Problems with freeradius 802.1x and Cisco Catalyst 3560

Omar Lopez Limonta pollo.es.pollo at gmail.com
Thu Apr 24 12:48:19 CEST 2008


Hi i have some problems with authentication in Freeradius with Cisco
Catalyst 3560 and 802.1x configuration.

Freeradius -X -A tell me:

Listening on authentication *:1812
Listening on accounting *:1813
Listening on proxy *:1814
Ready to process requests.
rad_recv: Access-Request packet from host 172.29.11.1:21645, id=26, length=123
Ignoring request from unknown client 172.29.11.1:21645
--- Walking the entire request list ---
Nothing to do.  Sleeping until we see a request.
rad_recv: Access-Request packet from host 172.29.11.1:21645, id=26, length=123
Ignoring request from unknown client 172.29.11.1:21645
--- Walking the entire request list ---
Nothing to do.  Sleeping until we see a request.
rad_recv: Access-Request packet from host 172.29.11.1:21645, id=26, length=123
Ignoring request from unknown client 172.29.11.1:21645
--- Walking the entire request list ---
Nothing to do.  Sleeping until we see a request.
rad_recv: Access-Request packet from host 172.29.11.1:21645, id=26, length=123
Ignoring request from unknown client 172.29.11.1:21645
--- Walking the entire request list ---
Nothing to do.  Sleeping until we see a request.



My clients.conf file has this:

172.29.11.1 {
        secret  = mecago
        shortname = cisco3560
        nastype = other
}

I also test with nastype = cisco , and it doesn´t run too.

In mi cisco config I have this :
aaa new-model
aaa authentication login default local
aaa authentication dot1x default group radius
aaa authorization exec default local
aaa authorization network default local
aaa session-id common

radius-server host 172.29.11.7 auth-port 1812 acct-port 1813 timeout 3
radius-server key mecago

interface FastEthernet0/5
 switchport access vlan 2
 switchport mode access
 dot1x port-control auto
 dot1x pae authenticator
 spanning-tree portfast


Any one have any idea about this error?

Thanks.


-- 
Xgalaga se disfruta más sobre NetBSD sparc64

Content Rules:

 /////
 \\\///
 ///\\\ The Duke of Url.
 { O--O }
 / /\ \
 \ -- /
 [||]




More information about the Freeradius-Users mailing list