Peter Nixon
listuser at peternixon.net
Tue Jul 31 11:13:33 CEST 2007
On Tue 31 Jul 2007, Kennie Lionheart wrote:
> Hi,
>
>
> I have a question about Freeradius' log.
>
> My costomer has used Remote Access VPN with Freeradius and Cisco VPN 3000,
> and 2 months ago, they added Cisco ASA on their system in order to expanse
> their VPN system. Now their users can use both VPN 3000 and ASA. VPN
> 3000's IP address is xx.xxx.xxx.9 and ASA's IP address is xxx.xxx.xxx.10.
> Both are global addresses.
>
> When their users use VPN through VPN 3000, ahthentication log can be seen
> on /var/log/radius/radacct/xxx.xxx.xxx.9, however when their users use VPN
> though ASA, no log can be seen in /var/log/radius/radacct/. I think
> xxx.xxx.xxx.10 should be seen there for the newly added ASA. Of course
> their users can connect to servers since they are ahtenticated and
> authorized, but no log are made on radius server. Does nyone have any idea
> about this? any solutions? any more configurations?
Yep. Configure the ASA to send RADIUS accounting. FreeRADIUS only logs what
it receives...
--
Peter Nixon
http://peternixon.net/
More information about the Freeradius-Users
mailing list