<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html;charset=TIS-620" http-equiv="Content-Type">
<title></title>
</head>
<body bgcolor="#ffffff" text="#000000">
Alessandro Agostini wrote:
<blockquote cite="mid:4B323404.6090306@ifac.cnr.it" type="cite">Hi to
all,
<br>
I have completed reinstalled all suite on a new Linux box (Centos) for
VPN Server.
<br>
I have installed:
<br>
- freeradius v.1.1.3
<br>
- pptpd v.1.3.4
<br>
- radiusclient-ng v.0.5.6.3
<br>
<br>
freeradius configured with sql backend; with radtest all is ok.
<br>
pptpd and radiusclient configured as in your guide:
<a class="moz-txt-link-freetext" href="http://wiki.freeradius.org/PopTop">http://wiki.freeradius.org/PopTop</a>
<br>
<br>
I try to create tunnel VPN from PC with XP Pro and I see this on pptpd
log:
<br>
<br>
Dec 23 16:03:01 ns pptpd[24224]: CTRL: Starting call (launching pppd,
opening GR E)
<br>
Dec 23 16:03:01 ns pppd[24225]: Plugin radius.so loaded.
<br>
Dec 23 16:03:01 ns pppd[24225]: RADIUS plugin initialized.
<br>
Dec 23 16:03:01 ns pppd[24225]: Plugin radattr.so loaded.
<br>
Dec 23 16:03:01 ns pppd[24225]: RADATTR plugin initialized.
<br>
Dec 23 16:03:01 ns pppd[24225]: Plugin /usr/lib/pptpd/pptpd-logwtmp.so
loaded.
<br>
Dec 23 16:03:01 ns pppd[24225]: pptpd-logwtmp: $Version$
<br>
Dec 23 16:03:01 ns pppd[24225]: pppd 2.4.4 started by root, uid 0
<br>
Dec 23 16:03:01 ns pppd[24225]: Using interface ppp0
<br>
Dec 23 16:03:01 ns pppd[24225]: Connect: ppp0 <--> /dev/pts/3
<br>
Dec 23 16:03:04 ns pptpd[24224]: CTRL: Ignored a SET LINK INFO packet
with real ACCMs!
<br>
Dec 23 16:03:04 ns pppd[24225]: rc_avpair_new: unknown attribute 11
<br>
Dec 23 16:03:04 ns pppd[24225]: rc_avpair_new: unknown attribute 25
<br>
Dec 23 16:03:14 ns pppd[24225]: Peer agostini failed CHAP
authentication
<br>
Dec 23 16:03:14 ns pppd[24225]: Connection terminated.
<br>
Dec 23 16:03:14 ns pppd[24225]: Exit.
<br>
Dec 23 16:03:14 ns pptpd[24224]: CTRL: Client 149.xxx.xxx.xxx control
connection finished
<br>
<br>
and this in radiusd -X log:
<br>
<br>
rad_recv: Access-Request packet from host 127.0.0.1:59350, id=41,
length=70
<br>
Service-Type = Framed-User
<br>
Framed-Protocol = PPP
<br>
User-Name = "agostini"
<br>
Calling-Station-Id = "149.xxx.xxx.xxx"
<br>
NAS-IP-Address = 149.xxx.yyy.yyy
<br>
NAS-Port = 0
<br>
Processing the authorize section of radiusd.conf
<br>
modcall: entering group authorize for request 0
<br>
modcall[authorize]: module "preprocess" returns ok for request 0
<br>
modcall[authorize]: module "chap" returns noop for request 0
<br>
modcall[authorize]: module "mschap" returns noop for request 0
<br>
rlm_realm: No '@' in User-Name = "agostini", looking up realm NULL
<br>
rlm_realm: No such realm "NULL"
<br>
modcall[authorize]: module "suffix" returns noop for request 0
<br>
rlm_eap: No EAP-Message, not doing EAP
<br>
modcall[authorize]: module "eap" returns noop for request 0
<br>
users: Matched entry DEFAULT at line 171
<br>
users: Matched entry DEFAULT at line 183
<br>
modcall[authorize]: module "files" returns ok for request 0
<br>
radius_xlat: 'agostini'
<br>
rlm_sql (sql): sql_set_user escaped user --> 'agostini'
<br>
radius_xlat: 'SELECT id, UserName, Attribute, Value, op FROM
radcheck WHERE Username = 'agostini' ORDER BY id'
<br>
rlm_sql (sql): Reserving sql socket id: 3
<br>
radius_xlat: 'SELECT
radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupcheck.Value,radgroupcheck.op
FROM radgroupcheck,usergroup WHERE usergroup.Username = 'agostini' AND
usergroup.GroupName = radgroupcheck.GroupName ORDER BY
radgroupcheck.id'
<br>
radius_xlat: 'SELECT id, UserName, Attribute, Value, op FROM
radreply WHERE Username = 'agostini' ORDER BY id'
<br>
radius_xlat: 'SELECT
radgroupreply.id,radgroupreply.GroupName,radgroupreply.Attribute,radgroupreply.Value,radgroupreply.op
FROM radgroupreply,usergroup WHERE usergroup.Username = 'agostini' AND
usergroup.GroupName = radgroupreply.GroupName ORDER BY
radgroupreply.id'
<br>
rlm_sql (sql): Released sql socket id: 3
<br>
modcall[authorize]: module "sql" returns ok for request 0
<br>
modcall: leaving group authorize (returns ok) for request 0
<br>
auth: type Local
<br>
auth: No User-Password or CHAP-Password attribute in the request
<br>
auth: Failed to validate the user.
<br>
Delaying request 0 for 1 seconds
<br>
Finished request 0
<br>
Going to the next request
<br>
--- Walking the entire request list ---
<br>
Waking up in 1 seconds...
<br>
--- Walking the entire request list ---
<br>
Waking up in 1 seconds...
<br>
--- Walking the entire request list ---
<br>
Sending Access-Reject of id 41 to 127.0.0.1 port 59350
<br>
Waking up in 4 seconds...
<br>
<br>
The dictionary.microsoft is generated from schema in your site
<a class="moz-txt-link-freetext" href="http://wiki.freeradius.org/PopTop">http://wiki.freeradius.org/PopTop</a>
<br>
<br>
I see onluy User-Name attribute but no the other MS-CHAP....
<br>
<br>
Can you help me?
<br>
Have you any idea if there are tools to deep diagnostic for this
problem?
<br>
<br>
Thank you in advance and Merry Christmas!
<br>
Alessandro
<br>
</blockquote>
check these <br>
<br>
Dec 23 16:03:04 ns pppd[24225]: rc_avpair_new: unknown attribute 11
<br>
Dec 23 16:03:04 ns pppd[24225]: rc_avpair_new: unknown attribute 25
<br>
<br>
<br>
<br>
<div class="moz-signature">-- <br>
<a href="http://www.EasyHorpak.com" target="_blank">http://www.EasyHorpak.com</a>
- áËÅ觤é¹ËÒË;ѡ,;ÒÃì·àÁ¹·ì,áÁ¹ªÑè¹,¤Í¹â´,âçáÃÁ<br>
<a href="http://www.EasyZoneCorp.net" target="_blank">http://www.EasyZoneCorp.net</a>
- «Í¿áÇÃì¨Ñ´¡Òà internet ¤Ø³ÀÒ¾ÊÙ§ Hotpsot áÅÐ PPPoE ,Anti NetCut, Mac
spoof<br>
<a href="http://www.thai-school.net" target="_blank">http://www.thai-school.net</a>
- àÇçºä«µìâçàÃÕ¹,ÈÔÉÂìà¡èÒ ÊÓàÃç¨ÃÙ» <br>
<a href="http://www.easyhorpak.com/superlink" target="_blank">EasyZone
SuperLink </a> - áÅ¡ËÁ×è¹ÅÔ駤×㹤ÅÔê¡à´ÕÂÇ <br>
</div>
</body>
</html>