FreeRadius2.0.2+ mysql +dailupadmin help!

Ivan Kalik tnt at kalik.net
Fri Mar 14 00:53:10 CET 2008


>if I use dialupadmin to define the NAS client it doesnt allow
>connections from my nas client.
>

There is a setting at the end of sql.conf that enables reading from the
nas table.

>this is what I get with client.conf when I define the NAS in client.conf
>
>rad_recv: Access-Request packet from host 192.168.0.76 port 1030, id=24,
>length=198
>NAS-Port-Type = Ethernet
>Calling-Station-Id = "00:13:E8:CD:E5:53"
>Called-Station-Id = "hotspot1"
>NAS-Port-Id = "wlan1"
>User-Name = "radiustest"
>NAS-Port = 2149580824
>Acct-Session-Id = "80200018"
>Framed-IP-Address = 10.5.50.252
>Mikrotik-Host-IP = 10.5.50.252
>CHAP-Challenge = 0x0bed27589fa8f959ea6d4b6560dedff9
>CHAP-Password = 0x112fa41a1c851ea19d378c120de246d86f
>Service-Type = Login-User
>WISPr-Logoff-URL = "http://10.5.50.1/logout"
>NAS-Identifier = "MikroTik"
>NAS-IP-Address = 192.168.0.76

OK. So You are doing CHAP. That requires a cleartext password. And you
have this:

>+----+------------+---------------+----+------------------------------------+
>| id | username | attribute | op | value |
>+----+------------+---------------+----+------------------------------------+
>| 1 | radiustest | User-Password | := |
>$1$fj5Vw2PC$saaupvvPwVxAyIJaY9Em6. |
>+----+------------+---------------+----+------------------------------------+
>1 row in set (0.00 sec)
>

1. That's not a cleartext password. It's encrypted.

2. You should use Cleartext-Password as the password attribute as debug
suggests.

Ivan Kalik
Kalik Informatika ISP




More information about the Freeradius-Users mailing list