Separate rlm_perl in each virtual server
Alexander Shikoff
minotaur at crete.org.ua
Sun Jan 30 13:44:23 CET 2011
On Sun, Jan 30, 2011 at 08:47:17AM +0100, Alan DeKok wrote:
> Alexander Shikoff wrote:
> > Now radiusd receives a DHCP packet and:
> >
> > Received DHCP-Discover of id fcb1c6c0 from 193.200.84.232:67 to 193.200.85.245:67
> > [...]
> > server dhcp {
> > Trying sub-section dhcp DHCP-Discover {...}
> > +- entering group DHCP-Discover {...}
> > rlm_perl: -authorization.pl- : post_auth
> > ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
>
> Post *all* of the debug output. You've deleted the pieces which can
> help solve the problem.
--
MINO-RIPE
-------------- next part --------------
FreeRADIUS Version 2.1.10, for host amd64-portbld-freebsd8.0, built on Nov 2 2010 at 21:47:55
Copyright (C) 1999-2009 The FreeRADIUS server project and contributors.
There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A
PARTICULAR PURPOSE.
You may redistribute copies of FreeRADIUS under the terms of the
GNU General Public License v2.
Starting - reading configuration files ...
including configuration file /usr/local/etc/raddb/radiusd.conf
including files in directory /usr/local/etc/raddb/modules/
including configuration file /usr/local/etc/raddb/modules/wimax
including configuration file /usr/local/etc/raddb/modules/always
including configuration file /usr/local/etc/raddb/modules/attr_filter
including configuration file /usr/local/etc/raddb/modules/attr_rewrite
including configuration file /usr/local/etc/raddb/modules/chap
including configuration file /usr/local/etc/raddb/modules/checkval
including configuration file /usr/local/etc/raddb/modules/counter
including configuration file /usr/local/etc/raddb/modules/cui
including configuration file /usr/local/etc/raddb/modules/detail
including configuration file /usr/local/etc/raddb/modules/detail.example.com
including configuration file /usr/local/etc/raddb/modules/detail.log
including configuration file /usr/local/etc/raddb/modules/digest
including configuration file /usr/local/etc/raddb/modules/echo
including configuration file /usr/local/etc/raddb/modules/etc_group
including configuration file /usr/local/etc/raddb/modules/exec
including configuration file /usr/local/etc/raddb/modules/expiration
including configuration file /usr/local/etc/raddb/modules/expr
including configuration file /usr/local/etc/raddb/modules/files
including configuration file /usr/local/etc/raddb/modules/inner-eap
including configuration file /usr/local/etc/raddb/modules/ippool
including configuration file /usr/local/etc/raddb/modules/krb5
including configuration file /usr/local/etc/raddb/modules/ldap
including configuration file /usr/local/etc/raddb/modules/linelog
including configuration file /usr/local/etc/raddb/modules/logintime
including configuration file /usr/local/etc/raddb/modules/mac2ip
including configuration file /usr/local/etc/raddb/modules/mschap
including configuration file /usr/local/etc/raddb/modules/mac2vlan
including configuration file /usr/local/etc/raddb/modules/ntlm_auth
including configuration file /usr/local/etc/raddb/modules/otp
including configuration file /usr/local/etc/raddb/modules/pam
including configuration file /usr/local/etc/raddb/modules/pap
including configuration file /usr/local/etc/raddb/modules/passwd
including configuration file /usr/local/etc/raddb/modules/policy
including configuration file /usr/local/etc/raddb/modules/preprocess
including configuration file /usr/local/etc/raddb/modules/radutmp
including configuration file /usr/local/etc/raddb/modules/realm
including configuration file /usr/local/etc/raddb/modules/smbpasswd
including configuration file /usr/local/etc/raddb/modules/smsotp
including configuration file /usr/local/etc/raddb/modules/sql_log
including configuration file /usr/local/etc/raddb/modules/sqlcounter_expire_on_login
including configuration file /usr/local/etc/raddb/modules/sradutmp
including configuration file /usr/local/etc/raddb/modules/unix
including configuration file /usr/local/etc/raddb/modules/acct_unique
including configuration file /usr/local/etc/raddb/modules/ISG_DHCP
including configuration file /usr/local/etc/raddb/modules/ISG_Auth
including files in directory /usr/local/etc/raddb/sites-enabled/
including configuration file /usr/local/etc/raddb/sites-enabled/dhcp
including configuration file /usr/local/etc/raddb/sites-enabled/dhcp-authorization.conf
main {
user = "freeradius"
group = "freeradius"
allow_core_dumps = no
}
including dictionary file /usr/local/etc/raddb/dictionary
main {
prefix = "/usr/local"
localstatedir = "/var"
logdir = "/var/log/radius"
libdir = "/usr/local/lib/freeradius-2.1.10"
radacctdir = "/var/log/radius/radacct"
hostname_lookups = no
max_request_time = 30
cleanup_delay = 5
max_requests = 1024
pidfile = "/var/run/radiusd/radiusd.pid"
checkrad = "/usr/local/sbin/checkrad"
debug_level = 0
proxy_requests = no
log {
stripped_names = no
auth = no
auth_badpass = no
auth_goodpass = no
}
security {
max_attributes = 200
reject_delay = 1
status_server = yes
}
}
radiusd: #### Loading Realms and Home Servers ####
radiusd: #### Loading Clients ####
radiusd: #### Instantiating modules ####
instantiate {
Module: Linked to module rlm_exec
Module: Instantiating module "exec" from file /usr/local/etc/raddb/modules/exec
exec {
wait = no
input_pairs = "request"
shell_escape = yes
}
Module: Linked to module rlm_expr
Module: Instantiating module "expr" from file /usr/local/etc/raddb/modules/expr
Module: Linked to module rlm_expiration
Module: Instantiating module "expiration" from file /usr/local/etc/raddb/modules/expiration
expiration {
reply-message = "Password Has Expired "
}
Module: Linked to module rlm_logintime
Module: Instantiating module "logintime" from file /usr/local/etc/raddb/modules/logintime
logintime {
reply-message = "You are calling outside your allowed timespan "
minimum-timeout = 60
}
}
radiusd: #### Loading Virtual Servers ####
server dhcp { # from file /usr/local/etc/raddb/sites-enabled/dhcp
modules {
Module: Checking dhcp DHCP-Discover {...} for more modules to load
Module: Linked to module rlm_perl
Module: Instantiating module "ISG_DHCP" from file /usr/local/etc/raddb/modules/ISG_DHCP
perl ISG_DHCP {
module = "/usr/local/etc/raddb/dhcp.pl"
func_authorize = "authorize"
func_authenticate = "authenticate"
func_accounting = "accounting"
func_preacct = "preacct"
func_checksimul = "checksimul"
func_detach = "detach"
func_xlat = "xlat"
func_pre_proxy = "pre_proxy"
func_post_proxy = "post_proxy"
func_post_auth = "post_auth"
func_recv_coa = "recv_coa"
func_send_coa = "send_coa"
}
Module: Linked to module rlm_detail
Module: Instantiating module "reply_log" from file /usr/local/etc/raddb/modules/detail.log
detail reply_log {
detailfile = "/var/log/radius/reply-detail-%Y%m%d"
header = "%t"
detailperm = 384
dirperm = 493
locking = no
log_packet_header = no
}
Module: Linked to module rlm_always
Module: Instantiating module "ok" from file /usr/local/etc/raddb/modules/always
always ok {
rcode = "ok"
simulcount = 0
mpp = no
}
Module: Checking dhcp DHCP-Request {...} for more modules to load
Module: Checking dhcp (null) {...} for more modules to load
/usr/local/etc/raddb/sites-enabled/dhcp[36]: No name specified for Post-Auth-Type block
} # modules
} # server
server dhcp-authorization { # from file /usr/local/etc/raddb/sites-enabled/dhcp-authorization.conf
modules {
Module: Checking authorize {...} for more modules to load
Module: Instantiating module "ISG_Auth" from file /usr/local/etc/raddb/modules/ISG_Auth
perl ISG_Auth {
module = "/usr/local/etc/raddb/authorization.pl"
func_authorize = "authorize"
func_authenticate = "authenticate"
func_accounting = "accounting"
func_preacct = "preacct"
func_checksimul = "checksimul"
func_detach = "detach"
func_xlat = "xlat"
func_pre_proxy = "pre_proxy"
func_post_proxy = "post_proxy"
func_post_auth = "post_auth"
func_recv_coa = "recv_coa"
func_send_coa = "send_coa"
}
} # modules
} # server
server { # from file /usr/local/etc/raddb/radiusd.conf
modules {
} # modules
} # server
radiusd: #### Opening IP addresses and Ports ####
listen {
type = "dhcp"
ipaddr = 193.200.85.245
port = 67
client any {
ipaddr = 0.0.0.0
require_message_authenticator = no
}
}
listen {
type = "auth"
ipaddr = 193.200.85.245
port = 11812
client bras1-gdr {
ipaddr = 193.200.84.232
require_message_authenticator = no
secret = "BomBa"
nastype = "cisco"
}
}
Listening on dhcp address 193.200.85.245 port 67 as server dhcp
Listening on authentication address 193.200.85.245 port 11812 as server dhcp-authorization
Ready to process requests.
Received DHCP-Discover of id df8f09e9 from 193.200.84.232:67 to 193.200.85.245:67
DHCP-Opcode = Client-Message
DHCP-Hardware-Type = Ethernet
DHCP-Hardware-Address-Length = 6
DHCP-Hop-Count = 1
DHCP-Transaction-Id = 3750693353
DHCP-Number-of-Seconds = 0
DHCP-Flags = 0
DHCP-Client-IP-Address = 0.0.0.0
DHCP-Your-IP-Address = 0.0.0.0
DHCP-Server-IP-Address = 0.0.0.0
DHCP-Gateway-IP-Address = 193.200.84.232
DHCP-Client-Hardware-Address = 00:1d:60:b7:9c:00
DHCP-Message-Type = DHCP-Discover
DHCP-Client-Identifier = 00:1d:60:b7:9c:00
DHCP-Hostname = "test"
DHCP-Parameter-Request-List = DHCP-Subnet-Mask
DHCP-Parameter-Request-List = DHCP-Broadcast-Address
DHCP-Parameter-Request-List = DHCP-Time-Offset
DHCP-Parameter-Request-List = DHCP-Classless-Static-Route
DHCP-Parameter-Request-List = DHCP-Router-Address
DHCP-Parameter-Request-List = DHCP-Domain-Name
DHCP-Parameter-Request-List = DHCP-Domain-Name-Server
DHCP-Parameter-Request-List = DHCP-Hostname
DHCP-Relay-Circuit-Id = 0x00040021010e
DHCP-Relay-Remote-Id = 0x000600226b2a8d52
server dhcp {
Trying sub-section dhcp DHCP-Discover {...}
+- entering group DHCP-Discover {...}
rlm_perl: -authorization.pl- : post_auth
rlm_perl: Added pair DHCP-Your-IP-Address = 0.0.0.0
rlm_perl: Added pair DHCP-Relay-Circuit-Id = 0x00040021010e
rlm_perl: Added pair DHCP-Message-Type = DHCP-Discover
rlm_perl: Added pair DHCP-Hop-Count = 1
rlm_perl: Added pair DHCP-Relay-Remote-Id = 0x000600226b2a8d52
rlm_perl: Added pair DHCP-Number-of-Seconds = 0
rlm_perl: Added pair DHCP-Client-IP-Address = 0.0.0.0
rlm_perl: Added pair DHCP-Gateway-IP-Address = 193.200.84.232
rlm_perl: Added pair DHCP-Hardware-Type = Ethernet
rlm_perl: Added pair DHCP-Flags = 0
rlm_perl: Added pair DHCP-Hardware-Address-Length = 6
rlm_perl: Added pair DHCP-Hostname = test
rlm_perl: Added pair DHCP-Opcode = Client-Message
rlm_perl: Added pair DHCP-Transaction-Id = 3750693353
rlm_perl: Added pair DHCP-Client-Hardware-Address = 00:1d:60:b7:9c:00
rlm_perl: Added pair DHCP-Parameter-Request-List = DHCP-Subnet-Mask
rlm_perl: Added pair DHCP-Parameter-Request-List = DHCP-Broadcast-Address
rlm_perl: Added pair DHCP-Parameter-Request-List = DHCP-Time-Offset
rlm_perl: Added pair DHCP-Parameter-Request-List = DHCP-Classless-Static-Route
rlm_perl: Added pair DHCP-Parameter-Request-List = DHCP-Router-Address
rlm_perl: Added pair DHCP-Parameter-Request-List = DHCP-Domain-Name
rlm_perl: Added pair DHCP-Parameter-Request-List = DHCP-Domain-Name-Server
rlm_perl: Added pair DHCP-Parameter-Request-List = DHCP-Hostname
rlm_perl: Added pair DHCP-Server-IP-Address = 0.0.0.0
rlm_perl: Added pair DHCP-Client-Identifier = 00:1d:60:b7:9c:00
++[ISG_DHCP] returns reject
} # server dhcp
Finished request 0.
Cleaning up request 0 ID -544273943 with timestamp +10
Going to the next request
Ready to process requests.
Received DHCP-Discover of id df8f09e9 from 193.200.84.232:67 to 193.200.85.245:67
DHCP-Opcode = Client-Message
DHCP-Hardware-Type = Ethernet
DHCP-Hardware-Address-Length = 6
DHCP-Hop-Count = 1
DHCP-Transaction-Id = 3750693353
DHCP-Number-of-Seconds = 4
DHCP-Flags = 0
DHCP-Client-IP-Address = 0.0.0.0
DHCP-Your-IP-Address = 0.0.0.0
DHCP-Server-IP-Address = 0.0.0.0
DHCP-Gateway-IP-Address = 193.200.84.232
DHCP-Client-Hardware-Address = 00:1d:60:b7:9c:00
DHCP-Message-Type = DHCP-Discover
DHCP-Client-Identifier = 00:1d:60:b7:9c:00
DHCP-Hostname = "test"
DHCP-Parameter-Request-List = DHCP-Subnet-Mask
DHCP-Parameter-Request-List = DHCP-Broadcast-Address
DHCP-Parameter-Request-List = DHCP-Time-Offset
DHCP-Parameter-Request-List = DHCP-Classless-Static-Route
DHCP-Parameter-Request-List = DHCP-Router-Address
DHCP-Parameter-Request-List = DHCP-Domain-Name
DHCP-Parameter-Request-List = DHCP-Domain-Name-Server
DHCP-Parameter-Request-List = DHCP-Hostname
DHCP-Relay-Circuit-Id = 0x00040021010e
DHCP-Relay-Remote-Id = 0x000600226b2a8d52
server dhcp {
Trying sub-section dhcp DHCP-Discover {...}
+- entering group DHCP-Discover {...}
rlm_perl: -authorization.pl- : post_auth
rlm_perl: Added pair DHCP-Your-IP-Address = 0.0.0.0
rlm_perl: Added pair DHCP-Relay-Circuit-Id = 0x00040021010e
rlm_perl: Added pair DHCP-Message-Type = DHCP-Discover
rlm_perl: Added pair DHCP-Hop-Count = 1
rlm_perl: Added pair DHCP-Relay-Remote-Id = 0x000600226b2a8d52
rlm_perl: Added pair DHCP-Number-of-Seconds = 4
rlm_perl: Added pair DHCP-Client-IP-Address = 0.0.0.0
rlm_perl: Added pair DHCP-Gateway-IP-Address = 193.200.84.232
rlm_perl: Added pair DHCP-Hardware-Type = Ethernet
rlm_perl: Added pair DHCP-Flags = 0
rlm_perl: Added pair DHCP-Hardware-Address-Length = 6
rlm_perl: Added pair DHCP-Hostname = test
rlm_perl: Added pair DHCP-Opcode = Client-Message
rlm_perl: Added pair DHCP-Transaction-Id = 3750693353
rlm_perl: Added pair DHCP-Client-Hardware-Address = 00:1d:60:b7:9c:00
rlm_perl: Added pair DHCP-Parameter-Request-List = DHCP-Subnet-Mask
rlm_perl: Added pair DHCP-Parameter-Request-List = DHCP-Broadcast-Address
rlm_perl: Added pair DHCP-Parameter-Request-List = DHCP-Time-Offset
rlm_perl: Added pair DHCP-Parameter-Request-List = DHCP-Classless-Static-Route
rlm_perl: Added pair DHCP-Parameter-Request-List = DHCP-Router-Address
rlm_perl: Added pair DHCP-Parameter-Request-List = DHCP-Domain-Name
rlm_perl: Added pair DHCP-Parameter-Request-List = DHCP-Domain-Name-Server
rlm_perl: Added pair DHCP-Parameter-Request-List = DHCP-Hostname
rlm_perl: Added pair DHCP-Server-IP-Address = 0.0.0.0
rlm_perl: Added pair DHCP-Client-Identifier = 00:1d:60:b7:9c:00
++[ISG_DHCP] returns reject
} # server dhcp
Finished request 1.
Cleaning up request 1 ID -544273943 with timestamp +10
Going to the next request
Ready to process requests.
rad_recv: Access-Request packet from host 193.200.84.232 port 1645, id=253, length=128
User-Name = "000600226b2a8d52#00040021010e#001d.60b7.9c00"
User-Password = "cisco"
NAS-Port-Type = Virtual
NAS-Port = 0
NAS-Port-Id = "0/0/2/33"
Service-Type = Outbound-User
NAS-IP-Address = 193.200.84.232
Acct-Session-Id = "000015A3"
server dhcp-authorization {
# Executing section authorize from file /usr/local/etc/raddb/sites-enabled/dhcp-authorization.conf
+- entering group authorize {...}
rlm_perl: -authorization.pl- : authorize
rlm_perl: Added pair NAS-Port-Type = Virtual
rlm_perl: Added pair Acct-Session-Id = 000015A3
rlm_perl: Added pair Service-Type = Outbound-User
rlm_perl: Added pair User-Name = 000600226b2a8d52#00040021010e#001d.60b7.9c00
rlm_perl: Added pair User-Password = cisco
rlm_perl: Added pair NAS-Port = 0
rlm_perl: Added pair NAS-IP-Address = 193.200.84.232
rlm_perl: Added pair NAS-Port-Id = 0/0/2/33
++[ISG_Auth] returns reject
} # server dhcp-authorization
Delaying reject of request 2 for 1 seconds
Going to the next request
Waking up in 0.9 seconds.
Sending delayed reject for request 2
Sending Access-Reject of id 253 to 193.200.84.232 port 1645
Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host 193.200.84.232 port 1645, id=253, length=128
Sending duplicate reply to client bras1-gdr port 1645 - ID: 253
Sending Access-Reject of id 253 to 193.200.84.232 port 1645
Waking up in 1.0 seconds.
Cleaning up request 2 ID 253 with timestamp +10
Ready to process requests.
Received DHCP-Discover of id df8f09e9 from 193.200.84.232:67 to 193.200.85.245:67
DHCP-Opcode = Client-Message
DHCP-Hardware-Type = Ethernet
DHCP-Hardware-Address-Length = 6
DHCP-Hop-Count = 1
DHCP-Transaction-Id = 3750693353
DHCP-Number-of-Seconds = 11
DHCP-Flags = 0
DHCP-Client-IP-Address = 0.0.0.0
DHCP-Your-IP-Address = 0.0.0.0
DHCP-Server-IP-Address = 0.0.0.0
DHCP-Gateway-IP-Address = 193.200.84.232
DHCP-Client-Hardware-Address = 00:1d:60:b7:9c:00
DHCP-Message-Type = DHCP-Discover
DHCP-Client-Identifier = 00:1d:60:b7:9c:00
DHCP-Hostname = "test"
DHCP-Parameter-Request-List = DHCP-Subnet-Mask
DHCP-Parameter-Request-List = DHCP-Broadcast-Address
DHCP-Parameter-Request-List = DHCP-Time-Offset
DHCP-Parameter-Request-List = DHCP-Classless-Static-Route
DHCP-Parameter-Request-List = DHCP-Router-Address
DHCP-Parameter-Request-List = DHCP-Domain-Name
DHCP-Parameter-Request-List = DHCP-Domain-Name-Server
DHCP-Parameter-Request-List = DHCP-Hostname
DHCP-Relay-Circuit-Id = 0x00040021010e
DHCP-Relay-Remote-Id = 0x000600226b2a8d52
server dhcp {
Trying sub-section dhcp DHCP-Discover {...}
+- entering group DHCP-Discover {...}
rlm_perl: -authorization.pl- : post_auth
rlm_perl: Added pair DHCP-Your-IP-Address = 0.0.0.0
rlm_perl: Added pair DHCP-Relay-Circuit-Id = 0x00040021010e
rlm_perl: Added pair DHCP-Message-Type = DHCP-Discover
rlm_perl: Added pair DHCP-Hop-Count = 1
rlm_perl: Added pair DHCP-Relay-Remote-Id = 0x000600226b2a8d52
rlm_perl: Added pair DHCP-Number-of-Seconds = 11
rlm_perl: Added pair DHCP-Client-IP-Address = 0.0.0.0
rlm_perl: Added pair DHCP-Gateway-IP-Address = 193.200.84.232
rlm_perl: Added pair DHCP-Hardware-Type = Ethernet
rlm_perl: Added pair DHCP-Flags = 0
rlm_perl: Added pair DHCP-Hardware-Address-Length = 6
rlm_perl: Added pair DHCP-Hostname = test
rlm_perl: Added pair DHCP-Opcode = Client-Message
rlm_perl: Added pair DHCP-Transaction-Id = 3750693353
rlm_perl: Added pair DHCP-Client-Hardware-Address = 00:1d:60:b7:9c:00
rlm_perl: Added pair DHCP-Parameter-Request-List = DHCP-Subnet-Mask
rlm_perl: Added pair DHCP-Parameter-Request-List = DHCP-Broadcast-Address
rlm_perl: Added pair DHCP-Parameter-Request-List = DHCP-Time-Offset
rlm_perl: Added pair DHCP-Parameter-Request-List = DHCP-Classless-Static-Route
rlm_perl: Added pair DHCP-Parameter-Request-List = DHCP-Router-Address
rlm_perl: Added pair DHCP-Parameter-Request-List = DHCP-Domain-Name
rlm_perl: Added pair DHCP-Parameter-Request-List = DHCP-Domain-Name-Server
rlm_perl: Added pair DHCP-Parameter-Request-List = DHCP-Hostname
rlm_perl: Added pair DHCP-Server-IP-Address = 0.0.0.0
rlm_perl: Added pair DHCP-Client-Identifier = 00:1d:60:b7:9c:00
++[ISG_DHCP] returns reject
} # server dhcp
Finished request 3.
Cleaning up request 3 ID -544273943 with timestamp +17
Going to the next request
Ready to process requests.
rad_recv: Access-Request packet from host 193.200.84.232 port 1645, id=254, length=128
User-Name = "000600226b2a8d52#00040021010e#001d.60b7.9c00"
User-Password = "cisco"
NAS-Port-Type = Virtual
NAS-Port = 0
NAS-Port-Id = "0/0/2/33"
Service-Type = Outbound-User
NAS-IP-Address = 193.200.84.232
Acct-Session-Id = "000015A4"
server dhcp-authorization {
# Executing section authorize from file /usr/local/etc/raddb/sites-enabled/dhcp-authorization.conf
+- entering group authorize {...}
rlm_perl: -authorization.pl- : authorize
rlm_perl: Added pair NAS-Port-Type = Virtual
rlm_perl: Added pair Acct-Session-Id = 000015A4
rlm_perl: Added pair Service-Type = Outbound-User
rlm_perl: Added pair User-Name = 000600226b2a8d52#00040021010e#001d.60b7.9c00
rlm_perl: Added pair User-Password = cisco
rlm_perl: Added pair NAS-Port = 0
rlm_perl: Added pair NAS-IP-Address = 193.200.84.232
rlm_perl: Added pair NAS-Port-Id = 0/0/2/33
++[ISG_Auth] returns reject
} # server dhcp-authorization
Delaying reject of request 4 for 1 seconds
Going to the next request
Waking up in 0.9 seconds.
Sending delayed reject for request 4
Sending Access-Reject of id 254 to 193.200.84.232 port 1645
Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host 193.200.84.232 port 1645, id=253, length=128
User-Name = "000600226b2a8d52#00040021010e#001d.60b7.9c00"
User-Password = "cisco"
NAS-Port-Type = Virtual
NAS-Port = 0
NAS-Port-Id = "0/0/2/33"
Service-Type = Outbound-User
NAS-IP-Address = 193.200.84.232
Acct-Session-Id = "000015A3"
server dhcp-authorization {
# Executing section authorize from file /usr/local/etc/raddb/sites-enabled/dhcp-authorization.conf
+- entering group authorize {...}
rlm_perl: -authorization.pl- : authorize
rlm_perl: Added pair NAS-Port-Type = Virtual
rlm_perl: Added pair Acct-Session-Id = 000015A3
rlm_perl: Added pair Service-Type = Outbound-User
rlm_perl: Added pair User-Name = 000600226b2a8d52#00040021010e#001d.60b7.9c00
rlm_perl: Added pair User-Password = cisco
rlm_perl: Added pair NAS-Port = 0
rlm_perl: Added pair NAS-IP-Address = 193.200.84.232
rlm_perl: Added pair NAS-Port-Id = 0/0/2/33
++[ISG_Auth] returns reject
} # server dhcp-authorization
Delaying reject of request 5 for 1 seconds
Going to the next request
Waking up in 0.9 seconds.
More information about the Freeradius-Users
mailing list