reading hosts from NAS table not working on 2.2.6?
Alexander Silveröhrt
Alexander.Silverohrt at itux.se
Thu Apr 30 13:20:42 CEST 2015
Hello,
Anyone knows what could be wrong?
We are trying to move from an older version to a newer version (2.2.6.)
But can't get hosts reading from NAS table to work..And it has always been working.
After recompiling and installing...Now hosts from the NAS table is read but not working anymore..
Debug at server start says it is reading all the hosts from database nas table but all requests gets rejected anyway.
#############Radius debug
.
.
.
.
Thu Apr 30 12:16:57 2015 : Info: rlm_sql (sql-smartedge-bng): Attempting to connect rlm_sql_mysql #49
Thu Apr 30 12:16:57 2015 : Info: rlm_sql_mysql: Starting connect to MySQL server for #49
Thu Apr 30 12:16:57 2015 : Info: rlm_sql (sql-smartedge-bng): Connected new DB handle, #49
Thu Apr 30 12:16:57 2015 : Debug: rlm_sql (sql-smartedge-bng): Processing generate_sql_clients
Thu Apr 30 12:16:57 2015 : Debug: rlm_sql (sql-smartedge-bng) in generate_sql_clients: query is SELECT id, nasname, shortname, type, secret, server FROM nas_smartedge
Thu Apr 30 12:16:57 2015 : Debug: rlm_sql (sql-smartedge-bng): Reserving sql socket id: 49
TThu Apr 30 13:09:46 2015 : Debug: rlm_sql (sql-smartedge-bng): Read entry nasname=10.173.5.11,shortname=labb0,secret=redback
Thu Apr 30 13:09:46 2015 : Debug: rlm_sql (sql-smartedge-bng): Adding client 10.173.5.11 (labb0, server=smartedge-bng) to clients list
.
.
.
.
.
Thu Apr 30 12:16:57 2015 : Debug: rlm_sql (sql-smartedge-bng): Released sql socket id: 49
When sending a test from the local server
echo "User-Name = 'alex_smartedge', NAS-Identifier = 'labb0', NAS-IP-Address = '10.173.5.11'" | radclient -x -s -c 1 -r 1 -t 3 10.173.5.11:1812 auth redback
Thu Apr 30 12:48:50 2015 : Error: Ignoring request to authentication address 10.173.5.11 port 1812 from unknown client 10.173.5.11 port 60611
Thu Apr 30 12:48:50 2015 : Info: Ready to process requests.
If i add local server to client.conf instead then it works
client labb0{
ipaddr = 10.173.5.11
netmask = 32
secret = redback
require_message_authenticator = no
nastype = other
virtual_server = smartedge-bng
#coa_server = coa
}
echo "User-Name = 'alex_smartedge', NAS-Identifier = 'labb0', NAS-IP-Address = '10.173.5.11'" | radclient -x -s -c 1 -r 1 -t 3 10.173.5.11:1812 auth redback
Sending Access-Request of id 168 to 10.173.5.11 port 1812
User-Name = "alex_smartedge"
NAS-Identifier = "labb0"
NAS-IP-Address = 10.173.5.11
rad_recv: Access-Accept packet from host 10.173.5.11 port 1812, id=168, length=115
DHCP-Max-Leases = 1
Qos-Policing-Profile-Name = "default_qos_policing_policy"
Qos-Metering-Profile-Name = "default_qos_metering_policy"
Context-Name = "BASIC"
Total approved auths: 1
Total denied auths: 0
Total lost auths: 0
#############Radius debug
rad_recv: Access-Request packet from host 10.173.5.11 port 60305, id=168, length=49
User-Name = "alex_smartedge"
NAS-Identifier = "labb0"
NAS-IP-Address = 192.168.6.5
Thu Apr 30 13:03:33 2015 : Info: server smartedge-bng {
Thu Apr 30 13:03:33 2015 : Info: # Executing section authorize from file /usr/local/etc/raddb/sites-enabled/smartedge-bng
Any clues on what could be wrong?
I can't see anything weird in the test conf?
server smartedge-bng
{
authorize
{
bla...
bla...
sql-smartedge-bng
preprocess
perl-smartedge-bng
}
authenticate
{
bla...
bla...
perl-smartedge-bng
}
accounting
{
bla...
bla...
sql-smartedge-bng
perl-smartedge-bng
}
}
### sql.conf ###
##default
sql
{
bla...
bla...
readclients = yes
nas_table = "nas"
$INCLUDE sql/${database}/dialup.conf
}
sql sql-smartedge-bng
{
bla...
bla...
readclients = yes
nas_table = "nas_smartedge"
$INCLUDE sql/${database}/dialup-smartedge-bng.conf
}
sql server2
{
bla..
bla..
$INCLUDE sql/${database}/server2.conf
}
sql server3
{
bla..
bla..
$INCLUDE sql/${database}/server3.conf
}
etc.
etc.
********* DISCLAIMER *********
This message and any attachment are confidential and may be privileged or otherwise protected from disclosure and may include proprietary information. If you are not the intended recipient, please telephone or email the sender and delete this message and any attachment from your system. If you are not the intended recipient you must not copy this message or attachment or disclose the contents to any other person
More information about the Freeradius-Users
mailing list