<DIV> thanks to Alexandre Chapellon, </DIV>
<DIV>I have the same sense as you. But I don't know whether the NAS (netscreen firewall) or freeradius cause the problem. I debug the query process, after the 2nd pc login, the freeradius send a acc-reply to NAS, and the 1st connection logout. </DIV>
<DIV>the debug process is as follows,</DIV>
<DIV> </DIV>
<DIV><STRONG>firstly, 1st pc connection:</STRONG></DIV>
<DIV>rad_recv: Access-Request packet from host 10.249.59.188 port 2155, id=148, length=78<BR> User-Name = "qid0001"<BR> User-Password = "1"<BR> Acct-Session-Id = "NS-0000004a"<BR> NAS-IP-Address = 10.249.59.188<BR> NAS-Port = 74<BR> NAS-Port-Type = Virtual<BR>+- entering group authorize<BR>++[preprocess] returns ok<BR> expand: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/auth-detail-%Y%m%d -> /usr/local/var/log/radius/radacct/10.249.59.188/auth-detail-20061030<BR>rlm_detail: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/auth-detail-%Y%m%d expands to /usr/local/var/log/radius/radacct/10.249.59.188/auth-detail-20061030<BR> expand: %t -> Mon Oct 30 10:07:44 2006<BR>++[auth_log] returns ok<BR>++[chap] returns noop<BR>++[mschap] returns noop<BR> rlm_realm: No <A href="mailto:'@'">'@'</A> in User-Name = "qid0001", looking up realm NULL<BR> rlm_realm: No such realm "NULL"<BR>++[suffix] returns noop<BR> rlm_eap: No EAP-Message, not doing EAP<BR>++[eap] returns noop<BR>++[unix] returns notfound<BR>++[files] returns noop<BR> expand: %{User-Name} -> qid0001<BR>rlm_sql (sql): sql_set_user escaped user --> 'qid0001'<BR>rlm_sql (sql): Reserving sql socket id: 3<BR> expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'qid0001' ORDER BY id<BR>WARNING: Found User-Password == "...".<BR>WARNING: Are you sure you don't mean Cleartext-Password?<BR>WARNING: See "man rlm_pap" for more information.<BR>rlm_sql (sql): User found in radcheck table<BR> expand: SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radreply WHERE username = 'qid0001' ORDER BY id<BR> expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'qid0001' ORDER BY priority<BR> expand: SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = '%{Sql-Group}' ORDER BY id -> SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = 'user2' ORDER BY id<BR>rlm_sql (sql): User found in group user2<BR> expand: SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = '%{Sql-Group}' ORDER BY id -> SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = 'user2' ORDER BY id<BR>rlm_sql (sql): Released sql socket id: 3<BR>++[sql] returns ok<BR>++[expiration] returns noop<BR>++[logintime] returns noop<BR>++[pap] returns updated<BR> rad_check_password: Found Auth-Type <BR>!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!<BR>!!! Replacing User-Password in config items with Cleartext-Password. !!!<BR>!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!<BR>!!! Please update your configuration so that the "known good" !!!<BR>!!! clear text password is in Cleartext-Password, and not in User-Password. !!!<BR>!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!<BR>auth: type "PAP"<BR>+- entering group PAP<BR>rlm_pap: login attempt with password "1"<BR>rlm_pap: Using clear text password "1"<BR>rlm_pap: User authenticated successfully<BR>++[pap] returns ok<BR>+- entering group session<BR> expand: %{User-Name} -> qid0001<BR>rlm_sql (sql): sql_set_user escaped user --> 'qid0001'<BR> expand: SELECT COUNT(*) #FROM radacct #WHERE username = '%{SQL-User-Name}' #AND acctstoptime IS NULL -> SELECT COUNT(*) #FROM radacct #WHERE username = 'qid0001' #AND acctstoptime IS NULL<BR>rlm_sql (sql): Reserving sql socket id: 2<BR>rlm_sql (sql): Released sql socket id: 2<BR>++[sql] returns ok<BR>Login OK: [qid0001/1] (from client localhost port 74)<BR>+- entering group post-auth<BR> expand: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/reply-detail-%Y%m%d -> /usr/local/var/log/radius/radacct/10.249.59.188/reply-detail-20061030<BR>rlm_detail: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/reply-detail-%Y%m%d expands to /usr/local/var/log/radius/radacct/10.249.59.188/reply-detail-20061030<BR> expand: %t -> Mon Oct 30 10:07:44 2006<BR>++[reply_log] returns ok<BR>rlm_sql (sql): Processing sql_postauth<BR> expand: %{User-Name} -> qid0001<BR>rlm_sql (sql): sql_set_user escaped user --> 'qid0001'<BR> expand: %{User-Password} -> 1<BR> expand: INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( '%{User-Name}', '%{%{User-Password}:-%{Chap-Password}}', '%{reply:Packet-Type}', '%S') -> INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( 'qid0001', '1', 'Access-Accept', '2006-10-30 10:07:44')<BR>rlm_sql (sql) in sql_postauth: query is INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( 'qid0001', '1', 'Access-Accept', '2006-10-30 10:07:44')<BR>rlm_sql (sql): Reserving sql socket id: 1<BR>rlm_sql (sql): Released sql socket id: 1<BR>++[sql] returns ok<BR>++[exec] returns noop<BR>Sending Access-Accept of id 148 to 10.249.59.188 port 2155<BR>Finished request 14.<BR>Going to the next request<BR>Waking up in 4.9 seconds.<BR>rad_recv: Accounting-Request packet from host 10.249.59.188 port 2155, id=149, length=78<BR> Acct-Status-Type = Start<BR> Acct-Session-Id = "NS-0000004a"<BR> NAS-IP-Address = 10.249.59.188<BR> NAS-Port = 74<BR> NAS-Port-Type = Virtual<BR> User-Name = "qid0001"<BR> Acct-Delay-Time = 0<BR> Acct-Authentic = RADIUS<BR>+- entering group preacct<BR>++[preprocess] returns ok<BR>rlm_acct_unique: Hashing 'NAS-Port = 74,Client-IP-Address = 10.249.59.188,NAS-IP-Address = 10.249.59.188,Acct-Session-Id = "NS-0000004a",User-Name = "qid0001"'<BR>rlm_acct_unique: Acct-Unique-Session-ID = "6a5a013b0bab110f".<BR>++[acct_unique] returns ok<BR> rlm_realm: No <A href="mailto:'@'">'@'</A> in User-Name = "qid0001", looking up realm NULL<BR> rlm_realm: No such realm "NULL"<BR>++[suffix] returns noop<BR>++[files] returns noop<BR>+- entering group accounting<BR> expand: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d -> /usr/local/var/log/radius/radacct/10.249.59.188/detail-20061030<BR>rlm_detail: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d expands to /usr/local/var/log/radius/radacct/10.249.59.188/detail-20061030<BR> expand: %t -> Mon Oct 30 10:07:44 2006<BR>++[detail] returns ok<BR>++[unix] returns ok<BR> expand: %{User-Name} -> qid0001<BR>rlm_sql (sql): sql_set_user escaped user --> 'qid0001'<BR> expand: %{Acct-Delay-Time} -> 0<BR> expand: INSERT INTO radacct (acctsessionid, acctuniqueid, username, realm, nasipaddress, nasportid, nasporttype, acctstarttime, acctstoptime, acctsessiontime, acctauthentic, connectinfo_start, connectinfo_stop, acctinputoctets, acctoutputoctets, calledstationid, callingstationid, acctterminatecause, servicetype, framedprotocol, framedipaddress, acctstartdelay, acctstopdelay, xascendsessionsvrkey) VALUES ('%{Acct-Session-Id}', '%{Acct-Unique-Session-Id}', '%{SQL-User-Name}', '%{Realm}', '%{NAS-IP-Address}', '%{NAS-Port}', '%{NAS-Port-Type}', '%S', NULL, '0', '%{Acct-Authentic}', '%{Connect-Info}', '', '0', '0', '%{Called-Station-Id}', '%{Calling-Station-Id}', '', '%{Service-Type}', '%{Framed-Protocol}', '%{Framed-IP-Address}', '%{%{Acct-Delay-Time}:-0}', '0', '%{X-Ascend-Session-Svr-Key}') -> INSERT INTO radacct (acctsessionid, acctuniqueid, username, realm, nasipaddress, nasportid, nasporttype, acctstarttime, acctstoptime, acctsessiontime, acctauthentic, connectinfo_start, connectinfo_stop, acctinputoctets, acctoutputoctets, calledstationid, callingstationid, acctterminatecause, servicetype, framedprotocol, framedipaddress, acctstartdelay, acctstopdelay, xascendsessionsvrkey) VALUES ('NS-0000004a', '6a5a013b0bab110f', 'qid0001', '', '10.249.59.188', '74', 'Virtual', '2006-10-30 10:07:44', NULL, '0', 'RADIUS', '', '', '0', '0', '', '', '', '', '', '', '0', '0', '')<BR>rlm_sql (sql): Reserving sql socket id: 0<BR>rlm_sql (sql): Released sql socket id: 0<BR>++[sql] returns ok<BR> expand: %{User-Name} -> qid0001<BR> attr_filter: Matched entry DEFAULT at line 12<BR>++[attr_filter.accounting_response] returns updated<BR>Sending Accounting-Response of id 149 to 10.249.59.188 port 2155<BR>Finished request 15.<BR>Cleaning up request 15 ID 149 with timestamp +1103<BR>Going to the next request<BR>Waking up in 4.9 seconds.<BR>rad_recv: Accounting-Request packet from host 10.249.59.188 port 2155, id=150, length=78<BR> Acct-Status-Type = Stop<BR> Acct-Session-Id = "NS-00000046"<BR> NAS-IP-Address = 10.249.59.188<BR> NAS-Port = 70<BR> NAS-Port-Type = Virtual<BR> User-Name = "qid0001"<BR> Acct-Delay-Time = 0<BR> Acct-Authentic = RADIUS<BR>+- entering group preacct<BR>++[preprocess] returns ok<BR>rlm_acct_unique: Hashing 'NAS-Port = 70,Client-IP-Address = 10.249.59.188,NAS-IP-Address = 10.249.59.188,Acct-Session-Id = "NS-00000046",User-Name = "qid0001"'<BR>rlm_acct_unique: Acct-Unique-Session-ID = "e070078eae7af22b".<BR>++[acct_unique] returns ok<BR> rlm_realm: No <A href="mailto:'@'">'@'</A> in User-Name = "qid0001", looking up realm NULL<BR> rlm_realm: No such realm "NULL"<BR>++[suffix] returns noop<BR>++[files] returns noop<BR>+- entering group accounting<BR> expand: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d -> /usr/local/var/log/radius/radacct/10.249.59.188/detail-20061030<BR>rlm_detail: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d expands to /usr/local/var/log/radius/radacct/10.249.59.188/detail-20061030<BR> expand: %t -> Mon Oct 30 10:07:44 2006<BR>++[detail] returns ok<BR>++[unix] returns ok<BR> expand: %{User-Name} -> qid0001<BR>rlm_sql (sql): sql_set_user escaped user --> 'qid0001'<BR> expand: %{Acct-Input-Gigawords} -> <BR> expand: %{Acct-Input-Octets} -> <BR> expand: %{Acct-Output-Gigawords} -> <BR> expand: %{Acct-Output-Octets} -> <BR> expand: %{Acct-Delay-Time} -> 0<BR> expand: UPDATE radacct SET acctstoptime = '%S', acctsessiontime = '%{Acct-Session-Time}', acctinputoctets = '%{%{Acct-Input-Gigawords}:-0}' << 32 | '%{%{Acct-Input-Octets}:-0}', acctoutputoctets = '%{%{Acct-Output-Gigawords}:-0}' << 32 | '%{%{Acct-Output-Octets}:-0}', acctterminatecause = '%{Acct-Terminate-Cause}', acctstopdelay = '%{%{Acct-Delay-Time}:-0}', connectinfo_stop = '%{Connect-Info}' WHERE acctsessionid = '%{Acct-Session-Id}' AND username = '%{SQL-User-Name}' AND nasipaddress = '%{NAS-IP-Address}' -> UPDATE radacct SET acctstoptime = '2006-10-30 10:07:44', acctsessiontime = '', acctinputoctets = '0' << 32 | '0', acctoutputoctets = '0' << 32 | '0', acctterminatecause = '', acctstopdelay = '0', connectinfo_stop = '' WHERE acctsessionid = 'NS-00000046' AND username = 'qid0001' AND nasipaddress = '10.249.59.188'<BR>rlm_sql (sql): Reserving sql socket id: 4<BR>rlm_sql (sql): Released sql socket id: 4<BR>++[sql] returns ok<BR> expand: %{User-Name} -> qid0001<BR> attr_filter: Matched entry DEFAULT at line 12<BR>++[attr_filter.accounting_response] returns updated<BR>Sending Accounting-Response of id 150 to 10.249.59.188 port 2155<BR>Finished request 16.<BR>Cleaning up request 16 ID 150 with timestamp +1103<BR>Going to the next request<BR>Waking up in 4.9 seconds.<BR>Cleaning up request 14 ID 148 with timestamp +1103<BR>Ready to process requests.</DIV>
<DIV> </DIV>
<DIV><STRONG>secondly, the 2nd pc login with the same username.</STRONG></DIV>
<DIV>rad_recv: Access-Request packet from host 10.249.59.188 port 2155, id=141, length=78<BR> User-Name = "qid0001"<BR> User-Password = "1"<BR> Acct-Session-Id = "NS-00000046"<BR> NAS-IP-Address = 10.249.59.188<BR> NAS-Port = 70<BR> NAS-Port-Type = Virtual<BR>+- entering group authorize<BR>++[preprocess] returns ok<BR> expand: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/auth-detail-%Y%m%d -> /usr/local/var/log/radius/radacct/10.249.59.188/auth-detail-20061030<BR>rlm_detail: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/auth-detail-%Y%m%d expands to /usr/local/var/log/radius/radacct/10.249.59.188/auth-detail-20061030<BR> expand: %t -> Mon Oct 30 09:59:37 2006<BR>++[auth_log] returns ok<BR>++[chap] returns noop<BR>++[mschap] returns noop<BR> rlm_realm: No <A href="mailto:'@'">'@'</A> in User-Name = "qid0001", looking up realm NULL<BR> rlm_realm: No such realm "NULL"<BR>++[suffix] returns noop<BR> rlm_eap: No EAP-Message, not doing EAP<BR>++[eap] returns noop<BR>++[unix] returns notfound<BR>++[files] returns noop<BR> expand: %{User-Name} -> qid0001<BR>rlm_sql (sql): sql_set_user escaped user --> 'qid0001'<BR>rlm_sql (sql): Reserving sql socket id: 1<BR> expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'qid0001' ORDER BY id<BR>WARNING: Found User-Password == "...".<BR>WARNING: Are you sure you don't mean Cleartext-Password?<BR>WARNING: See "man rlm_pap" for more information.<BR>rlm_sql (sql): User found in radcheck table<BR> expand: SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radreply WHERE username = 'qid0001' ORDER BY id<BR> expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'qid0001' ORDER BY priority<BR> expand: SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = '%{Sql-Group}' ORDER BY id -> SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = 'user2' ORDER BY id<BR>rlm_sql (sql): User found in group user2<BR> expand: SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = '%{Sql-Group}' ORDER BY id -> SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = 'user2' ORDER BY id<BR>rlm_sql (sql): Released sql socket id: 1<BR>++[sql] returns ok<BR>++[expiration] returns noop<BR>++[logintime] returns noop<BR>++[pap] returns updated<BR> rad_check_password: Found Auth-Type <BR>!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!<BR>!!! Replacing User-Password in config items with Cleartext-Password. !!!<BR>!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!<BR>!!! Please update your configuration so that the "known good" !!!<BR>!!! clear text password is in Cleartext-Password, and not in User-Password. !!!<BR>!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!<BR>auth: type "PAP"<BR>+- entering group PAP<BR>rlm_pap: login attempt with password "1"<BR>rlm_pap: Using clear text password "1"<BR>rlm_pap: User authenticated successfully<BR>++[pap] returns ok<BR>+- entering group session<BR> expand: %{User-Name} -> qid0001<BR>rlm_sql (sql): sql_set_user escaped user --> 'qid0001'<BR> expand: SELECT COUNT(*) #FROM radacct #WHERE username = '%{SQL-User-Name}' #AND acctstoptime IS NULL -> SELECT COUNT(*) #FROM radacct #WHERE username = 'qid0001' #AND acctstoptime IS NULL<BR>rlm_sql (sql): Reserving sql socket id: 0<BR>rlm_sql (sql): Released sql socket id: 0<BR>++[sql] returns ok<BR>Login OK: [qid0001/1] (from client localhost port 70)<BR>+- entering group post-auth<BR> expand: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/reply-detail-%Y%m%d -> /usr/local/var/log/radius/radacct/10.249.59.188/reply-detail-20061030<BR>rlm_detail: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/reply-detail-%Y%m%d expands to /usr/local/var/log/radius/radacct/10.249.59.188/reply-detail-20061030<BR> expand: %t -> Mon Oct 30 09:59:37 2006<BR>++[reply_log] returns ok<BR>rlm_sql (sql): Processing sql_postauth<BR> expand: %{User-Name} -> qid0001<BR>rlm_sql (sql): sql_set_user escaped user --> 'qid0001'<BR> expand: %{User-Password} -> 1<BR> expand: INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( '%{User-Name}', '%{%{User-Password}:-%{Chap-Password}}', '%{reply:Packet-Type}', '%S') -> INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( 'qid0001', '1', 'Access-Accept', '2006-10-30 09:59:37')<BR>rlm_sql (sql) in sql_postauth: query is INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( 'qid0001', '1', 'Access-Accept', '2006-10-30 09:59:37')<BR>rlm_sql (sql): Reserving sql socket id: 4<BR>rlm_sql (sql): Released sql socket id: 4<BR>++[sql] returns ok<BR>++[exec] returns noop<BR>Sending Access-Accept of id 141 to 10.249.59.188 port 2155<BR>Finished request 7.<BR>Going to the next request<BR>Waking up in 4.9 seconds.<BR>rad_recv: Accounting-Request packet from host 10.249.59.188 port 2155, id=142, length=78<BR> Acct-Status-Type = Start<BR> Acct-Session-Id = "NS-00000046"<BR> NAS-IP-Address = 10.249.59.188<BR> NAS-Port = 70<BR> NAS-Port-Type = Virtual<BR> User-Name = "qid0001"<BR> Acct-Delay-Time = 0<BR> Acct-Authentic = RADIUS<BR>+- entering group preacct<BR>++[preprocess] returns ok<BR>rlm_acct_unique: Hashing 'NAS-Port = 70,Client-IP-Address = 10.249.59.188,NAS-IP-Address = 10.249.59.188,Acct-Session-Id = "NS-00000046",User-Name = "qid0001"'<BR>rlm_acct_unique: Acct-Unique-Session-ID = "e070078eae7af22b".<BR>++[acct_unique] returns ok<BR> rlm_realm: No <A href="mailto:'@'">'@'</A> in User-Name = "qid0001", looking up realm NULL<BR> rlm_realm: No such realm "NULL"<BR>++[suffix] returns noop<BR>++[files] returns noop<BR>+- entering group accounting<BR> expand: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d -> /usr/local/var/log/radius/radacct/10.249.59.188/detail-20061030<BR>rlm_detail: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d expands to /usr/local/var/log/radius/radacct/10.249.59.188/detail-20061030<BR> expand: %t -> Mon Oct 30 09:59:37 2006<BR>++[detail] returns ok<BR>++[unix] returns ok<BR> expand: %{User-Name} -> qid0001<BR>rlm_sql (sql): sql_set_user escaped user --> 'qid0001'<BR> expand: %{Acct-Delay-Time} -> 0<BR> expand: INSERT INTO radacct (acctsessionid, acctuniqueid, username, realm, nasipaddress, nasportid, nasporttype, acctstarttime, acctstoptime, acctsessiontime, acctauthentic, connectinfo_start, connectinfo_stop, acctinputoctets, acctoutputoctets, calledstationid, callingstationid, acctterminatecause, servicetype, framedprotocol, framedipaddress, acctstartdelay, acctstopdelay, xascendsessionsvrkey) VALUES ('%{Acct-Session-Id}', '%{Acct-Unique-Session-Id}', '%{SQL-User-Name}', '%{Realm}', '%{NAS-IP-Address}', '%{NAS-Port}', '%{NAS-Port-Type}', '%S', NULL, '0', '%{Acct-Authentic}', '%{Connect-Info}', '', '0', '0', '%{Called-Station-Id}', '%{Calling-Station-Id}', '', '%{Service-Type}', '%{Framed-Protocol}', '%{Framed-IP-Address}', '%{%{Acct-Delay-Time}:-0}', '0', '%{X-Ascend-Session-Svr-Key}') -> INSERT INTO radacct (acctsessionid, acctuniqueid, username, realm, nasipaddress, nasportid, nasporttype, acctstarttime, acctstoptime, acctsessiontime, acctauthentic, connectinfo_start, connectinfo_stop, acctinputoctets, acctoutputoctets, calledstationid, callingstationid, acctterminatecause, servicetype, framedprotocol, framedipaddress, acctstartdelay, acctstopdelay, xascendsessionsvrkey) VALUES ('NS-00000046', 'e070078eae7af22b', 'qid0001', '', '10.249.59.188', '70', 'Virtual', '2006-10-30 09:59:37', NULL, '0', 'RADIUS', '', '', '0', '0', '', '', '', '', '', '', '0', '0', '')<BR>rlm_sql (sql): Reserving sql socket id: 3<BR>rlm_sql (sql): Released sql socket id: 3<BR>++[sql] returns ok<BR> expand: %{User-Name} -> qid0001<BR> attr_filter: Matched entry DEFAULT at line 12<BR>++[attr_filter.accounting_response] returns updated<BR>Sending Accounting-Response of id 142 to 10.249.59.188 port 2155<BR>Finished request 8.<BR>Cleaning up request 8 ID 142 with timestamp +616<BR>Going to the next request<BR>Waking up in 4.9 seconds.<BR>rad_recv: Accounting-Request packet from host 10.249.59.188 port 2155, id=143, length=78<BR> Acct-Status-Type = Stop<BR> Acct-Session-Id = "NS-00000045"<BR> NAS-IP-Address = 10.249.59.188<BR> NAS-Port = 69<BR> NAS-Port-Type = Virtual<BR> User-Name = "qid0001"<BR> Acct-Delay-Time = 0<BR> Acct-Authentic = RADIUS<BR>+- entering group preacct<BR>++[preprocess] returns ok<BR>rlm_acct_unique: Hashing 'NAS-Port = 69,Client-IP-Address = 10.249.59.188,NAS-IP-Address = 10.249.59.188,Acct-Session-Id = "NS-00000045",User-Name = "qid0001"'<BR>rlm_acct_unique: Acct-Unique-Session-ID = "2183865771469545".<BR>++[acct_unique] returns ok<BR> rlm_realm: No <A href="mailto:'@'">'@'</A> in User-Name = "qid0001", looking up realm NULL<BR> rlm_realm: No such realm "NULL"<BR>++[suffix] returns noop<BR>++[files] returns noop<BR>+- entering group accounting<BR> expand: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d -> /usr/local/var/log/radius/radacct/10.249.59.188/detail-20061030<BR>rlm_detail: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d expands to /usr/local/var/log/radius/radacct/10.249.59.188/detail-20061030<BR> expand: %t -> Mon Oct 30 09:59:37 2006<BR>++[detail] returns ok<BR>++[unix] returns ok<BR> expand: %{User-Name} -> qid0001<BR>rlm_sql (sql): sql_set_user escaped user --> 'qid0001'<BR> expand: %{Acct-Input-Gigawords} -> <BR> expand: %{Acct-Input-Octets} -> <BR> expand: %{Acct-Output-Gigawords} -> <BR> expand: %{Acct-Output-Octets} -> <BR> expand: %{Acct-Delay-Time} -> 0<BR> expand: UPDATE radacct SET acctstoptime = '%S', acctsessiontime = '%{Acct-Session-Time}', acctinputoctets = '%{%{Acct-Input-Gigawords}:-0}' << 32 | '%{%{Acct-Input-Octets}:-0}', acctoutputoctets = '%{%{Acct-Output-Gigawords}:-0}' << 32 | '%{%{Acct-Output-Octets}:-0}', acctterminatecause = '%{Acct-Terminate-Cause}', acctstopdelay = '%{%{Acct-Delay-Time}:-0}', connectinfo_stop = '%{Connect-Info}' WHERE acctsessionid = '%{Acct-Session-Id}' AND username = '%{SQL-User-Name}' AND nasipaddress = '%{NAS-IP-Address}' -> UPDATE radacct SET acctstoptime = '2006-10-30 09:59:37', acctsessiontime = '', acctinputoctets = '0' << 32 | '0', acctoutputoctets = '0' << 32 | '0', acctterminatecause = '', acctstopdelay = '0', connectinfo_stop = '' WHERE acctsessionid = 'NS-00000045' AND username = 'qid0001' AND nasipaddress = '10.249.59.188'<BR>rlm_sql (sql): Reserving sql socket id: 2<BR>rlm_sql (sql): Released sql socket id: 2<BR>++[sql] returns ok<BR> expand: %{User-Name} -> qid0001<BR> attr_filter: Matched entry DEFAULT at line 12<BR>++[attr_filter.accounting_response] returns updated<BR>Sending Accounting-Response of id 143 to 10.249.59.188 port 2155<BR>Finished request 9.<BR>Cleaning up request 9 ID 143 with timestamp +616<BR>Going to the next request<BR>Waking up in 4.9 seconds.<BR>Cleaning up request 7 ID 141 with timestamp +616<BR>Ready to process requests.</DIV>
<DIV> </DIV>
<DIV> </DIV>
<DIV></DIV><BR><PRE>>I don't your problem have anything to deal with simultaneous-use checking... Indeed, when enabled Sim-Use would REJECT NEW users trying to connect to if the login used has reached the limit.... What you say is that new user (same login) disconnect existing session... This sounds more like something with netscreen for me...eg could be ip allocation pb if managed by netscreen or something like this...
>May be providing debug of query processing would be more usefull than just the startup.
>-
>List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
</PRE><br><!-- footer --><br>
<hr>
<font style="font-size:12px;line-height:15px;">[广告] </font><font style="font-size:12px;line-height:15px;">金秋最</font><a style="font-size:12px;line-height:15px; color:blue; text-decoration:underline;" href="http://popme.163.com/link/003985_1010_7027.html">关注楼盘-房不胜房</a>