Hi, I have loaded Freeradius 2.1.6 on a Centos 5.3 server with Mysql. The server is responding perfectly to any Authentication.
From a Windows XP it connects, verifies the username, password & Calling-Station-ID. It then immediately disconnects with Error 734: The PPP link control protocol was terminated. In the log on the Radius server it shows that the connection was OK: Thu Aug 13 09:40:39 2009 : Auth: Login OK: [Danie1234/xxxx] (from client MTN-RB-J20 port 24329888 cli 27XXXXXXXXX) Using NTRadPING, authentication is successful. However, using "Accounting Start" on NTRadPING it sends the accounting packet through to the server and can clearly be seen when using debug mode: "rad_recv: Accounting-Request packet from host 10.18.205.5 port 4923, id=4, length=56 User-Name = "Danie1234" Acct-Status-Type = Start Acct-Session-Id = "2120" Calling-Station-Id = "27833873873" Finished request 5." NTRadPING reports back that there is no response from the server.
Under Listen in radiusd.conf I have the following: listen { ipaddr = * port = 1813 type = acct } Under site-enabled/default I have the following: accouting { detail sql } I will appreciate any help in solving this issue. __________ Information from ESET NOD32 Antivirus, version of virus signature database 4314 (20090807) __________ The message was checked by ESET NOD32 Antivirus. http://www.eset.com (GAAP DISCLAIMER) The above message and all attachments may contain privileged and confidential information intended only for the person or entity to which it is addressed. Any review, retransmission, dissemination, copy or other use of, or taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. If you received this message in error, please notify the sender immediately by e-mail, facsimile or telephone and thereafter delete the material from your computer. Any views expressed in this message are those of the individual sender, except where the sender specifically states them to be the view of the entity transmitting the message. UCS Group Limited and all of its subsidiary companies hereby distance themselves from and accept no liability in respect of the unauthorised use of its e-mail facility or the sending of e-mail communications for other than strictly business purposes. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.
Have a look at the logs - what do you see there? Post the last 50 or so lines if you like. Glen On Thu, Aug 13, 2009 at 12:28, Danie J. Steenkamp <danie@gaap.co.za> wrote:
Hi, I have loaded Freeradius 2.1.6 on a Centos 5.3 server with Mysql. The server is responding perfectly to any Authentication.
From a Windows XP it connects, verifies the username, password & Calling-Station-ID. It then immediately disconnects with Error 734: The PPP link control protocol was terminated. In the log on the Radius server it shows that the connection was OK: Thu Aug 13 09:40:39 2009 : Auth: Login OK: [Danie1234/xxxx] (from client MTN-RB-J20 port 24329888 cli 27XXXXXXXXX) Using NTRadPING, authentication is successful. However, using "Accounting Start" on NTRadPING it sends the accounting packet through to the server and can clearly be seen when using debug mode: "rad_recv: Accounting-Request packet from host 10.18.205.5 port 4923, id=4, length=56 User-Name = "Danie1234" Acct-Status-Type = Start Acct-Session-Id = "2120" Calling-Station-Id = "27833873873" Finished request 5." NTRadPING reports back that there is no response from the server.
Under Listen in radiusd.conf I have the following: listen { ipaddr = * port = 1813 type = acct } Under site-enabled/default I have the following: accouting { detail sql }
I will appreciate any help in solving this issue.
__________ Information from ESET NOD32 Antivirus, version of virus signature database 4314 (20090807) __________
The message was checked by ESET NOD32 Antivirus.
(GAAP DISCLAIMER) The above message and all attachments may contain privileged and confidential information intended only for the person or entity to which it is addressed. Any review, retransmission, dissemination, copy or other use of, or taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. If you received this message in error, please notify the sender immediately by e-mail, facsimile or telephone and thereafter delete the material from your computer. Any views expressed in this message are those of the individual sender, except where the sender specifically states them to be the view of the entity transmitting the message. UCS Group Limited and all of its subsidiary companies hereby distance themselves from and accept no liability in respect of the unauthorised use of its e-mail facility or the sending of e-mail communications for other than strictly business purposes.
-- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi, that is the problem, there is no error message in the radius.log file. I have run the server mostly in debug mode to try and capture the error without success. I have now replicated the error with the server running in normal mode and below is the output to the log file: Thu Aug 13 19:16:08 2009 : Info: rlm_sql (sql): Driver rlm_sql_mysql (module rlm_sql_mysql) loaded and linked Thu Aug 13 19:16:08 2009 : Info: rlm_sql (sql): Attempting to connect to radius@localhost:/radiusdb Thu Aug 13 19:16:08 2009 : Info: rlm_sql_mysql: Starting connect to MySQL server for #0 Thu Aug 13 19:16:08 2009 : Info: rlm_sql_mysql: Starting connect to MySQL server for #1 Thu Aug 13 19:16:08 2009 : Info: rlm_sql_mysql: Starting connect to MySQL server for #2 Thu Aug 13 19:16:08 2009 : Info: rlm_sql_mysql: Starting connect to MySQL server for #3 Thu Aug 13 19:16:08 2009 : Info: rlm_sql_mysql: Starting connect to MySQL server for #4 Thu Aug 13 19:16:08 2009 : Info: Ready to process requests. Thu Aug 13 19:16:44 2009 : Auth: Login OK: [Danie1234/xxxx] (from client djs-laptop port 0 cli 27xxxxxxxxx) There is no indication on the radius server that something is wrong. It is only when you connect from Windows XP or using NTRadPING that you realize that there must be some sort of problem due to the errors received in these two programs. ________________________________________ From: freeradius-users-bounces+danie=gaap.co.za@lists.freeradius.org [mailto:freeradius-users-bounces+danie=gaap.co.za@lists.freeradius.org] On Behalf Of Glen Millard Sent: 13 August 2009 18:39 To: FreeRadius users mailing list Subject: Re: ERROR 734 Have a look at the logs - what do you see there? Post the last 50 or so lines if you like. Glen On Thu, Aug 13, 2009 at 12:28, Danie J. Steenkamp <danie@gaap.co.za> wrote: Hi, I have loaded Freeradius 2.1.6 on a Centos 5.3 server with Mysql. The server is responding perfectly to any Authentication.
From a Windows XP it connects, verifies the username, password & Calling-Station-ID. It then immediately disconnects with Error 734: The PPP link control protocol was terminated. In the log on the Radius server it shows that the connection was OK: Thu Aug 13 09:40:39 2009 : Auth: Login OK: [Danie1234/xxxx] (from client MTN-RB-J20 port 24329888 cli 27XXXXXXXXX) Using NTRadPING, authentication is successful. However, using "Accounting Start" on NTRadPING it sends the accounting packet through to the server and can clearly be seen when using debug mode: "rad_recv: Accounting-Request packet from host 10.18.205.5 port 4923, id=4, length=56 User-Name = "Danie1234" Acct-Status-Type = Start Acct-Session-Id = "2120" Calling-Station-Id = "27833873873" Finished request 5." NTRadPING reports back that there is no response from the server.
Under Listen in radiusd.conf I have the following: listen { ipaddr = * port = 1813 type = acct } Under site-enabled/default I have the following: accouting { detail sql } I will appreciate any help in solving this issue. __________ Information from ESET NOD32 Antivirus, version of virus signature database 4314 (20090807) __________ The message was checked by ESET NOD32 Antivirus. http://www.eset.com (GAAP DISCLAIMER) The above message and all attachments may contain privileged and confidential information intended only for the person or entity to which it is addressed. Any review, retransmission, dissemination, copy or other use of, or taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. If you received this message in error, please notify the sender immediately by e-mail, facsimile or telephone and thereafter delete the material from your computer. Any views expressed in this message are those of the individual sender, except where the sender specifically states them to be the view of the entity transmitting the message. UCS Group Limited and all of its subsidiary companies hereby distance themselves from and accept no liability in respect of the unauthorised use of its e-mail facility or the sending of e-mail communications for other than strictly business purposes. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. __________ Information from ESET NOD32 Antivirus, version of virus signature database 4314 (20090807) __________ The message was checked by ESET NOD32 Antivirus. http://www.eset.com __________ Information from ESET NOD32 Antivirus, version of virus signature database 4314 (20090807) __________ The message was checked by ESET NOD32 Antivirus. http://www.eset.com (GAAP DISCLAIMER) The above message and all attachments may contain privileged and confidential information intended only for the person or entity to which it is addressed. Any review, retransmission, dissemination, copy or other use of, or taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. If you received this message in error, please notify the sender immediately by e-mail, facsimile or telephone and thereafter delete the material from your computer. Any views expressed in this message are those of the individual sender, except where the sender specifically states them to be the view of the entity transmitting the message. UCS Group Limited and all of its subsidiary companies hereby distance themselves from and accept no liability in respect of the unauthorised use of its e-mail facility or the sending of e-mail communications for other than strictly business purposes. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.
Danie J. Steenkamp wrote:
Hi, I have loaded Freeradius 2.1.6 on a Centos 5.3 server with Mysql. The server is responding perfectly to any Authentication.
From a Windows XP it connects, verifies the username, password & Calling-Station-ID. It then immediately disconnects with Error 734: The PPP link control protocol was terminated. In the log on the Radius server it shows that the connection was OK:
Then blame the NAS. If the server says "let the user log in", and the NAS doesn't let the user log in, then the NAS is broken.
Thu Aug 13 09:40:39 2009 : Auth: Login OK: [Danie1234/xxxx] (from client MTN-RB-J20 port 24329888 cli 27XXXXXXXXX) Using NTRadPING, authentication is successful.
Authentication was successful with the NAS, too. That it's the problem.
However, using "Accounting Start" on NTRadPING it sends the accounting packet through to the server and can clearly be seen when using debug mode: "rad_recv: Accounting-Request packet from host 10.18.205.5 port 4923, id=4, length=56 User-Name = "Danie1234" Acct-Status-Type = Start Acct-Session-Id = "2120" Calling-Station-Id = "27833873873" Finished request 5."
It's not processing the accounting section for some reason. Are you sure it's loading the right file? Alan DeKok.
Alan DeKok wrote:
It's not processing the accounting section for some reason. Are you sure it's loading the right file?
Sorry, I though I installed 2.1.6. It is 2.1.1. I am not sure if the right files loads, to me it looks like it. I have copied what radiusd -X loads: FreeRADIUS Version 2.1.1, for host i686-redhat-linux-gnu, built on Aug 9 2009 at 23:16:25 Copyright (C) 1999-2008 The FreeRADIUS server project and contributors. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. You may redistribute copies of FreeRADIUS under the terms of the GNU General Public License v2. Starting - reading configuration files ... including configuration file /etc/raddb/radiusd.conf including configuration file /etc/raddb/proxy.conf including configuration file /etc/raddb/clients.conf including files in directory /etc/raddb/modules/ including configuration file /etc/raddb/modules/detail.log including configuration file /etc/raddb/modules/files including configuration file /etc/raddb/modules/expiration including configuration file /etc/raddb/modules/smbpasswd including configuration file /etc/raddb/modules/linelog including configuration file /etc/raddb/modules/detail including configuration file /etc/raddb/modules/digest including configuration file /etc/raddb/modules/checkval including configuration file /etc/raddb/modules/policy including configuration file /etc/raddb/modules/etc_group including configuration file /etc/raddb/modules/detail.example.com including configuration file /etc/raddb/modules/mac2ip including configuration file /etc/raddb/modules/wimax including configuration file /etc/raddb/modules/mschap including configuration file /etc/raddb/modules/pap including configuration file /etc/raddb/modules/preprocess including configuration file /etc/raddb/modules/expr including configuration file /etc/raddb/modules/pam including configuration file /etc/raddb/modules/realm including configuration file /etc/raddb/modules/logintime including configuration file /etc/raddb/modules/exec including configuration file /etc/raddb/modules/always including configuration file /etc/raddb/modules/mac2vlan including configuration file /etc/raddb/modules/attr_rewrite including configuration file /etc/raddb/modules/ippool including configuration file /etc/raddb/modules/chap including configuration file /etc/raddb/modules/attr_filter including configuration file /etc/raddb/modules/radutmp including configuration file /etc/raddb/modules/passwd including configuration file /etc/raddb/modules/echo including configuration file /etc/raddb/modules/unix including configuration file /etc/raddb/modules/sql_log including configuration file /etc/raddb/modules/acct_unique including configuration file /etc/raddb/modules/inner-eap including configuration file /etc/raddb/modules/sradutmp including configuration file /etc/raddb/modules/counter including configuration file /etc/raddb/sql.conf including configuration file /etc/raddb/sql/mysql/dialup.conf including configuration file /etc/raddb/sql/mysql/counter.conf including configuration file /etc/raddb/policy.conf including files in directory /etc/raddb/sites-enabled/ including configuration file /etc/raddb/sites-enabled/control-socket including configuration file /etc/raddb/sites-enabled/inner-tunnel including configuration file /etc/raddb/sites-enabled/default group = radiusd user = radiusd including dictionary file /etc/raddb/dictionary main { prefix = "/usr" localstatedir = "/var" logdir = "/var/log/freeradius" libdir = "/usr/lib/freeradius" radacctdir = "/var/log/freeradius/radacct" hostname_lookups = no max_request_time = 30 cleanup_delay = 5 max_requests = 1024 allow_core_dumps = no pidfile = "/var/run/radiusd/radiusd.pid" checkrad = "/usr/sbin/checkrad" debug_level = 0 proxy_requests = yes log { stripped_names = no auth = yes auth_badpass = yes auth_goodpass = yes } security { max_attributes = 200 reject_delay = 1 status_server = yes } } client 127.0.0.1 { require_message_authenticator = no secret = "testing123" shortname = "localhost" nastype = "other" } client 10.20.255.253 { require_message_authenticator = no secret = "123jhbgaap" shortname = "gaap-rad-1" nastype = "other" } client XXX.XXX.XXX.XXX/28 { require_message_authenticator = no secret = "xxxxxxxxxx" shortname = "MTN-RB-J20" } client 10.18.201.0/24 { require_message_authenticator = no secret = "testing123" shortname = "djs-laptop" nastype = "other" } client 10.18.205.0/24 { require_message_authenticator = no secret = "testing123" shortname = "djs-laptop" nastype = "other" } radiusd: #### Loading Realms and Home Servers #### proxy server { retry_delay = 5 retry_count = 3 default_fallback = no dead_time = 120 wake_all_if_all_dead = no } home_server localhost { ipaddr = 127.0.0.1 port = 1812 type = "auth" secret = "testing123" response_window = 20 max_outstanding = 65536 zombie_period = 40 status_check = "status-server" ping_interval = 30 check_interval = 30 num_answers_to_alive = 3 num_pings_to_alive = 3 revive_interval = 120 status_check_timeout = 4 } home_server_pool my_auth_failover { type = fail-over home_server = localhost } realm example.com { auth_pool = my_auth_failover } realm LOCAL { } radiusd: #### Instantiating modules #### instantiate { Module: Linked to module rlm_exec Module: Instantiating exec exec { wait = no input_pairs = "request" shell_escape = yes } Module: Linked to module rlm_expr Module: Instantiating expr Module: Linked to module rlm_expiration Module: Instantiating expiration expiration { reply-message = "Password Has Expired " } Module: Linked to module rlm_logintime Module: Instantiating logintime logintime { reply-message = "You are calling outside your allowed timespan " minimum-timeout = 60 } } radiusd: #### Loading Virtual Servers #### server inner-tunnel { modules { Module: Checking authenticate {...} for more modules to load Module: Linked to module rlm_pap Module: Instantiating pap pap { encryption_scheme = "auto" auto_header = no } Module: Linked to module rlm_chap Module: Instantiating chap Module: Linked to module rlm_mschap Module: Instantiating mschap mschap { use_mppe = yes require_encryption = no require_strong = no with_ntdomain_hack = no } Module: Linked to module rlm_unix Module: Instantiating unix unix { radwtmp = "/var/log/freeradius/radwtmp" } Module: Checking authorize {...} for more modules to load Module: Linked to module rlm_realm Module: Instantiating suffix realm suffix { format = "suffix" delimiter = "@" ignore_default = no ignore_null = no } Module: Linked to module rlm_files Module: Instantiating files files { usersfile = "/etc/raddb/users" acctusersfile = "/etc/raddb/acct_users" preproxy_usersfile = "/etc/raddb/preproxy_users" compat = "no" } Module: Linked to module rlm_sql Module: Instantiating sql sql { driver = "rlm_sql_mysql" server = "localhost" port = "" login = "radius" password = "radpass" radius_db = "radiusdb" read_groups = yes sqltrace = no sqltracefile = "/var/log/freeradius/sqltrace.sql" readclients = yes deletestalesessions = yes num_sql_socks = 5 sql_user_name = "%{User-Name}" default_user_profile = "" nas_query = "SELECT id, nasname, shortname, type, secret FROM nas" authorize_check_query = "SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id" authorize_reply_query = "SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id" authorize_group_check_query = "SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = '%{Sql-Group}' ORD ER BY id" authorize_group_reply_query = "SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = '%{Sql-Group}' ORD ER BY id" accounting_onoff_query = " UPDATE radacct SET acctstoptime = '%S', acctsessiontime = unix_timestamp('%S') - unix_timestamp(acctstarttime), acctterminatecause = '%{Acct-Terminate-Cause}', acctstopdelay = %{%{Acct-Delay-Time }:-0} WHERE acctstoptime IS NULL AND nasipaddress = '%{NAS-IP-Address}' AND acctstarttime <= '%S'" accounting_update_query = " UPDATE radacct SET framedipaddress = '%{Framed-IP-Address}', acctsessiontime = '%{Acct-Sess ion-Time}', acctinputoctets = '%{%{Acct-Input-Gigawords}:-0}' << 32 | '%{%{Acct-Input-Octets}:-0}', acctoutputo ctets = '%{%{Acct-Output-Gigawords}:-0}' << 32 | '%{%{Acct-Output-Octets}:-0}' WHERE acctsessionid = '%{Acct-Session-Id}' AND username = '%{SQL-User-Name}' AND nasipaddress = '%{NAS-IP-Address}'" accounting_update_query_alt = " INSERT INTO radacct (acctsessionid, acctuniqueid, username, realm, nasipaddress, nasportid, nasporttype, acctstarttime, acctsessiontime, acctauthentic, connectinfo_start, acctinputoctets, acctoutputoctets , calledstationid, callingstationid, servicetype, framedprotocol, framedipaddress, acctstartdelay, xascendsessionsvrkey) VALUES ('%{Acct-Session-Id}', '%{Acct-Unique-Session-Id}', '%{SQL-User-Name}', '%{Realm}', '%{NAS-IP-Address}', '%{NAS-Port}', '%{NAS- Port-Type}', DATE_SUB('%S', INTERVAL (%{%{Acct-Session-Time}:-0} + %{%{Acct-Delay-Time}:-0}) SECOND), '%{Acct-Session-Time}', '%{Acct-Authentic}', '', '%{%{Acct-Input-Gigawords}:-0}' << 32 | '%{%{Acct-Input-Octets}:-0}', '%{%{Acct-Output-Gigawords}:-0}' << 32 | '%{%{Acct-Output-Octets}:-0}', '%{Called-Station-Id}', '%{Calling-Station-Id}', '%{Servic e-Type}', '%{Framed-Protocol}', '%{Framed-IP-Address}', '0', '%{X-Ascend-Session-Svr-Key}')" accounting_start_query = " INSERT INTO radacct (acctsessionid, acctuniqueid, username, realm, nasipaddress, nasp ortid, nasporttype, acctstarttime, acctstoptime, acctsessiontime, acctauthentic, connectinfo_start, connectinfo_stop, acctinpu toctets, acctoutputoctets, calledstationid, callingstationid, acctterminatecause, servicetype, framedprotocol, framedipaddress, a cctstartdelay, acctstopdelay, xascendsessionsvrkey) VALUES ('%{Acct-Session-Id}', '%{Acct-Unique-Session-Id}', '%{SQL-User-Name}', '%{Realm}', '%{NAS-IP-Address}', '%{NAS-Port}', '%{NAS-Port-Type}', '%S', NULL, '0', '%{Acct-Authentic}', '%{Connect-Info}', '', '0 ', '0', '%{Called-Station-Id}', '%{Calling-Station-Id}', '', '%{Service-Type}', '%{Framed-Protocol}', '%{Framed-IP-Address}', '%{%{Acct-De lay-Time}:-0}', '0', '%{X-Ascend-Session-Svr-Key}')" accounting_start_query_alt = " UPDATE radacct SET acctstarttime = '%S', acctstartdelay = '%{%{Acct-Delay-Time}:-0}', connectinfo_start = '%{Connect-Info}' WHERE acctsessionid = '%{Acct-Session-Id}' AND username = '%{SQL-User-Name}' AND nasipaddress = '%{NAS-IP-Address}'" accounting_stop_query = " UPDATE radacct SET acctstoptime = '%S', acctsessiontime = '%{Acct-Session-Time}', acc tinputoctets = '%{%{Acct-Input-Gigawords}:-0}' << 32 | '%{%{Acct-Input-Octets}:-0}', acctoutputoctets = '%{%{Acct-Output-Giga words}:-0}' << 32 | '%{%{Acct-Output-Octets}:-0}', acctterminatecause = '%{Acct-Terminate-Cause}', acctstopdelay = '%{%{Acct-Delay-Time}:-0}', connectinfo_stop = '%{Connect-Info}' WHERE acctsessionid = '%{Acct-Session-Id}' AND username = '%{SQ L-User-Name}' AND nasipaddress = '%{NAS-IP-Address}'" accounting_stop_query_alt = " INSERT INTO radacct (acctsessionid, acctuniqueid, username, realm, nasipaddress, nasportid, nasporttype, acctstarttime, acctstoptime, acctsessiontime, acctauthentic, connectinfo_start, connectinfo_stop, acctinputoctets, acctoutputoctets, calledstationid, callingstationid, acctterminatecause, servicetype, framedprotocol, framedipaddress, acctstartdelay, acctstopdelay) VALUES ('%{Acct-Session-Id}', '%{Acct-Unique-Session-Id}', '%{SQL-User-Name}', '%{Realm}', '%{NAS-IP-Address}', '%{NAS-Port}', '%{NAS-Port-Type}', DATE_SUB('%S', INTERVAL (%{%{Acct-Session-Time}:-0} + %{%{Acct-Delay-Time}:-0}) SECOND), '%S', ' %{Acct-Session-Time}', '%{Acct-Authentic}', '', '%{Connect-Info}', '%{%{Acct-Input-Gigawords}:-0}' << 32 | '%{%{Acct-Input-Octets}:-0}', '%{%{Acct-Output-Gigawords}:-0}' << 32 | '%{%{Acct-Output-Octets}:-0}', '%{Called-Station-Id}', '%{Calling-Station-Id}', '%{Ac ct-Terminate-Cause}', '%{Service-Type}', '%{Framed-Protocol}', '%{Framed-IP-Address}', '0', '%{%{Acct-Delay-Time}:-0}')" group_membership_query = "SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority" connect_failure_retry_delay = 60 simul_count_query = "" simul_verify_query = "SELECT radacctid, acctsessionid, username, nasipaddress, nasportid, framedipaddress, callingstationid, framedprotocol FROM radacct WHERE username = '%{SQL-User-Name}' AN D acctstoptime IS NULL" postauth_query = "INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( '%{Use r-Name}', '%{%{User-Password}:-%{Chap-Password}}', '%{reply:Packet-Type}', '%S')" safe-characters = "@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-_: /" } rlm_sql (sql): Driver rlm_sql_mysql (module rlm_sql_mysql) loaded and linked rlm_sql (sql): Attempting to connect to radius@localhost:/radiusdb rlm_sql (sql): starting 0 rlm_sql (sql): Attempting to connect rlm_sql_mysql #0 rlm_sql_mysql: Starting connect to MySQL server for #0 rlm_sql (sql): Connected new DB handle, #0 rlm_sql (sql): starting 1 rlm_sql (sql): Attempting to connect rlm_sql_mysql #1 rlm_sql_mysql: Starting connect to MySQL server for #1 rlm_sql (sql): Connected new DB handle, #1 rlm_sql (sql): starting 2 rlm_sql (sql): Attempting to connect rlm_sql_mysql #2 rlm_sql_mysql: Starting connect to MySQL server for #2 rlm_sql (sql): Connected new DB handle, #2 rlm_sql (sql): starting 3 rlm_sql (sql): Attempting to connect rlm_sql_mysql #3 rlm_sql_mysql: Starting connect to MySQL server for #3 rlm_sql (sql): Connected new DB handle, #3 rlm_sql (sql): starting 4 rlm_sql (sql): Attempting to connect rlm_sql_mysql #4 rlm_sql_mysql: Starting connect to MySQL server for #4 rlm_sql (sql): Connected new DB handle, #4 rlm_sql (sql): Processing generate_sql_clients rlm_sql (sql) in generate_sql_clients: query is SELECT id, nasname, shortname, type, secret FROM nas rlm_sql (sql): Reserving sql socket id: 4 rlm_sql (sql): Released sql socket id: 4 Module: Checking session {...} for more modules to load Module: Linked to module rlm_radutmp Module: Instantiating radutmp radutmp { filename = "/var/log/freeradius/radutmp" username = "%{User-Name}" case_sensitive = yes check_with_nas = yes perm = 384 callerid = yes } Module: Checking post-auth {...} for more modules to load Module: Linked to module rlm_sql_log Module: Instantiating sql_log sql_log { path = "/var/log/freeradius/radacct/sql-relay" Post-Auth = "INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ('%{User-Name}', '%{User-Password:-Chap-Password }', '%{reply:Packet-Type}', '%S');" sql_user_name = "%{%{User-Name}:-DEFAULT}" safe-characters = "@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-_: /" } Module: Linked to module rlm_attr_filter Module: Instantiating attr_filter.access_reject attr_filter attr_filter.access_reject { attrsfile = "/etc/raddb/attrs.access_reject" key = "%{User-Name}" } } } modules { Module: Checking authorize {...} for more modules to load Module: Linked to module rlm_preprocess Module: Instantiating preprocess preprocess { huntgroups = "/etc/raddb/huntgroups" hints = "/etc/raddb/hints" with_ascend_hack = no ascend_channels_per_line = 23 with_ntdomain_hack = no with_specialix_jetstream_hack = no with_cisco_vsa_hack = no with_alvarion_vsa_hack = no } } radiusd: #### Opening IP addresses and Ports #### listen { type = "auth" ipaddr = * port = 1812 } listen { type = "acct" ipaddr = 10.18.201.216 port = 1813 } listen { type = "control" listen { socket = "/var/run/radiusd/radiusd.sock" } } Listening on authentication address * port 1812 Listening on accounting address 10.18.201.216 port 1813 Listening on command file /var/run/radiusd/radiusd.sock Listening on proxy address * port 1814 Ready to process requests. __________ Information from ESET NOD32 Antivirus, version of virus signature database 4314 (20090807) __________ The message was checked by ESET NOD32 Antivirus. http://www.eset.com (GAAP DISCLAIMER) The above message and all attachments may contain privileged and confidential information intended only for the person or entity to which it is addressed. Any review, retransmission, dissemination, copy or other use of, or taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. If you received this message in error, please notify the sender immediately by e-mail, facsimile or telephone and thereafter delete the material from your computer. Any views expressed in this message are those of the individual sender, except where the sender specifically states them to be the view of the entity transmitting the message. UCS Group Limited and all of its subsidiary companies hereby distance themselves from and accept no liability in respect of the unauthorised use of its e-mail facility or the sending of e-mail communications for other than strictly business purposes. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.
Danie J. Steenkamp wrote:
Alan DeKok wrote:
It's not processing the accounting section for some reason. Are you sure it's loading the right file?
Sorry, I though I installed 2.1.6. It is 2.1.1. I am not sure if the right files loads, to me it looks like it. I have copied what radiusd -X loads:
Could you search the output for the word "accounting" ? It says things like: Module: Checking post-auth {...} for more modules to load There is NO such line saying "checking accounting { ... } " You have edited the configuration files, and broken them. Don't do that. Alan DeKok.
participants (3)
-
Alan DeKok -
Danie J. Steenkamp -
Glen Millard