Mikrotik-Rate-Limit issue

speedlnx speedlnx at me.com
Sun May 1 19:47:26 CEST 2011


Hello, i'm migrating from freeradius 1.x to freeradius 2.1.10 on debian.
I've replicated all the configuration i have on the old radius to the new
and I import a dump of the mysql database on the new mysql server but i've
an issue when i try to authenticate my users:

radtest xxxxxxx.xxxxxx xxxxxx localhost 1812 mysupersecretpwd

Sending Access-Request of id 18 to 127.0.0.1 port 1812
        User-Name = "xxxxxxx.xxxxxx"
        User-Password = "xxxxxx"
        NAS-IP-Address = 127.0.1.1
        NAS-Port = 1812
rad_recv: Access-Reject packet from host 127.0.0.1 port 1812, id=18,
length=20


The freeradius debug give me this:

Sun May  1 13:24:02 2011 : Info: Ready to process requests.
rad_recv: Access-Request packet from host 127.0.0.1 port 36449, id=18,
length=64
        User-Name = "xxxxxxx.xxxxxx"
        User-Password = "xxxxxx"
        NAS-IP-Address = 127.0.1.1
        NAS-Port = 1812
Sun May  1 13:24:29 2011 : Info: # Executing section authorize from file
/etc/freeradius/radiusd.conf
Sun May  1 13:24:29 2011 : Info: +- entering group authorize {...}
Sun May  1 13:24:29 2011 : Info: ++[preprocess] returns ok
Sun May  1 13:24:29 2011 : Info: ++[chap] returns noop
Sun May  1 13:24:29 2011 : Info: ++[mschap] returns noop
Sun May  1 13:24:29 2011 : Info: [suffix] No '@' in User-Name =
"xxxxxxx.xxxxxx", looking up realm NULL
Sun May  1 13:24:29 2011 : Info: [suffix] No such realm "NULL"
Sun May  1 13:24:29 2011 : Info: ++[suffix] returns noop
Sun May  1 13:24:29 2011 : Info: [sql]  expand: %{User-Name} ->
xxxxxxx.xxxxxx
Sun May  1 13:24:29 2011 : Info: [sql] sql_set_user escaped user -->
'xxxxxxx.xxxxxx'
Sun May  1 13:24:29 2011 : Debug: rlm_sql (sql): Reserving sql socket id: 4
Sun May  1 13:24:29 2011 : Info: [sql]  expand: SELECT
id,UserName,Attribute,Value,op FROM radcheck WHERE Username =
'%{SQL-User-Name}' and attivato=1 ORDER BY id -> SELECT
id,UserName,Attribute,Value,op FROM radcheck WHERE Username =
'xxxxxxx.xxxxxx' and attivato=1 ORDER BY id
Sun May  1 13:24:29 2011 : Debug: WARNING: Found User-Password == "...".
Sun May  1 13:24:29 2011 : Debug: WARNING: Are you sure you don't mean
Cleartext-Password?
Sun May  1 13:24:29 2011 : Debug: WARNING: See "man rlm_pap" for more
information.
Sun May  1 13:24:29 2011 : Info: [sql] User found in radcheck table
Sun May  1 13:24:29 2011 : Info: [sql]  expand: SELECT
id,UserName,Attribute,Value,op FROM radreply WHERE Username =
'%{SQL-User-Name}' ORDER BY id -> SELECT id,UserName,Attribute,Value,op FROM
radreply WHERE Username = 'xxxxxxx.xxxxxx' ORDER BY id
Sun May  1 13:24:29 2011 : Error: rlm_sql: Failed to create the pair:
Invalid octet string "512k/2048k 512k/2048k 192k/960k 8/8 1 128k/128k" for
attribute name "Mikrotik-Rate-Limit"
Sun May  1 13:24:29 2011 : Error: rlm_sql (sql): Error getting data from
database
Sun May  1 13:24:29 2011 : Error: [sql] SQL query error; rejecting user
Sun May  1 13:24:29 2011 : Debug: rlm_sql (sql): Released sql socket id: 4
Sun May  1 13:24:29 2011 : Info: ++[sql] returns fail
Sun May  1 13:24:29 2011 : Info: Delaying reject of request 0 for 1 seconds
Sun May  1 13:24:29 2011 : Debug: Going to the next request
Sun May  1 13:24:29 2011 : Debug: Waking up in 0.9 seconds.
Sun May  1 13:24:30 2011 : Info: Sending delayed reject for request 0
Sending Access-Reject of id 18 to 127.0.0.1 port 36449
Sun May  1 13:24:30 2011 : Debug: Waking up in 4.9 seconds.
Sun May  1 13:24:35 2011 : Info: Cleaning up request 0 ID 18 with timestamp
+27
Sun May  1 13:24:35 2011 : Info: Ready to process requests.

I've of course the mikrotik dictionary with the correct attribute and
there's a record in the database with the rate limit for the user in
radreply table.

Any idea?

--
View this message in context: http://freeradius.1045715.n5.nabble.com/Mikrotik-Rate-Limit-issue-tp4363178p4363178.html
Sent from the FreeRadius - User mailing list archive at Nabble.com.



More information about the Freeradius-Users mailing list