<div dir="ltr"><div class="gmail_quote"><div dir="ltr"><div><div>Hi all,<br><br></div>again i've tried users configuration for a few times.<br></div>i always failed when i'm trying these formats<br><div class=""><p class="MsoNormal">
<a href="mailto:1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org" target="_blank"><br>
</a></p><p class="MsoNormal"><a href="mailto:1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org" target="_blank">1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org</a><span> </span><span></span>EAP-Type
:= SIM</p>
<p class="MsoNormal"><span> </span>EAP-Sim-Rand1
= 0xBDA21CB60EF945da9A8BA56667B49027,</p>
<p class="MsoNormal"><span> </span>EAP-Sim-SRES1
= 0x04d995bc,</p>
<p class="MsoNormal"><span> </span>EAP-Sim-KC1
= 0xBBe0a7c68Aea1c00,</p>
<p class="MsoNormal"><span> </span>EAP-Sim-Rand2
= 0x621F1DAC915B4dbf8A0842E88B97BBBE,</p>
<p class="MsoNormal"><span> </span>EAP-Sim-SRES2
= 0xD9b5f235,</p>
<p class="MsoNormal"><span> </span>EAP-Sim-KC2
= 0x33d1ae11914c4800,</p>
<p class="MsoNormal"><span> </span>EAP-Sim-Rand3
= 0x6AD4284810DD42ca8A60A410F7746820,</p>
<p class="MsoNormal"><span> </span>EAP-Sim-SRES3
= 0xB29eb39b,</p>
<p class="MsoNormal"><span> </span>EAP-Sim-KC3
= 0x1E62ae2aA0a66400</p><p class="MsoNormal"><br></p></div>but if i tried based on log, <span style="font-family:"Courier New"">[/etc/freeradius/users]:204 WARNING! Check item "EAP-Sim-Rand1" <span> </span>found in reply item list for user
"<a href="mailto:1510101425520064@wlan.mnc101.mcc510.3gppnetwork.org" target="_blank">1510101425520064@wlan.mnc101.mcc510.3gppnetwork.org</a>". <span> </span>This attribute MUST go on the first line with
the other check items</span><div><br></div><div class="gmail_extra">so i do in one line, <br><a href="mailto:1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org" target="_blank">1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org</a><span> </span>EAP-Sim-Rand1
= 0xBDA21CB60EF945da9A8BA56667B49027,<span> </span>EAP-Sim-SRES1
= 0x04d995bc,<span> </span>EAP-Sim-KC1
= 0xBBe0a7c68Aea1c00,<span> </span>EAP-Sim-Rand2
= 0x621F1DAC915B4dbf8A0842E88B97BBBE,<span> </span>EAP-Sim-SRES2
= 0xD9b5f235,<span> </span>EAP-Sim-KC2
= 0x33d1ae11914c4800,<span> </span>EAP-Sim-Rand3
= 0x6AD4284810DD42ca8A60A410F7746820,<span> </span>EAP-Sim-SRES3
= 0xB29eb39b,<span> </span>EAP-Sim-KC3
= 0x1E62ae2aA0a66400<br></div><div><div><div><div><div class="gmail_extra"><br></div><div class="gmail_extra">i do the same when i follow this instruction<br><a href="http://lists.freeradius.org/pipermail/freeradius-users/2014-March/071123.html" target="_blank">http://lists.freeradius.org/pipermail/freeradius-users/2014-March/071123.html</a><br>
<br></div><div class="gmail_extra">and the result is the warning is gone!<br><br></div><div class="gmail_extra">so, it's okay to use that format? honestly i really new with freeradius, i'll appreciate for any helps.<br>
<br></div><div class="gmail_extra">it's my log<span> </span>realm LOCAL {<br><div><div class="h5">
<span> </span>}<br>
radiusd: #### Loading Clients ####<br>
<span> </span>client localhost {<br>
<span> </span><span> </span>ipaddr
= 127.0.0.1<br>
<span> </span><span> </span>require_message_authenticator
= no<br>
<span> </span><span> </span>secret
= "testing123"<br>
<span> </span><span> </span>nastype
= "other"<br>
<span> </span>}<br>
<span> </span>client <a href="http://192.168.1.0/24" target="_blank">192.168.1.0/24</a> {<br>
<span> </span><span> </span>require_message_authenticator
= no<br>
<span> </span><span> </span>secret
= "eap-sim"<br>
<span> </span><span> </span>shortname
= "eap-sim"<br>
<span> </span>}<br>
radiusd: #### Instantiating modules ####<br>
<span> </span>instantiate {<br>
<span> </span>Module: Linked to module rlm_exec<br>
<span> </span>Module: Instantiating module
"exec" from file /etc/freeradius/modules/exec<br>
<span> </span>exec {<br>
<span> </span><span> </span>wait
= no<br>
<span> </span><span> </span>input_pairs
= "request"<br>
<span> </span><span> </span>shell_escape
= yes<br>
<span> </span><span> </span>timeout
= 10<br>
<span> </span>}<br>
<span> </span>Module: Linked to module rlm_expr<br>
<span> </span>Module: Instantiating module
"expr" from file /etc/freeradius/modules/expr<br>
<span> </span>Module: Linked to module rlm_expiration<br>
<span> </span>Module: Instantiating module
"expiration" from file /etc/freeradius/modules/expiration<br>
<span> </span>expiration {<br>
<span> </span><span> </span>reply-message
= "Password Has Expired<span>
</span>"<br>
<span> </span>}<br>
<span> </span>Module: Linked to module
rlm_logintime<br>
<span> </span>Module: Instantiating module
"logintime" from file /etc/freeradius/modules/logintime<br>
<span> </span>logintime {<br>
<span> </span><span> </span>reply-message
= "You are calling outside your allowed timespan<span> </span>"<br>
<span> </span><span> </span>minimum-timeout
= 60<br>
<span> </span>}<br>
<span> </span>}<br>
radiusd: #### Loading Virtual Servers ####<br></div></div>
server { # from file <span style="font-family:"Tahoma","sans-serif"">�</span><span style="font-family:"Courier New"">?x</span><span style="font-family:"Tahoma","sans-serif"">�</span><span style="font-family:"Courier New"">???<div>
<div class="h5"><br>
<span> </span>modules {<br>
<span> </span>Module: Creating Auth-Type = digest<br>
<span> </span>Module: Creating Post-Auth-Type =
REJECT<br>
<span> </span>Module: Checking authenticate {...} for
more modules to load<br>
<span> </span>Module: Linked to module rlm_pap<br>
<span> </span>Module: Instantiating module
"pap" from file /etc/freeradius/modules/pap<br>
<span> </span>pap {<br>
<span> </span><span> </span>encryption_scheme
= "auto"<br>
<span> </span><span> </span>auto_header
= no<br>
<span> </span>}<br>
<span> </span>Module: Linked to module rlm_chap<br>
<span> </span>Module: Instantiating module
"chap" from file /etc/freeradius/modules/chap<br>
<span> </span>Module: Linked to module
rlm_mschap<br>
<span> </span>Module: Instantiating module
"mschap" from file /etc/freeradius/modules/mschap<br>
<span> </span>mschap {<br>
<span> </span><span> </span>use_mppe
= yes<br>
<span> </span><span> </span>require_encryption
= no<br>
<span> </span><span> </span>require_strong
= no<br>
<span> </span><span> </span>with_ntdomain_hack
= no<br>
<span> </span><span> </span>allow_retry
= yes<br>
<span> </span>}<br>
<span> </span>Module: Linked to module
rlm_digest<br>
<span> </span>Module: Instantiating module
"digest" from file /etc/freeradius/modules/digest<br>
<span> </span>Module: Linked to module rlm_unix<br>
<span> </span>Module: Instantiating module
"unix" from file /etc/freeradius/modules/unix<br>
<span> </span>unix {<br>
<span> </span><span> </span>radwtmp
= "/var/log/freeradius/radwtmp"<br>
<span> </span>}<br>
<span> </span>Module: Linked to module rlm_eap<br>
<span> </span>Module: Instantiating module
"eap" from file /etc/freeradius/eap.conf<br>
<span> </span>eap {<br>
<span> </span><span> </span>default_eap_type
= "md5"<br>
<span> </span><span> </span>timer_expire
= 60<br>
<span> </span><span> </span>ignore_unknown_eap_types
= no<br>
<span> </span><span> </span>cisco_accounting_username_bug
= no<br>
<span> </span><span> </span>max_sessions
= 1024<br>
<span> </span>}<br>
<span> </span>Module: Linked to sub-module
rlm_eap_md5<br>
<span> </span>Module: Instantiating eap-md5<br>
<span> </span>Module: Linked to sub-module
rlm_eap_leap<br>
<span> </span>Module: Instantiating eap-leap<br>
<span> </span>Module: Linked to sub-module
rlm_eap_gtc<br>
<span> </span>Module: Instantiating eap-gtc<br>
<span> </span>gtc {<br>
<span> </span><span> </span>challenge
= "Password: "<br>
<span> </span><span> </span>auth_type
= "PAP"<br>
<span> </span>}<br>
<span> </span>Module: Linked to sub-module
rlm_eap_tls<br>
<span> </span>Module: Instantiating eap-tls<br>
<span> </span>tls {<br>
<span> </span><span> </span>rsa_key_exchange
= no<br>
<span> </span><span> </span>dh_key_exchange
= yes<br>
<span> </span><span> </span>rsa_key_length
= 512<br>
<span> </span><span> </span>dh_key_length
= 512<br>
<span> </span><span> </span>verify_depth
= 0<br>
<span> </span><span> </span>CA_path
= "/etc/freeradius/certs"<br>
<span> </span><span> </span>pem_file_type
= yes<br>
<span> </span><span> </span>private_key_file
= "/etc/freeradius/certs/server.key"<br>
<span> </span><span> </span><span> </span>certificate_file =
"/etc/freeradius/certs/server.pem"<br>
<span> </span><span> </span>CA_file
= "/etc/freeradius/certs/ca.pem"<br>
<span> </span><span> </span>private_key_password
= "whatever"<br>
<span> </span><span> </span>dh_file
= "/etc/freeradius/certs/dh"<br>
<span> </span><span> </span>fragment_size
= 1024<br>
<span> </span><span> </span>include_length
= yes<br>
<span> </span><span> </span>check_crl
= no<br>
<span> </span><span> </span>cipher_list
= "DEFAULT"<br>
<span> </span><span> </span>make_cert_command
= "/etc/freeradius/certs/bootstrap"<br>
<span> </span><span> </span>ecdh_curve
= "prime256v1"<br>
<span> </span>cache {<br>
<span> </span><span> </span>enable
= no<br>
<span> </span><span> </span>lifetime
= 24<br>
<span> </span><span> </span>max_entries
= 255<br>
<span> </span>}<br>
<span> </span>verify {<br>
<span> </span>}<br>
<span> </span>ocsp {<br>
<span> </span><span> </span>enable
= no<br>
<span> </span><span> </span>override_cert_url
= yes<br>
<span> </span><span> </span>url
= "<a href="http://127.0.0.1/ocsp/" target="_blank">http://127.0.0.1/ocsp/</a>"<br>
<span> </span><span> </span>use_nonce
= yes<br>
<span> </span><span> </span>timeout
= 0<br>
<span> </span><span> </span>softfail
= no<br>
<span> </span>}<br>
<span> </span>}<br>
<span> </span>Module: Linked to sub-module
rlm_eap_ttls<br>
<span> </span>Module: Instantiating eap-ttls<br>
<span> </span>ttls {<br>
<span> </span><span> </span>default_eap_type
= "md5"<br>
<span> </span><span> </span>copy_request_to_tunnel
= no<br>
<span> </span><span> </span>use_tunneled_reply
= no<br>
<span> </span><span> </span>virtual_server
= "inner-tunnel"<br>
<span> </span><span> </span>include_length
= yes<br>
<span> </span>}<br>
<span> </span>Module: Linked to sub-module
rlm_eap_peap<br>
<span> </span>Module: Instantiating eap-peap<br>
<span> </span>peap {<br>
<span> </span><span> </span>default_eap_type
= "mschapv2"<br>
<span> </span><span> </span>copy_request_to_tunnel
= no<br>
<span> </span><span> </span>use_tunneled_reply
= no<br>
<span> </span><span> </span>proxy_tunneled_request_as_eap
= yes<br>
<span> </span><span> </span>virtual_server
= "inner-tunnel"<br>
<span> </span><span> </span>soh
= no<br>
<span> </span>}<br>
<span> </span>Module: Linked to sub-module
rlm_eap_mschapv2<br>
<span> </span>Module: Instantiating eap-mschapv2<br>
<span> </span>mschapv2 {<br>
<span> </span><span> </span>with_ntdomain_hack
= no<br>
<span> </span><span> </span>send_error
= no<br>
<span> </span>}<br>
<span> </span>Module: Linked to sub-module
rlm_eap_sim<br>
<span> </span>Module: Instantiating eap-sim<br>
<span> </span>Module: Checking authorize {...} for
more modules to load<br>
<span> </span>Module: Linked to module
rlm_preprocess<br>
<span> </span>Module: Instantiating module
"preprocess" from file /etc/freeradius/modules/preprocess<br>
<span> </span>preprocess {<br>
<span> </span><span> </span>huntgroups
= "/etc/freeradius/huntgroups"<br>
<span> </span><span> </span>hints
= "/etc/freeradius/hints"<br>
<span> </span><span> </span>with_ascend_hack
= no<br>
<span> </span><span> </span>ascend_channels_per_line
= 23<br>
<span> </span><span> </span>with_ntdomain_hack
= no<br>
<span> </span><span> </span>with_specialix_jetstream_hack
= no<br>
<span> </span><span> </span>with_cisco_vsa_hack
= no<br>
<span> </span><span> </span>with_alvarion_vsa_hack
= no<br>
<span> </span>}<br>
reading pairlist file /etc/freeradius/huntgroups<br>
reading pairlist file /etc/freeradius/hints<br>
<span> </span>Module: Linked to module rlm_realm<br>
<span> </span>Module: Instantiating module
"suffix" from file /etc/freeradius/modules/realm<br>
<span> </span>realm suffix {<br>
<span> </span><span> </span>format
= "suffix"<br>
<span> </span><span> </span>delimiter
= "@"<br>
<span> </span><span> </span>ignore_default
= no<br>
<span> </span><span> </span>ignore_null
= no<br>
<span> </span>}<br>
<span> </span>Module: Linked to module
rlm_sim_files<br>
<span> </span>Module: Instantiating module
"sim_files" from file /etc/freeradius/modules/sim_files<br>
<span> </span>sim_files {<br>
<span> </span><span> </span>simtriplets
= "/etc/freeradius/simtriplets.dat"<br>
<span> </span>}<br>
<span> </span>Module: Linked to module rlm_files<br>
<span> </span>Module: Instantiating module
"files" from file /etc/freeradius/modules/files<br>
<span> </span>files {<br>
<span> </span><span> </span>usersfile
= "/etc/freeradius/users"<br>
<span> </span><span> </span>acctusersfile
= "/etc/freeradius/acct_users"<br>
<span> </span><span> </span>preproxy_usersfile
= "/etc/freeradius/preproxy_users"<br>
<span> </span><span> </span>compat
= "no"<br>
<span> </span>}<br>
reading pairlist file /etc/freeradius/users<br></div></div><div><div class="h5">
reading pairlist file /etc/freeradius/acct_users<br>
reading pairlist file /etc/freeradius/preproxy_users<br>
<span> </span>Module: Checking preacct {...} for more
modules to load<br>
<span> </span>Module: Linked to module
rlm_acct_unique<br>
<span> </span>Module: Instantiating module
"acct_unique" from file /etc/freeradius/modules/acct_unique<br>
<span> </span>acct_unique {<br>
<span> </span><span> </span>key
= "User-Name, Acct-Session-Id, NAS-IP-Address, NAS-Identifier,
NAS-Port"<br>
<span> </span>}<br>
<span> </span>Module: Checking accounting {...} for
more modules to load<br>
<span> </span>Module: Linked to module
rlm_detail<br>
<span> </span>Module: Instantiating module
"detail" from file /etc/freeradius/modules/detail<br>
<span> </span>detail {<br>
<span> </span><span> </span>detailfile
= "/var/log/freeradius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d"<br>
<span> </span><span> </span>header
= "%t"<br>
<span> </span><span> </span>detailperm
= 384<br>
<span> </span><span> </span>dirperm
= 493<br>
<span> </span><span> </span>locking
= no<br>
<span> </span><span> </span>log_packet_header
= no<br>
<span> </span>}<br>
<span> </span>Module: Linked to module
rlm_attr_filter<br>
<span> </span>Module: Instantiating module
"attr_filter.accounting_response" from file /etc/freeradius/modules/attr_filter<br>
<span> </span>attr_filter
attr_filter.accounting_response {<br>
<span> </span><span> </span>attrsfile
= "/etc/freeradius/attrs.accounting_response"<br>
<span> </span><span> </span>key
= "%{User-Name}"<br>
<span> </span><span> </span>relaxed
= no<br>
<span> </span>}<br>
reading pairlist file /etc/freeradius/attrs.accounting_response<br>
<span> </span>Module: Checking session {...} for more
modules to load<br>
<span> </span>Module: Linked to module
rlm_radutmp<br>
<span> </span>Module: Instantiating module
"radutmp" from file /etc/freeradius/modules/radutmp<br>
<span> </span>radutmp {<br>
<span> </span><span> </span>filename
= "/var/log/freeradius/radutmp"<br>
<span> </span><span> </span>username
= "%{User-Name}"<br>
<span> </span><span> </span>case_sensitive
= yes<br>
<span> </span><span> </span>check_with_nas
= yes<br>
<span> </span><span> </span>perm
= 384<br>
<span> </span><span> </span>callerid
= yes<br>
<span> </span>}<br>
<span> </span>Module: Checking post-proxy {...} for
more modules to load<br>
<span> </span>Module: Checking post-auth {...} for
more modules to load<br>
<span> </span>Module: Instantiating module
"attr_filter.access_reject" from file
/etc/freeradius/modules/attr_filter<br>
<span> </span>attr_filter attr_filter.access_reject
{<br>
<span> </span><span> </span>attrsfile
= "/etc/freeradius/attrs.access_reject"<br>
<span> </span><span> </span>key
= "%{User-Name}"<br>
<span> </span><span> </span>relaxed
= no<br>
<span> </span>}<br>
reading pairlist file /etc/freeradius/attrs.access_reject<br>
<span> </span>} # modules<br>
} # server<br>
server inner-tunnel { # from file
/etc/freeradius/sites-enabled/inner-tunnel<br>
<span> </span>modules {<br>
<span> </span>Module: Checking authenticate {...} for
more modules to load<br>
<span> </span>Module: Checking authorize {...} for
more modules to load<br>
<span> </span>Module: Checking session {...} for more
modules to load<br>
<span> </span>Module: Checking post-proxy {...} for
more modules to load<br>
<span> </span>Module: Checking post-auth {...} for
more modules to load<br>
<span> </span>} # modules<br>
} # server<br>
radiusd: #### Opening IP addresses and Ports ####<br>
listen {<br>
<span> </span><span> </span>type
= "auth"<br>
<span> </span><span> </span>ipaddr
= *<br>
<span> </span><span> </span>port
= 0<br>
}<br>
listen {<br>
<span> </span><span> </span>type
= "acct"<br>
<span> </span><span> </span>ipaddr
= *<br>
<span> </span><span> </span>port
= 0<br>
}<br>
listen {<br>
<span> </span><span> </span>type
= "auth"<br>
<span> </span><span> </span>ipaddr
= 127.0.0.1<br>
<span> </span><span> </span>port
= 18120<br>
}<br>
</div></div><span> </span>... adding new socket proxy address *
port 44186<div class=""><br>
Listening on authentication address * port 1812<br>
Listening on accounting address * port 1813<br>
Listening on authentication address 127.0.0.1 port 18120 as server
inner-tunnel<br>
Listening on proxy address * port 1814<br>
Ready to process requests.<br></div>
rad_recv: Access-Request packet from host 192.168.1.1 port 2049, id=151,
length=259<div class=""><br>
<span> </span>User-Name = "<a href="mailto:1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org" target="_blank">1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org</a>"<br>
<span> </span>NAS-IP-Address = 192.168.1.1<br>
<span> </span>NAS-Port = 0<br>
<span> </span>Called-Station-Id =
"004f62248f98"<br>
<span> </span>Calling-Station-Id =
"70aab2eb15af"<br>
<span> </span>NAS-Identifier = "Realtek
Access Point. 8186"<br>
<span> </span>Framed-MTU = 1400<br>
<span> </span>NAS-Port-Type = Wireless-802.11<br>
<span> </span>Service-Type = Framed-User<br>
<span> </span>Connect-Info = "CONNECT 11Mbps
802.11b"<br>
<span> </span>EAP-Message =
0x02000038013135313030313934363332383631363840776c616e2e6d6e633030312e6d63633531302e336770706e6574776f726b2e6f7267<br>
</div><span> </span>Message-Authenticator =
0xf77502a9d1ebb44e40a997fb52f4ad2a<div class=""><br>
# Executing section authorize from file
/etc/freeradius/sites-enabled/default<br>
+group authorize {<br>
++[preprocess] = ok<br>
++[chap] = noop<br>
++[mschap] = noop<br>
++[digest] = noop<br>
[suffix] Looking up realm "<a href="http://wlan.mnc001.mcc510.3gppnetwork.org" target="_blank">wlan.mnc001.mcc510.3gppnetwork.org</a>" for
User-Name =
"<a href="mailto:1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org" target="_blank">1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org</a>"<br>
[suffix] No such realm "<a href="http://wlan.mnc001.mcc510.3gppnetwork.org" target="_blank">wlan.mnc001.mcc510.3gppnetwork.org</a>"<br>
++[suffix] = noop<br></div>
rlm_sim_files: authorized user/imsi
<a href="mailto:1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org" target="_blank">1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org</a> <br>
rlm_sim_files: Adding EAP-Type: eap-sim<br>
++[sim_files] = ok<div class=""><br>
[eap] EAP packet type response id 0 length 56<br>
[eap] No EAP Start, assuming it's an on-going EAP conversation<br>
++[eap] = updated<br></div>
++[files] = noop<div class=""><br>
++[expiration] = noop<br>
++[logintime] = noop<br>
[pap] WARNING! No "known good" password found for the user.<span> </span>Authentication may fail because of
this.<br>
++[pap] = noop<br>
+} # group authorize = updated<br>
Found Auth-Type = EAP<br>
# Executing group from file /etc/freeradius/sites-enabled/default<br>
+group authenticate {<br>
[eap] EAP Identity<br>
[eap] processing type sim<br></div>
[eap] Underlying EAP-Type set EAP ID to 127<div class=""><br>
++[eap] = handled<br>
+} # group authenticate = handled<br></div>
Sending Access-Challenge of id 151 to 192.168.1.1 port 2049<br>
<span> </span>EAP-Message =
0x017f0014120a00000f0200020001000011010100<br>
<span> </span>Message-Authenticator = 0x00000000000000000000000000000000<br>
<span> </span>State =
0x7659c0b27626d231a8579b0cb8f3e694<div class=""><br>
Finished request 0.<br>
Going to the next request<br>
Waking up in 4.9 seconds.<br></div>
rad_recv: Access-Request packet from host 192.168.1.1 port 2049, id=152,
length=303<div class=""><br>
<span> </span>User-Name = "<a href="mailto:1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org" target="_blank">1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org</a>"<br>
<span> </span>NAS-IP-Address = 192.168.1.1<br>
<span> </span>NAS-Port = 0<br>
<span> </span>Called-Station-Id =
"004f62248f98"<br>
<span> </span>Calling-Station-Id =
"70aab2eb15af"<br>
<span> </span>NAS-Identifier = "Realtek
Access Point. 8186"<br>
<span> </span>NAS-Port-Type =
Wireless-802.11<br>
<span> </span>Service-Type = Framed-User<br>
<span> </span>Connect-Info = "CONNECT 11Mbps
802.11b"<br>
</div><span> </span>EAP-Message =
0x027f0058120a000007050000b7a1d8dbcbb4ebc3626016889cbfc212100100010e0e00333135313030313934363332383631363840776c616e2e6d6e633030312e6d63633531302e336770706e6574776f726b2e6f726700<br>
<span> </span>State = 0x7659c0b27626d231a8579b0cb8f3e694<br>
<span> </span>Message-Authenticator =
0x946a59632d3b96d1ba18ad68545b1eb6<div class=""><br>
# Executing section authorize from file
/etc/freeradius/sites-enabled/default<br>
+group authorize {<br>
++[preprocess] = ok<br>
++[chap] = noop<br>
++[mschap] = noop<br>
++[digest] = noop<br>
[suffix] Looking up realm "<a href="http://wlan.mnc001.mcc510.3gppnetwork.org" target="_blank">wlan.mnc001.mcc510.3gppnetwork.org</a>" for
User-Name =
"<a href="mailto:1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org" target="_blank">1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org</a>"<br>
[suffix] No such realm "<a href="http://wlan.mnc001.mcc510.3gppnetwork.org" target="_blank">wlan.mnc001.mcc510.3gppnetwork.org</a>"<br>
++[suffix] = noop<br></div>
rlm_sim_files: authorized user/imsi <a href="mailto:1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org" target="_blank">1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org</a>
<br>
rlm_sim_files: Adding EAP-Type: eap-sim<br>
++[sim_files] = ok<br>
[eap] EAP packet type response id 127 length 88<div class=""><br>
[eap] No EAP Start, assuming it's an on-going EAP conversation<br>
++[eap] = updated<br></div>
++[files] = noop<div class=""><br>
++[expiration] = noop<br>
++[logintime] = noop<br>
[pap] WARNING! No "known good" password found for the user.<span> </span>Authentication may fail because of
this.<br>
++[pap] = noop<br>
+} # group authorize = updated<br>
Found Auth-Type = EAP<br>
# Executing group from file /etc/freeradius/sites-enabled/default<br>
+group authenticate {<br>
[eap] Request found, released from the list<br>
[eap] EAP/sim<br>
[eap] processing type sim<br>
+++> EAP-sim decoded packet:<br>
<span> </span>User-Name =
"<a href="mailto:1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org" target="_blank">1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org</a>"<br>
<span> </span>NAS-IP-Address = 192.168.1.1<br>
<span> </span>NAS-Port = 0<br>
<span> </span>Called-Station-Id =
"004f62248f98"<br>
<span> </span>Calling-Station-Id =
"70aab2eb15af"<br>
<span> </span>NAS-Identifier = "Realtek
Access Point. 8186"<br>
<span> </span>NAS-Port-Type =
Wireless-802.11<br>
<span> </span>Service-Type = Framed-User<br>
<span> </span>Connect-Info = "CONNECT 11Mbps
802.11b"<br>
</div><span> </span>EAP-Message = 0x027f0058120a000007050000b7a1d8dbcbb4ebc3626016889cbfc212100100010e0e00333135313030313934363332383631363840776c616e2e6d6e633030312e6d63633531302e336770706e6574776f726b2e6f726700<br>
<span> </span>State =
0x7659c0b27626d231a8579b0cb8f3e694<br>
<span> </span>Message-Authenticator =
0x946a59632d3b96d1ba18ad68545b1eb6<div class=""><br>
<span> </span>EAP-Type = SIM<br>
<span> </span>EAP-Sim-Subtype = Start<br>
</div><span> </span>EAP-Sim-NONCE_MT =
0x0000b7a1d8dbcbb4ebc3626016889cbfc212<div class=""><br>
<span> </span>EAP-Sim-SELECTED_VERSION =
0x0001<br>
<span> </span>EAP-Sim-IDENTITY =
0x3135313030313934363332383631363840776c616e2e6d6e633030312e6d63633531302e336770706e6574776f726b2e6f7267<br></div>
[eap] Underlying EAP-Type set EAP ID to 128<div class=""><br>
++[eap] = handled<br>
+} # group authenticate = handled<br></div>
Sending Access-Challenge of id 152 to 192.168.1.1 port 2049<br>
<span> </span>EAP-Message =
0x01800050120b0000010d0000bda21cb60ef945da9a8ba56667b49027621f1dac915b4dbf8a0842e88b97bbbe6ad4284810dd42ca8a60a410f77468200b05000066269155d778ece4a44df2898acaa745<br>
<span> </span>Message-Authenticator =
0x00000000000000000000000000000000<br>
<span> </span>State =
0x7659c0b277d9d231a8579b0cb8f3e694<div class=""><br>
Finished request 1.<br>
Going to the next request<br>
Waking up in 4.9 seconds.<br></div>
rad_recv: Access-Request packet from host 192.168.1.1 port 2049, id=153,
length=243<div class=""><br>
<span> </span>User-Name =
"<a href="mailto:1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org" target="_blank">1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org</a>"<br>
<span> </span>NAS-IP-Address = 192.168.1.1<br>
<span> </span>NAS-Port = 0<br>
<span> </span>Called-Station-Id =
"004f62248f98"<br>
<span> </span>Calling-Station-Id =
"70aab2eb15af"<br>
<span> </span>NAS-Identifier = "Realtek
Access Point. 8186"<br>
<span> </span>NAS-Port-Type =
Wireless-802.11<br>
<span> </span>Service-Type = Framed-User<br>
<span> </span>Connect-Info = "CONNECT 11Mbps
802.11b"<br>
</div><span> </span>EAP-Message =
0x0280001c120b00000b0500004e314600d7dd8c432d922fe2e2f85e45<br>
<span> </span>State =
0x7659c0b277d9d231a8579b0cb8f3e694<br>
<span> </span>Message-Authenticator =
0xe28cce59df602509a3c3cfe9a99c5693<div class=""><br>
# Executing section authorize from file
/etc/freeradius/sites-enabled/default<br>
+group authorize {<br>
++[preprocess] = ok<br>
++[chap] = noop<br>
++[mschap] = noop<br>
++[digest] = noop<br>
[suffix] Looking up realm "<a href="http://wlan.mnc001.mcc510.3gppnetwork.org" target="_blank">wlan.mnc001.mcc510.3gppnetwork.org</a>" for
User-Name =
"<a href="mailto:1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org" target="_blank">1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org</a>"<br>
[suffix] No such realm "<a href="http://wlan.mnc001.mcc510.3gppnetwork.org" target="_blank">wlan.mnc001.mcc510.3gppnetwork.org</a>"<br>
++[suffix] = noop<br></div>
rlm_sim_files: authorized user/imsi
<a href="mailto:1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org" target="_blank">1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org</a> <br>
rlm_sim_files: Adding EAP-Type: eap-sim<br>
++[sim_files] = ok<br>
[eap] EAP packet type response id 128 length 28<div class=""><br>
[eap] No EAP Start, assuming it's an on-going EAP conversation<br>
++[eap] = updated<br></div>
++[files] = noop<div class=""><br>
++[expiration] = noop<br>
++[logintime] = noop<br>
[pap] WARNING! No "known good" password found for the user.<span> </span>Authentication may fail because of
this.<br>
++[pap] = noop<br>
+} # group authorize = updated<br>
Found Auth-Type = EAP<br>
# Executing group from file /etc/freeradius/sites-enabled/default<br>
+group authenticate {<br>
[eap] Request found, released from the list<br>
[eap] EAP/sim<br>
[eap] processing type sim<br>
MAC check succeed <br></div>
[eap] Underlying EAP-Type set EAP ID to 129<div class=""><br>
[eap] Freeing handler<br>
++[eap] = ok<br>
+} # group authenticate = ok<br>
# Executing section post-auth from file
/etc/freeradius/sites-enabled/default<br>
+group post-auth {<br>
++[exec] = noop<br>
+} # group post-auth = noop<br></div>
Sending Access-Accept of id 153 to 192.168.1.1 port 2049<br>
<span> </span>MS-MPPE-Recv-Key =
0x6e3afcc0cada4349d9e50c5b059f09a8561950974fc7a91ab4b085927b88ec4c<br>
<span> </span>MS-MPPE-Send-Key =
0xa1642e8992cf8c5937455aef07338c3b112ebbfcde037305d185b5367de606b0<br>
<span> </span>EAP-Message = 0x03810004<div class=""><br>
<span> </span>Message-Authenticator =
0x00000000000000000000000000000000<br>
<span> </span>User-Name =
"<a href="mailto:1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org" target="_blank">1510019463286168@wlan.mnc001.mcc510.3gppnetwork.org</a>"<br>
Finished request 2.<br>
Going to the next request<br></div>
Waking up in 3.9 seconds.<br>
Cleaning up request 0 ID 151 with timestamp +10<br>
Cleaning up request 1 ID 152 with timestamp +11<div class=""><br>
Waking up in 1.0 seconds.<br></div>
Cleaning up request 2 ID 153 with timestamp +12<br>
Ready to process requests.<br>
<br>
</span><p></p>
thank you<br></div><div><div class="h5"><div class="gmail_extra"><br></div><br></div></div></div></div></div></div></div></div></div>