<div style="line-height:1.7;color:#000000;font-size:14px;font-family:arial"><DIV>Hi,all</DIV>
<DIV> I have install freeradius-server-2.2.0, and make test such as ./ratest test test 127.0.0.1 0 testing123.</DIV>
<DIV> the result is ok.</DIV>
<DIV>so i ass user tsb to users file as following format.</DIV>
<DIV>tsb Auth-Type := Local, User-Password == "12345678"</DIV>
<DIV>and add asa ip to clients.</DIV>
<DIV><BR> client X.X.X.X{<BR> secret = testvpn<BR> shortname =asa5520 }</DIV>
<DIV> </DIV>
<DIV>complete this I do testing in asa5520 like this</DIV>
<DIV>test asa-server authencation RadiusVPN host X.X.X.X username tsb password 12345678</DIV>
<DIV>hint Authentication Rejected: AAA failure </DIV>
<DIV>I debug it. the folloing is details.</DIV>
<DIV>FO: Attempting Authentication test to IP address <192.168.4.145> (timeout: 12 seconds)<BR>radius mkreq: 0xbeaf<BR>alloc_rip 0x74e172b4<BR> new request 0xbeaf --> 68 (0x74e172b4)<BR>got user 'tsb'<BR>got password<BR>add_req 0x74e172b4 session 0xbeaf id 68<BR>RADIUS_REQUEST<BR>radius.c: rad_mkpkt</DIV>
<DIV>RADIUS packet decode (authentication request)</DIV>
<DIV>--------------------------------------<BR>Raw packet data (length = 61).....<BR>01 44 00 3d 96 17 04 ed 22 b3 70 e9 6e 0f 9c a5 | .D.=....".p.n...<BR>7a 2b 88 21 01 05 74 73 62 02 12 c1 64 1a 52 c7 | z+.!..tsb...d.R.<BR>3f 73 72 16 82 39 8a 0a e0 24 20 04 06 c0 a8 1e | ?sr..9...$ .....<BR>fe 05 06 00 00 00 3c 3d 06 00 00 00 05 | ......<=.....</DIV>
<DIV>Parsed packet data.....<BR>Radius: Code = 1 (0x01)<BR>Radius: Identifier = 68 (0x44)<BR>Radius: Length = 61 (0x003D)<BR>Radius: Vector: 961704ED22B370E96E0F9CA57A2B8821<BR>Radius: Type = 1 (0x01) User-Name<BR>Radius: Length = 5 (0x05)<BR>Radius: Value (String) = <BR>74 73 62 | tsb<BR>Radius: Type = 2 (0x02) User-Password<BR>Radius: Length = 18 (0x12)<BR>Radius: Value (String) = <BR>c1 64 1a 52 c7 3f 73 72 16 82 39 8a 0a e0 24 20 | .d.R.?sr..9...$ <BR>Radius: Type = 4 (0x04) NAS-IP-Address<BR>Radius: Length = 6 (0x06)<BR>Radius: Value (IP Address) = 192.168.30.254 (0xC0A81EFE)<BR>Radius: Type = 5 (0x05) NAS-Port<BR>Radius: Length = 6 (0x06)<BR>Radius: Value (Hex) = 0x3C<BR>Radius: Type = 61 (0x!
3D) NAS-Port-Type<BR>Radius: Length = 6 (0x06)<BR>Radius: Value (Hex) = 0x5<BR>send pkt 192.168.4.145/1812<BR>rip 0x74e172b4 state 7 id 68<BR>rad_vrfy() : response message verified<BR>rip 0x74e172b4<BR> : chall_state ''<BR> : state 0x7<BR> : reqauth:<BR> 96 17 04 ed 22 b3 70 e9 6e 0f 9c a5 7a 2b 88 21 <BR> : info 0x74e173ec<BR> session_id 0xbeaf<BR> request_id 0x44<BR> user 'tsb'<BR> response '***'<BR> app 0<BR> reason 0<BR> skey 'testvpn'<BR> sip 192.168.4.145<BR> type 1</DIV>
<DIV>RADIUS packet decode (response)</DIV>
<DIV>--------------------------------------<BR>Raw packet data (length = 20).....<BR>03 44 ERROR: Authentication Rejected: AAA failure<BR>TSBA6-5520-Int# 00 14 35 f4 1a 63 3a 45 ca bd 4f 52 85 73 | .D..5..c:E..OR.s<BR>5c e2 f2 22 | \.."</DIV>
<DIV>Parsed packet data.....<BR>Radius: Code = 3 (0x03)<BR>Radius: Identifier = 68 (0x44)<BR>Radius: Length = 20 (0x0014)<BR>Radius: Vector: 35F41A633A45CABD4F5285735CE2F222<BR>rad_procpkt: REJECT<BR>RADIUS_DELETE<BR>remove_req 0x74e172b4 session 0xbeaf id 68<BR>free_rip 0x74e172b4<BR>radius: send queue empty</DIV>
<DIV> </DIV></div><br><br><span title="neteasefooter"><span id="netease_mail_footer"></span></span>