This one has me curious.
Do I have a config error? If so where?
When I use radtest I get an the following.
[EMAIL PROTECTED] doc]# radtest fred wilma localhost:1812 17 testing123
Sending Access-Request of id 64 to 127.0.0.1:1812
User-Name = "fred"
User-Password = "wilma"
NAS-IP-Address = radius.redlineservices.local
NAS-Port = 17
rad_recv: Access-Accept packet from host 127.0.0.1:1812, id=64,
length=216
Framed-Compression = Van-Jacobson-TCP-IP
Framed-Protocol = PPP
Service-Type = Framed-User
Framed-MTU = 1500
Idle-Timeout = 600
Session-Timeout = 28800
Ascend-Data-Filter = "ip in forward tcp est"
Ascend-Data-Filter = "ip in forward dstip 209.248.244.128/25 0"
Ascend-Data-Filter = "ip in drop tcp dstport = 25"
Ascend-Data-Filter = "ip in forward 0"
Debug output from the server is the same.
rad_recv: Access-Request packet from host 127.0.0.1:32770, id=64,
length=56
User-Name = "fred"
User-Password = "wilma"
NAS-IP-Address = 255.255.255.255
NAS-Port = 17
Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 3
modcall[authorize]: module "preprocess" returns ok for request 3
modcall[authorize]: module "chap" returns noop for request 3
modcall[authorize]: module "mschap" returns noop for request 3
rlm_realm: No '@' in User-Name = "fred", looking up realm NULL
rlm_realm: No such realm "NULL"
modcall[authorize]: module "suffix" returns noop for request 3
rlm_eap: No EAP-Message, not doing EAP
modcall[authorize]: module "eap" returns noop for request 3
users: Matched entry DEFAULT at line 152
modcall[authorize]: module "files" returns ok for request 3
radius_xlat: 'fred'
rlm_sql (sql): sql_set_user escaped user --> 'fred'
radius_xlat: 'SELECT id,UserName,Attribute,Value,op FROM radcheck WHERE
Username = 'fred' ORDER BY id'
rlm_sql (sql): Reserving sql socket id: 3
radius_xlat: 'SELECT
radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgrou
pcheck.Value,radgroupcheck.op FROM radgroupcheck,usergroup WHERE
usergroup.Username = 'fred' AND usergroup.GroupName =
radgroupcheck.GroupName ORDER BY radgroupcheck.id'
radius_xlat: 'SELECT id,UserName,Attribute,Value,op FROM radreply WHERE
Username = 'fred' ORDER BY id'
radius_xlat: 'SELECT
radgroupreply.id,radgroupreply.GroupName,radgroupreply.Attribute,radgrou
preply.Value,radgroupreply.op FROM radgroupreply,usergroup WHERE
usergroup.Username = 'fred' AND usergroup.GroupName =
radgroupreply.GroupName ORDER BY radgroupreply.id'
rlm_sql (sql): Released sql socket id: 3
modcall[authorize]: module "sql" returns ok for request 3
modcall: group authorize returns ok for request 3
rad_check_password: Found Auth-Type Local
auth: type Local
auth: user supplied User-Password matches local User-Password
Processing the post-auth section of radiusd.conf
modcall: entering group post-auth for request 3
rlm_sql (sql): Processing sql_postauth
radius_xlat: 'fred'
rlm_sql (sql): sql_set_user escaped user --> 'fred'
radius_xlat: 'INSERT into radpostauth (id, user, pass, reply, date)
values ('', 'fred', 'wilma', 'Access-Accept', NOW())'
rlm_sql (sql) in sql_postauth: query is INSERT into radpostauth (id,
user, pass, reply, date) values ('', 'fred', 'wilma', 'Access-Accept',
NOW())
rlm_sql (sql): Reserving sql socket id: 2
rlm_sql (sql): Released sql socket id: 2
modcall[post-auth]: module "sql" returns ok for request 3
modcall: group post-auth returns ok for request 3
Sending Access-Accept of id 64 to 127.0.0.1:32770
Framed-Compression := Van-Jacobson-TCP-IP
Framed-Protocol := PPP
Service-Type := Framed-User
Framed-MTU := 1500
Idle-Timeout := 600
Session-Timeout <= 28800
Ascend-Data-Filter += "ip in forward tcp est"
Ascend-Data-Filter += "ip in forward dstip 209.248.244.128/25 0"
Ascend-Data-Filter += "ip in drop tcp dstport = 25"
Ascend-Data-Filter += "ip in forward 0"
Finished request 3
Going to the next request
--- Walking the entire request list ---
Waking up in 6 seconds...
--- Walking the entire request list ---
Cleaning up request 3 ID 64 with timestamp 427fb66a
If I query the output dirrectly from my sql I don't get the extra 0's
being added.
mysql> Select
radgroupreply.id,radgroupreply.Groupname,radgroupreply.Attribute,radgrou
preply.Value,radgroupreply.Op FROM radgroupreply,usergroup WHERE
usergroup.Username = 'fred' AND usergroup.GroupName =
radgroupreply.GroupName ORDER BY radgroupreply.id;
+----+-----------+--------------------+---------------------------------
-------+----+
| id | Groupname | Attribute | Value
| Op |
+----+-----------+--------------------+---------------------------------
-------+----+
| 34 | dynamic | Framed-Compression | Van-Jacobsen-TCP-IP
| := |
| 35 | dynamic | Framed-Protocol | PPP
| := |
| 36 | dynamic | Service-type | Framed-User
| := |
| 37 | dynamic | Framed-MTU | 1500
| := |
| 43 | dynamic | Idle-timeout | 600
| := |
| 44 | dynamic | Session-Timeout | 28800
| <= |
| 49 | dynamic | Ascend-Data-Filter | ip in forward tcp est
| += |
| 50 | dynamic | Ascend-Data-Filter | ip in forward dstip
209.248.244.128/25 | += |
| 51 | dynamic | Ascend-Data-Filter | ip in drop tcp dstport = 25
| += |
| 52 | dynamic | Ascend-Data-Filter | ip in forward
| += |
+----+-----------+--------------------+---------------------------------
-------+----+
10 rows in set (0.00 sec)
Are these coming from rlm_sql or somewhere else?
Thanks in Advance
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
