Hello Dennis -
What you have sent below shows that there is no problem, its just that you must
specify some parameters to radpwtst to make it work properly in your test
environment. Radpwtst normally sends an Access-Request, an Accounting-Start and
an Accounting-Stop with a time interval of 5 seconds between each one. Your log
clearly shows the test Access-Request arriving at
Tue Feb 1 02:11:20 2000: DEBUG: Packet dump:
> *** Received from 127.0.0.1 port 1035 ....
> Code: Access-Request
and the proxy request being sent at
> Tue Feb 1 02:11:20 2000: DEBUG: Packet dump:
> *** Sending to 203.172.11.86 port 1645 ....
> Code: Access-Request
> Identifier: 17
the proxy reply arrives at (21 seconds later - after radpwtst has given up)
> Tue Feb 1 02:11:41 2000: DEBUG: Packet dump:
> *** Received from 203.172.11.86 port 1645 ....
> Code: Access-Accept
> Identifier: 17
and is sent back to radpwtst at
> Tue Feb 1 02:11:41 2000: DEBUG: Packet dump:
> *** Sending to 127.0.0.1 port 1035 ....
> Code: Access-Accept
> Identifier: 230
> Authentic: 1234567890123456
If you want to use radpwtst to do this, I suggest something like this:
radpwtst -noacct -user *test-user* -password *test-password* -timeout 30
hth
Hugh
On Tue, 01 Feb 2000, Dennis Villanueva wrote:
> Hello,
>
>
> I'm trying to configure my radiator server to work with secureid
> but i'm having some problems. I'm using radiator radius ver 2.14.1 running
> on linux 6.0. My ace server is ver 4.0 running on NT.
>
> thank you
>
> =====================
> here is the logfile
> =====================
>
> Tue Feb 1 02:11:20 2000: DEBUG: Packet dump:
> *** Received from 127.0.0.1 port 1035 ....
> Code: Access-Request
> Identifier: 230
> Authentic: 1234567890123456
> Attributes:
> User-Name = "[EMAIL PROTECTED]"
> Service-Type = Framed-User
> NAS-IP-Address = 203.63.154.1
> NAS-Port = 1234
> NAS-Port-Type = Async
> User-Password = "<139><234>&<156><157>o=<192><132><8>:<152><216>}x<153>"
>
> Tue Feb 1 02:11:20 2000: DEBUG: Handling request with Handler
> 'Realm=info.com.ph'
> Tue Feb 1 02:11:20 2000: DEBUG: Rewrote user name to ray
> Tue Feb 1 02:11:20 2000: DEBUG: Deleting session for [EMAIL PROTECTED],
> 203.63.154.1, 1234
> Tue Feb 1 02:11:20 2000: DEBUG: Handling with Radius::AuthRADIUS
> Tue Feb 1 02:11:20 2000: DEBUG: Packet dump:
> *** Sending to 203.172.11.86 port 1645 ....
> Code: Access-Request
> Identifier: 17
> Authentic: 1234567890123456
> Attributes:
> User-Name = "ray"
> Service-Type = Framed-User
> NAS-IP-Address = 203.63.154.1
> NAS-Port = 1234
> NAS-Port-Type = Async
> User-Password =
> "<207><182>e<18><215><235><255><160><130><21><244><149><20>_ev"
>
> Tue Feb 1 02:11:25 2000: DEBUG: Packet dump:
> *** Received from 127.0.0.1 port 1035 ....
> Code: Accounting-Request
> Identifier: 231
> Authentic: <241>dry<219><175>.q<251><214><143>6<9><134><192><200>
> Attributes:
> User-Name = "[EMAIL PROTECTED]"
> Service-Type = Framed-User
> NAS-IP-Address = 203.63.154.1
> NAS-Port = 1234
> NAS-Port-Type = Async
> Acct-Session-Id = "00001234"
> Acct-Status-Type = Start
>
> Tue Feb 1 02:11:25 2000: DEBUG: Handling request with Handler
> 'Realm=info.com.ph'
> Tue Feb 1 02:11:25 2000: DEBUG: Rewrote user name to ray
> Tue Feb 1 02:11:25 2000: DEBUG: Adding session for [EMAIL PROTECTED],
> 203.63.154.1, 1234
> Tue Feb 1 02:11:25 2000: DEBUG: Handling with Radius::AuthRADIUS
> Tue Feb 1 02:11:25 2000: DEBUG: Packet dump:
> *** Sending to 203.172.11.86 port 1646 ....
> Code: Accounting-Request
> Identifier: 18
> Authentic: <0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
> Attributes:
> User-Name = "ray"
> Service-Type = Framed-User
> NAS-IP-Address = 203.63.154.1
> NAS-Port = 1234
> NAS-Port-Type = Async
> Acct-Session-Id = "00001234"
> Acct-Status-Type = Start
> Timestamp = 949342285
> Acct-Delay-Time = 0
>
> Tue Feb 1 02:11:30 2000: DEBUG: Packet dump:
> *** Received from 127.0.0.1 port 1035 ....
> Code: Accounting-Request
> Identifier: 232
> Authentic: )h6y<206><253><27>x<162><23><152><181><254>;<29>d
> Attributes:
> User-Name = "[EMAIL PROTECTED]"
> Service-Type = Framed-User
> NAS-IP-Address = 203.63.154.1
> NAS-Port = 1234
> NAS-Port-Type = Async
> Acct-Session-Id = "00001234"
> Acct-Status-Type = Stop
> Acct-Delay-Time = 0
> Acct-Session-Time = 1000
> Acct-Input-Octets = 20000
> Acct-Output-Octets = 30000
>
> Tue Feb 1 02:11:30 2000: DEBUG: Handling request with Handler
> 'Realm=info.com.ph'
> Tue Feb 1 02:11:30 2000: DEBUG: Rewrote user name to ray
> Tue Feb 1 02:11:30 2000: DEBUG: Deleting session for [EMAIL PROTECTED],
> 203.63.154.1, 1234
> Tue Feb 1 02:11:30 2000: DEBUG: Handling with Radius::AuthRADIUS
> Tue Feb 1 02:11:30 2000: DEBUG: Packet dump:
> *** Sending to 203.172.11.86 port 1646 ....
> Code: Accounting-Request
> Identifier: 19
> Authentic: <0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
> Attributes:
> User-Name = "ray"
> Service-Type = Framed-User
> NAS-IP-Address = 203.63.154.1
> NAS-Port = 1234
> NAS-Port-Type = Async
> Acct-Session-Id = "00001234"
> Acct-Status-Type = Stop
> Acct-Delay-Time = 0
> Acct-Session-Time = 1000
> Acct-Input-Octets = 20000
> Acct-Output-Octets = 30000
> Timestamp = 949342290
>
> Tue Feb 1 02:11:41 2000: DEBUG: Packet dump:
> *** Received from 203.172.11.86 port 1645 ....
> Code: Access-Accept
> Identifier: 17
> Authentic: <168><246><253>i<15><225><246><5><176>`<229>X<12><229>D<129>
> Attributes:
> Service-Type = Framed-User
> Framed-Protocol = PPP
> Framed-IP-Netmask = 255.255.255.255
> Framed-MTU = 1500
> Acct-Status-Type = Accounting-On
> NAS-Port-Type = Async
> Reply-Message = "PASSCODE Accepted<10>"
>
> Tue Feb 1 02:11:41 2000: DEBUG: Received reply in AuthRADIUS for req 17
> from 203.172.11.86:1645
> Tue Feb 1 02:11:41 2000: DEBUG: Packet dump:
> *** Sending to 127.0.0.1 port 1035 ....
> Code: Access-Accept
> Identifier: 230
> Authentic: 1234567890123456
> Attributes:
> Service-Type = Framed-User
> Framed-Protocol = PPP
> Framed-IP-Netmask = 255.255.255.255
> Framed-MTU = 1500
> Acct-Status-Type = Accounting-On
> NAS-Port-Type = Async
> Reply-Message = "PASSCODE Accepted<10>"
>
> Tue Feb 1 02:12:10 2000: DEBUG: Timed out, retransmitting
> Tue Feb 1 02:12:10 2000: DEBUG: Packet dump:
> *** Sending to 203.172.11.86 port 1646 ....
> Code: Accounting-Request
> Identifier: 20
> Authentic: <0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
> Attributes:
> User-Name = "ray"
> Service-Type = Framed-User
> NAS-IP-Address = 203.63.154.1
> NAS-Port = 1234
> NAS-Port-Type = Async
> Acct-Session-Id = "00001234"
> Acct-Status-Type = Start
> Timestamp = 949342210
> Acct-Delay-Time = 120
>
> Tue Feb 1 02:12:15 2000: DEBUG: Timed out, retransmitting
> Tue Feb 1 02:12:15 2000: DEBUG: Packet dump:
> *** Sending to 203.172.11.86 port 1646 ....
> Code: Accounting-Request
> Identifier: 21
> Authentic: <0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
> Attributes:
> User-Name = "ray"
> Service-Type = Framed-User
> NAS-IP-Address = 203.63.154.1
> NAS-Port = 1234
> NAS-Port-Type = Async
> Acct-Session-Id = "00001234"
> Acct-Status-Type = Stop
> Acct-Delay-Time = 120
> Acct-Session-Time = 1000
> Acct-Input-Octets = 20000
> Acct-Output-Octets = 30000
> Timestamp = 949342215
>
> Tue Feb 1 02:12:21 2000: INFO: AuthRADIUS: No reply after 1 retransmissions
> Tue Feb 1 02:12:21 2000: INFO: AuthRADIUS: No response from any RADIUS
> hosts. Ignoring
> Tue Feb 1 02:12:26 2000: INFO: AuthRADIUS: No reply after 1 retransmissions
> Tue Feb 1 02:12:26 2000: INFO: AuthRADIUS: No response from any RADIUS
> hosts. Ignoring
> Tue Feb 1 02:12:31 2000: DEBUG: Timed out, retransmitting
> Tue Feb 1 02:12:31 2000: DEBUG: Packet dump:
> *** Sending to 203.172.11.86 port 1646 ....
> Code: Accounting-Request
> Identifier: 22
> Authentic: <0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
> Attributes:
> User-Name = "ray"
> Service-Type = Framed-User
> NAS-IP-Address = 203.63.154.1
> NAS-Port = 1234
> NAS-Port-Type = Async
> Acct-Session-Id = "00001234"
> Acct-Status-Type = Start
> Timestamp = 949342231
> Acct-Delay-Time = 120
>
> Tue Feb 1 02:12:36 2000: DEBUG: Timed out, retransmitting
> Tue Feb 1 02:12:36 2000: DEBUG: Packet dump:
> *** Sending to 203.172.11.86 port 1646 ....
> Code: Accounting-Request
> Identifier: 23
> Authentic: <0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
> Attributes:
> User-Name = "ray"
> Service-Type = Framed-User
> NAS-IP-Address = 203.63.154.1
> NAS-Port = 1234
> NAS-Port-Type = Async
> Acct-Session-Id = "00001234"
> Acct-Status-Type = Stop
> Acct-Delay-Time = 120
> Acct-Session-Time = 1000
> Acct-Input-Octets = 20000
> Acct-Output-Octets = 30000
> Timestamp = 949342236
>
> ===================
>
> here is my cf file
>
> ===================
>
> # radius.cfg
> Foreground
> AuthPort 1645
> AcctPort 1646
>
> Trace 4
>
> LogDir /data/LOGFILE
>
> DbDir /usr/local/etc/raddb
>
> <Client localhost>
> Secret mysecret
> DupInterval 0
> </Client>
>
> <Client somme.ip.address>
> Secret somesecret
> IgnoreAcctSignature
> DupInterval 0
> </Client>
>
> <Realm some.domain>
> RewriteUsername s/^([^@]+).*/$1/
> AcctLogFileName %L/detail
> AcctLogFileFormat %m %d %Y %H:%M:%S NAS-IP-Address=%{NAS-IP-Address}
> NAS-Port=%{NAS-Port} User-Name=%{User-Name}
> Called-Station-Id=%{Called-Station-Id}
> Calling-Station-Id=%{Calling-Station-Id}
> Acct-Status-Type=%{Acct-Status-Type} Service-Type=%{Service-Type}
> Acct-Session-Id=%{Acct-Session-Id} Framed-Protocol=%{Framed-Protocol}
> Framed-IP-Address=%{Framed-IP-Address} Acct-Session-Time=%{Acct-Session-Time}
> <AuthBy RADIUS>
> Host some.ipaddress
> Secret somesecret
> AuthPort 1645
> AcctPort 1646
> DefaultReply
> Service-Type=Framed-User,Framed-Protocol=PPP,Framed-MTU=1500,NAS-Port-Type=A
> sync,Framed-IP-Netmask=255.255.255.255
> Retries 1
> RetryTimeout 120
> </AuthBy>
> </Realm>
>
>
> =====================
>
> here is the display on the monitor
> after running adpwtst
>
> =====================
>
> sending Access-Request...
> No reply
> sending Accounting-Request Start...
> No reply
> sending Accounting-Request Stop...
> No reply
>
>
>
> *****************************************************************
> The information transmitted is intended only for the person or entity to
> which it is addressed and may contain confidential and/or privileged
> material of Infocom Technologies Inc.� Any review, retransmission,
> dissemination or other use of, or taking of any action in reliance upon,
> this information by persons or entities other than the intended recipient is
> prohibited.�� If you received this in error, please contact the sender and
> delete the material from any computer.
> ******************************************************************
>
>
>
> Archive at http://www.thesite.com.au/~radiator/
> To unsubscribe, email '[EMAIL PROTECTED]' with
> 'unsubscribe radiator' in the body of the message.
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, etc etc on Unix, Win95/8,
NT, Rhapsody
===
Archive at http://www.thesite.com.au/~radiator/
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
