<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type">
</head>
<body bgcolor="#ffffff" text="#000000">
<br>
<br>
<a class="moz-txt-link-abbreviated" href="mailto:tnt@kalik.net">tnt@kalik.net</a> a écrit :
<blockquote cite="mid:iI1WUsBJ.1220661723.7953900.tnt@kalik.net"
type="cite">
<blockquote type="cite">
<pre wrap="">My first problem is that the Session-Traffic-Limit (from the redback
dictionnary) is not returned. I can't see it neither in the output of
radtest nor with radsniff.
Yet, looking at the output of radiusd -X i can see it's correctly
understood by freeradius:
rlm_sqlcounter: Check item is greater than query result
rlm_sqlcounter: Authorized user scott, check_item=12000, counter=10891
rlm_sqlcounter: Sent Reply-Item for user scott,
Type=Session-Traffic-Limit, value=12792
++[bytesQuota] returns ok
</pre>
</blockquote>
<pre wrap=""><!---->It looks like it made it to the reply list.
</pre>
</blockquote>
Yep, but when sniffing network, it appears it's not.<br>
<blockquote cite="mid:iI1WUsBJ.1220661723.7953900.tnt@kalik.net"
type="cite">
<pre wrap="">
</pre>
<blockquote type="cite">
<pre wrap="">Does anyone has a clue?
</pre>
</blockquote>
<pre wrap=""><!---->
Not without the rest of the debug.
</pre>
</blockquote>
Here is the full debug outputed during the auth query/reply<br>
<br>
rad_recv: Access-Request packet from host 127.0.0.1 port 37792, id=201,
length=57<br>
User-Name = "scott"<br>
User-Password = "tiger"<br>
NAS-IP-Address = 192.168.20.145<br>
NAS-Port = 451<br>
+- entering group authorize<br>
++[preprocess] returns ok<br>
++[chap] returns noop<br>
++[mschap] returns noop<br>
rlm_realm: No '@' in User-Name = "scott", looking up realm NULL<br>
rlm_realm: No such realm "NULL"<br>
++[suffix] returns noop<br>
rlm_eap: No EAP-Message, not doing EAP<br>
++[eap] returns noop<br>
++[unix] returns notfound<br>
users: Matched entry scott at line 205<br>
++[files] returns ok<br>
++[expiration] returns noop<br>
++[logintime] returns noop<br>
++[pap] returns updated<br>
rlm_sqlcounter: Entering module authorize code<br>
sqlcounter_expand: 'SELECT SUM(acctinputoctets + acctoutputoctets)
FROM radacct WHERE UserName='%{User-Name}''<br>
expand: SELECT SUM(acctinputoctets + acctoutputoctets) FROM radacct
WHERE UserName='%{User-Name}' -> SELECT SUM(acctinputoctets +
acctoutputoctets) FROM radacct WHERE UserName='scott'<br>
sqlcounter_expand: '%{mysqldb:SELECT SUM(acctinputoctets +
acctoutputoctets) FROM radacct WHERE UserName='scott'}'<br>
rlm_sql (mysqldb): - sql_xlat<br>
expand: %{User-Name} -> scott<br>
rlm_sql (mysqldb): sql_set_user escaped user --> 'scott'<br>
expand: SELECT SUM(acctinputoctets + acctoutputoctets) FROM radacct
WHERE UserName='scott' -> SELECT SUM(acctinputoctets +
acctoutputoctets) FROM radacct WHERE UserName='scott'<br>
expand: /var/log/freeradius/sqltrace.sql ->
/var/log/freeradius/sqltrace.sql<br>
rlm_sql (mysqldb): Reserving sql socket id: 4<br>
rlm_sql_mysql: query: SELECT SUM(acctinputoctets + acctoutputoctets)
FROM radacct WHERE UserName='scott'<br>
rlm_sql (mysqldb): - sql_xlat finished<br>
rlm_sql (mysqldb): Released sql socket id: 4<br>
expand: %{mysqldb:SELECT SUM(acctinputoctets + acctoutputoctets)
FROM radacct WHERE UserName='scott'} -> 10891<br>
rlm_sqlcounter: Check item is greater than query result<br>
rlm_sqlcounter: Authorized user scott, check_item=12000, counter=10891<br>
rlm_sqlcounter: Sent Reply-Item for user scott,
Type=Session-Traffic-Limit, value=12694<br>
++[bytesQuota] returns ok<br>
rad_check_password: Found Auth-Type <br>
auth: type "PAP"<br>
+- entering group PAP<br>
rlm_pap: login attempt with password "tiger"<br>
rlm_pap: Using clear text password "tiger"<br>
rlm_pap: User authenticated successfully<br>
++[pap] returns ok<br>
+- entering group session<br>
expand: %{User-Name} -> scott<br>
rlm_sql (mysqldb): sql_set_user escaped user --> 'scott'<br>
expand: SELECT COUNT(*) FROM
radacct WHERE username =
'%{SQL-User-Name}' AND acctstoptime IS
NULL -> SELECT COUNT(*) FROM
radacct WHERE username =
'scott' AND acctstoptime IS NULL<br>
rlm_sql (mysqldb): Reserving sql socket id: 3<br>
rlm_sql_mysql: query: SELECT COUNT(*)
FROM radacct WHERE username =
'scott' AND acctstoptime IS NULL<br>
rlm_sql (mysqldb): Released sql socket id: 3<br>
++[mysqldb] returns ok<br>
+- entering group post-auth<br>
expand: %{NAS-IP-Address} %{NAS-Port} -> 192.168.20.145 451<br>
rlm_ippool: MD5 on 'key' directive maps to:
20879599c5e6463384e80698249eaa87<br>
rlm_ippool: Searching for an entry for key:
'20879599c5e6463384e80698249eaa87'<br>
rlm_ippool: Found a stale entry for ip: 10.0.116.61<br>
rlm_ippool: num: 0<br>
rlm_ippool: Allocating ip to key: '20879599c5e6463384e80698249eaa87'<br>
rlm_ippool: num: 1<br>
rlm_ippool: Allocated ip 10.0.129.45 to client key:
20879599c5e6463384e80698249eaa87<br>
++[test_pool] returns ok<br>
rlm_sql (mysqldb): Processing sql_postauth<br>
expand: %{User-Name} -> scott<br>
rlm_sql (mysqldb): sql_set_user escaped user --> 'scott'<br>
expand: %{User-Password} -> tiger<br>
expand: INSERT INTO radpostauth
(username, pass, reply, authdate) VALUES
( '%{User-Name}',
'%{%{User-Password}:-%{Chap-Password}}',
'%{reply:Packet-Type}', '%S') -> INSERT INTO
radpostauth (username, pass, reply,
authdate) VALUES (
'scott', 'tiger',
'Access-Accept', '2008-09-05 14:48:26')<br>
expand: /var/log/freeradius/sqltrace.sql ->
/var/log/freeradius/sqltrace.sql<br>
rlm_sql (mysqldb) in sql_postauth: query is INSERT INTO
radpostauth (username, pass, reply,
authdate) VALUES (
'scott', 'tiger',
'Access-Accept', '2008-09-05 14:48:26')<br>
rlm_sql (mysqldb): Reserving sql socket id: 2<br>
rlm_sql_mysql: query: INSERT INTO
radpostauth (username, pass, reply,
authdate) VALUES (
'scott', 'tiger',
'Access-Accept', '2008-09-05 14:48:26')<br>
rlm_sql (mysqldb): Released sql socket id: 2<br>
++[mysqldb] returns ok<br>
++[exec] returns noop<br>
Sending Access-Accept of id 201 to 127.0.0.1 port 37792<br>
Session-Traffic-Limit = ""<br>
Framed-IP-Address = 10.0.129.45<br>
Framed-IP-Netmask = 255.255.255.255<br>
Finished request 0.<br>
<br>
<br>
<blockquote cite="mid:iI1WUsBJ.1220661723.7953900.tnt@kalik.net"
type="cite">
<pre wrap="">
Ivan Kalik
Kalik Informatika ISP
-
List info/subscribe/unsubscribe? See <a class="moz-txt-link-freetext" href="http://www.freeradius.org/list/users.html">http://www.freeradius.org/list/users.html</a>
</pre>
</blockquote>
</body>
</html>