Re: wrt54g and freeradius

Gustavo Marcello Thu, 30 Jul 2009 09:08:00 -0700

This is the complete out of freeradius -X...

rad_recv: Access-Request packet from host 10.1.100.4 port 2048, id=0,length=121

       User-Name = "pepe"
       NAS-IP-Address = 10.1.100.4
       Called-Station-Id = "002369490b7b"
       Calling-Station-Id = "001de0249d5b"
       NAS-Identifier = "002369490b7b"
       NAS-Port = 34
       Framed-MTU = 1400
       NAS-Port-Type = Wireless-802.11
       EAP-Message = 0x020000090170657065
       Message-Authenticator = 0x199111463bd0fbb17cc6f7c7cca296c0
+- entering group authorize
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
   rlm_realm: No '@' in User-Name = "pepe", looking up realm NULL
   rlm_realm: No such realm "NULL"
++[suffix] returns noop
 rlm_eap: EAP packet type response id 0 length 9
 rlm_eap: No EAP Start, assuming it's an on-going EAP conversation
++[eap] returns updated
++[unix] returns notfound
++[files] returns noop
       expand: %{User-Name} -> pepe
rlm_sql (sql): sql_set_user escaped user --> 'pepe'
rlm_sql (sql): Reserving sql socket id: 4

expand: SELECT id, username, attribute, value, op FROMradcheck WHERE username = '%{SQL-User-Name}' ORDERBY id -> SELECT id, username, attribute, value, op FROMradcheck WHERE username = 'pepe' ORDER BY idrlm_sql_mysql: query: SELECT id, username, attribute, value,op FROM radcheck WHERE username = 'pepe'ORDER BY id

rlm_sql (sql): User found in radcheck table

expand: SELECT id, username, attribute, value, op FROMradreply WHERE username = '%{SQL-User-Name}' ORDERBY id -> SELECT id, username, attribute, value, op FROMradreply WHERE username = 'pepe' ORDER BY idrlm_sql_mysql: query: SELECT id, username, attribute, value,op FROM radreply WHERE username = 'pepe'ORDER BY idexpand: SELECT groupname FROM usergroupWHERE username = '%{SQL-User-Name}' ORDER BY priority ->SELECT groupname FROM usergroup WHERE username ='pepe' ORDER BY priorityrlm_sql_mysql: query: SELECT groupname FROMusergroup WHERE username = 'pepe' ORDER BY priority

rlm_sql (sql): Released sql socket id: 4
++[sql] returns ok
++[expiration] returns noop
++[logintime] returns noop
rlm_pap: Found existing Auth-Type, not changing it.
++[pap] returns noop
 rad_check_password:  Found Auth-Type EAP
auth: type "EAP"
+- entering group authenticate
 rlm_eap: EAP Identity
 rlm_eap: processing type md5
rlm_eap_md5: Issuing Challenge
++[eap] returns handled
Sending Access-Challenge of id 0 to 10.1.100.4 port 2048
       EAP-Message = 0x0101001604104fac8e1ba0cc711fccd80c8003211c3c
       Message-Authenticator = 0x00000000000000000000000000000000
       State = 0x102df74b102cf319cc7f1766ffcb4a81
Finished request 10.
Going to the next request
Waking up in 4.9 seconds.

rad_recv: Access-Request packet from host 10.1.100.4 port 2048, id=0,length=136

Cleaning up request 10 ID 0 with timestamp +307
       User-Name = "pepe"
       NAS-IP-Address = 10.1.100.4
       Called-Station-Id = "002369490b7b"
       Calling-Station-Id = "001de0249d5b"
       NAS-Identifier = "002369490b7b"
       NAS-Port = 34
       Framed-MTU = 1400
       State = 0x102df74b102cf319cc7f1766ffcb4a81
       NAS-Port-Type = Wireless-802.11
       EAP-Message = 0x020100060319
       Message-Authenticator = 0x48a397b472491fe98149d6233fe8708c
+- entering group authorize
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
   rlm_realm: No '@' in User-Name = "pepe", looking up realm NULL
   rlm_realm: No such realm "NULL"
++[suffix] returns noop
 rlm_eap: EAP packet type response id 1 length 6
 rlm_eap: No EAP Start, assuming it's an on-going EAP conversation
++[eap] returns updated
++[unix] returns notfound
++[files] returns noop
       expand: %{User-Name} -> pepe
rlm_sql (sql): sql_set_user escaped user --> 'pepe'
rlm_sql (sql): Reserving sql socket id: 3

rlm_sql (sql): User found in radcheck table

rlm_sql (sql): Released sql socket id: 3
++[sql] returns ok
++[expiration] returns noop
++[logintime] returns noop
rlm_pap: Found existing Auth-Type, not changing it.
++[pap] returns noop
 rad_check_password:  Found Auth-Type EAP
auth: type "EAP"
+- entering group authenticate
 rlm_eap: Request found, released from the list
 rlm_eap: EAP NAK
rlm_eap: NAK asked for unsupported type 25
rlm_eap: No common EAP types found.
 rlm_eap: Failed in EAP select
++[eap] returns invalid
auth: Failed to validate the user.

Login incorrect: [pepe/<via Auth-Type = EAP>] (from client routers-agroport 34 cli 001de0249d5b)

 Found Post-Auth-Type Reject
+- entering group REJECT
       expand: %{User-Name} -> pepe
attr_filter: Matched entry DEFAULT at line 11
++[attr_filter.access_reject] returns updated
Delaying reject of request 11 for 1 seconds
Going to the next request
Waking up in 0.9 seconds.
Sending delayed reject for request 11
Sending Access-Reject of id 0 to 10.1.100.4 port 2048
       EAP-Message = 0x04010004
       Message-Authenticator = 0x00000000000000000000000000000000
Waking up in 4.9 seconds.





Ivan Kalik escribió:

I need to contact someone who knows how to do or able to use a lynksys
WRT54G to authenticate users against a freeradius server, I am having
trouble implementing it.
I already have the freeradius to work well with a mysql database and try
radtest works fine. But wanting to do this through the WRT54G does not
work.
I need someone who can help me. (I have the default configuration files.)


Post the debug of the EAP request.

Ivan Kalik
Kalik Informatika ISP

-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: wrt54g and freeradius

Reply via email to