solution---Re: Re: help--- IPsec VPN on radius

Yagnesh Dave yagnesh.dave at rediffmail.com
Wed Nov 18 12:45:20 CET 2009


Hi All,

Found the solution from one of the previous posts. 

 http://lists.cistron.nl/pipermail/freeradius-users/2005-July/msg00273.html

I just the did the same, added the below line in the dictionary file at /usr/local/share/freeradius/dictionary

VALUE   Service-Type                    outbound                5


Please let me know if this is correct to do.

Regards,
Dave.

On Wed, 18 Nov 2009 16:47:05 +0530  wrote
>Hi,
>

>
Found the problem, it is with the service type attribute.
>

>
I am getting this error on the freeradius
>

>
/usr/local/etc/raddb/users[24719]: Parse error (reply) for entry tatablue-vpn.vsnl.net: Unknown value outbound for attribute Service-Type
>

>
How to rectify this problem of "outbound" service type.
>

>
Regards,
>
Dave
>
On Wed, 18 Nov 2009 16:22:30 +0530  wrote
>
>Hi,
>
>
>

>
>
>
I am trying to configure this on Free Radius;
>
>
>

>
>
>
# setup for IPSec VPDN,
>
>
>
ezvpn Password  := "cisco"
>
>
>
        Service-Type = outbound,
>
>
>
        Cisco-Avpair = "ipsec:tunnel-password=cisco123",
>
>
>
        Cisco-Avpair="ipsec:tunnel-type*esp",
>
>
>
        Cisco-Avpair="ipsec:group-lock=1",
>
>
>
        Cisco-Avpair="ipsec:key-exchange=ike",
>
>
>
        Cisco-Avpair="ipsec:addr-pool=hw-pool",
>
>
>

>
>
>

>
>
>
test at ezvpn Password := "test123"
>
>
>
        Cisco-Avpair="ipsec:tunnel-type*esp",
>
>
>
        Cisco-Avpair="ipsec:group-lock=1",
>
>
>
        Cisco-Avpair="ipsec:key-exchange=ike",
>
>
>
        Cisco-Avpair="ipsec:addr-pool=hw-pool",
>
>
>

>
>
>
Now, When I run the freeRadius, I get this error in the log file
>
>
>

>
>
>
/usr/local/etc/raddb/users[24374]: Parse error (reply) for entry ezvpn: Unknown value outbound for attribute Service-Type
>
>
>
Errors reading /usr/local/etc/raddb/users
>
>
>

>
>
>

>
>
>
Please tell what is the correct config to get it working.
>
>
>

>
>
>
Regards,
>
>
>
Dave.
>
>
>

>
>
>

>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20091118/9539db06/attachment.html>


More information about the Freeradius-Users mailing list