Hi,
I am running 2.1.12 in an attempt to auth Wimax users. However I am
having difficulty defining TLVs for WiMAX-QoS-Descriptor and associated
WiMAX-Packet-Flow-Descriptor
I used a post on the matter in the freeradius mailing list which
suggested something to the effect of:
INSERT INTO radgroupreply (groupname, attribute, op, value) VALUES
('WiMAX_Test3', 'WiMAX-QoS-Id', ':=', '101'),
('WiMAX_Test3', 'WiMAX-Service-Class-Name', ':=', 'DATA'),
('WiMAX_Test3', 'WiMAX-Schedule-Type', ':=', 'Best-Effort'),
('WiMAX_Test3', 'WiMAX-Traffic-Priority', ':=', '1'),
('WiMAX_Test3', 'WiMAX-Maximum-Sustained-Traffic-Rate', ':=','512000'),
('WiMAX_Test3', 'WiMAX-Reduced-Resources-Code', ':=', '1'),
('WiMAX_Test3', 'WiMAX-Packet-Data-Flow-Id', ':=', '21'),
('WiMAX_Test3', 'WiMAX-Service-Data-Flow-Id', ':=', '21'),
('WiMAX_Test3', 'WiMAX-Direction', ':=', '1'),
('WiMAX_Test3', 'WiMAX-Activation-Trigger', ':=', '15'),
('WiMAX_Test3', 'WiMAX-Transport-Type', ':=', 'IPv4-CS'),
('WiMAX_Test3', 'WiMAX-Uplink-QOS-Id', ':=', '101'),
('WiMAX_Test3', 'WiMAX-Uplink-Classifier', ':=', 'permit in any src any
dst any priority 1'),
...etc
This did not work, as the greenpacket SM keeps on trying to connect as
if it is not authenticated, despite the following attributes being
returned in the Access-Accept packet:
Sending Access-Accept of id 84 to 10.11.12.13 port 1812
Framed-IP-Address := XXX.XX.12.12
Framed-IP-Netmask := 255.255.255.224
WiMAX-DNS-Server := XXX.XX.12.65
Framed-Route := "XXX.XX.12.30"
WiMAX-QoS-Id := 101
WiMAX-Service-Class-Name := "DATA"
WiMAX-Schedule-Type := Best-Effort
WiMAX-Traffic-Priority := 1
WiMAX-Maximum-Sustained-Traffic-Rate := 512000
WiMAX-Reduced-Resources-Code := 1
WiMAX-Packet-Data-Flow-Id := 22
WiMAX-Service-Data-Flow-Id := 22
WiMAX-Direction := Downlink
WiMAX-Activation-Trigger := 15
WiMAX-Transport-Type := IPv4-CS
WiMAX-Uplink-QOS-Id := 101
WiMAX-Uplink-Classifier := "permit in any src any dst any priority 1"
WiMAX-QoS-Id += 102
WiMAX-Service-Class-Name += "DATA"
WiMAX-Schedule-Type += Best-Effort
WiMAX-Traffic-Priority += 1
WiMAX-Maximum-Sustained-Traffic-Rate += 400000
WiMAX-Reduced-Resources-Code += 1
WiMAX-Downlink-QOS-Id := 102
WiMAX-Downlink-Classifier := "permit in any src any dst any priority 1"
MS-MPPE-Recv-Key =
0xdd5af25dadbfeba854cc0c6a5694abe0636104f1551530a9537855ecb6629d7e
MS-MPPE-Send-Key =
0x93064994b3908d600cdab33f17742a4de175db703101a8cd5019b0384a885d98
EAP-Message = 0x03040004
Message-Authenticator = 0x00000000000000000000000000000000
User-Name = "{am=1}00E6D4F0ED7C281D867BE1534026CDA8IC3513"
Finished request 4.
I thought i would add an attribute pair to be explicit that I am
defining TLVs, by inserting the following rows in the database (at the
appropriate rows by id):
('WiMAX_Test3', 'WiMAX-QoS-Descriptor', '=', '...'),
('WiMAX_Test3', 'WiMAX-Packet-Flow-Descriptor', '=', '...'),
...etc
but i then get the error specified in the subject above.
Can anyone shed light on how to correctly populate radgroupreply to
ensure proper definition of WiMAX TLVs?
Or perhaps I am doing something else wrong?
Hopefully,
JamesTM
--
Irrationally held truths may be more harmful than reasoned errors.
- Thomas H. Huxley
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
