ok, I think the server is reading files on the path: /usr/local/etc/<br><br>so, I modified the file /usr/local/etc/raddb/clients.conf by adding:<br><br>client ipipgw {<br>
ipaddr = 192.168.6.201<br>
secret = testing123<br>
shortname = c3725<br>
nastype = cisco<br>
login = user<br>
password = userpass<br>
}<br><br>and this is the debug output:<br><br>Ready to process requests.<br>rad_recv: Access-Request packet from host 192.168.6.201 port 1645, id=4, length=84<br> User-Name = "thanh"<br> User-Password = "-*\333\003D\215\345\\\302\036\251\320:\373ȇ"<br>
NAS-Port = 98<br> NAS-Port-Id = "tty98"<br> NAS-Port-Type = Virtual<br> Calling-Station-Id = "192.168.6.20"<br> NAS-IP-Address = 192.168.6.201<br>+- entering group authorize {...}<br>++[preprocess] returns ok<br>
++[chap] returns noop<br>++[mschap] returns noop<br>[suffix] No '@' in User-Name = "thanh", looking up realm NULL<br>[suffix] No such realm "NULL"<br>++[suffix] returns noop<br>[eap] No EAP-Message, not doing EAP<br>
++[eap] returns noop<br>++[unix] returns notfound<br>++[files] returns noop<br>++[expiration] returns noop<br>++[logintime] returns noop<br>[pap] WARNING! No "known good" password found for the user. Authentication may fail because of this.<br>
++[pap] returns noop<br>No authenticate method (Auth-Type) configuration found for the request: Rejecting the user<br>Failed to authenticate the user.<br> WARNING: Unprintable characters in the password. Double-check the shared secret on the server and the NAS!<br>
Using Post-Auth-Type Reject<br>+- entering group REJECT {...}<br>[attr_filter.access_reject] expand: %{User-Name} -> thanh<br> attr_filter: Matched entry DEFAULT at line 11<br>++[attr_filter.access_reject] returns updated<br>
Delaying reject of request 0 for 1 seconds<br>Going to the next request<br>Waking up in 0.9 seconds.<br>Sending delayed reject for request 0<br>Sending Access-Reject of id 4 to 192.168.6.201 port 1645<br>Waking up in 4.9 seconds.<br>
rad_recv: Access-Request packet from host 192.168.6.201 port 1645, id=4, length=84<br>Sending duplicate reply to client ipipgw port 1645 - ID: 4<br>Sending Access-Reject of id 4 to 192.168.6.201 port 1645<br>Waking up in 1.2 seconds.<br>
Cleaning up request 0 ID 4 with timestamp +52<br>Ready to process requests.<br>rad_recv: Access-Request packet from host 192.168.6.201 port 1645, id=4, length=84<br> User-Name = "thanh"<br> User-Password = "-*\333\003D\215\345\\\302\036\251\320:\373ȇ"<br>
NAS-Port = 98<br> NAS-Port-Id = "tty98"<br> NAS-Port-Type = Virtual<br> Calling-Station-Id = "192.168.6.20"<br> NAS-IP-Address = 192.168.6.201<br>+- entering group authorize {...}<br>++[preprocess] returns ok<br>
++[chap] returns noop<br>++[mschap] returns noop<br>[suffix] No '@' in User-Name = "thanh", looking up realm NULL<br>[suffix] No such realm "NULL"<br>++[suffix] returns noop<br>[eap] No EAP-Message, not doing EAP<br>
++[eap] returns noop<br>++[unix] returns notfound<br>++[files] returns noop<br>++[expiration] returns noop<br>++[logintime] returns noop<br>[pap] WARNING! No "known good" password found for the user. Authentication may fail because of this.<br>
++[pap] returns noop<br>No authenticate method (Auth-Type) configuration found for the request: Rejecting the user<br>Failed to authenticate the user.<br> WARNING: Unprintable characters in the password. Double-check the shared secret on the server and the NAS!<br>
Using Post-Auth-Type Reject<br>+- entering group REJECT {...}<br>[attr_filter.access_reject] expand: %{User-Name} -> thanh<br> attr_filter: Matched entry DEFAULT at line 11<br>++[attr_filter.access_reject] returns updated<br>
Delaying reject of request 1 for 1 seconds<br>Going to the next request<br>Waking up in 0.9 seconds.<br>Sending delayed reject for request 1<br>Sending Access-Reject of id 4 to 192.168.6.201 port 1645<br>Waking up in 4.9 seconds.<br>
rad_recv: Access-Request packet from host 192.168.6.201 port 1645, id=4, length=84<br>Sending duplicate reply to client ipipgw port 1645 - ID: 4<br>Sending Access-Reject of id 4 to 192.168.6.201 port 1645<br>Waking up in 1.2 seconds.<br>
Cleaning up request 1 ID 4 with timestamp +61<br>Ready to process requests.<br><br>plz tell me how to solve this.<br>thank you vrey much<br><br><br><div class="gmail_quote"><blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
<div><div class="h5">
-<br>
List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/list/users.html</a><br>
</div></div></blockquote></div><br><br clear="all"><br>-- <br>htt<br>