Proxy server rejects/failed auth request
srithar jeevadurai
srijeevadurai1 at gmail.com
Wed Dec 23 13:34:59 CET 2015
Dear Friends,
I need your help to fix the proxy implementation please.
I have sent the configuration files in the previous email. I kindly request
you to help to fix the proxy impl please.
I changed the type = auth (one listen structure) and type =acct (another
listen structure) in the radiusd.conf file of proxy system.
After doing that change, I am getting below error message.
*Auth: Login incorrect: [user at abc.com <user at abc.com>] (from client
222.222.222.90 port 16679 cli 3455454534)*
I wonder my proxy is trying to validate the auth request, it suppose to
send it to home server instead of validating the request.
On Tue, Dec 22, 2015 at 10:22 PM, srithar jeevadurai <
srijeevadurai1 at gmail.com> wrote:
> Dear Friends,
>
> I have attached the freeradius configuration in the email. I kindly
> request you to help to fulfill our requirement please.
>
>
> On 90 (222.222.222.90) server proxy server suppose to run and radius NAS
> simulator has to send auth+acct to proxy server.
>
> Proxy radius server has to route each (auth+acct) to 80 server.
>
> On 80 (222.222.222.80), auth port is 1822 and acct port is 1823.
>
>
> Once I succeed with one home server then I will add more home server for
> the proxy server (on 90 server).
>
> I kindly request you to help on this please. I am new to proxy setup of
> freeradius.
>
>
>
>
> On Tue, Dec 22, 2015 at 9:50 PM, srithar jeevadurai <
> srijeevadurai1 at gmail.com> wrote:
>
>> Hi Team,
>>
>>
>> After doing below change to the proxy server.
>>
>>
>> File: radiusd.conf
>>
>> -- auth proxy
>> listen {
>> ipaddr = 234.223.454.556
>> port = 1812
>> type = proxy
>> }
>>
>> --account proxy
>> listen {
>> ipaddr = 234.223.454.556
>> port = 1813
>> type = proxy
>> }
>>
>> I am getting below error message in the radius.log file
>>
>> * Error: Invalid packet code 4 sent to a proxy port from home server*
>>
>> I have checked the radius code, it seems to be that it is expecting
>> response instead of radius request.
>> I believe that the configuration may be wrong. Can you please guide me on
>> the same?
>>
>>
>> On Tue, Dec 22, 2015 at 9:43 PM, srithar jeevadurai <
>> srijeevadurai1 at gmail.com> wrote:
>>
>>> Hi Team,
>>>
>>> Do we need to keep listen config as below for proxy server?
>>>
>>> File: radiusd.conf
>>>
>>> -- auth proxy
>>> listen {
>>> ipaddr = 234.223.454.556
>>> port = 1812
>>> type = proxy
>>> }
>>>
>>> --account proxy
>>> listen {
>>> ipaddr = 234.223.454.556
>>> port = 1813
>>> type = proxy
>>> }
>>>
>>>
>>>
>>>
>>> On Tue, Dec 22, 2015 at 7:53 PM, srithar jeevadurai <
>>> srijeevadurai1 at gmail.com> wrote:
>>>
>>>> Hi Friends,
>>>>
>>>> I have created the proxy setup ready and made configuration changes as
>>>> per my knowledge.
>>>>
>>>> While trying to send request from NAS simulator, it is giving below
>>>> error message in radius.log
>>>>
>>>> *Tue Dec 22 19:36:46 2015 : Auth: Login incorrect: [asdf at company.com
>>>> <asdf at company.com>] (from client 234.224.654.123 port 16679 cli 355545455)*
>>>>
>>>>
>>>> config file Users has below difference compare to installation file
>>>> users. Can you please help me to fix the same?
>>>>
>>>>
>>>>
>>>> < DEFAULT Service-Type == Framed-User, Framed-Protocol == 7
>>>> < Framed-IP-Netmask = 255.255.255.255,
>>>> < MS-Primary-DNS-Server == 195.68.0.1,
>>>> < MS-Secondary-DNS-Server == 195.68.0.2,
>>>> < Service-Type == Framed-User,
>>>> < Framed-Protocol == 7,
>>>> < Fall-Through == no
>>>>
>>>> One more request, I could not find any connection between proxy radius
>>>> and home server radius, Is the connection only happen when it is required?
>>>> i.e. while sending request from proxy to home server.
>>>>
>>>>
>>>>
>>>> --
>>>> Regards,
>>>> Srithar Durairaj
>>>> Alternate Mail I.D: srijeevadurai1 at yahoo.co.in
>>>> Mobile: +919886251852
>>>>
>>>>
>>>>
>>>
>>>
>>> --
>>> Regards,
>>> Srithar Durairaj
>>> Alternate Mail I.D: srijeevadurai1 at yahoo.co.in
>>> Mobile: +919886251852
>>>
>>>
>>>
>>
>>
>> --
>> Regards,
>> Srithar Durairaj
>> Alternate Mail I.D: srijeevadurai1 at yahoo.co.in
>> Mobile: +919886251852
>>
>>
>>
>
>
> --
> Regards,
> Srithar Durairaj
> Alternate Mail I.D: srijeevadurai1 at yahoo.co.in
> Mobile: +919886251852
>
>
>
--
Regards,
Srithar Durairaj
Alternate Mail I.D: srijeevadurai1 at yahoo.co.in
Mobile: +919886251852
More information about the Freeradius-Users
mailing list