only 2 dynamic IPs are allocated even the ip pool has many IPs
Koka Krishna
kkrish at juniper.net
Tue Jul 30 08:33:45 CEST 2013
Hi all,
I am using the freeradius 2.2.0 on ubuntu.
When I try to use the dynamic IP pool allocation, RADIUS server is allocating only 2 IPs . afterwards those 2 IPs repeated for other subscribers as well. So that I am not able to create more than 2 sessions.
May I know how to resolve this issue?
I am planning to do the performance and scaling tests on PGW.
rad_recv: Access-Request packet from host 104.104.1.1 port 20001, id=4, length=394
User-Name = "1995599718"
Framed-IP-Netmask = 255.255.255.255
NAS-Port-Type = Virtual
Service-Type = Framed-User
Framed-Protocol = GPRS-PDP-Context
Called-Station-Id = "automittarit.jklaluetaksi.fi"
Calling-Station-Id = "1995599718"
Acct-Session-Id = "C80758010000000012000802"
3GPP-IMSI = "244216858318774"
3GPP-IMEISV = "1122334455667798"
3GPP-Charging-ID = 301991938
3GPP-PDP-Type = 0
3GPP-GPRS-Negotiated-QoS-profile = "08-0408FFFFFFFFFFFFFFFF"
3GPP-SGSN-Address = 200.11.1.19
3GPP-GGSN-Address = 200.7.88.1
3GPP-IMSI-MCC-MNC = "24421"
3GPP-GGSN-MCC-MNC = "24405"
3GPP-NSAPI = "5"
3GPP-Selection-Mode = "0"
3GPP-Charging-Characteristics = "0400"
3GPP-SGSN-MCC-MNC = "24421"
3GPP-RAT-Type = 6
3GPP-Location-Info = 0x8142f4120003b9f7
3GPP-Allocate-IP-Type = Allocate-IPv4-Address
User-Password = "sec"
NAS-IP-Address = 104.104.1.1
NAS-Identifier = "mobst480k-ams-0"
# Executing section authorize from file ./sites-enabled/default
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
++[digest] returns noop
[suffix] No '@' in User-Name = "1995599718", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] No EAP-Message, not doing EAP
++[eap] returns noop
[files] users: Matched entry DEFAULT at line 9
++[files] returns ok
++[expiration] returns noop
++[logintime] returns noop
++[pap] returns updated
Found Auth-Type = PAP
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!! Replacing User-Password in config items with Cleartext-Password. !!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!! Please update your configuration so that the "known good" !!!
!!! clear text password is in Cleartext-Password, and not in User-Password. !!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
# Executing group from file ./sites-enabled/default
+- entering group PAP {...}
[pap] login attempt with password "sec"
[pap] Using clear text password "sec"
[pap] User authenticated successfully
++[pap] returns ok
# Executing section post-auth from file ./sites-enabled/default
+- entering group post-auth {...}
[main_pool] expand: %{NAS-IP-Address} %{NAS-Port} -> 104.104.1.1
[main_pool] MD5 on 'key' directive maps to: 4435e8fd24a8846262d436c1c72e6d12
[main_pool] Searching for an entry for key: '4435e8fd24a8846262d436c1c72e6d12'
rlm_ippool: Allocating ip to key: '4435e8fd24a8846262d436c1c72e6d12'
[main_pool] num: 1
[main_pool] Allocated ip 60.60.59.113 to client key: 4435e8fd24a8846262d436c1c72e6d12
++[main_pool] returns ok
++[exec] returns noop
Sending Access-Accept of id 4 to 104.104.1.1 port 20001
Framed-IP-Address = 60.60.59.113<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<1st access-accept
Framed-IP-Netmask = 255.255.0.0
Finished request 98.
Going to the next request
Waking up in 4.9 seconds.
rad_recv: Accounting-Request packet from host 104.104.1.1 port 20004, id=4, length=391
User-Name = "1995599718"
Framed-IP-Address = 60.60.59.113
Event-Timestamp = "Jul 30 2013 11:58:38 IST"
Service-Type = Framed-User
Framed-Protocol = GPRS-PDP-Context
Called-Station-Id = "automittarit.jklaluetaksi.fi"
Calling-Station-Id = "1995599718"
Acct-Session-Id = "C80758010000000012000802"
3GPP-IMSI = "244216858318774"
3GPP-IMEISV = "1122334455667798"
3GPP-Charging-ID = 301991938
3GPP-PDP-Type = 0
3GPP-GPRS-Negotiated-QoS-profile = "08-0408FFFFFFFFFFFFFFFF"
3GPP-SGSN-Address = 200.11.1.19
3GPP-GGSN-Address = 200.7.88.1
3GPP-IMSI-MCC-MNC = "24421"
3GPP-GGSN-MCC-MNC = "24405"
3GPP-NSAPI = "5"
3GPP-Selection-Mode = "0"
3GPP-Charging-Characteristics = "0400"
3GPP-SGSN-MCC-MNC = "24421"
3GPP-RAT-Type = 6
3GPP-Location-Info = 0x8142f4120003b9f7
Acct-Status-Type = Start
Acct-Authentic = RADIUS
NAS-Port-Type = Virtual
NAS-IP-Address = 104.104.1.1
NAS-Identifier = "mobst480k-ams-0"
Acct-Delay-Time = 0
# Executing section preacct from file ./sites-enabled/default
+- entering group preacct {...}
++[preprocess] returns ok
[acct_unique] WARNING: Attribute NAS-Port was not found in request, unique ID MAY be inconsistent
[acct_unique] Hashing ',NAS-Identifier = "mobst480k-ams-0",NAS-IP-Address = 104.104.1.1,Acct-Session-Id = "C80758010000000012000802",User-Name = "1995599718"'
[acct_unique] Acct-Unique-Session-ID = "907d8e5f3b56b4e1".
++[acct_unique] returns ok
[suffix] No '@' in User-Name = "1995599718", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
++[files] returns noop
# Executing section accounting from file ./sites-enabled/default
+- entering group accounting {...}
[detail] expand: %{Packet-Src-IP-Address} -> 104.104.1.1
[detail] expand: /usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d -> /usr/local/var/log/radius/radacct/104.104.1.1/detail-20130730
[detail] /usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d expands to /usr/local/var/log/radius/radacct/104.104.1.1/detail-20130730
[detail] expand: %t -> Tue Jul 30 11:58:00 2013
++[detail] returns ok
[main_pool] This is not an Accounting-Stop. Return NOOP.
++[main_pool] returns noop
++[exec] returns noop
[attr_filter.accounting_response] expand: %{User-Name} -> 1995599718
attr_filter: Matched entry DEFAULT at line 12
++[attr_filter.accounting_response] returns updated
Sending Accounting-Response of id 4 to 104.104.1.1 port 20004
Finished request 99.
Cleaning up request 99 ID 4 with timestamp +353975
Going to the next request
Waking up in 4.8 seconds.
Cleaning up request 98 ID 4 with timestamp +353975
Ready to process requests.
rad_recv: Access-Request packet from host 104.104.1.1 port 20001, id=5, length=394
User-Name = "1995599719"
Framed-IP-Netmask = 255.255.255.255
NAS-Port-Type = Virtual
Service-Type = Framed-User
Framed-Protocol = GPRS-PDP-Context
Called-Station-Id = "automittarit.jklaluetaksi.fi"
Calling-Station-Id = "1995599719"
Acct-Session-Id = "C80758010000000012001C00"
3GPP-IMSI = "244216858318775"
3GPP-IMEISV = "1122334455667799"
3GPP-Charging-ID = 301997056
3GPP-PDP-Type = 0
3GPP-GPRS-Negotiated-QoS-profile = "08-0408FFFFFFFFFFFFFFFF"
3GPP-SGSN-Address = 200.11.1.19
3GPP-GGSN-Address = 200.7.88.1
3GPP-IMSI-MCC-MNC = "24421"
3GPP-GGSN-MCC-MNC = "24405"
3GPP-NSAPI = "5"
3GPP-Selection-Mode = "0"
3GPP-Charging-Characteristics = "0400"
3GPP-SGSN-MCC-MNC = "24421"
3GPP-RAT-Type = 6
3GPP-Location-Info = 0x8142f4120003b9f7
3GPP-Allocate-IP-Type = Allocate-IPv4-Address
User-Password = "sec"
NAS-IP-Address = 104.104.1.1
NAS-Identifier = "mobst480k-ams-0"
# Executing section authorize from file ./sites-enabled/default
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
++[digest] returns noop
[suffix] No '@' in User-Name = "1995599719", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] No EAP-Message, not doing EAP
++[eap] returns noop
[files] users: Matched entry DEFAULT at line 9
++[files] returns ok
++[expiration] returns noop
++[logintime] returns noop
++[pap] returns updated
Found Auth-Type = PAP
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!! Replacing User-Password in config items with Cleartext-Password. !!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!! Please update your configuration so that the "known good" !!!
!!! clear text password is in Cleartext-Password, and not in User-Password. !!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
# Executing group from file ./sites-enabled/default
+- entering group PAP {...}
[pap] login attempt with password "sec"
[pap] Using clear text password "sec"
[pap] User authenticated successfully
++[pap] returns ok
# Executing section post-auth from file ./sites-enabled/default
+- entering group post-auth {...}
[main_pool] expand: %{NAS-IP-Address} %{NAS-Port} -> 104.104.1.1
[main_pool] MD5 on 'key' directive maps to: 4435e8fd24a8846262d436c1c72e6d12
[main_pool] Searching for an entry for key: '4435e8fd24a8846262d436c1c72e6d12'
[main_pool] Found a stale entry for ip: 60.60.59.113
[main_pool] num: 0
rlm_ippool: Allocating ip to key: '4435e8fd24a8846262d436c1c72e6d12'
[main_pool] num: 1
[main_pool] Allocated ip 60.60.173.112 to client key: 4435e8fd24a8846262d436c1c72e6d12
++[main_pool] returns ok
++[exec] returns noop
Sending Access-Accept of id 5 to 104.104.1.1 port 20001
Framed-IP-Address = 60.60.173.112<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<2nd access-accept
Framed-IP-Netmask = 255.255.0.0
Finished request 100.
Going to the next request
Waking up in 4.9 seconds.
rad_recv: Accounting-Request packet from host 104.104.1.1 port 20008, id=0, length=391
User-Name = "1995599719"
Framed-IP-Address = 60.60.173.112
Event-Timestamp = "Jul 30 2013 11:58:59 IST"
Service-Type = Framed-User
Framed-Protocol = GPRS-PDP-Context
Called-Station-Id = "automittarit.jklaluetaksi.fi"
Calling-Station-Id = "1995599719"
Acct-Session-Id = "C80758010000000012001C00"
3GPP-IMSI = "244216858318775"
3GPP-IMEISV = "1122334455667799"
3GPP-Charging-ID = 301997056
3GPP-PDP-Type = 0
3GPP-GPRS-Negotiated-QoS-profile = "08-0408FFFFFFFFFFFFFFFF"
3GPP-SGSN-Address = 200.11.1.19
3GPP-GGSN-Address = 200.7.88.1
3GPP-IMSI-MCC-MNC = "24421"
3GPP-GGSN-MCC-MNC = "24405"
3GPP-NSAPI = "5"
3GPP-Selection-Mode = "0"
3GPP-Charging-Characteristics = "0400"
3GPP-SGSN-MCC-MNC = "24421"
3GPP-RAT-Type = 6
3GPP-Location-Info = 0x8142f4120003b9f7
Acct-Status-Type = Start
Acct-Authentic = RADIUS
NAS-Port-Type = Virtual
NAS-IP-Address = 104.104.1.1
NAS-Identifier = "mobst480k-ams-0"
Acct-Delay-Time = 0
# Executing section preacct from file ./sites-enabled/default
+- entering group preacct {...}
++[preprocess] returns ok
[acct_unique] WARNING: Attribute NAS-Port was not found in request, unique ID MAY be inconsistent
[acct_unique] Hashing ',NAS-Identifier = "mobst480k-ams-0",NAS-IP-Address = 104.104.1.1,Acct-Session-Id = "C80758010000000012001C00",User-Name = "1995599719"'
[acct_unique] Acct-Unique-Session-ID = "ee7bc74f7735f7df".
++[acct_unique] returns ok
[suffix] No '@' in User-Name = "1995599719", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
++[files] returns noop
# Executing section accounting from file ./sites-enabled/default
+- entering group accounting {...}
[detail] expand: %{Packet-Src-IP-Address} -> 104.104.1.1
[detail] expand: /usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d -> /usr/local/var/log/radius/radacct/104.104.1.1/detail-20130730
[detail] /usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d expands to /usr/local/var/log/radius/radacct/104.104.1.1/detail-20130730
[detail] expand: %t -> Tue Jul 30 11:58:21 2013
++[detail] returns ok
[main_pool] This is not an Accounting-Stop. Return NOOP.
++[main_pool] returns noop
++[exec] returns noop
[attr_filter.accounting_response] expand: %{User-Name} -> 1995599719
attr_filter: Matched entry DEFAULT at line 12
++[attr_filter.accounting_response] returns updated
Sending Accounting-Response of id 0 to 104.104.1.1 port 20008
Finished request 101.
Cleaning up request 101 ID 0 with timestamp +353996
Going to the next request
Waking up in 4.8 seconds.
Cleaning up request 100 ID 5 with timestamp +353996
Ready to process requests.
rad_recv: Access-Request packet from host 104.104.1.1 port 20007, id=1, length=394
User-Name = "1995599720"
Framed-IP-Netmask = 255.255.255.255
NAS-Port-Type = Virtual
Service-Type = Framed-User
Framed-Protocol = GPRS-PDP-Context
Called-Station-Id = "automittarit.jklaluetaksi.fi"
Calling-Station-Id = "1995599720"
Acct-Session-Id = "C80758010000000012002000"
3GPP-IMSI = "244216858318776"
3GPP-IMEISV = "1122334455667800"
3GPP-Charging-ID = 301998080
3GPP-PDP-Type = 0
3GPP-GPRS-Negotiated-QoS-profile = "08-0408FFFFFFFFFFFFFFFF"
3GPP-SGSN-Address = 200.11.1.19
3GPP-GGSN-Address = 200.7.88.1
3GPP-IMSI-MCC-MNC = "24421"
3GPP-GGSN-MCC-MNC = "24405"
3GPP-NSAPI = "5"
3GPP-Selection-Mode = "0"
3GPP-Charging-Characteristics = "0400"
3GPP-SGSN-MCC-MNC = "24421"
3GPP-RAT-Type = 6
3GPP-Location-Info = 0x8142f4120003b9f7
3GPP-Allocate-IP-Type = Allocate-IPv4-Address
User-Password = "sec"
NAS-IP-Address = 104.104.1.1
NAS-Identifier = "mobst480k-ams-0"
# Executing section authorize from file ./sites-enabled/default
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
++[digest] returns noop
[suffix] No '@' in User-Name = "1995599720", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] No EAP-Message, not doing EAP
++[eap] returns noop
[files] users: Matched entry DEFAULT at line 9
++[files] returns ok
++[expiration] returns noop
++[logintime] returns noop
++[pap] returns updated
Found Auth-Type = PAP
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!! Replacing User-Password in config items with Cleartext-Password. !!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!! Please update your configuration so that the "known good" !!!
!!! clear text password is in Cleartext-Password, and not in User-Password. !!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
# Executing group from file ./sites-enabled/default
+- entering group PAP {...}
[pap] login attempt with password "sec"
[pap] Using clear text password "sec"
[pap] User authenticated successfully
++[pap] returns ok
# Executing section post-auth from file ./sites-enabled/default
+- entering group post-auth {...}
[main_pool] expand: %{NAS-IP-Address} %{NAS-Port} -> 104.104.1.1
[main_pool] MD5 on 'key' directive maps to: 4435e8fd24a8846262d436c1c72e6d12
[main_pool] Searching for an entry for key: '4435e8fd24a8846262d436c1c72e6d12'
[main_pool] Found a stale entry for ip: 60.60.173.112
[main_pool] num: 0
rlm_ippool: Allocating ip to key: '4435e8fd24a8846262d436c1c72e6d12'
[main_pool] num: 1
[main_pool] Allocated ip 60.60.59.113 to client key: 4435e8fd24a8846262d436c1c72e6d12
++[main_pool] returns ok
++[exec] returns noop
Sending Access-Accept of id 1 to 104.104.1.1 port 20007
Framed-IP-Address = 60.60.59.113<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<3rd access-accept. But the IP address is same as 1st access-accept.
Framed-IP-Netmask = 255.255.0.0
Finished request 102.
Going to the next request
Waking up in 4.9 seconds.
Cleaning up request 102 ID 1 with timestamp +354003
Ready to process requests.
ippool main_pool {
# range-start,range-stop:
# The start and end ip addresses for this pool.
# range-start = 192.168.1.1
# range-stop = 192.168.3.254
range-start = 60.60.0.1
range-stop = 60.60.255.252
netmask = 255.255.0.0
# netmask:
# The network mask used for this pool.
# netmask = 255.255.255.0
# cache-size:
# The gdbm cache size for the db files. Should
# be equal to the number of ip's available in
# the ip pool
cache-size = 800
# session-db:
# The main db file used to allocate addresses.
session-db = ${db_dir}/db.ippool
# ip-index:
# Helper db index file used in multilink
ip-index = ${db_dir}/db.ipindex
# override:
# If set, the Framed-IP-Address already in the
# reply (if any) will be discarded, and replaced
# with a Framed-IP-Address assigned here.
override = no
# maximum-timeout:
# Specifies the maximum time in seconds that an
# entry may be active. If set to zero, means
# "no timeout". The default value is 0
maximum-timeout = 0
# key:
# The key to use for the session database (which
# holds the allocated ip's) normally it should
# just be the nas ip/port (which is the default).
#
# If your NAS sends the same value of NAS-Port
# all requests, the key should be based on some
# other attribute that is in ALL requests, AND
# is unique to each machine needing an IP address.
#key = "%{NAS-IP-Address} %{NAS-Port}"
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20130730/95458fd8/attachment-0001.html>
More information about the Freeradius-Users
mailing list