thanks to Alexandre Chapellon, I have the same sense as you. But I don't know whether the NAS (netscreen firewall) or freeradius cause the problem. I debug the query process, after the 2nd pc login, the freeradius send a acc-reply to NAS, and the 1st connection logout. the debug process is as follows, firstly, 1st pc connection: rad_recv: Access-Request packet from host 10.249.59.188 port 2155, id=148, length=78 User-Name = "qid0001" User-Password = "1" Acct-Session-Id = "NS-0000004a" NAS-IP-Address = 10.249.59.188 NAS-Port = 74 NAS-Port-Type = Virtual +- entering group authorize ++[preprocess] returns ok expand: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/auth-detail-%Y%m%d -> /usr/local/var/log/radius/radacct/10.249.59.188/auth-detail-20061030 rlm_detail: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/auth-detail-%Y%m%d expands to /usr/local/var/log/radius/radacct/10.249.59.188/auth-detail-20061030 expand: %t -> Mon Oct 30 10:07:44 2006 ++[auth_log] returns ok ++[chap] returns noop ++[mschap] returns noop rlm_realm: No '@' in User-Name = "qid0001", looking up realm NULL rlm_realm: No such realm "NULL" ++[suffix] returns noop rlm_eap: No EAP-Message, not doing EAP ++[eap] returns noop ++[unix] returns notfound ++[files] returns noop expand: %{User-Name} -> qid0001 rlm_sql (sql): sql_set_user escaped user --> 'qid0001' rlm_sql (sql): Reserving sql socket id: 3 expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'qid0001' ORDER BY id WARNING: Found User-Password == "...". WARNING: Are you sure you don't mean Cleartext-Password? WARNING: See "man rlm_pap" for more information. rlm_sql (sql): User found in radcheck table expand: SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radreply WHERE username = 'qid0001' ORDER BY id expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'qid0001' ORDER BY priority expand: SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = '%{Sql-Group}' ORDER BY id -> SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = 'user2' ORDER BY id rlm_sql (sql): User found in group user2 expand: SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = '%{Sql-Group}' ORDER BY id -> SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = 'user2' ORDER BY id rlm_sql (sql): Released sql socket id: 3 ++[sql] returns ok ++[expiration] returns noop ++[logintime] returns noop ++[pap] returns updated rad_check_password: Found Auth-Type !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!! Replacing User-Password in config items with Cleartext-Password. !!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!! Please update your configuration so that the "known good" !!! !!! clear text password is in Cleartext-Password, and not in User-Password. !!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! auth: type "PAP" +- entering group PAP rlm_pap: login attempt with password "1" rlm_pap: Using clear text password "1" rlm_pap: User authenticated successfully ++[pap] returns ok +- entering group session expand: %{User-Name} -> qid0001 rlm_sql (sql): sql_set_user escaped user --> 'qid0001' expand: SELECT COUNT(*) #FROM radacct #WHERE username = '%{SQL-User-Name}' #AND acctstoptime IS NULL -> SELECT COUNT(*) #FROM radacct #WHERE username = 'qid0001' #AND acctstoptime IS NULL rlm_sql (sql): Reserving sql socket id: 2 rlm_sql (sql): Released sql socket id: 2 ++[sql] returns ok Login OK: [qid0001/1] (from client localhost port 74) +- entering group post-auth expand: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/reply-detail-%Y%m%d -> /usr/local/var/log/radius/radacct/10.249.59.188/reply-detail-20061030 rlm_detail: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/reply-detail-%Y%m%d expands to /usr/local/var/log/radius/radacct/10.249.59.188/reply-detail-20061030 expand: %t -> Mon Oct 30 10:07:44 2006 ++[reply_log] returns ok rlm_sql (sql): Processing sql_postauth expand: %{User-Name} -> qid0001 rlm_sql (sql): sql_set_user escaped user --> 'qid0001' expand: %{User-Password} -> 1 expand: INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( '%{User-Name}', '%{%{User-Password}:-%{Chap-Password}}', '%{reply:Packet-Type}', '%S') -> INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( 'qid0001', '1', 'Access-Accept', '2006-10-30 10:07:44') rlm_sql (sql) in sql_postauth: query is INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( 'qid0001', '1', 'Access-Accept', '2006-10-30 10:07:44') rlm_sql (sql): Reserving sql socket id: 1 rlm_sql (sql): Released sql socket id: 1 ++[sql] returns ok ++[exec] returns noop Sending Access-Accept of id 148 to 10.249.59.188 port 2155 Finished request 14. Going to the next request Waking up in 4.9 seconds. rad_recv: Accounting-Request packet from host 10.249.59.188 port 2155, id=149, length=78 Acct-Status-Type = Start Acct-Session-Id = "NS-0000004a" NAS-IP-Address = 10.249.59.188 NAS-Port = 74 NAS-Port-Type = Virtual User-Name = "qid0001" Acct-Delay-Time = 0 Acct-Authentic = RADIUS +- entering group preacct ++[preprocess] returns ok rlm_acct_unique: Hashing 'NAS-Port = 74,Client-IP-Address = 10.249.59.188,NAS-IP-Address = 10.249.59.188,Acct-Session-Id = "NS-0000004a",User-Name = "qid0001"' rlm_acct_unique: Acct-Unique-Session-ID = "6a5a013b0bab110f". ++[acct_unique] returns ok rlm_realm: No '@' in User-Name = "qid0001", looking up realm NULL rlm_realm: No such realm "NULL" ++[suffix] returns noop ++[files] returns noop +- entering group accounting expand: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d -> /usr/local/var/log/radius/radacct/10.249.59.188/detail-20061030 rlm_detail: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d expands to /usr/local/var/log/radius/radacct/10.249.59.188/detail-20061030 expand: %t -> Mon Oct 30 10:07:44 2006 ++[detail] returns ok ++[unix] returns ok expand: %{User-Name} -> qid0001 rlm_sql (sql): sql_set_user escaped user --> 'qid0001' expand: %{Acct-Delay-Time} -> 0 expand: INSERT INTO radacct (acctsessionid, acctuniqueid, username, realm, nasipaddress, nasportid, nasporttype, acctstarttime, acctstoptime, acctsessiontime, acctauthentic, connectinfo_start, connectinfo_stop, acctinputoctets, acctoutputoctets, calledstationid, callingstationid, acctterminatecause, servicetype, framedprotocol, framedipaddress, acctstartdelay, acctstopdelay, xascendsessionsvrkey) VALUES ('%{Acct-Session-Id}', '%{Acct-Unique-Session-Id}', '%{SQL-User-Name}', '%{Realm}', '%{NAS-IP-Address}', '%{NAS-Port}', '%{NAS-Port-Type}', '%S', NULL, '0', '%{Acct-Authentic}', '%{Connect-Info}', '', '0', '0', '%{Called-Station-Id}', '%{Calling-Station-Id}', '', '%{Service-Type}', '%{Framed-Protocol}', '%{Framed-IP-Address}', '%{%{Acct-Delay-Time}:-0}', '0', '%{X-Ascend-Session-Svr-Key}') -> INSERT INTO radacct (acctsessionid, acctuniqueid, username, realm, nasipaddress, nasportid, nasporttype, acctstarttime, acctstoptime, acctsessiontime, acctauthentic, connectinfo_start, connectinfo_stop, acctinputoctets, acctoutputoctets, calledstationid, callingstationid, acctterminatecause, servicetype, framedprotocol, framedipaddress, acctstartdelay, acctstopdelay, xascendsessionsvrkey) VALUES ('NS-0000004a', '6a5a013b0bab110f', 'qid0001', '', '10.249.59.188', '74', 'Virtual', '2006-10-30 10:07:44', NULL, '0', 'RADIUS', '', '', '0', '0', '', '', '', '', '', '', '0', '0', '') rlm_sql (sql): Reserving sql socket id: 0 rlm_sql (sql): Released sql socket id: 0 ++[sql] returns ok expand: %{User-Name} -> qid0001 attr_filter: Matched entry DEFAULT at line 12 ++[attr_filter.accounting_response] returns updated Sending Accounting-Response of id 149 to 10.249.59.188 port 2155 Finished request 15. Cleaning up request 15 ID 149 with timestamp +1103 Going to the next request Waking up in 4.9 seconds. rad_recv: Accounting-Request packet from host 10.249.59.188 port 2155, id=150, length=78 Acct-Status-Type = Stop Acct-Session-Id = "NS-00000046" NAS-IP-Address = 10.249.59.188 NAS-Port = 70 NAS-Port-Type = Virtual User-Name = "qid0001" Acct-Delay-Time = 0 Acct-Authentic = RADIUS +- entering group preacct ++[preprocess] returns ok rlm_acct_unique: Hashing 'NAS-Port = 70,Client-IP-Address = 10.249.59.188,NAS-IP-Address = 10.249.59.188,Acct-Session-Id = "NS-00000046",User-Name = "qid0001"' rlm_acct_unique: Acct-Unique-Session-ID = "e070078eae7af22b". ++[acct_unique] returns ok rlm_realm: No '@' in User-Name = "qid0001", looking up realm NULL rlm_realm: No such realm "NULL" ++[suffix] returns noop ++[files] returns noop +- entering group accounting expand: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d -> /usr/local/var/log/radius/radacct/10.249.59.188/detail-20061030 rlm_detail: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d expands to /usr/local/var/log/radius/radacct/10.249.59.188/detail-20061030 expand: %t -> Mon Oct 30 10:07:44 2006 ++[detail] returns ok ++[unix] returns ok expand: %{User-Name} -> qid0001 rlm_sql (sql): sql_set_user escaped user --> 'qid0001' expand: %{Acct-Input-Gigawords} -> expand: %{Acct-Input-Octets} -> expand: %{Acct-Output-Gigawords} -> expand: %{Acct-Output-Octets} -> expand: %{Acct-Delay-Time} -> 0 expand: UPDATE radacct SET acctstoptime = '%S', acctsessiontime = '%{Acct-Session-Time}', acctinputoctets = '%{%{Acct-Input-Gigawords}:-0}' << 32 | '%{%{Acct-Input-Octets}:-0}', acctoutputoctets = '%{%{Acct-Output-Gigawords}:-0}' << 32 | '%{%{Acct-Output-Octets}:-0}', acctterminatecause = '%{Acct-Terminate-Cause}', acctstopdelay = '%{%{Acct-Delay-Time}:-0}', connectinfo_stop = '%{Connect-Info}' WHERE acctsessionid = '%{Acct-Session-Id}' AND username = '%{SQL-User-Name}' AND nasipaddress = '%{NAS-IP-Address}' -> UPDATE radacct SET acctstoptime = '2006-10-30 10:07:44', acctsessiontime = '', acctinputoctets = '0' << 32 | '0', acctoutputoctets = '0' << 32 | '0', acctterminatecause = '', acctstopdelay = '0', connectinfo_stop = '' WHERE acctsessionid = 'NS-00000046' AND username = 'qid0001' AND nasipaddress = '10.249.59.188' rlm_sql (sql): Reserving sql socket id: 4 rlm_sql (sql): Released sql socket id: 4 ++[sql] returns ok expand: %{User-Name} -> qid0001 attr_filter: Matched entry DEFAULT at line 12 ++[attr_filter.accounting_response] returns updated Sending Accounting-Response of id 150 to 10.249.59.188 port 2155 Finished request 16. Cleaning up request 16 ID 150 with timestamp +1103 Going to the next request Waking up in 4.9 seconds. Cleaning up request 14 ID 148 with timestamp +1103 Ready to process requests. secondly, the 2nd pc login with the same username. rad_recv: Access-Request packet from host 10.249.59.188 port 2155, id=141, length=78 User-Name = "qid0001" User-Password = "1" Acct-Session-Id = "NS-00000046" NAS-IP-Address = 10.249.59.188 NAS-Port = 70 NAS-Port-Type = Virtual +- entering group authorize ++[preprocess] returns ok expand: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/auth-detail-%Y%m%d -> /usr/local/var/log/radius/radacct/10.249.59.188/auth-detail-20061030 rlm_detail: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/auth-detail-%Y%m%d expands to /usr/local/var/log/radius/radacct/10.249.59.188/auth-detail-20061030 expand: %t -> Mon Oct 30 09:59:37 2006 ++[auth_log] returns ok ++[chap] returns noop ++[mschap] returns noop rlm_realm: No '@' in User-Name = "qid0001", looking up realm NULL rlm_realm: No such realm "NULL" ++[suffix] returns noop rlm_eap: No EAP-Message, not doing EAP ++[eap] returns noop ++[unix] returns notfound ++[files] returns noop expand: %{User-Name} -> qid0001 rlm_sql (sql): sql_set_user escaped user --> 'qid0001' rlm_sql (sql): Reserving sql socket id: 1 expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'qid0001' ORDER BY id WARNING: Found User-Password == "...". WARNING: Are you sure you don't mean Cleartext-Password? WARNING: See "man rlm_pap" for more information. rlm_sql (sql): User found in radcheck table expand: SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radreply WHERE username = 'qid0001' ORDER BY id expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'qid0001' ORDER BY priority expand: SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = '%{Sql-Group}' ORDER BY id -> SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = 'user2' ORDER BY id rlm_sql (sql): User found in group user2 expand: SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = '%{Sql-Group}' ORDER BY id -> SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = 'user2' ORDER BY id rlm_sql (sql): Released sql socket id: 1 ++[sql] returns ok ++[expiration] returns noop ++[logintime] returns noop ++[pap] returns updated rad_check_password: Found Auth-Type !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!! Replacing User-Password in config items with Cleartext-Password. !!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!! Please update your configuration so that the "known good" !!! !!! clear text password is in Cleartext-Password, and not in User-Password. !!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! auth: type "PAP" +- entering group PAP rlm_pap: login attempt with password "1" rlm_pap: Using clear text password "1" rlm_pap: User authenticated successfully ++[pap] returns ok +- entering group session expand: %{User-Name} -> qid0001 rlm_sql (sql): sql_set_user escaped user --> 'qid0001' expand: SELECT COUNT(*) #FROM radacct #WHERE username = '%{SQL-User-Name}' #AND acctstoptime IS NULL -> SELECT COUNT(*) #FROM radacct #WHERE username = 'qid0001' #AND acctstoptime IS NULL rlm_sql (sql): Reserving sql socket id: 0 rlm_sql (sql): Released sql socket id: 0 ++[sql] returns ok Login OK: [qid0001/1] (from client localhost port 70) +- entering group post-auth expand: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/reply-detail-%Y%m%d -> /usr/local/var/log/radius/radacct/10.249.59.188/reply-detail-20061030 rlm_detail: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/reply-detail-%Y%m%d expands to /usr/local/var/log/radius/radacct/10.249.59.188/reply-detail-20061030 expand: %t -> Mon Oct 30 09:59:37 2006 ++[reply_log] returns ok rlm_sql (sql): Processing sql_postauth expand: %{User-Name} -> qid0001 rlm_sql (sql): sql_set_user escaped user --> 'qid0001' expand: %{User-Password} -> 1 expand: INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( '%{User-Name}', '%{%{User-Password}:-%{Chap-Password}}', '%{reply:Packet-Type}', '%S') -> INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( 'qid0001', '1', 'Access-Accept', '2006-10-30 09:59:37') rlm_sql (sql) in sql_postauth: query is INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( 'qid0001', '1', 'Access-Accept', '2006-10-30 09:59:37') rlm_sql (sql): Reserving sql socket id: 4 rlm_sql (sql): Released sql socket id: 4 ++[sql] returns ok ++[exec] returns noop Sending Access-Accept of id 141 to 10.249.59.188 port 2155 Finished request 7. Going to the next request Waking up in 4.9 seconds. rad_recv: Accounting-Request packet from host 10.249.59.188 port 2155, id=142, length=78 Acct-Status-Type = Start Acct-Session-Id = "NS-00000046" NAS-IP-Address = 10.249.59.188 NAS-Port = 70 NAS-Port-Type = Virtual User-Name = "qid0001" Acct-Delay-Time = 0 Acct-Authentic = RADIUS +- entering group preacct ++[preprocess] returns ok rlm_acct_unique: Hashing 'NAS-Port = 70,Client-IP-Address = 10.249.59.188,NAS-IP-Address = 10.249.59.188,Acct-Session-Id = "NS-00000046",User-Name = "qid0001"' rlm_acct_unique: Acct-Unique-Session-ID = "e070078eae7af22b". ++[acct_unique] returns ok rlm_realm: No '@' in User-Name = "qid0001", looking up realm NULL rlm_realm: No such realm "NULL" ++[suffix] returns noop ++[files] returns noop +- entering group accounting expand: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d -> /usr/local/var/log/radius/radacct/10.249.59.188/detail-20061030 rlm_detail: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d expands to /usr/local/var/log/radius/radacct/10.249.59.188/detail-20061030 expand: %t -> Mon Oct 30 09:59:37 2006 ++[detail] returns ok ++[unix] returns ok expand: %{User-Name} -> qid0001 rlm_sql (sql): sql_set_user escaped user --> 'qid0001' expand: %{Acct-Delay-Time} -> 0 expand: INSERT INTO radacct (acctsessionid, acctuniqueid, username, realm, nasipaddress, nasportid, nasporttype, acctstarttime, acctstoptime, acctsessiontime, acctauthentic, connectinfo_start, connectinfo_stop, acctinputoctets, acctoutputoctets, calledstationid, callingstationid, acctterminatecause, servicetype, framedprotocol, framedipaddress, acctstartdelay, acctstopdelay, xascendsessionsvrkey) VALUES ('%{Acct-Session-Id}', '%{Acct-Unique-Session-Id}', '%{SQL-User-Name}', '%{Realm}', '%{NAS-IP-Address}', '%{NAS-Port}', '%{NAS-Port-Type}', '%S', NULL, '0', '%{Acct-Authentic}', '%{Connect-Info}', '', '0', '0', '%{Called-Station-Id}', '%{Calling-Station-Id}', '', '%{Service-Type}', '%{Framed-Protocol}', '%{Framed-IP-Address}', '%{%{Acct-Delay-Time}:-0}', '0', '%{X-Ascend-Session-Svr-Key}') -> INSERT INTO radacct (acctsessionid, acctuniqueid, username, realm, nasipaddress, nasportid, nasporttype, acctstarttime, acctstoptime, acctsessiontime, acctauthentic, connectinfo_start, connectinfo_stop, acctinputoctets, acctoutputoctets, calledstationid, callingstationid, acctterminatecause, servicetype, framedprotocol, framedipaddress, acctstartdelay, acctstopdelay, xascendsessionsvrkey) VALUES ('NS-00000046', 'e070078eae7af22b', 'qid0001', '', '10.249.59.188', '70', 'Virtual', '2006-10-30 09:59:37', NULL, '0', 'RADIUS', '', '', '0', '0', '', '', '', '', '', '', '0', '0', '') rlm_sql (sql): Reserving sql socket id: 3 rlm_sql (sql): Released sql socket id: 3 ++[sql] returns ok expand: %{User-Name} -> qid0001 attr_filter: Matched entry DEFAULT at line 12 ++[attr_filter.accounting_response] returns updated Sending Accounting-Response of id 142 to 10.249.59.188 port 2155 Finished request 8. Cleaning up request 8 ID 142 with timestamp +616 Going to the next request Waking up in 4.9 seconds. rad_recv: Accounting-Request packet from host 10.249.59.188 port 2155, id=143, length=78 Acct-Status-Type = Stop Acct-Session-Id = "NS-00000045" NAS-IP-Address = 10.249.59.188 NAS-Port = 69 NAS-Port-Type = Virtual User-Name = "qid0001" Acct-Delay-Time = 0 Acct-Authentic = RADIUS +- entering group preacct ++[preprocess] returns ok rlm_acct_unique: Hashing 'NAS-Port = 69,Client-IP-Address = 10.249.59.188,NAS-IP-Address = 10.249.59.188,Acct-Session-Id = "NS-00000045",User-Name = "qid0001"' rlm_acct_unique: Acct-Unique-Session-ID = "2183865771469545". ++[acct_unique] returns ok rlm_realm: No '@' in User-Name = "qid0001", looking up realm NULL rlm_realm: No such realm "NULL" ++[suffix] returns noop ++[files] returns noop +- entering group accounting expand: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d -> /usr/local/var/log/radius/radacct/10.249.59.188/detail-20061030 rlm_detail: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d expands to /usr/local/var/log/radius/radacct/10.249.59.188/detail-20061030 expand: %t -> Mon Oct 30 09:59:37 2006 ++[detail] returns ok ++[unix] returns ok expand: %{User-Name} -> qid0001 rlm_sql (sql): sql_set_user escaped user --> 'qid0001' expand: %{Acct-Input-Gigawords} -> expand: %{Acct-Input-Octets} -> expand: %{Acct-Output-Gigawords} -> expand: %{Acct-Output-Octets} -> expand: %{Acct-Delay-Time} -> 0 expand: UPDATE radacct SET acctstoptime = '%S', acctsessiontime = '%{Acct-Session-Time}', acctinputoctets = '%{%{Acct-Input-Gigawords}:-0}' << 32 | '%{%{Acct-Input-Octets}:-0}', acctoutputoctets = '%{%{Acct-Output-Gigawords}:-0}' << 32 | '%{%{Acct-Output-Octets}:-0}', acctterminatecause = '%{Acct-Terminate-Cause}', acctstopdelay = '%{%{Acct-Delay-Time}:-0}', connectinfo_stop = '%{Connect-Info}' WHERE acctsessionid = '%{Acct-Session-Id}' AND username = '%{SQL-User-Name}' AND nasipaddress = '%{NAS-IP-Address}' -> UPDATE radacct SET acctstoptime = '2006-10-30 09:59:37', acctsessiontime = '', acctinputoctets = '0' << 32 | '0', acctoutputoctets = '0' << 32 | '0', acctterminatecause = '', acctstopdelay = '0', connectinfo_stop = '' WHERE acctsessionid = 'NS-00000045' AND username = 'qid0001' AND nasipaddress = '10.249.59.188' rlm_sql (sql): Reserving sql socket id: 2 rlm_sql (sql): Released sql socket id: 2 ++[sql] returns ok expand: %{User-Name} -> qid0001 attr_filter: Matched entry DEFAULT at line 12 ++[attr_filter.accounting_response] returns updated Sending Accounting-Response of id 143 to 10.249.59.188 port 2155 Finished request 9. Cleaning up request 9 ID 143 with timestamp +616 Going to the next request Waking up in 4.9 seconds. Cleaning up request 7 ID 141 with timestamp +616 Ready to process requests.
I don't your problem have anything to deal with simultaneous-use checking... Indeed, when enabled Sim-Use would REJECT NEW users trying to connect to if the login used has reached the limit.... What you say is that new user (same login) disconnect existing session... This sounds more like something with netscreen for me...eg could be ip allocation pb if managed by netscreen or something like this... May be providing debug of query processing would be more usefull than just the startup. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html