Incorrect NAS-IP-Address attribute
Morris, Andi
amorris at cardiffmet.ac.uk
Tue Oct 22 13:36:11 CEST 2013
Hi all,
Can somebody tell me where the NAS-IP-Address attribute is pulled from?
I have one particular switch that has a different IP address in this attribute to the actual switch's IP address, and therefore radius rejects the request as this IP address isn't a declared client. All my other switches are working fine so the radius server is fine in general. I'm just not sure whether this is set on the radius server, or the switch. I can't find it on either.
Here's a debug log snippet:
rad_recv: Access-Request packet from host 10.1.1.10 port 1812, id=9, length=159
NAS-IP-Address = 10.1.1.12
NAS-Port = 50024
Cisco-NAS-Port = "FastEthernet0/24"
NAS-Port-Type = Ethernet
User-Name = "st12345678"
Called-Station-Id = "00-0D-28-1A-36-98"
Calling-Station-Id = "F0-DE-F1-D4-FB-D7"
Service-Type = Framed-User
Framed-MTU = 1500
EAP-Message = 0x0200000f0173743230303235313330
Message-Authenticator = 0x07b499ef56d777d5284f72c3ad2cc15a
Thanks in advance.
-------------------------------------
Andi Morris
IT Security Officer
Cardiff Metropolitan University
T: 02920 205720
E: amorris at cardiffmet.ac.uk<mailto:amorris at cardiffmet.ac.uk>
--------------------------------------
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20131022/eee18cc6/attachment.html>
More information about the Freeradius-Users
mailing list