<html><body><div style="color:#000; background-color:#fff; font-family:times new roman, new york, times, serif;font-size:12pt"><div style="font-family: 'times new roman', 'new york', times, serif; font-size: 12pt; "><span class="Apple-style-span" style="font-size: 16px; ">Hello!</span></div><div style="font-family: 'times new roman', 'new york', times, serif; font-size: 12pt; "><span class="Apple-style-span" style="font-size: 16px; "><br></span></div><div style="font-family: 'times new roman', 'new york', times, serif; font-size: 12pt; "><span class="Apple-style-span" style="font-size: 16px; ">Could someone please kindly help me with a Freeradius & VPN issue? Any help would be very appreciated!</span><br></div><div style="font-family: 'times new roman', 'new york', times, serif; font-size: 12pt; "><span class="Apple-style-span" style="font-size: 16px; "><br></span></div><div><span><div>I'm a non native speaker, so please accept my apologies if I'm
not totally clear with my language. It's an issue with a net equipment that implements VPN connections and an the authentication server (implemented with Freeradius).</div><div><br></div><div>We work with several software providers who connect with our Intranet through the VPN, in order to make their web applications maintenance tasks. The clients are connected without problems for a long period of time during the night. But eventually the Freeradius (or vpn appliance, we don't know for certain) suddently disconnect the clients from the VPN during the next day in the morning (when our partners are working). Actually several times (maybe 6 times).</div><div><br></div><div>They should login again (via automated pppd script and a watchdog). This watchdog also tries to keep open the VPN and if it's not open, it tries to reconnect the VPN again (like a heartbeat).</div><div><br></div><div>The error we've seen in the log (we've used radmin and
raddebug tools) is:</div><div><br></div></span></div><blockquote style="margin: 0 0 0 40px; border: none; padding: 0px;"><div><span><div>"Acct-Terminate-Cause = 0"</div></span></div></blockquote><div><span><div><br></div><div>But in the Radius Accounting RFC (http://freeradius.org/rfc/rfc2866.html) this value is not permitted (possible values are 1-18).</div><div><br></div><div>This is a piece of log, where you can see when a client disconnect from the vpn:</div><div><br></div><div>Mon Jan 16 09:19:54 2012</div><div><span class="Apple-tab-span" style="white-space:pre"> </span>Acct-Session-Id = "<sess_id_num>"</div><div><span class="Apple-tab-span" style="white-space:pre"> </span>Tunnel-Server-Endpoint:0 = "<IP_1>"</div><div><span class="Apple-tab-span" style="white-space:pre"> </span>Tunnel-Client-Endpoint:0 = "<IP_2>"</div><div><span class="Apple-tab-span" style="white-space:pre"> </span>Tunnel-Assignment-Id:0 = "PPTP"</div><div><span
class="Apple-tab-span" style="white-space:pre"> </span>Framed-Protocol = PPP</div><div><span class="Apple-tab-span" style="white-space:pre"> </span>Framed-IP-Address = <IP_3></div><div><span class="Apple-tab-span" style="white-space:pre"> </span>User-Name = "<usr_name>"</div><div><span class="Apple-tab-span" style="white-space:pre"> </span>Acct-Authentic = RADIUS</div><div><b><span class="Apple-tab-span" style="white-space:pre"> </span>Acct-Terminate-Cause = 0</b></div><div><span class="Apple-tab-span" style="white-space:pre"> </span>Acct-Session-Time = 125159</div><div><span class="Apple-tab-span" style="white-space:pre"> </span>Acct-Input-Octets = 1312452</div><div><span class="Apple-tab-span" style="white-space:pre"> </span>Acct-Output-Octets = 2391455</div><div><span class="Apple-tab-span" style="white-space:pre"> </span>Acct-Input-Packets = 19372</div><div><span class="Apple-tab-span" style="white-space:pre"> </span>Acct-Output-Packets
= 25170</div><div><span class="Apple-tab-span" style="white-space:pre"> </span>Acct-Status-Type = Stop</div><div><span class="Apple-tab-span" style="white-space:pre"> </span>NAS-Port-Type = Virtual</div><div><span class="Apple-tab-span" style="white-space:pre"> </span>NAS-Port = 323</div><div><span class="Apple-tab-span" style="white-space:pre"> </span>Service-Type = Framed-User</div><div><span class="Apple-tab-span" style="white-space:pre"> </span>NAS-IP-Address = <IP_4></div><div><span class="Apple-tab-span" style="white-space:pre"> </span>Acct-Delay-Time = 0</div><div><span class="Apple-tab-span" style="white-space:pre"> </span>Huntgroup-Name = "PPTP"</div><div><span class="Apple-tab-span" style="white-space:pre"> </span>Acct-Unique-Session-Id = "<acct_sess_id>"</div><div><span class="Apple-tab-span" style="white-space:pre"> </span>Stripped-User-Name = "<usr_name>"</div><div><span class="Apple-tab-span" style="white-space:pre">
</span>Realm = "NULL"</div><div><span class="Apple-tab-span" style="white-space:pre"> </span>Timestamp = 1326701994</div><div><span class="Apple-tab-span" style="white-space:pre"> </span>Request-Authenticator = Verified</div><div><br></div><div><sess_id_num>, <acct_sess_id>, <IP_x> and <usr_name> aren't real values (they're masked for privacy) although I think the error isn't related to them.</div><div><span class="Apple-tab-span" style="white-space:pre"> </span></div><div>Thank you very much in advance!!</div></span></div><div style="font-family: 'times new roman', 'new york', times, serif; font-size: 12pt; "><span><br></span></div><div style="font-family: 'times new roman', 'new york', times, serif; font-size: 12pt; "><span>Guillermo.</span></div><div style="font-family: 'times new roman', 'new york', times, serif; font-size: 12pt; "> </div><div style="font-family: 'times new roman', 'new york', times, serif; font-size:
12pt; ">---<br>Guillermo Bayon del Oso<br><guillermo_bayon@yahoo.com></div></div></body></html>