Accounting question

Wed Jun 15 17:42:01 CEST 2005

Hello,

I have a question regarding the way accounting is done. I configured
freeradius 1.0.1 with openssl and mysql support on a Fedora Core 3
system. I'm using it with PEAP and TLS for wireless authentication.
The authentication works fine, but the accounting packets are always
missing the username and the IPs of client and NAS seem to be
interchanged.
Here is a sample packet extracted from running radiusd with debugging:

rad_recv: Accounting-Request packet from host 192.168.30.11:1223,
id=211, length=182
        Acct-Status-Type = Alive
        Acct-Session-Id = "0002e3412adf-000e6ad5debc-b0e1"
        NAS-IP-Address = 192.168.30.34
        Acct-Input-Octets = 10179
        Acct-Output-Octets = 11165
        Acct-Input-Packets = 47
        Acct-Output-Packets = 97
        Vendor-Specific = 0x45415020557365726e616d652069733a204a4f53455048
        Vendor-Specific = 0x564c414e2049442069733a2030
        Vendor-Specific = 0x4553534944203d2055746570736120486f742053706f74
        Vendor-Specific = 0x45415020547970652069733a204541502d50454150
        Acct-Session-Time = 63418

My question is.... Isn the NAS suppossed to be the wireless access
point? (in our case 192.168.30.11, not 192.168.30.34). Isn't the
client suppossed to be the computer from which the user authenticated?
(192.168.30.34 instead of .11). Is this just access point related? or
can I configure it in clients.conf?

The relevant portion of clients.conf looks like this:

client 192.168.30.0/24 {
        secret          = XXXXXX
        shortname       = wifiAP
}

Thanks for any help,