Freeradius rlm_sql: Failed to create the pair: Invalid TLV specification (WiMAX MS)

James T. Mugauri james at africonnect.co.zm
Tue Oct 25 18:06:24 CEST 2011


Hi,

I am running 2.1.12 in an attempt to auth Wimax users. However I am 
having difficulty defining TLVs for WiMAX-QoS-Descriptor and associated 
WiMAX-Packet-Flow-Descriptor

I used a post on the matter in the freeradius mailing list which 
suggested something to the effect of:

INSERT INTO radgroupreply (groupname, attribute, op, value) VALUES
('WiMAX_Test3', 'WiMAX-QoS-Id', ':=', '101'),
('WiMAX_Test3', 'WiMAX-Service-Class-Name', ':=', 'DATA'),
('WiMAX_Test3', 'WiMAX-Schedule-Type', ':=', 'Best-Effort'),
('WiMAX_Test3', 'WiMAX-Traffic-Priority', ':=', '1'),
('WiMAX_Test3', 'WiMAX-Maximum-Sustained-Traffic-Rate', ':=','512000'),
('WiMAX_Test3', 'WiMAX-Reduced-Resources-Code', ':=', '1'),

('WiMAX_Test3', 'WiMAX-Packet-Data-Flow-Id', ':=', '21'),
('WiMAX_Test3', 'WiMAX-Service-Data-Flow-Id', ':=', '21'),
('WiMAX_Test3', 'WiMAX-Direction', ':=', '1'),
('WiMAX_Test3', 'WiMAX-Activation-Trigger', ':=', '15'),
('WiMAX_Test3', 'WiMAX-Transport-Type', ':=', 'IPv4-CS'),
('WiMAX_Test3', 'WiMAX-Uplink-QOS-Id', ':=', '101'),
('WiMAX_Test3', 'WiMAX-Uplink-Classifier', ':=', 'permit in any src any 
dst any priority 1'),

...etc

This did not work, as the greenpacket SM keeps on trying to connect as 
if it is not authenticated, despite the following attributes being 
returned in the Access-Accept packet:
Sending Access-Accept of id 84 to 10.11.12.13 port 1812
     Framed-IP-Address := XXX.XX.12.12
     Framed-IP-Netmask := 255.255.255.224
     WiMAX-DNS-Server := XXX.XX.12.65
     Framed-Route := "XXX.XX.12.30"
     WiMAX-QoS-Id := 101
     WiMAX-Service-Class-Name := "DATA"
     WiMAX-Schedule-Type := Best-Effort
     WiMAX-Traffic-Priority := 1
     WiMAX-Maximum-Sustained-Traffic-Rate := 512000
     WiMAX-Reduced-Resources-Code := 1
     WiMAX-Packet-Data-Flow-Id := 22
     WiMAX-Service-Data-Flow-Id := 22
     WiMAX-Direction := Downlink
     WiMAX-Activation-Trigger := 15
     WiMAX-Transport-Type := IPv4-CS
     WiMAX-Uplink-QOS-Id := 101
     WiMAX-Uplink-Classifier := "permit in any src any dst any priority 1"
     WiMAX-QoS-Id += 102
     WiMAX-Service-Class-Name += "DATA"
     WiMAX-Schedule-Type += Best-Effort
     WiMAX-Traffic-Priority += 1
     WiMAX-Maximum-Sustained-Traffic-Rate += 400000
     WiMAX-Reduced-Resources-Code += 1
     WiMAX-Downlink-QOS-Id := 102
     WiMAX-Downlink-Classifier := "permit in any src any dst any priority 1"
     MS-MPPE-Recv-Key = 
0xdd5af25dadbfeba854cc0c6a5694abe0636104f1551530a9537855ecb6629d7e
     MS-MPPE-Send-Key = 
0x93064994b3908d600cdab33f17742a4de175db703101a8cd5019b0384a885d98
     EAP-Message = 0x03040004
     Message-Authenticator = 0x00000000000000000000000000000000
     User-Name = "{am=1}00E6D4F0ED7C281D867BE1534026CDA8IC3513"
Finished request 4.

I thought i would add an attribute pair to be explicit that I am 
defining TLVs, by inserting the following rows in the database (at the 
appropriate rows by id):
('WiMAX_Test3', 'WiMAX-QoS-Descriptor', '=', '...'),
('WiMAX_Test3', 'WiMAX-Packet-Flow-Descriptor', '=', '...'),
...etc

but i then get the error specified in the subject above.

Can anyone shed light on how to correctly populate radgroupreply to 
ensure proper definition of WiMAX TLVs?

Or perhaps I am doing something else wrong?

Hopefully,

JamesTM

-- 

Irrationally held truths may be more harmful than reasoned errors.
   - Thomas H. Huxley




More information about the Freeradius-Users mailing list