall: group redundant returns handled
modcall: group authorize returns handled
There was no response configured: rejecting request 0
Server rejecting request 0.
Sending Access-Reject of id 1 to 127.0.0.1:42097
Finished request 0
---- END ----

To me it looks like getting a 'handled' request from the authorize section requires 
some extra config to say do nothing, but I am probably wrong :)

-- 
-----
Graeme Hinchliffe (BSc)
Core Internet Systems Designer
Zen Internet (http://www.zen.co.uk)

ICQ 3842605 (link)

Sales : 0870 6000 971
Fax   : 0870 6000 972


-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Stopping radius responding

Reply via email to