vlan and freeradius

omega bk omegabk at gmail.com
Thu Mar 4 13:57:36 CET 2010 

this is my show logging on my switch, means that the switch doesn't receive
a radius vlan attribute:

Log Buffer (4096 bytes):
Recv-Key   [17]  52  *
02:13:40: RADIUS:  Vendor, Microsoft   [26]  58
02:13:40: RADIUS:   MS-MPPE-Send-Key   [16]  52  *
02:13:40: RADIUS:  EAP-Message         [79]  6
02:13:40: RADIUS:   03 0C 00 04                                      [????]
02:13:40: RADIUS:  Message-Authenticato[80]  18
02:13:40: RADIUS:   6F AB 6F DA 9C 56 BE E8 E1 F8 0E 78 A9 0A 59 C3
[o?o??V?????x??Y?]
02:13:40: RADIUS(00000006): Received from id 1645/108
02:13:40: RADIUS/DECODE: EAP-Message fragments, 4, total 4 bytes
02:13:40: dot1x-packet:Received an EAP Success on the FastEthernet0/24 for
mac 0018.8bb5.26b7
02:13:40: dot1x-sm:Posting EAP_SUCCESS on Client=37503F0
02:13:40:     dot1x_auth_bend Fa0: during state auth_bend_response, got
event 11(eapSuccess)
02:13:40: @@@ dot1x_auth_bend Fa0: auth_bend_response -> auth_bend_success
02:13:40: dot1x-sm:Fa0/24:0018.8bb5.26b7:auth_bend_response_exit called
02:13:40: dot1x-sm:Fa0/24:0018.8bb5.26b7:auth_bend_success_enter called
02:13:40: dot1x-sm:Fa0/24:0018.8bb5.26b7:auth_bend_response_success_action
called
02:13:40:     dot1x_auth_bend Fa0: idle during state auth_bend_success
02:13:40: @@@ dot1x_auth_bend Fa0: auth_bend_success -> auth_bend_idle
02:13:40: dot1x-sm:Fa0/24:0018.8bb5.26b7:auth_bend_idle_enter called
02:13:40: dot1x-sm:Posting AUTH_SUCCESS on Client=37503F0
02:13:40:     dot1x_auth Fa0: during state auth_authenticating, got event
12(authSuccess_portValid)
02:13:40: @@@ dot1x_auth Fa0: auth_authenticating -> auth_authc_result
02:13:40: dot1x-sm:Fa0/24:0018.8bb5.26b7:auth_authenticating_exit called
02:13:40: dot1x-sm:Fa0/24:0018.8bb5.26b7:auth_authc_result_enter called
02:13:40: dot1x-ev:dot1x_vlan_assign_authc_success called on interface
FastEthernet0/24
02:13:40: dot1x-ev:Successfully assigned VLAN 0 to interface
FastEthernet0/24
02:13:40: dot1x-sm:Posting AUTHC_SUCCESS on Client=37503F0
02:13:40:     dot1x_auth Fa0: during state auth_authc_result, got event
22(authcSuccess)
02:13:40: @@@ dot1x_auth Fa0: auth_authc_result -> auth_authz_success
02:13:40: dot1x-sm:Fa0/24:0018.8bb5.26b7:auth_authz_success_enter called
02:13:40: dot1x-ev:dot1x_switch_addr_add: Added MAC 0018.8bb5.26b7 to vlan
100 on interface FastEthernet0/24
02:13:40: dot1x-ev:dot1x_switch_is_dot1x_forwarding_enabled: Forwarding is
disabled on Fa0/24
02:13:40: dot1x-registry:** dot1x_switch_vp_statechange:
02:13:40: dot1x-ev:vlan 100 vp is added on the interface FastEthernet0/24
02:13:40: dot1x-ev:dot1x_switch_is_dot1x_forwarding_enabled: Forwarding is
disabled on Fa0/24
02:13:40: dot1x-ev:dot1x_switch_port_authorized: set dot1x ask handler on
interface FastEthernet0/24
02:13:40: dot1x-ev:Received successful Authz complete for 0018.8bb5.26b7
02:13:40: dot1x-sm:Posting AUTHZ_SUCCESS on Client=37503F0
02:13:40:     dot1x_auth Fa0: during state auth_authz_success, got event
25(authzSuccess)
02:13:40: @@@ dot1x_auth Fa0: auth_authz_success -> auth_authenticated
02:13:40: dot1x-sm:Fa0/24:0018.8bb5.26b7:auth_authenticated_enter called
02:13:40: dot1x-packet:dot1x_mgr_send_eapol :EAP code: 0x3  id: 0xC  length:
0x0004 type: 0x0  data:
02:13:40: dot1x-ev:FastEthernet0/24:Sending EAPOL packet to group PAE
address
02:13:40: dot1x-ev:dot1x_mgr_pre_process_eapol_pak: Role determination not
required on FastEthernet0/24.
02:13:40: dot1x-registry:registry:dot1x_ether_macaddr called
02:13:40: dot1x-ev:dot1x_mgr_send_eapol: Sending out EAPOL packet on
FastEthernet0/24
02:13:40: EAPOL pak dump Tx
02:13:40: EAPOL Version: 0x2  type: 0x0  length: 0x0004
02:13:40: EAP code: 0x3  id: 0xC  length: 0x0004
02:13:40: dot1x-packet:dot1x_txReq: EAPOL packet sent to client
(0018.8bb5.26b7)

thanks for your help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20100304/138a57d6/attachment.html>

More information about the Freeradius-Users mailing list