rlm_proxy problems

Geoff Silver geoff+freeradius at uslinux.net
Mon Aug 21 19:21:10 CEST 2006

Alan DeKok wrote:
> Geoff Silver <geoff+freeradius at uslinux.net> wrote:
>> rad_recv: Access-Reject packet from host, id=121, length=2
>   You're getting a *reject* and not any other issue?  Oh...

Am I?  I'm not entirely sure.  Usually I see the client send me an 
Access-Request message.  I then see *me* send an Access-Request to the backend 
server, and finally see an Access-Accept or Access-Reject message (not sure if 
this last one comes from the backend to me or from me to the requesting client).

In the failure case, I'm seeing only one Access-Request, and then eventually 
an Access-Reject that appears to be generated by me.  I can't tell if I've 
actually sent the second request to the backend server and not logged it, or 
not even sent it.

>   That sounds to me like the home server is simply not responding to
> the proxy server.  This *should* be mentioned in the log file.

I don't see anything in the logs about it, unfortunately.  I'll fire up 
radiusd -AX and see if I can't get our VPN group to send some traffic to 
recreate the problem again.

>   Alan DeKok.
> --
>   http://deployingradius.com       - The web site of the book
>   http://deployingradius.com/blog/ - The blog
> - 
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

More information about the Freeradius-Users mailing list