OT: Cisco Disconnect-Request packets
James J J Hooper
jjj.hooper at bristol.ac.uk
Wed Aug 24 19:05:36 CEST 2011
On 24/08/2011 11:31, Jonathan Gazeley wrote:
> Hi all,
>
> Not directly related to FreeRADIUS but I gather people here have some
> experience with Cisco WiSMs and 802.1x.
>
> I'm trying to use radclient to craft a Disconnect-Request packet to
> disconnect a user on an 802.1x network. I've checked the RFCs for the
> Disconnect-Request packets and I believe I am providing all the necessary
> attributes to disconnect a user, however the WiSM always responds:
>
> rad_recv: Disconnect-NAK packet from host 172.17.107.211 port 3799,
> id=219, length=26
> Error-Cause = Missing-Attribute
>
>
> I am sending packets like these:
>
> Sending Disconnect-Request of id 219 to 172.17.107.211 port 3799
> User-Name = "jg4461"
> Calling-Station-Id = "00:1b:63:08:b4:eb"
> Framed-IP-Address = 172.21.107.197
> Called-Station-Id = "00:21:55:ac:5b:60:ResNet-Wireless"
> NAS-Port-Id = "29"
> NAS-Port-Type = Async
> Acct-Session-Id = "jg44614ddcd9e6/00:1b:63:08:b4:eb/222935"
> NAS-IP-Address = 172.17.107.211
> NAS-Port = 29
> NAS-Identifier = "wism11"
>
>
> So, does anyone know which attributes I must send to disconnect a user in
> this way? Is there an easier way of doing it?
radclient -xs -f /tmp/disconnect.txt 172.17.107.210:3799 disconnect secret
Sending Disconnect-Request of id 7 to 172.17.107.210 port 3799
User-Name = "testUser at bristol.ac.uk"
Calling-Station-Id = "89:c6:65:99:39:52"
Service-Type = Login-User
rad_recv: Disconnect-ACK packet from host 172.17.107.210 port 3799, id=7,
length=20
Total approved auths: 1
Total denied auths: 0
Total lost auths: 0
...so it seems you need User-Name, Calling-Station-Id and Service-Type.
-James
--
James J J Hooper
Senior Network Specialist, University of Bristol
http://www.wireless.bristol.ac.uk
--
More information about the Freeradius-Users
mailing list