Release of Version 3.0.2

Matthew Newton mcn4 at leicester.ac.uk
Mon Mar 10 22:59:32 CET 2014


On Sun, Mar 09, 2014 at 09:16:46AM -0400, Alan DeKok wrote:
>   Version 3.0.2 is late due to some last minute issues.  We're sorry for
> the delay.
> 
>   I think we're good to release 3.0.2 this week.

I've just tried DHCP again... some good news and some bad.

Good news is that assigning a static IP (just one static IP) now will serve
that one IP to anything that asks :) This is 100% improvement on last time I
tried!


Trying to use mac2ip is giving me a "double free or corruption (fasttop)"
error. I'll try and reduce to minimal config (which this nearly is...) and post
the backtrace.


Also something that's making me think I'm going stupid...

Received DHCP-Discover of id a035ab0e from 0.0.0.0:68 to 255.255.255.255:67
  DHCP-Opcode = Client-Message
...
  DHCP-Client-Hardware-Address = 84:51:81:af:c6:09
...
Trying sub-section dhcp DHCP-Discover {...}
(0)  dhcp DHCP-Discover {
(0)   update reply {
(0)   DHCP-Message-Type = DHCP-Offer
(0)   } # update reply = noop
(0)   ? if (DHCP-Client-Hardware-Address == "84:51:81:af:c6:09") 
(0)   ? if (DHCP-Client-Hardware-Address == "84:51:81:af:c6:09")  -> FALSE
(0)   update reply {

False why?

This is default config, with just this in the DHCP discover/request sections:

        if (DHCP-Client-Hardware-Address == "84:51:81:af:c6:09") {
                update reply {
                        DHCP-Your-IP-Address := "10.0.0.120"
                }
        }

(full debug below)

Cheers,

Matthew



radiusd: FreeRADIUS Version 3.0.2 (git #6cebeea), for host x86_64-unknown-linux-gnu, built on Mar 10 2014 at 21:18:23
Copyright (C) 1999-2014 The FreeRADIUS server project and contributors
There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A
PARTICULAR PURPOSE
You may redistribute copies of FreeRADIUS under the terms of the
GNU General Public License
For more information about these matters, see the file named COPYRIGHT
Starting - reading configuration files ...
including dictionary file /opt/fr3/share/freeradius/dictionary
including dictionary file /opt/fr3/etc/raddb/dictionary
including configuration file /opt/fr3/etc/raddb/radiusd.conf
including configuration file /opt/fr3/etc/raddb/proxy.conf
including configuration file /opt/fr3/etc/raddb/clients.conf
including files in directory /opt/fr3/etc/raddb/mods-enabled/
including configuration file /opt/fr3/etc/raddb/mods-enabled/unix
including configuration file /opt/fr3/etc/raddb/mods-enabled/echo
including configuration file /opt/fr3/etc/raddb/mods-enabled/dhcp
including configuration file /opt/fr3/etc/raddb/mods-enabled/cache_eap
including configuration file /opt/fr3/etc/raddb/mods-enabled/dynamic_clients
including configuration file /opt/fr3/etc/raddb/mods-enabled/ntlm_auth
including configuration file /opt/fr3/etc/raddb/mods-enabled/always
including configuration file /opt/fr3/etc/raddb/mods-enabled/soh
including configuration file /opt/fr3/etc/raddb/mods-enabled/logintime
including configuration file /opt/fr3/etc/raddb/mods-enabled/replicate
including configuration file /opt/fr3/etc/raddb/mods-enabled/radutmp
including configuration file /opt/fr3/etc/raddb/mods-enabled/attr_filter
including configuration file /opt/fr3/etc/raddb/mods-enabled/pap
including configuration file /opt/fr3/etc/raddb/mods-enabled/passwd
including configuration file /opt/fr3/etc/raddb/mods-enabled/utf8
including configuration file /opt/fr3/etc/raddb/mods-enabled/expiration
including configuration file /opt/fr3/etc/raddb/mods-enabled/expr
including configuration file /opt/fr3/etc/raddb/mods-enabled/realm
including configuration file /opt/fr3/etc/raddb/mods-enabled/eap
including configuration file /opt/fr3/etc/raddb/mods-enabled/linelog
including configuration file /opt/fr3/etc/raddb/mods-enabled/preprocess
including configuration file /opt/fr3/etc/raddb/mods-enabled/digest
including configuration file /opt/fr3/etc/raddb/mods-enabled/detail
including configuration file /opt/fr3/etc/raddb/mods-enabled/files
including configuration file /opt/fr3/etc/raddb/mods-enabled/exec
including configuration file /opt/fr3/etc/raddb/mods-enabled/sradutmp
including configuration file /opt/fr3/etc/raddb/mods-enabled/detail.log
including configuration file /opt/fr3/etc/raddb/mods-enabled/chap
including configuration file /opt/fr3/etc/raddb/mods-enabled/mschap
including files in directory /opt/fr3/etc/raddb/policy.d/
including configuration file /opt/fr3/etc/raddb/policy.d/operator-name
including configuration file /opt/fr3/etc/raddb/policy.d/canonicalization
including configuration file /opt/fr3/etc/raddb/policy.d/dhcp
including configuration file /opt/fr3/etc/raddb/policy.d/cui
including configuration file /opt/fr3/etc/raddb/policy.d/filter
including configuration file /opt/fr3/etc/raddb/policy.d/eap
including configuration file /opt/fr3/etc/raddb/policy.d/control
including configuration file /opt/fr3/etc/raddb/policy.d/accounting
including files in directory /opt/fr3/etc/raddb/sites-enabled/
including configuration file /opt/fr3/etc/raddb/sites-enabled/dhcp
main {
 security {
 	allow_core_dumps = no
 }
}
main {
	name = "radiusd"
	prefix = "/opt/fr3"
	localstatedir = "/opt/fr3/var"
	sbindir = "/opt/fr3/sbin"
	logdir = "/opt/fr3/var/log/radius"
	run_dir = "/opt/fr3/var/run/radiusd"
	libdir = "/opt/fr3/lib"
	radacctdir = "/opt/fr3/var/log/radius/radacct"
	hostname_lookups = no
	max_request_time = 30
	cleanup_delay = 5
	max_requests = 1024
	pidfile = "/opt/fr3/var/run/radiusd/radiusd.pid"
	checkrad = "/opt/fr3/sbin/checkrad"
	debug_level = 0
	proxy_requests = yes
 log {
 	stripped_names = no
 	auth = no
 	auth_badpass = no
 	auth_goodpass = no
 	colourise = yes
 }
 security {
 	max_attributes = 200
 	reject_delay = 1
 	status_server = yes
 }
}
radiusd: #### Loading Realms and Home Servers ####
 proxy server {
 	retry_delay = 5
 	retry_count = 3
 	default_fallback = no
 	dead_time = 120
 	wake_all_if_all_dead = no
 }
 home_server localhost {
 	ipaddr = 127.0.0.1
 	port = 1812
 	type = "auth"
 	secret = <<< secret >>>
 	response_window = 20
 	max_outstanding = 65536
 	zombie_period = 40
 	status_check = "status-server"
 	ping_interval = 30
 	check_interval = 30
 	num_answers_to_alive = 3
 	revive_interval = 120
 	status_check_timeout = 4
  coa {
  	irt = 2
  	mrt = 16
  	mrc = 5
  	mrd = 30
  }
  limit {
  	max_connections = 16
  	max_requests = 0
  	lifetime = 0
  	idle_timeout = 0
  }
 }
 home_server_pool my_auth_failover {
	type = fail-over
	home_server = localhost
 }
 realm example.com {
	auth_pool = my_auth_failover
 }
 realm LOCAL {
 }
radiusd: #### Loading Clients ####
 client localhost {
 	ipaddr = 127.0.0.1
 	require_message_authenticator = no
 	secret = <<< secret >>>
 	nas_type = "other"
 	proto = "*"
  limit {
  	max_connections = 16
  	lifetime = 0
  	idle_timeout = 30
  }
 }
radiusd: #### Instantiating modules ####
 instantiate {
 }
 modules {
  # Loaded module rlm_unix
  # Instantiating module "unix" from file /opt/fr3/etc/raddb/mods-enabled/unix
  unix {
  	radwtmp = "/opt/fr3/var/log/radius/radwtmp"
  }
  # Loaded module rlm_exec
  # Instantiating module "echo" from file /opt/fr3/etc/raddb/mods-enabled/echo
  exec echo {
  	wait = yes
  	program = "/bin/echo %{User-Name}"
  	input_pairs = "request"
  	output_pairs = "reply"
  	shell_escape = yes
  }
  # Loaded module rlm_dhcp
  # Instantiating module "dhcp" from file /opt/fr3/etc/raddb/mods-enabled/dhcp
  # Loaded module rlm_cache
  # Instantiating module "cache_eap" from file /opt/fr3/etc/raddb/mods-enabled/cache_eap
  cache cache_eap {
  	key = "%{%{control:State}:-%{%{reply:State}:-%{State}}}"
  	ttl = 15
  	max_entries = 16384
  	epoch = 0
  	add_stats = no
  }
  # Loaded module rlm_dynamic_clients
  # Instantiating module "dynamic_clients" from file /opt/fr3/etc/raddb/mods-enabled/dynamic_clients
  # Instantiating module "ntlm_auth" from file /opt/fr3/etc/raddb/mods-enabled/ntlm_auth
  exec ntlm_auth {
  	wait = yes
  	program = "/path/to/ntlm_auth --request-nt-key --domain=MYDOMAIN --username=%{mschap:User-Name} --password=%{User-Password}"
  	shell_escape = yes
  }
  # Loaded module rlm_always
  # Instantiating module "reject" from file /opt/fr3/etc/raddb/mods-enabled/always
  always reject {
  	rcode = "reject"
  	simulcount = 0
  	mpp = no
  }
  # Instantiating module "fail" from file /opt/fr3/etc/raddb/mods-enabled/always
  always fail {
  	rcode = "fail"
  	simulcount = 0
  	mpp = no
  }
  # Instantiating module "ok" from file /opt/fr3/etc/raddb/mods-enabled/always
  always ok {
  	rcode = "ok"
  	simulcount = 0
  	mpp = no
  }
  # Instantiating module "handled" from file /opt/fr3/etc/raddb/mods-enabled/always
  always handled {
  	rcode = "handled"
  	simulcount = 0
  	mpp = no
  }
  # Instantiating module "invalid" from file /opt/fr3/etc/raddb/mods-enabled/always
  always invalid {
  	rcode = "invalid"
  	simulcount = 0
  	mpp = no
  }
  # Instantiating module "userlock" from file /opt/fr3/etc/raddb/mods-enabled/always
  always userlock {
  	rcode = "userlock"
  	simulcount = 0
  	mpp = no
  }
  # Instantiating module "notfound" from file /opt/fr3/etc/raddb/mods-enabled/always
  always notfound {
  	rcode = "notfound"
  	simulcount = 0
  	mpp = no
  }
  # Instantiating module "noop" from file /opt/fr3/etc/raddb/mods-enabled/always
  always noop {
  	rcode = "noop"
  	simulcount = 0
  	mpp = no
  }
  # Instantiating module "updated" from file /opt/fr3/etc/raddb/mods-enabled/always
  always updated {
  	rcode = "updated"
  	simulcount = 0
  	mpp = no
  }
  # Loaded module rlm_soh
  # Instantiating module "soh" from file /opt/fr3/etc/raddb/mods-enabled/soh
  soh {
  	dhcp = yes
  }
  # Loaded module rlm_logintime
  # Instantiating module "logintime" from file /opt/fr3/etc/raddb/mods-enabled/logintime
  logintime {
  	minimum_timeout = 60
  }
  # Loaded module rlm_replicate
  # Instantiating module "replicate" from file /opt/fr3/etc/raddb/mods-enabled/replicate
  # Loaded module rlm_radutmp
  # Instantiating module "radutmp" from file /opt/fr3/etc/raddb/mods-enabled/radutmp
  radutmp {
  	filename = "/opt/fr3/var/log/radius/radutmp"
  	username = "%{User-Name}"
  	case_sensitive = yes
  	check_with_nas = yes
  	permissions = 384
  	caller_id = yes
  }
  # Loaded module rlm_attr_filter
  # Instantiating module "attr_filter.post-proxy" from file /opt/fr3/etc/raddb/mods-enabled/attr_filter
  attr_filter attr_filter.post-proxy {
  	filename = "/opt/fr3/etc/raddb/mods-config/attr_filter/post-proxy"
  	key = "%{Realm}"
  	relaxed = no
  }
reading pairlist file /opt/fr3/etc/raddb/mods-config/attr_filter/post-proxy
  # Instantiating module "attr_filter.pre-proxy" from file /opt/fr3/etc/raddb/mods-enabled/attr_filter
  attr_filter attr_filter.pre-proxy {
  	filename = "/opt/fr3/etc/raddb/mods-config/attr_filter/pre-proxy"
  	key = "%{Realm}"
  	relaxed = no
  }
reading pairlist file /opt/fr3/etc/raddb/mods-config/attr_filter/pre-proxy
  # Instantiating module "attr_filter.access_reject" from file /opt/fr3/etc/raddb/mods-enabled/attr_filter
  attr_filter attr_filter.access_reject {
  	filename = "/opt/fr3/etc/raddb/mods-config/attr_filter/access_reject"
  	key = "%{User-Name}"
  	relaxed = no
  }
reading pairlist file /opt/fr3/etc/raddb/mods-config/attr_filter/access_reject
  # Instantiating module "attr_filter.access_challenge" from file /opt/fr3/etc/raddb/mods-enabled/attr_filter
  attr_filter attr_filter.access_challenge {
  	filename = "/opt/fr3/etc/raddb/mods-config/attr_filter/access_challenge"
  	key = "%{User-Name}"
  	relaxed = no
  }
reading pairlist file /opt/fr3/etc/raddb/mods-config/attr_filter/access_challenge
  # Instantiating module "attr_filter.accounting_response" from file /opt/fr3/etc/raddb/mods-enabled/attr_filter
  attr_filter attr_filter.accounting_response {
  	filename = "/opt/fr3/etc/raddb/mods-config/attr_filter/accounting_response"
  	key = "%{User-Name}"
  	relaxed = no
  }
reading pairlist file /opt/fr3/etc/raddb/mods-config/attr_filter/accounting_response
  # Loaded module rlm_pap
  # Instantiating module "pap" from file /opt/fr3/etc/raddb/mods-enabled/pap
  pap {
  	auto_header = no
  	normalise = yes
  }
  # Loaded module rlm_passwd
  # Instantiating module "etc_passwd" from file /opt/fr3/etc/raddb/mods-enabled/passwd
  passwd etc_passwd {
  	filename = "/etc/passwd"
  	format = "*User-Name:Crypt-Password:"
  	delimiter = ":"
  	ignore_nislike = no
  	ignore_empty = yes
  	allow_multiple_keys = no
  	hash_size = 100
  }
rlm_passwd: nfields: 3 keyfield 0(User-Name) listable: no
  # Loaded module rlm_utf8
  # Instantiating module "utf8" from file /opt/fr3/etc/raddb/mods-enabled/utf8
  # Loaded module rlm_expiration
  # Instantiating module "expiration" from file /opt/fr3/etc/raddb/mods-enabled/expiration
  # Loaded module rlm_expr
  # Instantiating module "expr" from file /opt/fr3/etc/raddb/mods-enabled/expr
  expr {
  	safe_characters = "@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-_: /"
  }
  # Loaded module rlm_realm
  # Instantiating module "IPASS" from file /opt/fr3/etc/raddb/mods-enabled/realm
  realm IPASS {
  	format = "prefix"
  	delimiter = "/"
  	ignore_default = no
  	ignore_null = no
  }
  # Instantiating module "suffix" from file /opt/fr3/etc/raddb/mods-enabled/realm
  realm suffix {
  	format = "suffix"
  	delimiter = "@"
  	ignore_default = no
  	ignore_null = no
  }
  # Instantiating module "realmpercent" from file /opt/fr3/etc/raddb/mods-enabled/realm
  realm realmpercent {
  	format = "suffix"
  	delimiter = "%"
  	ignore_default = no
  	ignore_null = no
  }
  # Instantiating module "ntdomain" from file /opt/fr3/etc/raddb/mods-enabled/realm
  realm ntdomain {
  	format = "prefix"
  	delimiter = "\"
  	ignore_default = no
  	ignore_null = no
  }
  # Loaded module rlm_eap
  # Instantiating module "eap" from file /opt/fr3/etc/raddb/mods-enabled/eap
  eap {
  	default_eap_type = "md5"
  	timer_expire = 60
  	ignore_unknown_eap_types = no
  	mod_accounting_username_bug = no
  	max_sessions = 4096
  }
   # Linked to sub-module rlm_eap_md5
   # Linked to sub-module rlm_eap_leap
   # Linked to sub-module rlm_eap_gtc
   gtc {
   	challenge = "Password: "
   	auth_type = "PAP"
   }
   # Linked to sub-module rlm_eap_tls
   tls {
   	tls = "tls-common"
   }
   tls-config tls-common {
   	rsa_key_exchange = no
   	dh_key_exchange = yes
   	rsa_key_length = 512
   	dh_key_length = 512
   	verify_depth = 0
   	ca_path = "/opt/fr3/etc/raddb/certs"
   	pem_file_type = yes
   	private_key_file = "/opt/fr3/etc/raddb/certs/server.pem"
   	certificate_file = "/opt/fr3/etc/raddb/certs/server.pem"
   	ca_file = "/opt/fr3/etc/raddb/certs/ca.pem"
   	private_key_password = <<< secret >>>
   	dh_file = "/opt/fr3/etc/raddb/certs/dh"
   	fragment_size = 1024
   	include_length = yes
   	check_crl = no
   	cipher_list = "DEFAULT"
   	ecdh_curve = "prime256v1"
    cache {
    	enable = yes
    	lifetime = 24
    	max_entries = 255
    }
    verify {
    }
    ocsp {
    	enable = no
    	override_cert_url = yes
    	url = "http://127.0.0.1/ocsp/"
    	use_nonce = yes
    	timeout = 0
    	softfail = yes
    }
   }
   # Linked to sub-module rlm_eap_ttls
   ttls {
   	tls = "tls-common"
   	default_eap_type = "md5"
   	copy_request_to_tunnel = no
   	use_tunneled_reply = no
   	virtual_server = "inner-tunnel"
   	include_length = yes
   	require_client_cert = no
   }
Using cached TLS configuration from previous invocation
   # Linked to sub-module rlm_eap_peap
   peap {
   	tls = "tls-common"
   	default_method = "mschapv2"
   	copy_request_to_tunnel = no
   	use_tunneled_reply = no
   	proxy_tunneled_request_as_eap = yes
   	virtual_server = "inner-tunnel"
   	soh = no
   	require_client_cert = no
   }
Using cached TLS configuration from previous invocation
   # Linked to sub-module rlm_eap_mschapv2
   mschapv2 {
   	with_ntdomain_hack = no
   	send_error = no
   }
  # Loaded module rlm_linelog
  # Instantiating module "linelog" from file /opt/fr3/etc/raddb/mods-enabled/linelog
  linelog {
  	filename = "/opt/fr3/var/log/radius/linelog"
  	permissions = 384
  	format = "This is a log message for %{User-Name}"
  	reference = "%{%{Packet-Type}:-format}"
  }
  # Loaded module rlm_preprocess
  # Instantiating module "preprocess" from file /opt/fr3/etc/raddb/mods-enabled/preprocess
  preprocess {
  	huntgroups = "/opt/fr3/etc/raddb/mods-config/preprocess/huntgroups"
  	hints = "/opt/fr3/etc/raddb/mods-config/preprocess/hints"
  	with_ascend_hack = no
  	ascend_channels_per_line = 23
  	with_ntdomain_hack = no
  	with_specialix_jetstream_hack = no
  	with_cisco_vsa_hack = no
  	with_alvarion_vsa_hack = no
  }
reading pairlist file /opt/fr3/etc/raddb/mods-config/preprocess/huntgroups
reading pairlist file /opt/fr3/etc/raddb/mods-config/preprocess/hints
  # Loaded module rlm_digest
  # Instantiating module "digest" from file /opt/fr3/etc/raddb/mods-enabled/digest
  # Loaded module rlm_detail
  # Instantiating module "detail" from file /opt/fr3/etc/raddb/mods-enabled/detail
  detail {
  	filename = "/opt/fr3/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d"
  	header = "%t"
  	permissions = 384
  	dir_permissions = 493
  	locking = no
  	log_packet_header = no
  }
  # Loaded module rlm_files
  # Instantiating module "files" from file /opt/fr3/etc/raddb/mods-enabled/files
  files {
  	filename = "/opt/fr3/etc/raddb/mods-config/files/authorize"
  	usersfile = "/opt/fr3/etc/raddb/mods-config/files/authorize"
  	acctusersfile = "/opt/fr3/etc/raddb/mods-config/files/accounting"
  	preproxy_usersfile = "/opt/fr3/etc/raddb/mods-config/files/pre-proxy"
  	compat = "no"
  }
reading pairlist file /opt/fr3/etc/raddb/mods-config/files/authorize
reading pairlist file /opt/fr3/etc/raddb/mods-config/files/authorize
reading pairlist file /opt/fr3/etc/raddb/mods-config/files/accounting
reading pairlist file /opt/fr3/etc/raddb/mods-config/files/pre-proxy
  # Instantiating module "exec" from file /opt/fr3/etc/raddb/mods-enabled/exec
  exec {
  	wait = no
  	input_pairs = "request"
  	shell_escape = yes
  	timeout = 10
  }
  # Instantiating module "sradutmp" from file /opt/fr3/etc/raddb/mods-enabled/sradutmp
  radutmp sradutmp {
  	filename = "/opt/fr3/var/log/radius/sradutmp"
  	username = "%{User-Name}"
  	case_sensitive = yes
  	check_with_nas = yes
  	permissions = 420
  	caller_id = no
  }
  # Instantiating module "auth_log" from file /opt/fr3/etc/raddb/mods-enabled/detail.log
  detail auth_log {
  	filename = "/opt/fr3/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/auth-detail-%Y%m%d"
  	header = "%t"
  	permissions = 384
  	dir_permissions = 493
  	locking = no
  	log_packet_header = no
  }
rlm_detail (auth_log): 'User-Password' suppressed, will not appear in detail output
  # Instantiating module "reply_log" from file /opt/fr3/etc/raddb/mods-enabled/detail.log
  detail reply_log {
  	filename = "/opt/fr3/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/reply-detail-%Y%m%d"
  	header = "%t"
  	permissions = 384
  	dir_permissions = 493
  	locking = no
  	log_packet_header = no
  }
  # Instantiating module "pre_proxy_log" from file /opt/fr3/etc/raddb/mods-enabled/detail.log
  detail pre_proxy_log {
  	filename = "/opt/fr3/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/pre-proxy-detail-%Y%m%d"
  	header = "%t"
  	permissions = 384
  	dir_permissions = 493
  	locking = no
  	log_packet_header = no
  }
  # Instantiating module "post_proxy_log" from file /opt/fr3/etc/raddb/mods-enabled/detail.log
  detail post_proxy_log {
  	filename = "/opt/fr3/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/post-proxy-detail-%Y%m%d"
  	header = "%t"
  	permissions = 384
  	dir_permissions = 493
  	locking = no
  	log_packet_header = no
  }
  # Loaded module rlm_chap
  # Instantiating module "chap" from file /opt/fr3/etc/raddb/mods-enabled/chap
  # Loaded module rlm_mschap
  # Instantiating module "mschap" from file /opt/fr3/etc/raddb/mods-enabled/mschap
  mschap {
  	use_mppe = yes
  	require_encryption = no
  	require_strong = no
  	with_ntdomain_hack = yes
   passchange {
   }
  	allow_retry = yes
  }
 } # modules
radiusd: #### Loading Virtual Servers ####
server { # from file /opt/fr3/etc/raddb/radiusd.conf
} # server
server dhcp { # from file /opt/fr3/etc/raddb/sites-enabled/dhcp
 # Loading dictionary.dhcp
 # Loading dhcp DHCP-Discover {...}
 # Loading dhcp DHCP-Request {...}
 # Loading dhcp {...}
} # server dhcp
radiusd: #### Opening IP addresses and Ports ####
listen {
  	type = "dhcp"
  	ipaddr = 0.0.0.0
  	port = 67
}
Listening on dhcp interface br0 address * port 67 as server dhcp
Opening new proxy socket 'proxy address * port 0'
Listening on proxy address * port 47763
Ready to process requests.
Received DHCP-Discover of id a035ab0e from 0.0.0.0:68 to 255.255.255.255:67
	DHCP-Opcode = Client-Message
	DHCP-Hardware-Type = Ethernet
	DHCP-Hardware-Address-Length = 6
	DHCP-Hop-Count = 0
	DHCP-Transaction-Id = 2687871758
	DHCP-Number-of-Seconds = 12
	DHCP-Flags = 0
	DHCP-Client-IP-Address = 0.0.0.0
	DHCP-Your-IP-Address = 0.0.0.0
	DHCP-Server-IP-Address = 0.0.0.0
	DHCP-Gateway-IP-Address = 0.0.0.0
	DHCP-Client-Hardware-Address = 84:51:81:af:c6:09
	DHCP-Message-Type += DHCP-Discover
	DHCP-DHCP-Maximum-Msg-Size += 1500
	DHCP-Vendor-Class-Identifier += 'dhcpcd-5.5.6'
	DHCP-Hostname += 'android-4a8418b114cc23c9'
	DHCP-Parameter-Request-List += DHCP-Subnet-Mask
	DHCP-Parameter-Request-List += DHCP-Static-Routes
	DHCP-Parameter-Request-List += DHCP-Router-Address
	DHCP-Parameter-Request-List += DHCP-Domain-Name-Server
	DHCP-Parameter-Request-List += DHCP-Domain-Name
	DHCP-Parameter-Request-List += DHCP-Broadcast-Address
	DHCP-Parameter-Request-List += DHCP-IP-Address-Lease-Time
	DHCP-Parameter-Request-List += DHCP-Renewal-Time
	DHCP-Parameter-Request-List += DHCP-Rebinding-Time
Trying sub-section dhcp DHCP-Discover {...}
(0)  dhcp DHCP-Discover {
(0)   update reply {
(0) 	DHCP-Message-Type = DHCP-Offer
(0)   } # update reply = noop
(0)   ? if (DHCP-Client-Hardware-Address == "84:51:81:af:c6:09") 
(0)   ? if (DHCP-Client-Hardware-Address == "84:51:81:af:c6:09")  -> FALSE
(0)   update reply {
(0) 	DHCP-Domain-Name-Server = 10.0.0.99
(0) 	DHCP-Subnet-Mask = 255.255.255.192
(0) 	DHCP-Router-Address = 10.0.0.100
(0) 	DHCP-IP-Address-Lease-Time = 120
(0) 	DHCP-DHCP-Server-Identifier = 10.0.0.101
(0)   } # update reply = noop
(0)   [ok] = ok
(0)  } # dhcp DHCP-Discover = ok
DHCP: Failed to find DHCP-Your-IP-Address for request.
Encoding DHCP-Offer of id a035ab0e from 0.0.0.0:67 to 0.0.0.0:68
	DHCP-Opcode = Server-Message
	DHCP-Hardware-Type = Ethernet
	DHCP-Hardware-Address-Length = 6
	DHCP-Hop-Count = 0
	DHCP-Transaction-Id = 2687871758
	DHCP-Number-of-Seconds = 0
	DHCP-Flags = 0
	DHCP-Client-IP-Address = 0.0.0.0
	DHCP-Your-IP-Address = 0.0.0.0
	DHCP-Server-IP-Address = 10.0.0.101
	DHCP-Gateway-IP-Address = 0.0.0.0
	DHCP-Client-Hardware-Address = 84:51:81:af:c6:09
	DHCP-Server-Host-Name = ''
	DHCP-Boot-Filename = ''
	DHCP-Subnet-Mask = 255.255.255.192
	DHCP-Router-Address = 10.0.0.100
	DHCP-Domain-Name-Server = 10.0.0.99
	DHCP-IP-Address-Lease-Time = 120
	DHCP-DHCP-Server-Identifier = 10.0.0.101
	DHCP-DHCP-Maximum-Msg-Size += 1500
Sending DHCP-Offer of id a035ab0e from 0.0.0.0:67 to 0.0.0.0:68
(0) Finished request 0.
Waking up in 0.3 seconds.
Waking up in 4.6 seconds.
(0) Cleaning up request packet ID 2687871758 with timestamp +14
Ready to process requests.

-- 
Matthew Newton, Ph.D. <mcn4 at le.ac.uk>

Systems Specialist, Infrastructure Services,
I.T. Services, University of Leicester, Leicester LE1 7RH, United Kingdom

For IT help contact helpdesk extn. 2253, <ithelp at le.ac.uk>


More information about the Freeradius-Devel mailing list