Hi all,
I am back again... I am trying to set up a <AuthBy SYSTEM> setup on a
Cobalt RaQ3 with shadowed passwords, I don't even know if this can be
done. Anyhow If I do a radpwtst it works fine with no problems, but as
soon as I dial-up via PPP using PAP authentication radius locks up and
starts queuing requests.
netstat -a shows the below.
Proto Recv-Q Send-Q Local Address
udp 0 0 *:radacct *:*
udp 8256 0 *:radius *:*
I have to reboot the machine to get radius to return in any shape or
form. I have also tired a <AuthBy UNIX> and I get the same
response. However if I login using CHAP it will warn me that Encrypted
passwords are not allowed with Chap and radiator will NOT lock up. Don't
know if that helps, but it could.
////////////////////////////////////////////////////////////
//Here is a trace 4 on the current problem:
////////////////////////////////////////////////////////////
Wed Jun 14 17:53:50 2000: INFO: Server started: Radiator 2.16
Wed Jun 14 17:54:22 2000: DEBUG: Packet dump:
*** Received from 216.67.xxx.xxx port 1025 ....
Code: Access-Request
Identifier: 202
Authentic: 1234567890123456
Attributes:
User-Name = "admin"
Service-Type = Framed-User
NAS-IP-Address = 203.63.154.1
NAS-Port = 1234
NAS-Port-Type = Async
User-Password = "<23><189>S0<145>_d!$<216><137>%<202><169><17><255>"
Wed Jun 14 17:54:22 2000: DEBUG: Rewrote user name to admin
Wed Jun 14 17:54:22 2000: DEBUG: Handling request with Handler 'Realm=DEFAULT'
Wed Jun 14 17:54:22 2000: DEBUG: Deleting session for admin, 203.63.154.1,
1234
Wed Jun 14 17:54:22 2000: DEBUG: Handling with Radius::AuthSYSTEM
Wed Jun 14 17:54:22 2000: DEBUG: getpwnam got admin, Iw5HVCj20za6c, 110,
27, , , Administrator, /home/sites/home/users/admin, /bin/bash
Wed Jun 14 17:54:22 2000: DEBUG: Radius::AuthSYSTEM looks for match with admin
Wed Jun 14 17:54:22 2000: DEBUG: Radius::AuthSYSTEM ACCEPT:
Wed Jun 14 17:54:22 2000: DEBUG: Access accepted for admin
Wed Jun 14 17:54:22 2000: DEBUG: Packet dump:
*** Sending to 216.67.xxx.xxx port 1025 ....
Code: Access-Accept
Identifier: 202
Authentic: 1234567890123456
Attributes:
Wed Jun 14 17:54:22 2000: DEBUG: Packet dump:
*** Received from 216.67.xxx.xxx port 1025 ....
Code: Accounting-Request
Identifier: 203
Authentic: <189>v8<253>B<2>EG_Z<158><30>p^<164><252>
Attributes:
User-Name = "admin"
Service-Type = Framed-User
NAS-IP-Address = 203.63.154.1
NAS-Port = 1234
NAS-Port-Type = Async
Acct-Session-Id = "00001234"
Acct-Status-Type = Start
Wed Jun 14 17:54:22 2000: DEBUG: Rewrote user name to admin
Wed Jun 14 17:54:22 2000: DEBUG: Handling request with Handler 'Realm=DEFAULT'
Wed Jun 14 17:54:22 2000: DEBUG: Adding session for admin, 203.63.154.1, 1234
Wed Jun 14 17:54:22 2000: DEBUG: Handling with Radius::AuthSYSTEM
Wed Jun 14 17:54:22 2000: DEBUG: Accounting accepted
Wed Jun 14 17:54:22 2000: DEBUG: Packet dump:
*** Sending to 216.67.xxx.xxx port 1025 ....
Code: Accounting-Response
Identifier: 203
Authentic: <189>v8<253>B<2>EG_Z<158><30>p^<164><252>
Attributes:
Wed Jun 14 17:54:22 2000: DEBUG: Packet dump:
*** Received from 216.67.xxx.xxx port 1025 ....
Code: Accounting-Request
Identifier: 204
Authentic: B<199><184>V!g<14>kM<27>f<191><175><189><190>X
Attributes:
User-Name = "admin"
Service-Type = Framed-User
NAS-IP-Address = 203.63.154.1
NAS-Port = 1234
NAS-Port-Type = Async
Acct-Session-Id = "00001234"
Acct-Status-Type = Stop
Acct-Delay-Time = 0
Acct-Session-Time = 1000
Acct-Input-Octets = 20000
Acct-Output-Octets = 30000
Service-Type = Framed-User
NAS-IP-Address = 203.63.154.1
NAS-Port = 1234
NAS-Port-Type = Async
Acct-Session-Id = "00001234"
Acct-Status-Type = Stop
Acct-Delay-Time = 0
Acct-Session-Time = 1000
Acct-Input-Octets = 20000
Acct-Output-Octets = 30000
Wed Jun 14 17:54:22 2000: DEBUG: Rewrote user name to admin
Wed Jun 14 17:54:22 2000: DEBUG: Handling request with Handler 'Realm=DEFAULT'
Wed Jun 14 17:54:22 2000: DEBUG: Deleting session for admin, 203.63.154.1,
1234
Wed Jun 14 17:54:22 2000: DEBUG: Handling with Radius::AuthSYSTEM
Wed Jun 14 17:54:22 2000: DEBUG: Accounting accepted
Wed Jun 14 17:54:22 2000: DEBUG: Packet dump:
*** Sending to 216.67.xxx.xxx port 1025 ....
Code: Accounting-Response
Identifier: 204
Authentic: B<199><184>V!g<14>kM<27>f<191><175><189><190>X
Attributes:
//////////////////////////////////////////////////////////
// Above is the command line test
// Below is the PPP, PAP test
//////////////////////////////////////////////////////////
Wed Jun 14 17:55:30 2000: DEBUG: Packet dump:
*** Received from 216.67.xxx.xxx port 1068 ....
Code: Access-Request
Identifier: 15
Authentic: "<214><21>-<159>g<194>H*<189><18><230>J<151><144>~
Attributes:
User-Name = "admin"
User-Password = "<156>+<12><6><233><152>DR<27>i<12><191><216>[^<159>"
NAS-IP-Address = 204.227.195.11
NAS-Port = 1152
NAS-Port-Type = Async
Service-Type = Framed-User
Framed-Protocol = PPP
State = ""
Calling-Station-Id = "3078571024"
Called-Station-Id = "7488378"
Acct-Session-Id = "308751931"
Ascend-Data-Rate = 31200
Ascend-Xmit-Rate = 31200
NAS-Port = 1152
NAS-Port-Type = Async
Service-Type = Framed-User
Framed-Protocol = PPP
State = ""
Calling-Station-Id = "3078571024"
Called-Station-Id = "7488378"
Acct-Session-Id = "308751931"
Ascend-Data-Rate = 31200
Ascend-Xmit-Rate = 31200
Wed Jun 14 17:55:30 2000: DEBUG: Rewrote user name to admin
Wed Jun 14 17:55:30 2000: DEBUG: Handling request with Handler 'Realm=DEFAULT'
Wed Jun 14 17:55:30 2000: DEBUG: Deleting session for admin,
204.227.195.11, 1152
//////////////////////////////////////////////////////////////
Radiator just stops responding and starts queuing requests for some reason.
/////////////////////////////////////////////////////////////
// Here is copy of the config file that I am
// running on the machine also.
//////////////////////////////////////////////////////////////
/////////////////////////
// Config Start
/////////////////////////
# Print messages to STOUT
LogStdout
# Run in the foreground
Foreground
# Show everything up to INFO
Trace 4
# Authentication port
AuthPort 1812
# Accounting port
AcctPort 1813
# Only listen to primary address
BindAddress xxx.xxxx.xxxx.xxx
# Logging directory
LogDir /var/log
LogFile %L/radius
# Database location (not really used, but it likes this)
DbDir /usr/local/src/Radiator-2.16
# Dictionary file
DictionaryFile /usr/local/src/Radiator-2.16/dictionary
# PID file location
PidFile /var/run/radiusd.pid
# Username rewrite rules
RewriteUsername tr/A-Z/a-z/
# Clients
# Local testing
<Client localhost>
Secret localhost
</Client>
# Contact Communications proxy radius servers
<Client 216.67.xxx.xxx>
IdenticalClients 216.67.xxx.xxx
Secret xxxxxxxxxxxx
DupInterval 2
</Client>
<Client DEFAULT>
Secret xxxxxxx
</Client>
# Realms - only use the Linux authentication system
<Realm DEFAULT>
MaxSessions 1
<AuthBy SYSTEM>
Identifier System1
UseGetspnam
</AuthBy>
</Realm>
///////////////////////////
// Config END
////////////////////////////
Any help on this would be appreciated, and let me know if you need any
further information.
Thanks again,
If you any questions please contact me at:
[EMAIL PROTECTED]
Opinions are mine and do not necessarily reflect
those of wyoming.com
===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
