Freeradius + MikroTik problem (only 1 user allowed to be online)

toxie at budisava.net toxie at budisava.net
Sun Oct 8 22:41:20 CEST 2006


Recently I`ve configured freeradius with mikrotik to connect users via
pppoe, pptp or l2tp.
The problem is that, when one user is connected, the other user is unable
to connect.
Here are the logs.


--------------------------------------First user connects
-------------------------
(46 messages discarded)
Echo: radius,debug,packet Calling-Station-Id = "00:50:8D:68:DB:20"
Echo: radius,debug,packet Called-Station-Id = "service1"
Echo: radius,debug,packet NAS-Port-Id = "bridge1"
Echo: radius,debug,packet Acct-Session-Id = "81000000"
Echo: radius,debug,packet Framed-IP-Address = 10.194.244.149
Echo: radius,debug,packet Acct-Authentic = 1
Echo: radius,debug,packet Acct-Status-Type = 1
Echo: radius,debug,packet NAS-Identifier = "MikroTik"
Echo: radius,debug,packet NAS-IP-Address = 10.194.23.248
Echo: radius,debug,packet Acct-Delay-Time = 0
Echo: radius,debug,packet received Accounting-Response with id 124 from
10.194.2
3.246:1813
Echo: radius,debug,packet Signature = 0x16c0ffe781452ce6261046058ecf4f61
[admin at MikroTik] >
Echo: radius,debug received reply for 53:00
Echo: radius,debug request 53:00 processed
[admin at MikroTik] >
(8 messages discarded)

---------------------------------- Second user is trying to connect
--------------

Echo: radius,debug,packet User-Name = "toxie"
Echo: radius,debug,packet Calling-Station-Id = "00:C0:26:6D:16:09"
Echo: radius,debug,packet Called-Station-Id = "service1"
Echo: radius,debug,packet NAS-Port-Id = "bridge1"
Echo: radius,debug,packet MS-CHAP-Challenge = 0xc87049d986b943c7773272b9f6c0
76dd
Echo: radius,debug,packet MS-CHAP2-Response = 0x0100820169c2908c12b7cfbe01f2
55ef
Echo: radius,debug,packet c1c200000000000000004320c48df468
Echo: radius,debug,packet 8a58f84d8d4727c73ee24d4a4e886258
Echo: radius,debug,packet e85c
Echo: radius,debug,packet NAS-Identifier = "MikroTik"
Echo: radius,debug,packet NAS-IP-Address = 10.194.23.246
Echo: radius,debug could not receive packet for 53:04: Connection refused
[admin at MikroTik] >
(7 messages discarded)
Echo: radius,debug,packet User-Name = "toxie"
Echo: radius,debug,packet Calling-Station-Id = "00:C0:26:6D:16:09"
Echo: radius,debug,packet Called-Station-Id = "service1"
Echo: radius,debug,packet NAS-Port-Id = "bridge1"
Echo: radius,debug,packet MS-CHAP-Challenge = 0xc87049d986b943c7773272b9f6c0
76dd
Echo: radius,debug,packet MS-CHAP2-Response = 0x0100820169c2908c12b7cfbe01f2
55ef
Echo: radius,debug,packet c1c200000000000000004320c48df468
Echo: radius,debug,packet 8a58f84d8d4727c73ee24d4a4e886258
Echo: radius,debug,packet e85c
Echo: radius,debug,packet NAS-Identifier = "MikroTik"
Echo: radius,debug,packet NAS-IP-Address = 10.194.23.246
Echo: radius,debug could not receive packet for 53:04: Connection refused
[admin at MikroTik] >
(7 messages discarded)
Echo: radius,debug,packet User-Name = "toxie"
Echo: radius,debug,packet Calling-Station-Id = "00:C0:26:6D:16:09"
Echo: radius,debug,packet Called-Station-Id = "service1"
Echo: radius,debug,packet NAS-Port-Id = "bridge1"
Echo: radius,debug,packet MS-CHAP-Challenge = 0xc87049d986b943c7773272b9f6c0
76dd
Echo: radius,debug,packet MS-CHAP2-Response = 0x0100820169c2908c12b7cfbe01f2
55ef
Echo: radius,debug,packet c1c200000000000000004320c48df468
Echo: radius,debug,packet 8a58f84d8d4727c73ee24d4a4e886258
Echo: radius,debug,packet e85c
Echo: radius,debug,packet NAS-Identifier = "MikroTik"
Echo: radius,debug,packet NAS-IP-Address = 10.194.23.246
Echo: radius,debug could not receive packet for 53:04: Connection refused
[admin at MikroTik] >
Echo: radius,debug timeout for 53:04
[admin at MikroTik] >

------------------------------------------------------------------------------------
The usernames and the passwords are ok.
When I tried to connect one user to one MT and the second user to another
mikrotik everything works fine.But when I`m using only 1 MT, only one user
can be logged in.
Does anybody had some issues like this before ? It`s really annoying me,
cause I can`t figure it out where could be the problem.


I noticed that when nobody is connected to radius, radius server can ping
mikrotik and mikrotik can ping radius too.When somebody connects to
radius, radius can`t ping mikrotik anymore, neither the user, but mikrotik
can ping the radius server and the user too without no problem.







More information about the Freeradius-Users mailing list