Fwd: Setting up Radius proxy - Urgent request

khali singh khali3620 at gmail.com
Mon Dec 2 09:39:39 CET 2013


Mon Dec  2 10:41:25 2013 : Info: FreeRADIUS Version 2.1.10, for host
x86_64-pc-linux-gnu, built on Sep 24 2012 at 17:58:57
Mon Dec  2 10:41:25 2013 : Info: Copyright (C) 1999-2009 The FreeRADIUS
server project and contributors.
Mon Dec  2 10:41:25 2013 : Info: There is NO warranty; not even for
MERCHANTABILITY or FITNESS FOR A
Mon Dec  2 10:41:25 2013 : Info: PARTICULAR PURPOSE.
Mon Dec  2 10:41:25 2013 : Info: You may redistribute copies of FreeRADIUS
under the terms of the
Mon Dec  2 10:41:25 2013 : Info: GNU General Public License v2.
Mon Dec  2 10:41:25 2013 : Info: Starting - reading configuration files ...
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/radiusd.conf
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/clients.conf
Mon Dec  2 10:41:25 2013 : Debug: including files in directory
/etc/freeradius/modules/
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/cui
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/acct_unique
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/ntlm_auth
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/chap
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/always
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/ldap
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/pam
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/wimax
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/dynamic_clients
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/passwd
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/perl
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/exec
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/sradutmp
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/ippool
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/unix
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/linelog
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/smbpasswd
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/detail.example.com
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/radutmp
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/detail
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/logintime
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/preprocess
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/krb5
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/expiration
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/mschap
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/attr_filter
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/detail.log
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/policy
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/checkval
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/echo
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/counter
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/sqlcounter_expire_on_login
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/mac2ip
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/smsotp
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/inner-eap
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/digest
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/pap
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/realm
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/attr_rewrite
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/otp
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/opendirectory
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/sql_log
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/files
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/mac2vlan
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/etc_group
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/modules/expr
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/eap.conf
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/policy.conf
Mon Dec  2 10:41:25 2013 : Debug: including files in directory
/etc/freeradius/sites-enabled/
Mon Dec  2 10:41:25 2013 : Debug: including configuration file
/etc/freeradius/sites-enabled/your_ap_name_default
Mon Dec  2 10:41:25 2013 : Debug: main {
Mon Dec  2 10:41:25 2013 : Debug: user = "freerad"
Mon Dec  2 10:41:25 2013 : Debug: group = "freerad"
Mon Dec  2 10:41:25 2013 : Debug: allow_core_dumps = no
Mon Dec  2 10:41:25 2013 : Debug: }
Mon Dec  2 10:41:25 2013 : Debug: including dictionary file
/etc/freeradius/dictionary
Mon Dec  2 10:41:25 2013 : Debug: main {
Mon Dec  2 10:41:25 2013 : Debug: prefix = "/usr"
Mon Dec  2 10:41:25 2013 : Debug: localstatedir = "/var"
Mon Dec  2 10:41:25 2013 : Debug: logdir = "/var/log/freeradius"
Mon Dec  2 10:41:25 2013 : Debug: libdir = "/usr/lib/freeradius"
Mon Dec  2 10:41:25 2013 : Debug: radacctdir = "/var/log/freeradius/radacct"
Mon Dec  2 10:41:25 2013 : Debug: hostname_lookups = no
Mon Dec  2 10:41:25 2013 : Debug: max_request_time = 300
Mon Dec  2 10:41:25 2013 : Debug: cleanup_delay = 5
Mon Dec  2 10:41:25 2013 : Debug: max_requests = 1024
Mon Dec  2 10:41:25 2013 : Debug: pidfile =
"/var/run/freeradius/freeradius.pid"
Mon Dec  2 10:41:25 2013 : Debug: checkrad = "/usr/sbin/checkrad"
Mon Dec  2 10:41:25 2013 : Debug: debug_level = 0
Mon Dec  2 10:41:25 2013 : Debug: proxy_requests = yes
Mon Dec  2 10:41:25 2013 : Debug:  log {
Mon Dec  2 10:41:25 2013 : Debug: stripped_names = no
Mon Dec  2 10:41:25 2013 : Debug: auth = no
Mon Dec  2 10:41:25 2013 : Debug: auth_badpass = no
Mon Dec  2 10:41:25 2013 : Debug: auth_goodpass = no
Mon Dec  2 10:41:25 2013 : Debug:  }
Mon Dec  2 10:41:25 2013 : Debug:  security {
Mon Dec  2 10:41:25 2013 : Debug: max_attributes = 200
Mon Dec  2 10:41:25 2013 : Debug: reject_delay = 1
Mon Dec  2 10:41:25 2013 : Debug: status_server = yes
Mon Dec  2 10:41:25 2013 : Debug:  }
Mon Dec  2 10:41:25 2013 : Debug: }
Mon Dec  2 10:41:25 2013 : Debug: radiusd: #### Loading Realms and Home
Servers ####
Mon Dec  2 10:41:25 2013 : Debug: radiusd: #### Loading Clients ####
Mon Dec  2 10:41:25 2013 : Debug:  client your_router_name {
Mon Dec  2 10:41:25 2013 : Debug: ipaddr = 10.0.1.172
Mon Dec  2 10:41:25 2013 : Debug: require_message_authenticator = yes
Mon Dec  2 10:41:25 2013 : Debug: secret = "testkey1"
Mon Dec  2 10:41:25 2013 : Debug:  }
Mon Dec  2 10:41:25 2013 : Debug: radiusd: #### Instantiating modules ####
Mon Dec  2 10:41:25 2013 : Debug:  instantiate {
Mon Dec  2 10:41:25 2013 : Debug:     (Loaded rlm_exec, checking if it's
valid)
Mon Dec  2 10:41:25 2013 : Debug:  Module: Linked to module rlm_exec
Mon Dec  2 10:41:25 2013 : Debug:  Module: Instantiating module "exec" from
file /etc/freeradius/modules/exec
Mon Dec  2 10:41:25 2013 : Debug:   exec {
Mon Dec  2 10:41:25 2013 : Debug: wait = no
Mon Dec  2 10:41:25 2013 : Debug: input_pairs = "request"
Mon Dec  2 10:41:25 2013 : Debug: shell_escape = yes
Mon Dec  2 10:41:25 2013 : Debug:   }
Mon Dec  2 10:41:25 2013 : Debug:     (Loaded rlm_expr, checking if it's
valid)
Mon Dec  2 10:41:25 2013 : Debug:  Module: Linked to module rlm_expr
Mon Dec  2 10:41:25 2013 : Debug:  Module: Instantiating module "expr" from
file /etc/freeradius/modules/expr
Mon Dec  2 10:41:25 2013 : Debug:     (Loaded rlm_expiration, checking if
it's valid)
Mon Dec  2 10:41:25 2013 : Debug:  Module: Linked to module rlm_expiration
Mon Dec  2 10:41:25 2013 : Debug:  Module: Instantiating module
"expiration" from file /etc/freeradius/modules/expiration
Mon Dec  2 10:41:25 2013 : Debug:   expiration {
Mon Dec  2 10:41:25 2013 : Debug: reply-message = "Password Has Expired  "
Mon Dec  2 10:41:25 2013 : Debug:   }
Mon Dec  2 10:41:25 2013 : Debug:     (Loaded rlm_logintime, checking if
it's valid)
Mon Dec  2 10:41:25 2013 : Debug:  Module: Linked to module rlm_logintime
Mon Dec  2 10:41:25 2013 : Debug:  Module: Instantiating module "logintime"
from file /etc/freeradius/modules/logintime
Mon Dec  2 10:41:25 2013 : Debug:   logintime {
Mon Dec  2 10:41:25 2013 : Debug: reply-message = "You are calling outside
your allowed timespan  "
Mon Dec  2 10:41:25 2013 : Debug: minimum-timeout = 60
Mon Dec  2 10:41:25 2013 : Debug:   }
Mon Dec  2 10:41:25 2013 : Debug:  }
Mon Dec  2 10:41:25 2013 : Debug: radiusd: #### Loading Virtual Servers ####
Mon Dec  2 10:41:25 2013 : Debug: server { # from file
/etc/freeradius/radiusd.conf
Mon Dec  2 10:41:25 2013 : Debug:  modules {
Mon Dec  2 10:41:25 2013 : Debug:  Module: Checking authenticate {...} for
more modules to load
Mon Dec  2 10:41:25 2013 : Debug:     (Loaded rlm_eap, checking if it's
valid)
Mon Dec  2 10:41:25 2013 : Debug:  Module: Linked to module rlm_eap
Mon Dec  2 10:41:25 2013 : Debug:  Module: Instantiating module "eap" from
file /etc/freeradius/eap.conf
Mon Dec  2 10:41:25 2013 : Debug:   eap {
Mon Dec  2 10:41:25 2013 : Debug: default_eap_type = "tls"
Mon Dec  2 10:41:25 2013 : Debug: timer_expire = 60
Mon Dec  2 10:41:25 2013 : Debug: ignore_unknown_eap_types = no
Mon Dec  2 10:41:25 2013 : Debug: cisco_accounting_username_bug = no
Mon Dec  2 10:41:25 2013 : Debug: max_sessions = 4096
Mon Dec  2 10:41:25 2013 : Debug:   }
Mon Dec  2 10:41:25 2013 : Debug:  Module: Linked to sub-module rlm_eap_tls
Mon Dec  2 10:41:25 2013 : Debug:  Module: Instantiating eap-tls
Mon Dec  2 10:41:25 2013 : Debug:    tls {
Mon Dec  2 10:41:25 2013 : Debug: rsa_key_exchange = no
Mon Dec  2 10:41:25 2013 : Debug: dh_key_exchange = yes
Mon Dec  2 10:41:25 2013 : Debug: rsa_key_length = 512
Mon Dec  2 10:41:25 2013 : Debug: dh_key_length = 512
Mon Dec  2 10:41:25 2013 : Debug: verify_depth = 0
Mon Dec  2 10:41:25 2013 : Debug: CA_path = "/var/certs/freeradius/"
Mon Dec  2 10:41:25 2013 : Debug: pem_file_type = yes
Mon Dec  2 10:41:25 2013 : Debug: private_key_file =
"/var/certs/freeradius/server.pem"
Mon Dec  2 10:41:25 2013 : Debug: certificate_file =
"/var/certs/freeradius/server.pem"
Mon Dec  2 10:41:25 2013 : Debug: CA_file = "/var/certs/freeradius/ca.pem"
Mon Dec  2 10:41:25 2013 : Debug: private_key_password = "whatever"
Mon Dec  2 10:41:25 2013 : Debug: dh_file = "/var/certs/freeradius/dh"
Mon Dec  2 10:41:25 2013 : Debug: random_file =
"/var/certs/freeradius/random"
Mon Dec  2 10:41:25 2013 : Debug: fragment_size = 1024
Mon Dec  2 10:41:25 2013 : Debug: include_length = yes
Mon Dec  2 10:41:25 2013 : Debug: check_crl = no
Mon Dec  2 10:41:25 2013 : Debug: cipher_list = "HIGH"
Mon Dec  2 10:41:25 2013 : Debug:     cache {
Mon Dec  2 10:41:25 2013 : Debug: enable = no
Mon Dec  2 10:41:25 2013 : Debug: lifetime = 24
Mon Dec  2 10:41:25 2013 : Debug: max_entries = 255
Mon Dec  2 10:41:25 2013 : Debug:     }
Mon Dec  2 10:41:25 2013 : Debug:     verify {
Mon Dec  2 10:41:25 2013 : Debug: tmpdir = "/var/tmp/radiusd"
Mon Dec  2 10:41:25 2013 : Debug: client = "/usr/bin/openssl verify -CApath
/var/certs/freeradius/ %{TLS-Client-Cert-Filename}"
Mon Dec  2 10:41:25 2013 : Debug:     }
Mon Dec  2 10:41:25 2013 : Debug:    }
Mon Dec  2 10:41:25 2013 : Debug:  Module: Checking authorize {...} for
more modules to load
Mon Dec  2 10:41:25 2013 : Debug:     (Loaded rlm_preprocess, checking if
it's valid)
Mon Dec  2 10:41:25 2013 : Debug:  Module: Linked to module rlm_preprocess
Mon Dec  2 10:41:25 2013 : Debug:  Module: Instantiating module
"preprocess" from file /etc/freeradius/modules/preprocess
Mon Dec  2 10:41:25 2013 : Debug:   preprocess {
Mon Dec  2 10:41:25 2013 : Debug: huntgroups = "/etc/freeradius/huntgroups"
Mon Dec  2 10:41:25 2013 : Debug: hints = "/etc/freeradius/hints"
Mon Dec  2 10:41:25 2013 : Debug: with_ascend_hack = no
Mon Dec  2 10:41:25 2013 : Debug: ascend_channels_per_line = 23
Mon Dec  2 10:41:25 2013 : Debug: with_ntdomain_hack = no
Mon Dec  2 10:41:25 2013 : Debug: with_specialix_jetstream_hack = no
Mon Dec  2 10:41:25 2013 : Debug: with_cisco_vsa_hack = no
Mon Dec  2 10:41:25 2013 : Debug: with_alvarion_vsa_hack = no
Mon Dec  2 10:41:25 2013 : Debug:   }
Mon Dec  2 10:41:25 2013 : Debug:     (Loaded rlm_realm, checking if it's
valid)
Mon Dec  2 10:41:25 2013 : Debug:  Module: Linked to module rlm_realm
Mon Dec  2 10:41:25 2013 : Debug:  Module: Instantiating module "suffix"
from file /etc/freeradius/modules/realm
Mon Dec  2 10:41:25 2013 : Debug:   realm suffix {
Mon Dec  2 10:41:25 2013 : Debug: format = "suffix"
Mon Dec  2 10:41:25 2013 : Debug: delimiter = "@"
Mon Dec  2 10:41:25 2013 : Debug: ignore_default = no
Mon Dec  2 10:41:25 2013 : Debug: ignore_null = no
Mon Dec  2 10:41:25 2013 : Debug:   }
Mon Dec  2 10:41:25 2013 : Debug:  Module: Checking preacct {...} for more
modules to load
Mon Dec  2 10:41:25 2013 : Debug:     (Loaded rlm_acct_unique, checking if
it's valid)
Mon Dec  2 10:41:25 2013 : Debug:  Module: Linked to module rlm_acct_unique
Mon Dec  2 10:41:25 2013 : Debug:  Module: Instantiating module
"acct_unique" from file /etc/freeradius/modules/acct_unique
Mon Dec  2 10:41:25 2013 : Debug:   acct_unique {
Mon Dec  2 10:41:25 2013 : Debug: key = "User-Name, Acct-Session-Id,
NAS-IP-Address, Client-IP-Address, NAS-Port"
Mon Dec  2 10:41:25 2013 : Debug:   }
Mon Dec  2 10:41:25 2013 : Debug:     (Loaded rlm_files, checking if it's
valid)
Mon Dec  2 10:41:25 2013 : Debug:  Module: Linked to module rlm_files
Mon Dec  2 10:41:25 2013 : Debug:  Module: Instantiating module "files"
from file /etc/freeradius/modules/files
Mon Dec  2 10:41:25 2013 : Debug:   files {
Mon Dec  2 10:41:25 2013 : Debug: usersfile = "/etc/freeradius/users"
Mon Dec  2 10:41:25 2013 : Debug: acctusersfile =
"/etc/freeradius/acct_users"
Mon Dec  2 10:41:25 2013 : Debug: preproxy_usersfile =
"/etc/freeradius/preproxy_users"
Mon Dec  2 10:41:25 2013 : Debug: compat = "no"
Mon Dec  2 10:41:25 2013 : Debug:   }
Mon Dec  2 10:41:25 2013 : Debug:  Module: Checking session {...} for more
modules to load
Mon Dec  2 10:41:25 2013 : Debug:     (Loaded rlm_radutmp, checking if it's
valid)
Mon Dec  2 10:41:25 2013 : Debug:  Module: Linked to module rlm_radutmp
Mon Dec  2 10:41:25 2013 : Debug:  Module: Instantiating module "radutmp"
from file /etc/freeradius/modules/radutmp
Mon Dec  2 10:41:25 2013 : Debug:   radutmp {
Mon Dec  2 10:41:25 2013 : Debug: filename = "/var/log/freeradius/radutmp"
Mon Dec  2 10:41:25 2013 : Debug: username = "%{User-Name}"
Mon Dec  2 10:41:25 2013 : Debug: case_sensitive = yes
Mon Dec  2 10:41:25 2013 : Debug: check_with_nas = yes
Mon Dec  2 10:41:25 2013 : Debug: perm = 384
Mon Dec  2 10:41:25 2013 : Debug: callerid = yes
Mon Dec  2 10:41:25 2013 : Debug:   }
Mon Dec  2 10:41:25 2013 : Debug:  Module: Checking post-proxy {...} for
more modules to load
Mon Dec  2 10:41:25 2013 : Debug:  Module: Checking post-auth {...} for
more modules to load
Mon Dec  2 10:41:25 2013 : Debug:     (Loaded rlm_attr_filter, checking if
it's valid)
Mon Dec  2 10:41:25 2013 : Debug:  Module: Linked to module rlm_attr_filter
Mon Dec  2 10:41:25 2013 : Debug:  Module: Instantiating module
"attr_filter.access_reject" from file /etc/freeradius/modules/attr_filter
Mon Dec  2 10:41:25 2013 : Debug:   attr_filter attr_filter.access_reject {
Mon Dec  2 10:41:25 2013 : Debug: attrsfile =
"/etc/freeradius/attrs.access_reject"
Mon Dec  2 10:41:25 2013 : Debug: key = "%{User-Name}"
Mon Dec  2 10:41:25 2013 : Debug:   }
Mon Dec  2 10:41:25 2013 : Debug:  } # modules
Mon Dec  2 10:41:25 2013 : Debug: } # server
Mon Dec  2 10:41:25 2013 : Debug: radiusd: #### Opening IP addresses and
Ports ####
Mon Dec  2 10:41:25 2013 : Debug: listen {
Mon Dec  2 10:41:25 2013 : Debug: type = "auth"
Mon Dec  2 10:41:25 2013 : Debug: ipaddr = 13.24.29.16
Mon Dec  2 10:41:25 2013 : Debug: port = 8280
Mon Dec  2 10:41:25 2013 : Debug: }
Mon Dec  2 10:41:25 2013 : Debug: Listening on authentication interface
eth0 address 193.234.219.146 port 8280
Mon Dec  2 10:41:25 2013 : Debug: Listening on proxy address
193.234.219.146 port 8282
Mon Dec  2 10:41:25 2013 : Info: Ready to process requests.


rad_recv: Access-Request packet from host 10.0.0.172 port 41002, id=61,
length=176
User-Name = "testuser at test.com"
NAS-IP-Address = 10.0.0.172
NAS-Port = 1
Called-Station-Id = "10-6F-3F-DB-59-E1:NOMADICL"
Calling-Station-Id = "00-1B-77-20-AF-B0"
Framed-MTU = 1400
NAS-Port-Type = Wireless-802.11
Connect-Info = "CONNECT 54Mbps 802.11g"
EAP-Message = 0x023a001601746573747573657240746573742e636f6d
Message-Authenticator = 0xd60a5b98f06d4518125b99cb5ac42fb7
Mon Dec  2 10:45:43 2013 : Info: # Executing section authorize from file
/etc/freeradius/sites-enabled/your_ap_name_default
Mon Dec  2 10:45:43 2013 : Info: +- entering group authorize {...}
Mon Dec  2 10:45:43 2013 : Info: ++[preprocess] returns ok
Mon Dec  2 10:45:43 2013 : Info: [suffix] Looking up realm "test.com" for
User-Name = "testuser at test.com"
Mon Dec  2 10:45:43 2013 : Info: [suffix] No such realm "test.com"
Mon Dec  2 10:45:43 2013 : Info: ++[suffix] returns noop
Mon Dec  2 10:45:43 2013 : Info: [eap] EAP packet type response id 58
length 22
Mon Dec  2 10:45:43 2013 : Info: [eap] No EAP Start, assuming it's an
on-going EAP conversation
Mon Dec  2 10:45:43 2013 : Info: ++[eap] returns updated
Mon Dec  2 10:45:43 2013 : Info: ++[expiration] returns noop
Mon Dec  2 10:45:43 2013 : Info: ++[logintime] returns noop
Mon Dec  2 10:45:43 2013 : Info: Found Auth-Type = EAP
Mon Dec  2 10:45:43 2013 : Info: # Executing group from file
/etc/freeradius/sites-enabled/your_ap_name_default
Mon Dec  2 10:45:43 2013 : Info: +- entering group authenticate {...}
Mon Dec  2 10:45:43 2013 : Info: [eap] EAP Identity
Mon Dec  2 10:45:43 2013 : Info: [eap] processing type tls
Mon Dec  2 10:45:43 2013 : Info: [tls] Requiring client certificate
Mon Dec  2 10:45:43 2013 : Info: [tls] Initiate
Mon Dec  2 10:45:43 2013 : Info: [tls] Start returned 1
Mon Dec  2 10:45:43 2013 : Info: ++[eap] returns handled
Sending Access-Challenge of id 61 to 10.0.0.172 port 41002
EAP-Message = 0x013b00060d20
Message-Authenticator = 0x00000000000000000000000000000000
State = 0xe1fe58dde1c5552a8d4dce16845adeeb
Mon Dec  2 10:45:43 2013 : Info: Finished request 0.
Mon Dec  2 10:45:43 2013 : Debug: Going to the next request
Mon Dec  2 10:45:43 2013 : Debug: Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host 10.0.0.172 port 41002, id=62,
length=178
User-Name = "testuser at test.com"
NAS-IP-Address = 10.0.0.172
NAS-Port = 1
Called-Station-Id = "10-6F-3F-DB-59-E1:NOMADICL"
Calling-Station-Id = "00-1B-77-20-AF-B0"
Framed-MTU = 1400
NAS-Port-Type = Wireless-802.11
Connect-Info = "CONNECT 54Mbps 802.11g"
EAP-Message = 0x023b0006035a
State = 0xe1fe58dde1c5552a8d4dce16845adeeb
Message-Authenticator = 0x3823ea570194b629a078fe00c3219668
Mon Dec  2 10:45:43 2013 : Info: # Executing section authorize from file
/etc/freeradius/sites-enabled/your_ap_name_default
Mon Dec  2 10:45:43 2013 : Info: +- entering group authorize {...}
Mon Dec  2 10:45:43 2013 : Info: ++[preprocess] returns ok
Mon Dec  2 10:45:43 2013 : Info: [suffix] Looking up realm "test.com" for
User-Name = "testuser at test.com"
Mon Dec  2 10:45:43 2013 : Info: [suffix] No such realm "test.com"
Mon Dec  2 10:45:43 2013 : Info: ++[suffix] returns noop
Mon Dec  2 10:45:43 2013 : Info: [eap] EAP packet type response id 59
length 6
Mon Dec  2 10:45:43 2013 : Info: [eap] No EAP Start, assuming it's an
on-going EAP conversation
Mon Dec  2 10:45:43 2013 : Info: ++[eap] returns updated
Mon Dec  2 10:45:43 2013 : Info: ++[expiration] returns noop
Mon Dec  2 10:45:43 2013 : Info: ++[logintime] returns noop
Mon Dec  2 10:45:43 2013 : Info: Found Auth-Type = EAP
Mon Dec  2 10:45:43 2013 : Info: # Executing group from file
/etc/freeradius/sites-enabled/your_ap_name_default
Mon Dec  2 10:45:43 2013 : Info: +- entering group authenticate {...}
Mon Dec  2 10:45:43 2013 : Info: [eap] Request found, released from the list
Mon Dec  2 10:45:43 2013 : Info: [eap] EAP NAK
Mon Dec  2 10:45:43 2013 : Info: [eap] NAK asked for unsupported type 90
Mon Dec  2 10:45:43 2013 : Info: [eap] No common EAP types found.
Mon Dec  2 10:45:43 2013 : Info: [eap] Failed in EAP select
Mon Dec  2 10:45:43 2013 : Info: ++[eap] returns invalid
Mon Dec  2 10:45:43 2013 : Info: Failed to authenticate the user.
Mon Dec  2 10:45:43 2013 : Info: Using Post-Auth-Type Reject
Mon Dec  2 10:45:43 2013 : Info: # Executing group from file
/etc/freeradius/sites-enabled/your_ap_name_default
Mon Dec  2 10:45:43 2013 : Info: +- entering group REJECT {...}
Mon Dec  2 10:45:43 2013 : Info: [attr_filter.access_reject] expand:
%{User-Name} -> testuser at test.com
Mon Dec  2 10:45:43 2013 : Debug:  attr_filter: Matched entry DEFAULT at
line 11
Mon Dec  2 10:45:43 2013 : Info: ++[attr_filter.access_reject] returns
updated
Mon Dec  2 10:45:43 2013 : Info: Delaying reject of request 1 for 1 seconds
Mon Dec  2 10:45:43 2013 : Debug: Going to the next request
Mon Dec  2 10:45:43 2013 : Debug: Waking up in 0.9 seconds.
Mon Dec  2 10:45:44 2013 : Info: Sending delayed reject for request 1


I see that radiusd: #### Loading Realms and Home Servers #### is empty but
I don't understand why? I have defined a realm in proxy.conf

realm test.com {
     type = radius
     authhost        = 13.24.29.16:8180 <http://193.234.219.146:8180/>
     secret          = my_secret_with_other_radius_server
     nostrip
}

Thanks Alan!!


On Mon, Dec 2, 2013 at 9:27 AM, Alan Buxey <A.L.M.Buxey at lboro.ac.uk> wrote:

> Full debug log please
>
> alan
> --
> Sent from my Android device with K-9 Mail. Please excuse my brevity.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20131202/a70e0a9a/attachment-0001.html>


More information about the Freeradius-Users mailing list