Framed-Route ignored (repost in TXT)

Arthur Sigel arthur at mir5.homeip.net
Tue Dec 13 21:10:02 CET 2005 

I have been trying to get this to work for a few days now with no success.
I have set up poptop (PPTP) and it uses the /etc/ppp/options.pptp file which
has a plugin for radius.  plugin radius.so Radius will authenticate with my
users fine, but I can't seem to get the Framed-Route option to do anything. 
I am trying to set a route for a mask and not just the single IP to device
ppp connection.
Does ppp just ignore the route and this option just doesn't work with ppp or
pptp?  Is there a workaround?

Thank you,

Arthur

I am also using a SQL connection so the information will be left in that
format.

radius=# select * from radgroupcheck;
 id | groupname | attribute | op |  value  
----+-----------+-----------+----+---------
  1 | static    | Auth-Type | := | MS-CHAP

radius=# select * from radgroupreply;

 id | groupname |     attribute      | op |        value        
----+-----------+--------------------+----+---------------------
  1 | static    | Framed-Protocol    | := | PPP
  2 | static    | Service-Type       | := | Framed-user
  3 | static    | Framed-Compression | := | Van-Jacobsen-TCP-IP
 
radius=# select * from radreply;
id | username |     attribute     | op |         value         
----+----------+-------------------+----+-----------------------
  1 | arthur   | Framed-IP-Address  | := | 10.0.0.4
  3 | arthur   | Framed-Routing     | := | None
  2 | arthur   | Framed-IP-Netmask  | := | 255.255.255.0
  4 | arthur   | Framed-Route       | := | 10.0.0.0/24 0.0.0.0 1

The options file contains:
plugin radius.so
lock
mtu 1490
mru 1490
multilink
#proxyarp
auth
ipcp-accept-remote
lcp-echo-failure 30
lcp-echo-interval 5
deflate 0
+mschap-v2
mppe required
nopcomp
noaccomp

pptpd.conf
localip 191.168.4.1

-----------------------------

VERSIONS OF THINGS
pptpd-1.2.3
pppd version 2.4.3
FreeRadius 1.05

RADIUS output snippet
        Framed-IP-Address := 10.0.0.4
        Framed-IP-Netmask := 255.255.255.0
        Framed-Routing := None
        Framed-Route := "10.0.0.0/24 0.0.0.0 1"
        Framed-Protocol := PPP
        Service-Type := Framed-User
        Framed-Compression := Van-Jacobson-TCP-IP
        MS-CHAP2-Success = *****
        MS-MPPE-Recv-Key = *****
        MS-MPPE-Send-Key = *****
        MS-MPPE-Encryption-Policy = 0x00000002
        MS-MPPE-Encryption-Types = 0x00000004
rad_recv: Accounting-Request packet from host 127.0.0.1:32798, id=114,
length=112
        Acct-Session-Id = "439E72E33A2C00"
        User-Name = "arthur"
        Acct-Status-Type = Start
        Service-Type = Framed-User
        Framed-Protocol = PPP
        Calling-Station-Id = "**.**.**.**"
        Acct-Authentic = RADIUS
        NAS-Port-Type = Async
        Framed-IP-Address = 10.0.0.4
        NAS-IP-Address = 127.0.0.1
        NAS-Port = 0
        Acct-Delay-Time = 0

Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use
Iface
10.0.0.4        *               255.255.255.255 UH    0      0        0 ppp0
192.168.3.0     *               255.255.255.0   U     0      0        0 eth2
192.168.2.0     *               255.255.255.0   U     0      0        0 eth0
192.168.1.0     *               255.255.255.0   U     0      0        0 eth1
loopback        *               255.0.0.0       U     0      0        0 lo
default         192.168.2.1     0.0.0.0         UG    0      0        0 eth0

More information about the Freeradius-Users mailing list