FreeRADIUS Version 2.1.7, for host x86_64-unknown-linux-gnu, built on Nov 16 2009 at 14:08:53
Copyright (C) 1999-2009 The FreeRADIUS server project and contributors. 
There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A 
PARTICULAR PURPOSE. 
You may redistribute copies of FreeRADIUS under the terms of the 
GNU General Public License v2. 
Starting - reading configuration files ...
including configuration file /usr/local/etc/raddb/radiusd.conf
including configuration file /usr/local/etc/raddb/proxy.conf
including configuration file /usr/local/etc/raddb/clients.conf
including files in directory /usr/local/etc/raddb/modules/
including configuration file /usr/local/etc/raddb/modules/pam
including configuration file /usr/local/etc/raddb/modules/counter
including configuration file /usr/local/etc/raddb/modules/cui
including configuration file /usr/local/etc/raddb/modules/wimax
including configuration file /usr/local/etc/raddb/modules/sradutmp
including configuration file /usr/local/etc/raddb/modules/sqlcounter_expire_on_login
including configuration file /usr/local/etc/raddb/modules/etc_group
including configuration file /usr/local/etc/raddb/modules/logintime
including configuration file /usr/local/etc/raddb/modules/policy
including configuration file /usr/local/etc/raddb/modules/digest
including configuration file /usr/local/etc/raddb/modules/pap
including configuration file /usr/local/etc/raddb/modules/acct_unique
including configuration file /usr/local/etc/raddb/modules/unix
including configuration file /usr/local/etc/raddb/modules/smbpasswd
including configuration file /usr/local/etc/raddb/modules/detail.log
including configuration file /usr/local/etc/raddb/modules/files
including configuration file /usr/local/etc/raddb/modules/ippool
including configuration file /usr/local/etc/raddb/modules/realm
including configuration file /usr/local/etc/raddb/modules/ldap
including configuration file /usr/local/etc/raddb/modules/linelog
including configuration file /usr/local/etc/raddb/modules/sql_log
including configuration file /usr/local/etc/raddb/modules/chap
including configuration file /usr/local/etc/raddb/modules/mac2ip
including configuration file /usr/local/etc/raddb/modules/attr_rewrite
including configuration file /usr/local/etc/raddb/modules/preprocess
including configuration file /usr/local/etc/raddb/modules/detail.example.com
including configuration file /usr/local/etc/raddb/modules/detail
including configuration file /usr/local/etc/raddb/modules/expiration
including configuration file /usr/local/etc/raddb/modules/otp
including configuration file /usr/local/etc/raddb/modules/exec
including configuration file /usr/local/etc/raddb/modules/inner-eap
including configuration file /usr/local/etc/raddb/modules/mac2vlan
including configuration file /usr/local/etc/raddb/modules/passwd
including configuration file /usr/local/etc/raddb/modules/attr_filter
including configuration file /usr/local/etc/raddb/modules/expr
including configuration file /usr/local/etc/raddb/modules/smsotp
including configuration file /usr/local/etc/raddb/modules/krb5
including configuration file /usr/local/etc/raddb/modules/radutmp
including configuration file /usr/local/etc/raddb/modules/checkval
including configuration file /usr/local/etc/raddb/modules/echo
including configuration file /usr/local/etc/raddb/modules/perl
including configuration file /usr/local/etc/raddb/modules/always
including configuration file /usr/local/etc/raddb/modules/mschap
including configuration file /usr/local/etc/raddb/eap.conf
including configuration file /usr/local/etc/raddb/policy.conf
including files in directory /usr/local/etc/raddb/sites-enabled/
including configuration file /usr/local/etc/raddb/sites-enabled/default
including configuration file /usr/local/etc/raddb/sites-enabled/inner-tunnel
including configuration file /usr/local/etc/raddb/sites-enabled/control-socket
including dictionary file /usr/local/etc/raddb/dictionary
main {
	prefix = "/usr/local"
	localstatedir = "/usr/local/var"
	logdir = "/usr/local/var/log/radius"
	libdir = "/usr/local/lib"
	radacctdir = "/usr/local/var/log/radius/radacct"
	hostname_lookups = no
	max_request_time = 30
	cleanup_delay = 5
	max_requests = 1024
	allow_core_dumps = no
	pidfile = "/usr/local/var/run/radiusd/radiusd.pid"
	checkrad = "/usr/local/sbin/checkrad"
	debug_level = 0
	proxy_requests = yes
 log {
	stripped_names = no
	auth = no
	auth_badpass = no
	auth_goodpass = no
 }
 security {
	max_attributes = 200
	reject_delay = 1
	status_server = yes
 }
}
radiusd: #### Loading Realms and Home Servers ####
 proxy server {
	retry_delay = 5
	retry_count = 3
	default_fallback = no
	dead_time = 120
	wake_all_if_all_dead = no
 }
 home_server localhost {
	ipaddr = 127.0.0.1
	port = 1812
	type = "auth"
	response_window = 20
	max_outstanding = 65536
	require_message_authenticator = no
	zombie_period = 40
	status_check = "status-server"
	ping_interval = 30
	check_interval = 30
	num_answers_to_alive = 3
	num_pings_to_alive = 3
	revive_interval = 120
	status_check_timeout = 4
	irt = 2
	mrt = 16
	mrc = 5
	mrd = 30
 }
 home_server_pool my_auth_failover {
	type = fail-over
	home_server = localhost
 }
 realm example.com {
	auth_pool = my_auth_failover
 }
 realm LOCAL {
 }
radiusd: #### Loading Clients ####
 client localhost {
	ipaddr = 127.0.0.1
	require_message_authenticator = no
	nastype = "other"
 }
 client X.X.X.X {
	require_message_authenticator = no
	shortname = "xxxxxx"
	nastype = "other"
 }
radiusd: #### Instantiating modules ####
 instantiate {
 Module: Linked to module rlm_exec
 Module: Instantiating exec
  exec {
	wait = no
	input_pairs = "request"
	shell_escape = yes
  }
 Module: Linked to module rlm_expr
 Module: Instantiating expr
 Module: Linked to module rlm_expiration
 Module: Instantiating expiration
  expiration {
	reply-message = "Password Has Expired  "
  }
 Module: Linked to module rlm_logintime
 Module: Instantiating logintime
  logintime {
	reply-message = "You are calling outside your allowed timespan  "
	minimum-timeout = 60
  }
 }
radiusd: #### Loading Virtual Servers ####
server inner-tunnel {
 modules {
 Module: Checking authenticate {...} for more modules to load
 Module: Linked to module rlm_pap
 Module: Instantiating pap
  pap {
	encryption_scheme = "auto"
	auto_header = no
  }
 Module: Linked to module rlm_chap
 Module: Instantiating chap
 Module: Linked to module rlm_mschap
 Module: Instantiating mschap
  mschap {
	use_mppe = yes
	require_encryption = no
	require_strong = no
	with_ntdomain_hack = no
  }
 Module: Linked to module rlm_unix
 Module: Instantiating unix
  unix {
	radwtmp = "/usr/local/var/log/radius/radwtmp"
  }
 Module: Linked to module rlm_eap
 Module: Instantiating eap
  eap {
	default_eap_type = "md5"
	timer_expire = 60
	ignore_unknown_eap_types = no
	cisco_accounting_username_bug = no
	max_sessions = 2048
  }
 Module: Linked to sub-module rlm_eap_md5
 Module: Instantiating eap-md5
 Module: Linked to sub-module rlm_eap_leap
 Module: Instantiating eap-leap
 Module: Linked to sub-module rlm_eap_gtc
 Module: Instantiating eap-gtc
   gtc {
	challenge = "Password: "
	auth_type = "PAP"
   }
 Module: Linked to sub-module rlm_eap_tls
 Module: Instantiating eap-tls
   tls {
	rsa_key_exchange = no
	dh_key_exchange = yes
	rsa_key_length = 512
	dh_key_length = 512
	verify_depth = 0
	pem_file_type = yes
	private_key_file = "/usr/local/etc/raddb/certs/server.pem"
	certificate_file = "/usr/local/etc/raddb/certs/server.pem"
	CA_file = "/usr/local/etc/raddb/certs/ca.pem"
	private_key_password = "xxxxxxx"
	dh_file = "/usr/local/etc/raddb/certs/dh"
	random_file = "/usr/local/etc/raddb/certs/random"
	fragment_size = 1024
	include_length = yes
	check_crl = no
	cipher_list = "DEFAULT"
	make_cert_command = "/usr/local/etc/raddb/certs/bootstrap"
    cache {
	enable = no
	lifetime = 24
	max_entries = 255
    }
   }
 Module: Linked to sub-module rlm_eap_ttls
 Module: Instantiating eap-ttls
   ttls {
	default_eap_type = "md5"
	copy_request_to_tunnel = no
	use_tunneled_reply = no
	virtual_server = "inner-tunnel"
	include_length = yes
   }
 Module: Linked to sub-module rlm_eap_peap
 Module: Instantiating eap-peap
   peap {
	default_eap_type = "mschapv2"
	copy_request_to_tunnel = no
	use_tunneled_reply = no
	proxy_tunneled_request_as_eap = yes
	virtual_server = "inner-tunnel"
   }
 Module: Linked to sub-module rlm_eap_mschapv2
 Module: Instantiating eap-mschapv2
   mschapv2 {
	with_ntdomain_hack = no
   }
 Module: Checking authorize {...} for more modules to load
 Module: Linked to module rlm_realm
 Module: Instantiating suffix
  realm suffix {
	format = "suffix"
	delimiter = "@"
	ignore_default = no
	ignore_null = no
  }
 Module: Linked to module rlm_files
 Module: Instantiating files
  files {
	usersfile = "/usr/local/etc/raddb/users"
	acctusersfile = "/usr/local/etc/raddb/acct_users"
	preproxy_usersfile = "/usr/local/etc/raddb/preproxy_users"
	compat = "no"
  }
 Module: Checking session {...} for more modules to load
 Module: Linked to module rlm_radutmp
 Module: Instantiating radutmp
  radutmp {
	filename = "/usr/local/var/log/radius/radutmp"
	username = "%{User-Name}"
	case_sensitive = yes
	check_with_nas = yes
	perm = 384
	callerid = yes
  }
 Module: Checking post-proxy {...} for more modules to load
 Module: Checking post-auth {...} for more modules to load
 Module: Linked to module rlm_attr_filter
 Module: Instantiating attr_filter.access_reject
  attr_filter attr_filter.access_reject {
	attrsfile = "/usr/local/etc/raddb/attrs.access_reject"
	key = "%{User-Name}"
  }
 } # modules
} # server
server {
 modules {
 Module: Checking authenticate {...} for more modules to load
 Module: Checking authorize {...} for more modules to load
 Module: Linked to module rlm_preprocess
 Module: Instantiating preprocess
  preprocess {
	huntgroups = "/usr/local/etc/raddb/huntgroups"
	hints = "/usr/local/etc/raddb/hints"
	with_ascend_hack = no
	ascend_channels_per_line = 23
	with_ntdomain_hack = no
	with_specialix_jetstream_hack = no
	with_cisco_vsa_hack = no
	with_alvarion_vsa_hack = no
  }
 Module: Checking preacct {...} for more modules to load
 Module: Linked to module rlm_acct_unique
 Module: Instantiating acct_unique
  acct_unique {
	key = "User-Name, Acct-Session-Id, NAS-IP-Address, Client-IP-Address, NAS-Port"
  }
 Module: Checking accounting {...} for more modules to load
 Module: Linked to module rlm_detail
 Module: Instantiating detail
  detail {
	detailfile = "/usr/local/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d"
	header = "%t"
	detailperm = 384
	dirperm = 493
	locking = no
	log_packet_header = no
  }
 Module: Instantiating attr_filter.accounting_response
  attr_filter attr_filter.accounting_response {
	attrsfile = "/usr/local/etc/raddb/attrs.accounting_response"
	key = "%{User-Name}"
  }
 Module: Checking session {...} for more modules to load
 Module: Checking post-proxy {...} for more modules to load
 Module: Checking post-auth {...} for more modules to load
 } # modules
} # server
radiusd: #### Opening IP addresses and Ports ####
listen {
	type = "auth"
	ipaddr = *
	port = 0
}
listen {
	type = "acct"
	ipaddr = *
	port = 0
}
listen {
	type = "control"
 listen {
	socket = "/usr/local/var/run/radiusd/radiusd.sock"
 }
}
Listening on authentication address * port 1812
Listening on accounting address * port 1813
Listening on command file /usr/local/var/run/radiusd/radiusd.sock
Listening on proxy address * port 1814
Ready to process requests.
rad_recv: Access-Request packet from host X.X.X.252 port 32769, id=118, length=188
	User-Name = "client.example.com"
	Calling-Station-Id = "00-1d-e0-7f-c7-bd"
	Called-Station-Id = "00-26-cb-4c-f7-c0:Bidon"
	NAS-Port = 13
	NAS-IP-Address = X.X.X.252
	NAS-Identifier = "xxxxx"
	Airespace-Wlan-Id = 6
	Service-Type = Framed-User
	Framed-MTU = 1300
	NAS-Port-Type = Wireless-802.11
	Tunnel-Type:0 = VLAN
	Tunnel-Medium-Type:0 = IEEE-802
	Tunnel-Private-Group-Id:0 = "82"
	EAP-Message = 0x0202001501737761747a7930312e657372662e6672
	Message-Authenticator = 0x54c3b407a4e5f674fdddef648d64929d
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] No '@' in User-Name = "client.example.com", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] EAP packet type response id 2 length 21
[eap] No EAP Start, assuming it's an on-going EAP conversation
++[eap] returns updated
++[unix] returns notfound
++[files] returns noop
++[expiration] returns noop
++[logintime] returns noop
[pap] WARNING! No "known good" password found for the user.  Authentication may fail because of this.
++[pap] returns noop
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] EAP Identity
[eap] processing type md5
rlm_eap_md5: Issuing Challenge
++[eap] returns handled
Sending Access-Challenge of id 118 to X.X.X.252 port 32769
	EAP-Message = 0x0103001604107f7d11ec3b0ab49d581bf7b34c80c28a
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0x46359c0d4636987ca6f7bd81569582da
Finished request 0.
Going to the next request
Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host X.X.X.252 port 32769, id=119, length=191
	User-Name = "client.example.com"
	Calling-Station-Id = "00-1d-e0-7f-c7-bd"
	Called-Station-Id = "00-26-cb-4c-f7-c0:Bidon"
	NAS-Port = 13
	NAS-IP-Address = X.X.X.252
	NAS-Identifier = "xxxxx"
	Airespace-Wlan-Id = 6
	Service-Type = Framed-User
	Framed-MTU = 1300
	NAS-Port-Type = Wireless-802.11
	Tunnel-Type:0 = VLAN
	Tunnel-Medium-Type:0 = IEEE-802
	Tunnel-Private-Group-Id:0 = "82"
	EAP-Message = 0x020300060319
	State = 0x46359c0d4636987ca6f7bd81569582da
	Message-Authenticator = 0x33129fee7264d338478ba2014579ff92
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] No '@' in User-Name = "client.example.com", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] EAP packet type response id 3 length 6
[eap] No EAP Start, assuming it's an on-going EAP conversation
++[eap] returns updated
++[unix] returns notfound
++[files] returns noop
++[expiration] returns noop
++[logintime] returns noop
[pap] WARNING! No "known good" password found for the user.  Authentication may fail because of this.
++[pap] returns noop
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP NAK
[eap] EAP-NAK asked for EAP-Type/peap
[eap] processing type tls
[tls] Initiate
[tls] Start returned 1
++[eap] returns handled
Sending Access-Challenge of id 119 to X.X.X.252 port 32769
	EAP-Message = 0x010400061920
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0x46359c0d4731857ca6f7bd81569582da
Finished request 1.
Going to the next request
Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host X.X.X.252 port 32769, id=120, length=312
	User-Name = "client.example.com"
	Calling-Station-Id = "00-1d-e0-7f-c7-bd"
	Called-Station-Id = "00-26-cb-4c-f7-c0:Bidon"
	NAS-Port = 13
	NAS-IP-Address = X.X.X.252
	NAS-Identifier = "xxxxx"
	Airespace-Wlan-Id = 6
	Service-Type = Framed-User
	Framed-MTU = 1300
	NAS-Port-Type = Wireless-802.11
	Tunnel-Type:0 = VLAN
	Tunnel-Medium-Type:0 = IEEE-802
	Tunnel-Private-Group-Id:0 = "82"
	EAP-Message = 0x0204007f19800000007516030100700100006c03014b2f2f919f25d4d668184f7c5857cbe41cb1e31423aaaafee5a843885d02dcd8000018002f00350005000ac009c00ac013c01400320038001300040100002b000000150013000010737761747a7930312e657372662e6672000a00080006001700180019000b00020100
	State = 0x46359c0d4731857ca6f7bd81569582da
	Message-Authenticator = 0x36ee14e3f9fe3620c3a4daa7a0b3a833
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] No '@' in User-Name = "client.example.com", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] EAP packet type response id 4 length 127
[eap] Continuing tunnel setup.
++[eap] returns ok
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP/peap
[eap] processing type peap
[peap] processing EAP-TLS
  TLS Length 117
[peap] Length Included
[peap] eaptls_verify returned 11 
[peap]     (other): before/accept initialization 
[peap]     TLS_accept: before/accept initialization 
[peap] <<< TLS 1.0 Handshake [length 0070], ClientHello  
[peap]     TLS_accept: SSLv3 read client hello A 
[peap] >>> TLS 1.0 Handshake [length 002a], ServerHello  
[peap]     TLS_accept: SSLv3 write server hello A 
[peap] >>> TLS 1.0 Handshake [length 07d3], Certificate  
[peap]     TLS_accept: SSLv3 write certificate A 
[peap] >>> TLS 1.0 Handshake [length 0004], ServerHelloDone  
[peap]     TLS_accept: SSLv3 write server done A 
[peap]     TLS_accept: SSLv3 flush data 
[peap]     TLS_accept: Need to read more data: SSLv3 read client certificate A
In SSL Handshake Phase 
In SSL Accept mode  
[peap] eaptls_process returned 13 
[peap] EAPTLS_HANDLED
++[eap] returns handled
Sending Access-Challenge of id 120 to X.X.X.252 port 32769
	EAP-Message = 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
	EAP-Message = 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
	EAP-Message = 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
	EAP-Message = 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
	EAP-Message = 0x55040713084772656e6f626c
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0x46359c0d4430857ca6f7bd81569582da
Finished request 2.
Going to the next request
Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host X.X.X.252 port 32769, id=121, length=191
	User-Name = "client.example.com"
	Calling-Station-Id = "00-1d-e0-7f-c7-bd"
	Called-Station-Id = "00-26-cb-4c-f7-c0:Bidon"
	NAS-Port = 13
	NAS-IP-Address = X.X.X.252
	NAS-Identifier = "xxxxx"
	Airespace-Wlan-Id = 6
	Service-Type = Framed-User
	Framed-MTU = 1300
	NAS-Port-Type = Wireless-802.11
	Tunnel-Type:0 = VLAN
	Tunnel-Medium-Type:0 = IEEE-802
	Tunnel-Private-Group-Id:0 = "82"
	EAP-Message = 0x020500061900
	State = 0x46359c0d4430857ca6f7bd81569582da
	Message-Authenticator = 0x7282abc649eadba24affcf74b028b2a5
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] No '@' in User-Name = "client.example.com", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] EAP packet type response id 5 length 6
[eap] Continuing tunnel setup.
++[eap] returns ok
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP/peap
[eap] processing type peap
[peap] processing EAP-TLS
[peap] Received TLS ACK
[peap] ACK handshake fragment handler
[peap] eaptls_verify returned 1 
[peap] eaptls_process returned 13 
[peap] EAPTLS_HANDLED
++[eap] returns handled
Sending Access-Challenge of id 121 to X.X.X.252 port 32769
	EAP-Message = 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
	EAP-Message = 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
	EAP-Message = 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
	EAP-Message = 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
	EAP-Message = 0x6f8613faa3ea6a53
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0x46359c0d4533857ca6f7bd81569582da
Finished request 3.
Going to the next request
Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host X.X.X.252 port 32769, id=122, length=191
	User-Name = "client.example.com"
	Calling-Station-Id = "00-1d-e0-7f-c7-bd"
	Called-Station-Id = "00-26-cb-4c-f7-c0:Bidon"
	NAS-Port = 13
	NAS-IP-Address = X.X.X.252
	NAS-Identifier = "xxxxx"
	Airespace-Wlan-Id = 6
	Service-Type = Framed-User
	Framed-MTU = 1300
	NAS-Port-Type = Wireless-802.11
	Tunnel-Type:0 = VLAN
	Tunnel-Medium-Type:0 = IEEE-802
	Tunnel-Private-Group-Id:0 = "82"
	EAP-Message = 0x020600061900
	State = 0x46359c0d4533857ca6f7bd81569582da
	Message-Authenticator = 0x0710c430239292b61d333bb41a1245e9
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] No '@' in User-Name = "client.example.com", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] EAP packet type response id 6 length 6
[eap] Continuing tunnel setup.
++[eap] returns ok
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP/peap
[eap] processing type peap
[peap] processing EAP-TLS
[peap] Received TLS ACK
[peap] ACK handshake fragment handler
[peap] eaptls_verify returned 1 
[peap] eaptls_process returned 13 
[peap] EAPTLS_HANDLED
++[eap] returns handled
Sending Access-Challenge of id 122 to X.X.X.252 port 32769
	EAP-Message = 0x0107002a1900cc510e88825921db807711b7fe7fe9a180b6f46304e78cfbc168b616030100040e000000
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0x46359c0d4232857ca6f7bd81569582da
Finished request 4.
Going to the next request
Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host X.X.X.252 port 32769, id=123, length=523
	User-Name = "client.example.com"
	Calling-Station-Id = "00-1d-e0-7f-c7-bd"
	Called-Station-Id = "00-26-cb-4c-f7-c0:Bidon"
	NAS-Port = 13
	NAS-IP-Address = X.X.X.252
	NAS-Identifier = "xxxxx"
	Airespace-Wlan-Id = 6
	Service-Type = Framed-User
	Framed-MTU = 1300
	NAS-Port-Type = Wireless-802.11
	Tunnel-Type:0 = VLAN
	Tunnel-Medium-Type:0 = IEEE-802
	Tunnel-Private-Group-Id:0 = "82"
	EAP-Message = 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
	EAP-Message = 0xeb08e8e300c8eb82a8a3f2fd13cb4191d5c00dc8b7f9edd814030100010116030100303cef0d4fe6b2882e1fa19eeb636a5a63cb986b1ba3cc3110db4c11750477f27b59fd3cbdb644f93da1b486fa8276abd0
	State = 0x46359c0d4232857ca6f7bd81569582da
	Message-Authenticator = 0x560336581ffd72d0e6e2ecbb437d3cab
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] No '@' in User-Name = "client.example.com", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] EAP packet type response id 7 length 253
[eap] Continuing tunnel setup.
++[eap] returns ok
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP/peap
[eap] processing type peap
[peap] processing EAP-TLS
  TLS Length 326
[peap] Length Included
[peap] eaptls_verify returned 11 
[peap] <<< TLS 1.0 Handshake [length 0106], ClientKeyExchange  
[peap]     TLS_accept: SSLv3 read client key exchange A 
[peap] <<< TLS 1.0 ChangeCipherSpec [length 0001]  
[peap] <<< TLS 1.0 Handshake [length 0010], Finished  
[peap]     TLS_accept: SSLv3 read finished A 
[peap] >>> TLS 1.0 ChangeCipherSpec [length 0001]  
[peap]     TLS_accept: SSLv3 write change cipher spec A 
[peap] >>> TLS 1.0 Handshake [length 0010], Finished  
[peap]     TLS_accept: SSLv3 write finished A 
[peap]     TLS_accept: SSLv3 flush data 
[peap]     (other): SSL negotiation finished successfully 
SSL Connection Established 
[peap] eaptls_process returned 13 
[peap] EAPTLS_HANDLED
++[eap] returns handled
Sending Access-Challenge of id 123 to X.X.X.252 port 32769
	EAP-Message = 0x0108004119001403010001011603010030d069d412a34b6a0b26c3c38a980446a97e02c024df348da0b869c5f5ade2c7b8598179ef787821e8215b7ebf412ee2ac
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0x46359c0d433d857ca6f7bd81569582da
Finished request 5.
Going to the next request
Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host X.X.X.252 port 32769, id=124, length=191
	User-Name = "client.example.com"
	Calling-Station-Id = "00-1d-e0-7f-c7-bd"
	Called-Station-Id = "00-26-cb-4c-f7-c0:Bidon"
	NAS-Port = 13
	NAS-IP-Address = X.X.X.252
	NAS-Identifier = "xxxxx"
	Airespace-Wlan-Id = 6
	Service-Type = Framed-User
	Framed-MTU = 1300
	NAS-Port-Type = Wireless-802.11
	Tunnel-Type:0 = VLAN
	Tunnel-Medium-Type:0 = IEEE-802
	Tunnel-Private-Group-Id:0 = "82"
	EAP-Message = 0x020800061900
	State = 0x46359c0d433d857ca6f7bd81569582da
	Message-Authenticator = 0xec5fd30fa1b5b90002d609171cc0cda9
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] No '@' in User-Name = "client.example.com", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] EAP packet type response id 8 length 6
[eap] Continuing tunnel setup.
++[eap] returns ok
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP/peap
[eap] processing type peap
[peap] processing EAP-TLS
[peap] Received TLS ACK
[peap] ACK handshake is finished
[peap] eaptls_verify returned 3 
[peap] eaptls_process returned 3 
[peap] EAPTLS_SUCCESS
++[eap] returns handled
Sending Access-Challenge of id 124 to X.X.X.252 port 32769
	EAP-Message = 0x0109002b1900170301002038848f6cbb0bee715a49cfd809074a5bcca13224be315b374d60a0a444c90cd9
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0x46359c0d403c857ca6f7bd81569582da
Finished request 6.
Going to the next request
Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host X.X.X.252 port 32769, id=125, length=244
	User-Name = "client.example.com"
	Calling-Station-Id = "00-1d-e0-7f-c7-bd"
	Called-Station-Id = "00-26-cb-4c-f7-c0:Bidon"
	NAS-Port = 13
	NAS-IP-Address = X.X.X.252
	NAS-Identifier = "xxxxx"
	Airespace-Wlan-Id = 6
	Service-Type = Framed-User
	Framed-MTU = 1300
	NAS-Port-Type = Wireless-802.11
	Tunnel-Type:0 = VLAN
	Tunnel-Medium-Type:0 = IEEE-802
	Tunnel-Private-Group-Id:0 = "82"
	EAP-Message = 0x0209003b190017030100304b728cd734f9da6b5b67f6830edb3cccf6815843a45e65c9e465d2756a895e361a1a6fd80dec223de521348349791609
	State = 0x46359c0d403c857ca6f7bd81569582da
	Message-Authenticator = 0xc5c43156063130ebd6e28b2d5219efc7
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] No '@' in User-Name = "client.example.com", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] EAP packet type response id 9 length 59
[eap] Continuing tunnel setup.
++[eap] returns ok
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP/peap
[eap] processing type peap
[peap] processing EAP-TLS
[peap] eaptls_verify returned 7 
[peap] Done initial handshake
[peap] eaptls_process returned 7 
[peap] EAPTLS_OK
[peap] Session established.  Decoding tunneled attributes.
[peap] Identity - client.example.com
[peap] Got tunneled request
	EAP-Message = 0x0209001501737761747a7930312e657372662e6672
server  {
  PEAP: Got tunneled identity of client.example.com
  PEAP: Setting default EAP type for tunneled EAP session.
  PEAP: Setting User-Name to client.example.com
Sending tunneled request
	EAP-Message = 0x0209001501737761747a7930312e657372662e6672
	FreeRADIUS-Proxied-To = 127.0.0.1
	User-Name = "client.example.com"
server inner-tunnel {
+- entering group authorize {...}
++[chap] returns noop
++[mschap] returns noop
++[unix] returns notfound
[suffix] No '@' in User-Name = "client.example.com", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
++[control] returns noop
[eap] EAP packet type response id 9 length 21
[eap] No EAP Start, assuming it's an on-going EAP conversation
++[eap] returns updated
++[files] returns noop
++[expiration] returns noop
++[logintime] returns noop
++[pap] returns noop
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] EAP Identity
[eap] processing type mschapv2
rlm_eap_mschapv2: Issuing Challenge
++[eap] returns handled
} # server inner-tunnel
[peap] Got tunneled reply code 11
	EAP-Message = 0x010a002a1a010a00251070aeff47a14f6016c9d19acee5b09bbd737761747a7930312e657372662e6672
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0x9dc695d19dcc8f1400b4f084f7eacc22
[peap] Got tunneled reply RADIUS code 11
	EAP-Message = 0x010a002a1a010a00251070aeff47a14f6016c9d19acee5b09bbd737761747a7930312e657372662e6672
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0x9dc695d19dcc8f1400b4f084f7eacc22
[peap] Got tunneled Access-Challenge
++[eap] returns handled
Sending Access-Challenge of id 125 to X.X.X.252 port 32769
	EAP-Message = 0x010a004b190017030100409a732f0a95380f8915554a7049f6ca123b5ec8082c19d38261e2df58127e9383fd0b95e94694594d4e2ebb98e38558e0bafb40194ec767ca5125409caf7c9187
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0x46359c0d413f857ca6f7bd81569582da
Finished request 7.
Going to the next request
Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host X.X.X.252 port 32769, id=126, length=228
	User-Name = "client.example.com"
	Calling-Station-Id = "00-1d-e0-7f-c7-bd"
	Called-Station-Id = "00-26-cb-4c-f7-c0:Bidon"
	NAS-Port = 13
	NAS-IP-Address = X.X.X.252
	NAS-Identifier = "xxxxx"
	Airespace-Wlan-Id = 6
	Service-Type = Framed-User
	Framed-MTU = 1300
	NAS-Port-Type = Wireless-802.11
	Tunnel-Type:0 = VLAN
	Tunnel-Medium-Type:0 = IEEE-802
	Tunnel-Private-Group-Id:0 = "82"
	EAP-Message = 0x020a002b190017030100204261c50537c3a175f949869fc579790700757ca2edf3fe4ecc43fd8fa16849c8
	State = 0x46359c0d413f857ca6f7bd81569582da
	Message-Authenticator = 0x7dd04cbb26e2690166ee675fc0c54fe2
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] No '@' in User-Name = "client.example.com", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] EAP packet type response id 10 length 43
[eap] Continuing tunnel setup.
++[eap] returns ok
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP/peap
[eap] processing type peap
[peap] processing EAP-TLS
[peap] eaptls_verify returned 7 
[peap] Done initial handshake
[peap] eaptls_process returned 7 
[peap] EAPTLS_OK
[peap] Session established.  Decoding tunneled attributes.
[peap] EAP type nak
[peap] Got tunneled request
	EAP-Message = 0x020a0006030d
server  {
  PEAP: Setting User-Name to client.example.com
Sending tunneled request
	EAP-Message = 0x020a0006030d
	FreeRADIUS-Proxied-To = 127.0.0.1
	User-Name = "client.example.com"
	State = 0x9dc695d19dcc8f1400b4f084f7eacc22
server inner-tunnel {
+- entering group authorize {...}
++[chap] returns noop
++[mschap] returns noop
++[unix] returns notfound
[suffix] No '@' in User-Name = "client.example.com", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
++[control] returns noop
[eap] EAP packet type response id 10 length 6
[eap] No EAP Start, assuming it's an on-going EAP conversation
++[eap] returns updated
++[files] returns noop
++[expiration] returns noop
++[logintime] returns noop
++[pap] returns noop
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP NAK
[eap] EAP-NAK asked for EAP-Type/tls
[eap] processing type tls
[tls] Requiring client certificate
[tls] Initiate
[tls] Start returned 1
++[eap] returns handled
} # server inner-tunnel
[peap] Got tunneled reply code 11
	EAP-Message = 0x010b00060d20
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0x9dc695d19ccd981400b4f084f7eacc22
[peap] Got tunneled reply RADIUS code 11
	EAP-Message = 0x010b00060d20
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0x9dc695d19ccd981400b4f084f7eacc22
[peap] Got tunneled Access-Challenge
++[eap] returns handled
Sending Access-Challenge of id 126 to X.X.X.252 port 32769
	EAP-Message = 0x010b002b190017030100207de3853f28e8a60d509e0e8103d2f98e08f35e08266254dd4a93fe3e5751150a
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0x46359c0d4e3e857ca6f7bd81569582da
Finished request 8.
Going to the next request
Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host X.X.X.252 port 32769, id=127, length=340
	User-Name = "client.example.com"
	Calling-Station-Id = "00-1d-e0-7f-c7-bd"
	Called-Station-Id = "00-26-cb-4c-f7-c0:Bidon"
	NAS-Port = 13
	NAS-IP-Address = X.X.X.252
	NAS-Identifier = "xxxxx"
	Airespace-Wlan-Id = 6
	Service-Type = Framed-User
	Framed-MTU = 1300
	NAS-Port-Type = Wireless-802.11
	Tunnel-Type:0 = VLAN
	Tunnel-Medium-Type:0 = IEEE-802
	Tunnel-Private-Group-Id:0 = "82"
	EAP-Message = 0x020b009b19001703010090a04fea07b30ca56bdaebf98e6225b2f955813991d8bb99e6213d8c6fd905972e8086eec1ac01df372544961fa89ae0cd0f95f83d90dff8457667d9e39f9b2b7252fe107296afb377526c19464794c56ba77385d6c44c1cae140119da9cad1d89ceabc3841f9c67a4fbb65644d1a3d85b6bad4c6a22c687c399c3eeced63321eaa630674609996e98d6a44c1d6e1be0fc
	State = 0x46359c0d4e3e857ca6f7bd81569582da
	Message-Authenticator = 0x8961cb15acfbd5a45fd18af3a47e7904
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] No '@' in User-Name = "client.example.com", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] EAP packet type response id 11 length 155
[eap] Continuing tunnel setup.
++[eap] returns ok
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP/peap
[eap] processing type peap
[peap] processing EAP-TLS
[peap] eaptls_verify returned 7 
[peap] Done initial handshake
[peap] eaptls_process returned 7 
[peap] EAPTLS_OK
[peap] Session established.  Decoding tunneled attributes.
[peap] EAP type tls
[peap] Got tunneled request
	EAP-Message = 0x020b007f0d800000007516030100700100006c03014b2f2f92d5aef8573e86787f0410ed66e074505158fd3465df76f6a5db6d0aa4000018002f00350005000ac009c00ac013c01400320038001300040100002b000000150013000010737761747a7930312e657372662e6672000a00080006001700180019000b00020100
server  {
  PEAP: Setting User-Name to client.example.com
Sending tunneled request
	EAP-Message = 0x020b007f0d800000007516030100700100006c03014b2f2f92d5aef8573e86787f0410ed66e074505158fd3465df76f6a5db6d0aa4000018002f00350005000ac009c00ac013c01400320038001300040100002b000000150013000010737761747a7930312e657372662e6672000a00080006001700180019000b00020100
	FreeRADIUS-Proxied-To = 127.0.0.1
	User-Name = "client.example.com"
	State = 0x9dc695d19ccd981400b4f084f7eacc22
server inner-tunnel {
+- entering group authorize {...}
++[chap] returns noop
++[mschap] returns noop
++[unix] returns notfound
[suffix] No '@' in User-Name = "client.example.com", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
++[control] returns noop
[eap] EAP packet type response id 11 length 127
[eap] No EAP Start, assuming it's an on-going EAP conversation
++[eap] returns updated
++[files] returns noop
++[expiration] returns noop
++[logintime] returns noop
++[pap] returns noop
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP/tls
[eap] processing type tls
[tls] Authenticate
[tls] processing EAP-TLS
  TLS Length 117
[tls] Length Included
[tls] eaptls_verify returned 11 
[tls]     (other): before/accept initialization 
[tls]     TLS_accept: before/accept initialization 
[tls] <<< TLS 1.0 Handshake [length 0070], ClientHello  
[tls]     TLS_accept: SSLv3 read client hello A 
[tls] >>> TLS 1.0 Handshake [length 002a], ServerHello  
[tls]     TLS_accept: SSLv3 write server hello A 
[tls] >>> TLS 1.0 Handshake [length 07d3], Certificate  
[tls]     TLS_accept: SSLv3 write certificate A 
[tls] >>> TLS 1.0 Handshake [length 008f], CertificateRequest  
[tls]     TLS_accept: SSLv3 write certificate request A 
[tls]     TLS_accept: SSLv3 flush data 
[tls]     TLS_accept: Need to read more data: SSLv3 read client certificate A
In SSL Handshake Phase 
In SSL Accept mode  
[tls] eaptls_process returned 13 
++[eap] returns handled
} # server inner-tunnel
[peap] Got tunneled reply code 11
	EAP-Message = 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
	EAP-Message = 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
	EAP-Message = 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
	EAP-Message = 0x87c80af1b6c317546180ebf118b164616baaaad68601e6fdcc895e328f39ca693b551da66ba9a748e205e67fd05430eefd1ca8a204bb56994ac3a0abf00d546e19263b678b72b04e1286cf1db63e93c089c8072bfe446d1b5e9b08940c6b6fcec73c5953ceeccb4d53b3b2bae39878ef00597f96df75b59776e176ccf328f22312d696524d43a62a623dc9af8c13b270e932bc7afcc456b7574f719d6f21faf4669390cd604dc28d850bc3c349fa000469308204653082034da003020102020900c42387580a65a3a9300d06092a864886f70d0101050500307e310b3009060355040613024652310e300c0603550408130549736572653111300f0603
	EAP-Message = 0x55040713084772656e6f626c
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0x9dc695d19fca981400b4f084f7eacc22
[peap] Got tunneled reply RADIUS code 11
	EAP-Message = 0x010c04000dc00000089b160301002a0200002603014b2f2f91474c71c1cdb3329748a1007493635a1d09b4d8a8c22170eb24b8147900002f0016030107d30b0007cf0007cc00035d3082035930820241a003020102020114300d06092a864886f70d0101040500307e310b3009060355040613024652310e300c0603550408130549736572653111300f060355040713084772656e6f626c65310d300b060355040a1304455352463120301e06092a864886f70d010901161161646d696e406578616d706c652e636f6d311b301906035504031312726164697573736572762e657372662e6672301e170d3039313232313038303833395a170d313031
	EAP-Message = 0x3232313038303833395a3049310b3009060355040613024652310e300c060355040813054973657265310d300b060355040a130445535246311b301906035504031312726164697573736572762e657372662e667230820122300d06092a864886f70d01010105000382010f003082010a0282010100df65e73bb432b019abe63c0a455e5053aa65ee5cdebb77dba90300b7933a6e1ddc3b764bf3d4305ab36530461cc0ade6ca4a916bfeb68ec9103ef74b02dcefbbb5553ce4f88225f43a7ff26195b0c2fd70a4620ead334a2c5d3c6f576b3eec5229cac9ab7ce3a7ffed9d70ee905be62a351dd2ee354c22773dea7ab1eeed05316aa5f33c7ca4cd
	EAP-Message = 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
	EAP-Message = 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
	EAP-Message = 0x55040713084772656e6f626c
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0x9dc695d19fca981400b4f084f7eacc22
[peap] Got tunneled Access-Challenge
++[eap] returns handled
Sending Access-Challenge of id 127 to X.X.X.252 port 32769
	EAP-Message = 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
	EAP-Message = 0x80379ab65f330e250b9d57fd02b45d0c5d07a6f64e8920618475b6d967110ea714d851ed7064bdb4e2c01e6044ab34b387bcc6eea78a7fc216d75973f26c1b0cbcc08ded2f74ec4f432f4c27febb552934c6db5df2906deb0946496f5cd9bc726b456bc4c51b2d2e48df35e6dfa6147f20c6549c310ef46406543e2326460f98236efb95a7d645b023b5e4da894b5e3e7f51578cb62b87e82a0583eb2ef1351d38e6e6d01e4f4064a5296aa25505f054ae1c3288e3362f391e074dae98fdce29cf7a9993d5454b217cd860d94629450189f85106dbebdce40a8afa50935ac0122f6b31d1ff65a8c9dda0356a5fce6521ed5ab6980e6e142b8e0c1c2f44
	EAP-Message = 0x50315eb5d5b31c218c2a4dfbcb996a8e760f3c426619433d34edd4abaaaeba09f8a560a91b088af45a703925c38a00c986241c9edf2fe6c58e7c0ecbb71bf3a6a167856d3ec48002a4a5458a3cd332c59eca4a8f70274474e74689b2620525f3d298fed9b4d6ce521171403b6227885ace8a36ae6f754a0f8f8e5f37f23161792caeff79be28e182e1f07f14abee8ddfce71ad251a22a1966fdefc2634926f38bf202444aa252d078469d60c4a5fd9f55e915cb7bda216a146c80410a75ec292cc39d291be03511da8397aeefaf7f4653a0961c652628051af27fb7f32b637fb8b2a047d579c89ced314bd4def14fd51bf4057dc28c2a043a63bbd055c
	EAP-Message = 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
	EAP-Message = 0x06588ed8fb2a427c1e2399f2
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0x46359c0d4f39857ca6f7bd81569582da
Finished request 9.
Going to the next request
Waking up in 4.9 seconds.
Cleaning up request 0 ID 118 with timestamp +9
Cleaning up request 1 ID 119 with timestamp +9
Cleaning up request 2 ID 120 with timestamp +9
Cleaning up request 3 ID 121 with timestamp +9
Cleaning up request 4 ID 122 with timestamp +9
Cleaning up request 5 ID 123 with timestamp +9
Cleaning up request 6 ID 124 with timestamp +9
Cleaning up request 7 ID 125 with timestamp +9
Cleaning up request 8 ID 126 with timestamp +9
Cleaning up request 9 ID 127 with timestamp +9
Ready to process requests.
rad_recv: Access-Request packet from host X.X.X.252 port 32769, id=128, length=188
	User-Name = "client.example.com"
	Calling-Station-Id = "00-1d-e0-7f-c7-bd"
	Called-Station-Id = "00-26-cb-4c-f7-c0:Bidon"
	NAS-Port = 13
	NAS-IP-Address = X.X.X.252
	NAS-Identifier = "xxxxx"
	Airespace-Wlan-Id = 6
	Service-Type = Framed-User
	Framed-MTU = 1300
	NAS-Port-Type = Wireless-802.11
	Tunnel-Type:0 = VLAN
	Tunnel-Medium-Type:0 = IEEE-802
	Tunnel-Private-Group-Id:0 = "82"
	EAP-Message = 0x0202001501737761747a7930312e657372662e6672
	Message-Authenticator = 0x74a8efb3e526fbc354da58481f383cb8
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] No '@' in User-Name = "client.example.com", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] EAP packet type response id 2 length 21
[eap] No EAP Start, assuming it's an on-going EAP conversation
++[eap] returns updated
++[unix] returns notfound
++[files] returns noop
++[expiration] returns noop
++[logintime] returns noop
[pap] WARNING! No "known good" password found for the user.  Authentication may fail because of this.
++[pap] returns noop
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] EAP Identity
[eap] processing type md5
rlm_eap_md5: Issuing Challenge
++[eap] returns handled
Sending Access-Challenge of id 128 to X.X.X.252 port 32769
	EAP-Message = 0x01030016041047a243aeb61433e9a1ca015aadee525b
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0x8e1ed1378e1dd5750acddef276754aa3
Finished request 10.
Going to the next request
Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host X.X.X.252 port 32769, id=129, length=191
	User-Name = "client.example.com"
	Calling-Station-Id = "00-1d-e0-7f-c7-bd"
	Called-Station-Id = "00-26-cb-4c-f7-c0:Bidon"
	NAS-Port = 13
	NAS-IP-Address = X.X.X.252
	NAS-Identifier = "xxxxx"
	Airespace-Wlan-Id = 6
	Service-Type = Framed-User
	Framed-MTU = 1300
	NAS-Port-Type = Wireless-802.11
	Tunnel-Type:0 = VLAN
	Tunnel-Medium-Type:0 = IEEE-802
	Tunnel-Private-Group-Id:0 = "82"
	EAP-Message = 0x020300060319
	State = 0x8e1ed1378e1dd5750acddef276754aa3
	Message-Authenticator = 0xb7dd923beddd491b003dfc078382cc51
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] No '@' in User-Name = "client.example.com", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] EAP packet type response id 3 length 6
[eap] No EAP Start, assuming it's an on-going EAP conversation
++[eap] returns updated
++[unix] returns notfound
++[files] returns noop
++[expiration] returns noop
++[logintime] returns noop
[pap] WARNING! No "known good" password found for the user.  Authentication may fail because of this.
++[pap] returns noop
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP NAK
[eap] EAP-NAK asked for EAP-Type/peap
[eap] processing type tls
[tls] Initiate
[tls] Start returned 1
++[eap] returns handled
Sending Access-Challenge of id 129 to X.X.X.252 port 32769
	EAP-Message = 0x010400061920
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0x8e1ed1378f1ac8750acddef276754aa3
Finished request 11.
Going to the next request
Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host X.X.X.252 port 32769, id=130, length=312
	User-Name = "client.example.com"
	Calling-Station-Id = "00-1d-e0-7f-c7-bd"
	Called-Station-Id = "00-26-cb-4c-f7-c0:Bidon"
	NAS-Port = 13
	NAS-IP-Address = X.X.X.252
	NAS-Identifier = "xxxxx"
	Airespace-Wlan-Id = 6
	Service-Type = Framed-User
	Framed-MTU = 1300
	NAS-Port-Type = Wireless-802.11
	Tunnel-Type:0 = VLAN
	Tunnel-Medium-Type:0 = IEEE-802
	Tunnel-Private-Group-Id:0 = "82"
	EAP-Message = 0x0204007f19800000007516030100700100006c03014b2f2fa403c18a1c536dd9c44b3943cbaeb85b77ae6bb1b934538031c0a160d8000018002f00350005000ac009c00ac013c01400320038001300040100002b000000150013000010737761747a7930312e657372662e6672000a00080006001700180019000b00020100
	State = 0x8e1ed1378f1ac8750acddef276754aa3
	Message-Authenticator = 0xf8af489b45178ea77e42bc439e9bc867
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] No '@' in User-Name = "client.example.com", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] EAP packet type response id 4 length 127
[eap] Continuing tunnel setup.
++[eap] returns ok
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP/peap
[eap] processing type peap
[peap] processing EAP-TLS
  TLS Length 117
[peap] Length Included
[peap] eaptls_verify returned 11 
[peap]     (other): before/accept initialization 
[peap]     TLS_accept: before/accept initialization 
[peap] <<< TLS 1.0 Handshake [length 0070], ClientHello  
[peap]     TLS_accept: SSLv3 read client hello A 
[peap] >>> TLS 1.0 Handshake [length 002a], ServerHello  
[peap]     TLS_accept: SSLv3 write server hello A 
[peap] >>> TLS 1.0 Handshake [length 07d3], Certificate  
[peap]     TLS_accept: SSLv3 write certificate A 
[peap] >>> TLS 1.0 Handshake [length 0004], ServerHelloDone  
[peap]     TLS_accept: SSLv3 write server done A 
[peap]     TLS_accept: SSLv3 flush data 
[peap]     TLS_accept: Need to read more data: SSLv3 read client certificate A
In SSL Handshake Phase 
In SSL Accept mode  
[peap] eaptls_process returned 13 
[peap] EAPTLS_HANDLED
++[eap] returns handled
Sending Access-Challenge of id 130 to X.X.X.252 port 32769
	EAP-Message = 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
	EAP-Message = 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
	EAP-Message = 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
	EAP-Message = 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
	EAP-Message = 0x55040713084772656e6f626c
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0x8e1ed1378c1bc8750acddef276754aa3
Finished request 12.
Going to the next request
Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host X.X.X.252 port 32769, id=131, length=191
	User-Name = "client.example.com"
	Calling-Station-Id = "00-1d-e0-7f-c7-bd"
	Called-Station-Id = "00-26-cb-4c-f7-c0:Bidon"
	NAS-Port = 13
	NAS-IP-Address = X.X.X.252
	NAS-Identifier = "xxxxx"
	Airespace-Wlan-Id = 6
	Service-Type = Framed-User
	Framed-MTU = 1300
	NAS-Port-Type = Wireless-802.11
	Tunnel-Type:0 = VLAN
	Tunnel-Medium-Type:0 = IEEE-802
	Tunnel-Private-Group-Id:0 = "82"
	EAP-Message = 0x020500061900
	State = 0x8e1ed1378c1bc8750acddef276754aa3
	Message-Authenticator = 0x60967d8edd9706c379efc363d03f7831
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] No '@' in User-Name = "client.example.com", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] EAP packet type response id 5 length 6
[eap] Continuing tunnel setup.
++[eap] returns ok
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP/peap
[eap] processing type peap
[peap] processing EAP-TLS
[peap] Received TLS ACK
[peap] ACK handshake fragment handler
[peap] eaptls_verify returned 1 
[peap] eaptls_process returned 13 
[peap] EAPTLS_HANDLED
++[eap] returns handled
Sending Access-Challenge of id 131 to X.X.X.252 port 32769
	EAP-Message = 0x010603fc194065310d300b060355040a1304455352463120301e06092a864886f70d010901161161646d696e406578616d706c652e636f6d311b301906035504031312726164697573736572762e657372662e6672301e170d3039313232313038303833395a170d3130313232313038303833395a307e310b3009060355040613024652310e300c0603550408130549736572653111300f060355040713084772656e6f626c65310d300b060355040a1304455352463120301e06092a864886f70d010901161161646d696e406578616d706c652e636f6d311b301906035504031312726164697573736572762e657372662e667230820122300d0609
	EAP-Message = 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
	EAP-Message = 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
	EAP-Message = 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
	EAP-Message = 0x6f8613faa3ea6a53
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0x8e1ed1378d18c8750acddef276754aa3
Finished request 13.
Going to the next request
Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host X.X.X.252 port 32769, id=132, length=191
	User-Name = "client.example.com"
	Calling-Station-Id = "00-1d-e0-7f-c7-bd"
	Called-Station-Id = "00-26-cb-4c-f7-c0:Bidon"
	NAS-Port = 13
	NAS-IP-Address = X.X.X.252
	NAS-Identifier = "xxxxx"
	Airespace-Wlan-Id = 6
	Service-Type = Framed-User
	Framed-MTU = 1300
	NAS-Port-Type = Wireless-802.11
	Tunnel-Type:0 = VLAN
	Tunnel-Medium-Type:0 = IEEE-802
	Tunnel-Private-Group-Id:0 = "82"
	EAP-Message = 0x020600061900
	State = 0x8e1ed1378d18c8750acddef276754aa3
	Message-Authenticator = 0x867d0a6b82f6ad0f2ef811154922500a
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] No '@' in User-Name = "client.example.com", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] EAP packet type response id 6 length 6
[eap] Continuing tunnel setup.
++[eap] returns ok
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP/peap
[eap] processing type peap
[peap] processing EAP-TLS
[peap] Received TLS ACK
[peap] ACK handshake fragment handler
[peap] eaptls_verify returned 1 
[peap] eaptls_process returned 13 
[peap] EAPTLS_HANDLED
++[eap] returns handled
Sending Access-Challenge of id 132 to X.X.X.252 port 32769
	EAP-Message = 0x0107002a1900cc510e88825921db807711b7fe7fe9a180b6f46304e78cfbc168b616030100040e000000
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0x8e1ed1378a19c8750acddef276754aa3
Finished request 14.
Going to the next request
Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host X.X.X.252 port 32769, id=133, length=523
	User-Name = "client.example.com"
	Calling-Station-Id = "00-1d-e0-7f-c7-bd"
	Called-Station-Id = "00-26-cb-4c-f7-c0:Bidon"
	NAS-Port = 13
	NAS-IP-Address = X.X.X.252
	NAS-Identifier = "xxxxx"
	Airespace-Wlan-Id = 6
	Service-Type = Framed-User
	Framed-MTU = 1300
	NAS-Port-Type = Wireless-802.11
	Tunnel-Type:0 = VLAN
	Tunnel-Medium-Type:0 = IEEE-802
	Tunnel-Private-Group-Id:0 = "82"
	EAP-Message = 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
	EAP-Message = 0x4d9d115848ae8e9680b690fc1a77ea70f4bf31d6cbb418b01403010001011603010030ff787676e10bd417e0324b3bc835f28aa381123c26afe55a224f911ffdef86a008f89309543deaceb9b0860476f8b873
	State = 0x8e1ed1378a19c8750acddef276754aa3
	Message-Authenticator = 0x44ec9fc03737043834799e0d683989ec
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] No '@' in User-Name = "client.example.com", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] EAP packet type response id 7 length 253
[eap] Continuing tunnel setup.
++[eap] returns ok
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP/peap
[eap] processing type peap
[peap] processing EAP-TLS
  TLS Length 326
[peap] Length Included
[peap] eaptls_verify returned 11 
[peap] <<< TLS 1.0 Handshake [length 0106], ClientKeyExchange  
[peap]     TLS_accept: SSLv3 read client key exchange A 
[peap] <<< TLS 1.0 ChangeCipherSpec [length 0001]  
[peap] <<< TLS 1.0 Handshake [length 0010], Finished  
[peap]     TLS_accept: SSLv3 read finished A 
[peap] >>> TLS 1.0 ChangeCipherSpec [length 0001]  
[peap]     TLS_accept: SSLv3 write change cipher spec A 
[peap] >>> TLS 1.0 Handshake [length 0010], Finished  
[peap]     TLS_accept: SSLv3 write finished A 
[peap]     TLS_accept: SSLv3 flush data 
[peap]     (other): SSL negotiation finished successfully 
SSL Connection Established 
[peap] eaptls_process returned 13 
[peap] EAPTLS_HANDLED
++[eap] returns handled
Sending Access-Challenge of id 133 to X.X.X.252 port 32769
	EAP-Message = 0x0108004119001403010001011603010030fb8e93a4ea40e56bbbc6c7f664d2216a753417515ce8465b0e3bb40cb7482c5fb5c177e6a5703c4504509ff0dab8cc50
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0x8e1ed1378b16c8750acddef276754aa3
Finished request 15.
Going to the next request
Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host X.X.X.252 port 32769, id=134, length=191
	User-Name = "client.example.com"
	Calling-Station-Id = "00-1d-e0-7f-c7-bd"
	Called-Station-Id = "00-26-cb-4c-f7-c0:Bidon"
	NAS-Port = 13
	NAS-IP-Address = X.X.X.252
	NAS-Identifier = "xxxxx"
	Airespace-Wlan-Id = 6
	Service-Type = Framed-User
	Framed-MTU = 1300
	NAS-Port-Type = Wireless-802.11
	Tunnel-Type:0 = VLAN
	Tunnel-Medium-Type:0 = IEEE-802
	Tunnel-Private-Group-Id:0 = "82"
	EAP-Message = 0x020800061900
	State = 0x8e1ed1378b16c8750acddef276754aa3
	Message-Authenticator = 0x448e4cae008e458991e1e5a40c8eae90
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] No '@' in User-Name = "client.example.com", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] EAP packet type response id 8 length 6
[eap] Continuing tunnel setup.
++[eap] returns ok
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP/peap
[eap] processing type peap
[peap] processing EAP-TLS
[peap] Received TLS ACK
[peap] ACK handshake is finished
[peap] eaptls_verify returned 3 
[peap] eaptls_process returned 3 
[peap] EAPTLS_SUCCESS
++[eap] returns handled
Sending Access-Challenge of id 134 to X.X.X.252 port 32769
	EAP-Message = 0x0109002b19001703010020b50db97fab5cc7bed43d021d7b893a92180f1183b52eac9cdc95368efe95a457
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0x8e1ed1378817c8750acddef276754aa3
Finished request 16.
Going to the next request
Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host X.X.X.252 port 32769, id=135, length=244
	User-Name = "client.example.com"
	Calling-Station-Id = "00-1d-e0-7f-c7-bd"
	Called-Station-Id = "00-26-cb-4c-f7-c0:Bidon"
	NAS-Port = 13
	NAS-IP-Address = X.X.X.252
	NAS-Identifier = "xxxxx"
	Airespace-Wlan-Id = 6
	Service-Type = Framed-User
	Framed-MTU = 1300
	NAS-Port-Type = Wireless-802.11
	Tunnel-Type:0 = VLAN
	Tunnel-Medium-Type:0 = IEEE-802
	Tunnel-Private-Group-Id:0 = "82"
	EAP-Message = 0x0209003b190017030100306926f4ed02b49062761d0cb8562726a944dbb0bfaa444f01f67e9c8126a2558fc067654f856d2f951d96535c2df0b535
	State = 0x8e1ed1378817c8750acddef276754aa3
	Message-Authenticator = 0xbb33462fb6654a927be6b522b4cfb6bb
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] No '@' in User-Name = "client.example.com", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] EAP packet type response id 9 length 59
[eap] Continuing tunnel setup.
++[eap] returns ok
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP/peap
[eap] processing type peap
[peap] processing EAP-TLS
[peap] eaptls_verify returned 7 
[peap] Done initial handshake
[peap] eaptls_process returned 7 
[peap] EAPTLS_OK
[peap] Session established.  Decoding tunneled attributes.
[peap] Identity - client.example.com
[peap] Got tunneled request
	EAP-Message = 0x0209001501737761747a7930312e657372662e6672
server  {
  PEAP: Got tunneled identity of client.example.com
  PEAP: Setting default EAP type for tunneled EAP session.
  PEAP: Setting User-Name to client.example.com
Sending tunneled request
	EAP-Message = 0x0209001501737761747a7930312e657372662e6672
	FreeRADIUS-Proxied-To = 127.0.0.1
	User-Name = "client.example.com"
server inner-tunnel {
+- entering group authorize {...}
++[chap] returns noop
++[mschap] returns noop
++[unix] returns notfound
[suffix] No '@' in User-Name = "client.example.com", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
++[control] returns noop
[eap] EAP packet type response id 9 length 21
[eap] No EAP Start, assuming it's an on-going EAP conversation
++[eap] returns updated
++[files] returns noop
++[expiration] returns noop
++[logintime] returns noop
++[pap] returns noop
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] EAP Identity
[eap] processing type mschapv2
rlm_eap_mschapv2: Issuing Challenge
++[eap] returns handled
} # server inner-tunnel
[peap] Got tunneled reply code 11
	EAP-Message = 0x010a002a1a010a002510204478db37cf99c8c84b00dfeffa2bd7737761747a7930312e657372662e6672
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0xde734795de795d3c8b258f5d9a0478ed
[peap] Got tunneled reply RADIUS code 11
	EAP-Message = 0x010a002a1a010a002510204478db37cf99c8c84b00dfeffa2bd7737761747a7930312e657372662e6672
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0xde734795de795d3c8b258f5d9a0478ed
[peap] Got tunneled Access-Challenge
++[eap] returns handled
Sending Access-Challenge of id 135 to X.X.X.252 port 32769
	EAP-Message = 0x010a004b19001703010040046a986768b916030ce5dc08d42e8c74176b9821274cd40c9cb674e3358447de1c5d1571713eca5b7af051da3da576080541861b3cb613481c3d2ee8981561d8
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0x8e1ed1378914c8750acddef276754aa3
Finished request 17.
Going to the next request
Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host X.X.X.252 port 32769, id=136, length=228
	User-Name = "client.example.com"
	Calling-Station-Id = "00-1d-e0-7f-c7-bd"
	Called-Station-Id = "00-26-cb-4c-f7-c0:Bidon"
	NAS-Port = 13
	NAS-IP-Address = X.X.X.252
	NAS-Identifier = "xxxxx"
	Airespace-Wlan-Id = 6
	Service-Type = Framed-User
	Framed-MTU = 1300
	NAS-Port-Type = Wireless-802.11
	Tunnel-Type:0 = VLAN
	Tunnel-Medium-Type:0 = IEEE-802
	Tunnel-Private-Group-Id:0 = "82"
	EAP-Message = 0x020a002b19001703010020d9e10c04760aade02739c6c0ca51102b3a3533099e9660d5463f4b17dfd043d7
	State = 0x8e1ed1378914c8750acddef276754aa3
	Message-Authenticator = 0xa8b64880f1705ab922726493e731dcf6
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] No '@' in User-Name = "client.example.com", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] EAP packet type response id 10 length 43
[eap] Continuing tunnel setup.
++[eap] returns ok
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP/peap
[eap] processing type peap
[peap] processing EAP-TLS
[peap] eaptls_verify returned 7 
[peap] Done initial handshake
[peap] eaptls_process returned 7 
[peap] EAPTLS_OK
[peap] Session established.  Decoding tunneled attributes.
[peap] EAP type nak
[peap] Got tunneled request
	EAP-Message = 0x020a0006030d
server  {
  PEAP: Setting User-Name to client.example.com
Sending tunneled request
	EAP-Message = 0x020a0006030d
	FreeRADIUS-Proxied-To = 127.0.0.1
	User-Name = "client.example.com"
	State = 0xde734795de795d3c8b258f5d9a0478ed
server inner-tunnel {
+- entering group authorize {...}
++[chap] returns noop
++[mschap] returns noop
++[unix] returns notfound
[suffix] No '@' in User-Name = "client.example.com", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
++[control] returns noop
[eap] EAP packet type response id 10 length 6
[eap] No EAP Start, assuming it's an on-going EAP conversation
++[eap] returns updated
++[files] returns noop
++[expiration] returns noop
++[logintime] returns noop
++[pap] returns noop
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP NAK
[eap] EAP-NAK asked for EAP-Type/tls
[eap] processing type tls
[tls] Requiring client certificate
[tls] Initiate
[tls] Start returned 1
++[eap] returns handled
} # server inner-tunnel
[peap] Got tunneled reply code 11
	EAP-Message = 0x010b00060d20
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0xde734795df784a3c8b258f5d9a0478ed
[peap] Got tunneled reply RADIUS code 11
	EAP-Message = 0x010b00060d20
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0xde734795df784a3c8b258f5d9a0478ed
[peap] Got tunneled Access-Challenge
++[eap] returns handled
Sending Access-Challenge of id 136 to X.X.X.252 port 32769
	EAP-Message = 0x010b002b1900170301002093ef759481e6f76a647cfee24e43ee11e05a50261d13ee182e2af0c624f1f6d1
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0x8e1ed1378615c8750acddef276754aa3
Finished request 18.
Going to the next request
Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host X.X.X.252 port 32769, id=137, length=340
	User-Name = "client.example.com"
	Calling-Station-Id = "00-1d-e0-7f-c7-bd"
	Called-Station-Id = "00-26-cb-4c-f7-c0:Bidon"
	NAS-Port = 13
	NAS-IP-Address = X.X.X.252
	NAS-Identifier = "xxxxx"
	Airespace-Wlan-Id = 6
	Service-Type = Framed-User
	Framed-MTU = 1300
	NAS-Port-Type = Wireless-802.11
	Tunnel-Type:0 = VLAN
	Tunnel-Medium-Type:0 = IEEE-802
	Tunnel-Private-Group-Id:0 = "82"
	EAP-Message = 0x020b009b19001703010090c9fbe143e32e97dd4bb650fabbdc63bc2c76d23227aa5a414264dc29a31ce7849df85aa4d3126417464a8f11d379f801be1755d19ed5769bc5b6bc16f65c3e390464c78b56c5c91ae19ff2b0051bf8592328667265d66e1cbd77905c39d1544f2dc4b2556de35eefdff4357dd98e811c7a5429e1eeb9a3ddaeef0d4714780c7b0efab3e42cd601fccad521666b701288
	State = 0x8e1ed1378615c8750acddef276754aa3
	Message-Authenticator = 0x50d09514f80922fe59a09136639bd436
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] No '@' in User-Name = "client.example.com", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] EAP packet type response id 11 length 155
[eap] Continuing tunnel setup.
++[eap] returns ok
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP/peap
[eap] processing type peap
[peap] processing EAP-TLS
[peap] eaptls_verify returned 7 
[peap] Done initial handshake
[peap] eaptls_process returned 7 
[peap] EAPTLS_OK
[peap] Session established.  Decoding tunneled attributes.
[peap] EAP type tls
[peap] Got tunneled request
	EAP-Message = 0x020b007f0d800000007516030100700100006c03014b2f2fa40ec7775cfa70ff805e35e0a846cc28429be6b506cd3094f1bd33f0c7000018002f00350005000ac009c00ac013c01400320038001300040100002b000000150013000010737761747a7930312e657372662e6672000a00080006001700180019000b00020100
server  {
  PEAP: Setting User-Name to client.example.com
Sending tunneled request
	EAP-Message = 0x020b007f0d800000007516030100700100006c03014b2f2fa40ec7775cfa70ff805e35e0a846cc28429be6b506cd3094f1bd33f0c7000018002f00350005000ac009c00ac013c01400320038001300040100002b000000150013000010737761747a7930312e657372662e6672000a00080006001700180019000b00020100
	FreeRADIUS-Proxied-To = 127.0.0.1
	User-Name = "client.example.com"
	State = 0xde734795df784a3c8b258f5d9a0478ed
server inner-tunnel {
+- entering group authorize {...}
++[chap] returns noop
++[mschap] returns noop
++[unix] returns notfound
[suffix] No '@' in User-Name = "client.example.com", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
++[control] returns noop
[eap] EAP packet type response id 11 length 127
[eap] No EAP Start, assuming it's an on-going EAP conversation
++[eap] returns updated
++[files] returns noop
++[expiration] returns noop
++[logintime] returns noop
++[pap] returns noop
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP/tls
[eap] processing type tls
[tls] Authenticate
[tls] processing EAP-TLS
  TLS Length 117
[tls] Length Included
[tls] eaptls_verify returned 11 
[tls]     (other): before/accept initialization 
[tls]     TLS_accept: before/accept initialization 
[tls] <<< TLS 1.0 Handshake [length 0070], ClientHello  
[tls]     TLS_accept: SSLv3 read client hello A 
[tls] >>> TLS 1.0 Handshake [length 002a], ServerHello  
[tls]     TLS_accept: SSLv3 write server hello A 
[tls] >>> TLS 1.0 Handshake [length 07d3], Certificate  
[tls]     TLS_accept: SSLv3 write certificate A 
[tls] >>> TLS 1.0 Handshake [length 008f], CertificateRequest  
[tls]     TLS_accept: SSLv3 write certificate request A 
[tls]     TLS_accept: SSLv3 flush data 
[tls]     TLS_accept: Need to read more data: SSLv3 read client certificate A
In SSL Handshake Phase 
In SSL Accept mode  
[tls] eaptls_process returned 13 
++[eap] returns handled
} # server inner-tunnel
[peap] Got tunneled reply code 11
	EAP-Message = 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
	EAP-Message = 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
	EAP-Message = 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
	EAP-Message = 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
	EAP-Message = 0x55040713084772656e6f626c
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0xde734795dc7f4a3c8b258f5d9a0478ed
[peap] Got tunneled reply RADIUS code 11
	EAP-Message = 0x010c04000dc00000089b160301002a0200002603014b2f2fa4ae31c82430ef4091d8c8d39427242606cd13ffbd478f89cc5271eb1000002f0016030107d30b0007cf0007cc00035d3082035930820241a003020102020114300d06092a864886f70d0101040500307e310b3009060355040613024652310e300c0603550408130549736572653111300f060355040713084772656e6f626c65310d300b060355040a1304455352463120301e06092a864886f70d010901161161646d696e406578616d706c652e636f6d311b301906035504031312726164697573736572762e657372662e6672301e170d3039313232313038303833395a170d313031
	EAP-Message = 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
	EAP-Message = 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
	EAP-Message = 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
	EAP-Message = 0x55040713084772656e6f626c
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0xde734795dc7f4a3c8b258f5d9a0478ed
[peap] Got tunneled Access-Challenge
++[eap] returns handled
Sending Access-Challenge of id 137 to X.X.X.252 port 32769
	EAP-Message = 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
	EAP-Message = 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
	EAP-Message = 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
	EAP-Message = 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
	EAP-Message = 0x76b31a0a8bb72aa2e5b813ff
	Message-Authenticator = 0x00000000000000000000000000000000
	State = 0x8e1ed1378712c8750acddef276754aa3
Finished request 19.
Going to the next request
Waking up in 4.8 seconds.
Cleaning up request 10 ID 128 with timestamp +28
Cleaning up request 11 ID 129 with timestamp +28
Cleaning up request 12 ID 130 with timestamp +28
Cleaning up request 13 ID 131 with timestamp +28
Cleaning up request 14 ID 132 with timestamp +28
Cleaning up request 15 ID 133 with timestamp +28
Cleaning up request 16 ID 134 with timestamp +28
Cleaning up request 17 ID 135 with timestamp +28
Cleaning up request 18 ID 136 with timestamp +28
Cleaning up request 19 ID 137 with timestamp +28
Ready to process requests.
