--- Forwarded mail from [EMAIL PROTECTED]
Date: Thu, 27 Jul 2000 02:40:24 +1000 (EST)
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: BOUNCE [EMAIL PROTECTED]: Message too long (>40000 chars)
>From mikem Thu Jul 27 02:40:19 2000
Received: by oscar.open.com.au (8.9.0/8.9.0) id CAA19901;
Thu, 27 Jul 2000 02:40:19 +1000 (EST)
>Received: from mail.prw.net (mail.prw.net [208.249.78.4]) by
perki.connect.com.au with ESMTP id CAA16175
(8.8.8/IDA-1.7); Thu, 27 Jul 2000 02:35:11 +1000 (EST)
Received: from mail.prw.net (mail.prw.net [208.249.78.4]) by
perki.connect.com.au with ESMTP id CAA16175
(8.8.8/IDA-1.7); Thu, 27 Jul 2000 02:35:11 +1000 (EST)
Received: from whr [208.249.78.227] by mail.prw.net
(SMTPD32-6.00) id A33A2BFB00B6; Wed, 26 Jul 2000 12:35:06 -0400
From: "William Hernandez" <[EMAIL PROTECTED]>
To: "Radiator" <[EMAIL PROTECTED]>, <[EMAIL PROTECTED]>
Subject: RE: (RADIATOR) Simultaneous-use in 2.15
Date: Wed, 26 Jul 2000 12:35:06 -0400
Message-ID: <[EMAIL PROTECTED]>
MIME-Version: 1.0
X-Priority: 3 (Normal)
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0)
In-Reply-To: <00072112424155.00896@hugo>
Importance: Normal
X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700
Content-Type: multipart/mixed;
boundary="----=_NextPart_000_0015_01BFF6FD.ED7F3980"
This is a multi-part message in MIME format.
------=_NextPart_000_0015_01BFF6FD.ED7F3980
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
Hello Hugh -
We had shied away from using an external session database because
we didn't see a way to rebuild the database. The NasType
parameter in the Client block assured that the NAS would be
checked directly for simultaneous use regardless of the state of
the session database.
What we settled on was a modification to the
AuthPORTLIMITCHECK.pm to use finger instead of an SQL query to
count how many times a user was currently logged in. I added
debug statements to AuthPORTLIMITCHECK.pm. I tested on one NAS
(max9) with one user (herculespr.com) and it seems that the
AuthBy is being ignored completely.
Am I barking up the wrong tree? Should I try another approach?
Thanks in advance.
William
-----Original Message-----
From: Hugh Irvine [mailto:[EMAIL PROTECTED]]
Sent: Thursday, July 20, 2000 10:37 PM
To: William Hernandez; Radiator
Subject: RE: (RADIATOR) Simultaneous-use in 2.15
Hello William -
What you are describing below can be accomplished very easily by
using a
Session Database. I have posted several responses to the list
about this topic
over the last couple of days. Have a look at those and get back
to me if you
have any other questions. Note that the session database operates
on a global
basis for your installation - ie. it keeps track of all sessions
on all NAS's.
hth
Hugh
On Fri, 21 Jul 2000, William Hernandez wrote:
> Hugh,
>
> The AuthByPolicy of ContinueUntilAccept clause was in the
radius.cfg file
> from early attempts at setting up the cfg file. I have removed
it.
>
> We want to accomplish checking of simultaneous use across all
of our NAS'S.
>
> All of our users have an UNIX login entry in
/etc/passwd|shadow. Our users
> can select options that allow simultaneous use. In this case
the user will
> also have an entry in /etc/raddb/users.
>
> For example,
> toledo-carazo.com Auth-Type = "System", Simultaneous-Use = 2
> Service-Type = Framed-User,
> Framed-Protocol = MP,
> Framed-IP-Netmask = 255.255.255.255,
> Framed-Compression = Van-Jacobson-TCP-IP,
> Ascend-Maximum-Channels = 2,
> Ascend-Idle-Limit = 1200
>
> herculespr.net Auth-Type = "System", Simultaneous-Use = 2
> Service-Type = Framed-User,
> Framed-Protocol = MP,
> Framed-IP-Address = 208.249.80.161,
> Framed-IP-Netmask = 255.255.255.248,
> Framed-Compression = Van-Jacobson-TCP-IP,
> Ascend-Maximum-Channels = 2,
> NAS-Port-Type = ISDN-Sync,
> Ascend-Route-IP=Route-IP-Yes,
> Ascend-Idle-Limit = 0
>
> For the above users upto 2 users may simultaneously login into
any of the 12
> NAS'S that are currently available. Simultaneous use is not per
NAS, i.e.,
> simultaneous use must be checked for on all 12 of the NAS'S.
>
> Thanks for your help,
> William
>
> -----Original Message-----
> From: Hugh Irvine [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, July 20, 2000 3:48 AM
> To: William Hernandez; Radiator
> Subject: RE: (RADIATOR) Simultaneous-use in 2.15
>
>
>
> Hello William -
>
> Thanks for sending the log file.
>
> The log shows that the user is indeed being rejected by the
first AuthBy
> clause, but your configuration file has an AuthByPolicy of
> ContinueUntilAccept,
> so it goes on to the next AuthBy clause which then accepts the
user.
> Radiator
> is doing exactly what it has been configured to do.
>
> I think you will need to explain what it is you are trying to
accomplish so
> I
> can make some sensible suggestions.
>
> regards
>
> Hugh
>
>
> On Thu, 20 Jul 2000, William Hernandez wrote:
> >
> > Hugh,
> >
> > I've attached an excerpt from our radius.log file.
> >
> > The use "hmcalixto" was already logged in on max3 at
> > Wed Jul 19 12:11:59 2000: Login OK: [hmcalixto] (max3)
> >
> > Thanks in advance.
> > William
> >
> > -----Original Message-----
> > From: Hugh Irvine [mailto:[EMAIL PROTECTED]]
> > Sent: Tuesday, July 18, 2000 7:32 PM
> > To: William Hernandez; Radiator
> > Subject: Re: (RADIATOR) Simultaneous-use in 2.15
> >
> >
> >
> > Hello William -
> >
> > I will need to see a trace 4 debug as well as what you have
sent this
> time.
> >
> > thanks
> >
> > Hugh
> >
> > On Wed, 19 Jul 2000, William Hernandez wrote:
> > >
> > > Hello everyone,
> > >
> > > I'm having problems getting the simultaneous-use check item
to work.
> I've
> > > tried using the internal SessionDatabase and an external
SessionDatabase
> > > (using mysql), but Radiator doesn't report a rejection on a
second login
> > > session either way.
> > >
> > > I've attached my radius.cfg.
> > >
> > > Some sample entries from my users file are:
> > >
> > > company1.com Auth-Type = "System"
> > > Service-Type = Framed-User,
> > > Framed-Protocol = MP,
> > > Framed-IP-Address = 208.249.79.226,
> > > Framed-IP-Netmask = 255.255.255.255,
> > > Framed-Compression = Van-Jacobson-TCP-IP,
> > > Ascend-Maximum-Channels = 2,
> > > NAS-Port-Type = ISDN-Sync,
> > > Ascend-Route-IP=Route-IP-Yes,
> > > Ascend-Idle-Limit = 0
> > >
> > > company2.com Auth-Type = "System"
> > > Service-Type = Framed-User,
> > > Framed-Protocol = PPP,
> > > Framed-IP-Address = 208.249.79.227,
> > > Framed-IP-Netmask = 255.255.255.255,
> > > Framed-Compression = Van-Jacobson-TCP-IP,
> > > Ascend-Idle-Limit = 0
> > >
> > > DEFAULT Hint="LOCAL", Auth-Type = "System",
Simultaneous-Use = 1
> > > Service-Type = Framed-User,
> > > Framed-Protocol = PPP,
> > > Framed-IP-Netmask = 255.255.255.255,
> > > Framed-Compression = Van-Jacobson-TCP-IP,
> > > Ascend-Idle-Limit = 900
> > >
> > > DEFAULT Auth-Type = "System", Simultaneous-Use = 1
> > > Service-Type = Framed-User,
> > > Framed-Protocol = PPP,
> > > Framed-IP-Netmask = 255.255.255.255,
> > > Framed-Compression = Van-Jacobson-TCP-IP,
> > > Ascend-Idle-Limit = 900
> > >
> > > Thanks in advance.
> > >
> > > William Hernández
> > >
> >
> > ----------------------------------------
> > Content-Type: application/octet-stream; name="radius.cfg"
> > Content-Transfer-Encoding: 7bit
> > Content-Description:
> > ----------------------------------------
> >
> > --
> > Radiator: the most portable, flexible and configurable RADIUS
server
> > anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT,
Emerald,
> > Platypus, Freeside, Interbiller, TACACS+, PAM, external, etc,
etc.
> > Available on Unix, Linux, FreeBSD, Windows 95/98/2000, NT,
MacOS X.
> >
> >
> >
>
> ----------------------------------------
> Content-Type: application/octet-stream; name="radius.log"
> Content-Transfer-Encoding: quoted-printable
> Content-Description:
> ----------------------------------------
>
> --
> Radiator: the most portable, flexible and configurable RADIUS
server
> anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT,
Emerald,
> Platypus, Freeside, Interbiller, TACACS+, PAM, external, etc,
etc.
> Available on Unix, Linux, FreeBSD, Windows 95/98/2000, NT,
MacOS X.
--
Radiator: the most portable, flexible and configurable RADIUS
server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT,
Emerald,
Platypus, Freeside, Interbiller, TACACS+, PAM, external, etc,
etc.
Available on Unix, Linux, FreeBSD, Windows 95/98/2000, NT, MacOS
X.
------=_NextPart_000_0015_01BFF6FD.ED7F3980
Content-Type: application/octet-stream;
name="radius.cfg"
Content-Transfer-Encoding: quoted-printable
Content-Disposition: attachment;
filename="radius.cfg"
# livingCompat.cfg
#
# This is a simple Radiator config file that allows you
# to continue using a bog standard Livingston or
# similar users file with Radiator, It implements the
# Auth-Type=3D"System" check item by using AuthBy UNIX
#
# You will probably want to change the definitions of=20
# DbDir, LogDir and the Filename parameters
#
# Author: Mike McCauley ([EMAIL PROTECTED])
# Copyright (C) 1997 Open System Consultants
# $Id: livingCompat.cfg,v 1.3 1999/07/12 02:01:35 mikem Exp $
#LogStdout
Trace 4
PidFile /var/run/radiusd.pid
AuthPort 1812
AcctPort 1813
LogDir /var/log/radacct
DbDir /etc/raddb
LogFile /var/log/radius.log
DictionaryFile /etc/raddb/dictionary.ascend2
FingerProg /usr/bin/finger
SnmpgetProg /usr/bin/snmpget
RewriteUsername tr/[A-Z]/[a-z]/
# This clause defines a single client to listen to
# You will probably want to change localhost and mysecret
# to suit your site.
<Client localhost>
Secret prwradius
</Client>
<Client max1>
Secret maxradius
#DupInterval 1
# To force Radiator to directly query the NAS to check on simultaneous
# sessions (see 6.4.5 in manual)
NasType Ascend
</Client>
<Client max2>
Secret maxradius
#DupInterval 1
# To force Radiator to directly query the NAS to check on simultaneous
# sessions (see 6.4.5 in manual)
NasType Ascend
</Client>
<Client max3>
Secret maxradius
#DupInterval 1
# To force Radiator to directly query the NAS to check on simultaneous
# sessions (see 6.4.5 in manual)
NasType Ascend
</Client>
<Client max4>
Secret maxradius
#DupInterval 1
# To force Radiator to directly query the NAS to check on simultaneous
# sessions (see 6.4.5 in manual)
NasType Ascend
</Client>
<Client max5>
Secret maxradius
#DupInterval 1
# To force Radiator to directly query the NAS to check on simultaneous
# sessions (see 6.4.5 in manual)
NasType Ascend
</Client>
<Client max6>
Secret maxradius
#DupInterval 1
# To force Radiator to directly query the NAS to check on simultaneous
# sessions (see 6.4.5 in manual)
NasType Ascend
</Client>
<Client max7>
Secret maxradius
#DupInterval 1
# To force Radiator to directly query the NAS to check on simultaneous
# sessions (see 6.4.5 in manual)
NasType Ascend
</Client>
<Client max8>
Secret maxradius
#DupInterval 1
# To force Radiator to directly query the NAS to check on simultaneous
# sessions (see 6.4.5 in manual)
NasType Ascend
</Client>
<Client max9>
Secret maxradius
#DupInterval 1
# To force Radiator to directly query the NAS to check on simultaneous
# sessions (see 6.4.5 in manual)
NasType Ascend
</Client>
<Client max10>
Secret maxradius
#DupInterval 1
# To force Radiator to directly query the NAS to check on simultaneous
# sessions (see 6.4.5 in manual)
NasType Ascend
</Client>
<Client max11>
Secret maxradius
#DupInterval 1
# To force Radiator to directly query the NAS to check on simultaneous
# sessions (see 6.4.5 in manual)
NasType Ascend
</Client>
<Client max12>
Secret maxradius
#DupInterval 1
# To force Radiator to directly query the NAS to check on simultaneous
# sessions (see 6.4.5 in manual)
NasType Ascend
</Client>
<Client DEFAULT>
Secret mysecret
#DupInterval 1
#FramedGroupBaseAddress 10.0.0.1
#FramedGroupBaseAddress 10.0.1.1
#FramedGroupBaseAddress 10.0.2.1
#FramedGroupMaxPortsPerClassC 20
# To force Radiator to directly query the NAS to check on simultaneous
# sessions (see 6.4.5 in manual)
NasType Ascend
</Client>
# This clause defines an AuthBy FILE with Identifier Check-FILE
<AuthBy FILE>
Identifier Check-FILE
Filename /etc/raddb/users
</AuthBy>
# This clause defines an authorization method that will be used
# by any users in the database with Auth-Type=3D"System". It will
# match the "Identifier System"
<AuthBy UNIX>
Identifier System
Filename /etc/shadow
</AuthBy>
# This clause means we will handle any realm that arrives
<Realm DEFAULT>
#AuthByPolicy ContinueUntilAccept
AuthBy Check-FILE
AuthBy System
# This clause applies usage limits. It requires that you have
# a <SessionDatabase SQL> defined in your Radiator configuration.
<AuthBy PORTLIMITCHECK>
SessionLimit 1
</AuthBy>
#AccountingHandled
# Log accounting to the detail file in LogDir
#AcctLogFileName /var/log/radacct/%C/detail
AcctLogFileName /var/log/radacct/detail
PasswordLogFileName /var/log/radius.log
ExcludeFromPasswordLog root
</Realm>
#<SessionDatabase SQL>
# DBSource dbi:mysql:radius
# DBUsername root
# DBAuth netroot99
# This SQL statement is executed whenever a new user session=20
# starts (i.e. when an Accounting-Request Start message is =
received).=20
# It is expected to record the details of the new session in the =
# SQL database. Special formatting characters may be used=20
# (the %{attribute} ones are probably the most useful).
#AddQuery insert into RADONLINE (USERNAME, NASIDENTIFIER, NASPORT, \
#ACCTSESSIONID, TIME_STAMP, FRAMEDADDRESS, PORTTYPE, \
#SERVICETYPE) values ('%n', '%N', %{NAS-Port}, '%{Acct-Session-Id}', \
#%{Timestamp}, '%{Framed-IP-Address}', '%{Port-Type}', \
#'%{Service-Type}')
# This SQL statement is executed whenever a Simultaneous-Use=20
# check item or MaxSessions must be checked during an =
Access-Request.=20
# It is expected to find and return details of all the user=20
# sessions currently in the Session Database for the given =
User-Name.=20
#CountQuery select NASIDENTIFIER, NASPORT, ACCTSESSIONID \
#from RADONLINE where USERNAME=3D'%n'
#</SessionDatabase>
------=_NextPart_000_0015_01BFF6FD.ED7F3980
Content-Type: application/octet-stream;
name="radius.log"
Content-Transfer-Encoding: quoted-printable
Content-Disposition: attachment;
filename="radius.log"
Wed Jul 26 11:36:33 2000: DEBUG: Reading group file /etc/group
Wed Jul 26 11:36:33 2000: INFO: Server started: Radiator 2.15
Wed Jul 26 11:37:24 2000: NOTICE: SIGTERM received: stopping
Wed Jul 26 11:37:24 2000: DEBUG: Reading users file /etc/raddb/users
Wed Jul 26 11:37:25 2000: DEBUG: Reading group file /etc/group
Wed Jul 26 11:37:25 2000: INFO: Server started: Radiator 2.15
Wed Jul 26 11:39:34 2000: DEBUG: Packet dump:
*** Received from 208.249.78.17 port 1042 ....
Code: Accounting-Request
Identifier: 26
Authentic: <10><4><233>J<149>3<138><184><236>lu<171><192><2><243><212>
Attributes:
NAS-IP-Address =3D 208.249.78.17
Acct-Status-Type =3D Accounting-On
Acct-Delay-Time =3D 0
Acct-Session-Id =3D "620000525"
Wed Jul 26 11:39:34 2000: DEBUG: Handling request with Handler =
'Realm=3DDEFAULT'
Wed Jul 26 11:39:34 2000: DEBUG: Deleting all sessions for =
208.249.78.17
Wed Jul 26 11:39:34 2000: DEBUG: got On/Off from 208.249.78.17
Wed Jul 26 11:39:34 2000: DEBUG: Handling with Radius::AuthFILE
Wed Jul 26 11:39:34 2000: DEBUG: Accounting accepted
Wed Jul 26 11:39:34 2000: DEBUG: Packet dump:
*** Sending to 208.249.78.17 port 1042 ....
Code: Accounting-Response
Identifier: 26
Authentic: <10><4><233>J<149>3<138><184><236>lu<171><192><2><243><212>
Attributes:
Wed Jul 26 11:39:34 2000: DEBUG: Packet dump:
*** Received from 208.249.78.17 port 1025 ....
Code: Access-Request
Identifier: 116
Authentic: <246>yC<173><176><239><211><253><130><217>zN:<201>y<161>
Attributes:
User-Name =3D "dovbs-max9.prw.net-1"
User-Password =3D =
"C<146><177>D<252><178><7>a<201><241>Tz<219><250>s<160>"
NAS-IP-Address =3D 208.249.78.17
NAS-Port =3D 0
NAS-Port-Type =3D Virtual
Service-Type =3D Outbound
Wed Jul 26 11:39:34 2000: DEBUG: Rewrote user name to =
dovbs-max9.prw.net-1
Wed Jul 26 11:39:34 2000: DEBUG: Handling request with Handler =
'Realm=3DDEFAULT'
Wed Jul 26 11:39:34 2000: DEBUG: Deleting session for =
dovbs-max9.prw.net-1, 208.249.78.17, 0
Wed Jul 26 11:39:34 2000: DEBUG: Handling with Radius::AuthFILE
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
dovbs-max9.prw.net-1
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
DEFAULT
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE REJECT: Check item =
Hint expression 'LOCAL' does not match '' in request
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
DEFAULT1
Wed Jul 26 11:39:34 2000: DEBUG: Handling with Radius::AuthUNIX
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthUNIX looks for match with =
dovbs-max9.prw.net-1
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE REJECT: No such user
Wed Jul 26 11:39:34 2000: INFO: Access rejected for =
dovbs-max9.prw.net-1: No such user
Wed Jul 26 11:39:34 2000: DEBUG: Packet dump:
*** Sending to 208.249.78.17 port 1025 ....
Code: Access-Reject
Identifier: 116
Authentic: <246>yC<173><176><239><211><253><130><217>zN:<201>y<161>
Attributes:
Reply-Message =3D "Request Denied"
Wed Jul 26 11:39:34 2000: DEBUG: Packet dump:
*** Received from 208.249.78.17 port 1025 ....
Code: Access-Request
Identifier: 117
Authentic: <246>yC<173><176><239><211><253><130><217>zN:<201>y<161>
Attributes:
User-Name =3D "route-max9.prw.net-1"
User-Password =3D =
"C<146><177>D<252><178><7>a<201><241>Tz<219><250>s<160>"
NAS-IP-Address =3D 208.249.78.17
NAS-Port =3D 0
NAS-Port-Type =3D Virtual
Service-Type =3D Outbound
Wed Jul 26 11:39:34 2000: DEBUG: Rewrote user name to =
route-max9.prw.net-1
Wed Jul 26 11:39:34 2000: DEBUG: Handling request with Handler =
'Realm=3DDEFAULT'
Wed Jul 26 11:39:34 2000: DEBUG: Deleting session for =
route-max9.prw.net-1, 208.249.78.17, 0
Wed Jul 26 11:39:34 2000: DEBUG: Handling with Radius::AuthFILE
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
route-max9.prw.net-1
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
DEFAULT
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE REJECT: Check item =
Hint expression 'LOCAL' does not match '' in request
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
DEFAULT1
Wed Jul 26 11:39:34 2000: DEBUG: Handling with Radius::AuthUNIX
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthUNIX looks for match with =
route-max9.prw.net-1
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE REJECT: No such user
Wed Jul 26 11:39:34 2000: INFO: Access rejected for =
route-max9.prw.net-1: No such user
Wed Jul 26 11:39:34 2000: DEBUG: Packet dump:
*** Sending to 208.249.78.17 port 1025 ....
Code: Access-Reject
Identifier: 117
Authentic: <246>yC<173><176><239><211><253><130><217>zN:<201>y<161>
Attributes:
Reply-Message =3D "Request Denied"
Wed Jul 26 11:39:34 2000: DEBUG: Packet dump:
*** Received from 208.249.78.17 port 1025 ....
Code: Access-Request
Identifier: 118
Authentic: <246>yC<173><176><239><211><253><130><217>zN:<201>y<161>
Attributes:
User-Name =3D "pools-max9.prw.net"
User-Password =3D =
"C<146><177>D<252><178><7>a<201><241>Tz<219><250>s<160>"
NAS-IP-Address =3D 208.249.78.17
NAS-Port =3D 0
NAS-Port-Type =3D Virtual
Service-Type =3D Outbound
Wed Jul 26 11:39:34 2000: DEBUG: Rewrote user name to pools-max9.prw.net
Wed Jul 26 11:39:34 2000: DEBUG: Handling request with Handler =
'Realm=3DDEFAULT'
Wed Jul 26 11:39:34 2000: DEBUG: Deleting session for =
pools-max9.prw.net, 208.249.78.17, 0
Wed Jul 26 11:39:34 2000: DEBUG: Handling with Radius::AuthFILE
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
pools-max9.prw.net
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
DEFAULT
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE REJECT: Check item =
Hint expression 'LOCAL' does not match '' in request
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
DEFAULT1
Wed Jul 26 11:39:34 2000: DEBUG: Handling with Radius::AuthUNIX
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthUNIX looks for match with =
pools-max9.prw.net
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE REJECT: No such user
Wed Jul 26 11:39:34 2000: INFO: Access rejected for pools-max9.prw.net: =
No such user
Wed Jul 26 11:39:34 2000: DEBUG: Packet dump:
*** Sending to 208.249.78.17 port 1025 ....
Code: Access-Reject
Identifier: 118
Authentic: <246>yC<173><176><239><211><253><130><217>zN:<201>y<161>
Attributes:
Reply-Message =3D "Request Denied"
Wed Jul 26 11:39:34 2000: DEBUG: Packet dump:
*** Received from 208.249.78.17 port 1025 ....
Code: Access-Request
Identifier: 119
Authentic: <246>yC<173><176><239><211><253><130><217>zN:<201>y<161>
Attributes:
User-Name =3D "permconn-max9.prw.net-1"
User-Password =3D =
"C<146><177>D<252><178><7>a<201><241>Tz<219><250>s<160>"
NAS-IP-Address =3D 208.249.78.17
NAS-Port =3D 0
NAS-Port-Type =3D Virtual
Service-Type =3D Outbound
State =3D ""
Wed Jul 26 11:39:34 2000: DEBUG: Rewrote user name to =
permconn-max9.prw.net-1
Wed Jul 26 11:39:34 2000: DEBUG: Handling request with Handler =
'Realm=3DDEFAULT'
Wed Jul 26 11:39:34 2000: DEBUG: Deleting session for =
permconn-max9.prw.net-1, 208.249.78.17, 0
Wed Jul 26 11:39:34 2000: DEBUG: Handling with Radius::AuthFILE
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
permconn-max9.prw.net-1
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
DEFAULT
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE REJECT: Check item =
Hint expression 'LOCAL' does not match '' in request
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
DEFAULT1
Wed Jul 26 11:39:34 2000: DEBUG: Handling with Radius::AuthUNIX
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthUNIX looks for match with =
permconn-max9.prw.net-1
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE REJECT: No such user
Wed Jul 26 11:39:34 2000: INFO: Access rejected for =
permconn-max9.prw.net-1: No such user
Wed Jul 26 11:39:34 2000: DEBUG: Packet dump:
*** Sending to 208.249.78.17 port 1025 ....
Code: Access-Reject
Identifier: 119
Authentic: <246>yC<173><176><239><211><253><130><217>zN:<201>y<161>
Attributes:
Reply-Message =3D "Request Denied"
Wed Jul 26 11:39:34 2000: DEBUG: Packet dump:
*** Received from 208.249.78.17 port 1025 ....
Code: Access-Request
Identifier: 120
Authentic: <246>yC<173><176><239><211><253><130><217>zN:<201>y<161>
Attributes:
User-Name =3D "frdlink-max9.prw.net-1"
User-Password =3D =
"C<146><177>D<252><178><7>a<201><241>Tz<219><250>s<160>"
NAS-IP-Address =3D 208.249.78.17
NAS-Port =3D 0
NAS-Port-Type =3D Virtual
Service-Type =3D Outbound
Wed Jul 26 11:39:34 2000: DEBUG: Rewrote user name to =
frdlink-max9.prw.net-1
Wed Jul 26 11:39:34 2000: DEBUG: Handling request with Handler =
'Realm=3DDEFAULT'
Wed Jul 26 11:39:34 2000: DEBUG: Deleting session for =
frdlink-max9.prw.net-1, 208.249.78.17, 0
Wed Jul 26 11:39:34 2000: DEBUG: Handling with Radius::AuthFILE
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
frdlink-max9.prw.net-1
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
DEFAULT
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE REJECT: Check item =
Hint expression 'LOCAL' does not match '' in request
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
DEFAULT1
Wed Jul 26 11:39:34 2000: DEBUG: Handling with Radius::AuthUNIX
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthUNIX looks for match with =
frdlink-max9.prw.net-1
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE REJECT: No such user
Wed Jul 26 11:39:34 2000: INFO: Access rejected for =
frdlink-max9.prw.net-1: No such user
Wed Jul 26 11:39:34 2000: DEBUG: Packet dump:
*** Sending to 208.249.78.17 port 1025 ....
Code: Access-Reject
Identifier: 120
Authentic: <246>yC<173><176><239><211><253><130><217>zN:<201>y<161>
Attributes:
Reply-Message =3D "Request Denied"
Wed Jul 26 11:39:34 2000: DEBUG: Packet dump:
*** Received from 208.249.78.17 port 1025 ....
Code: Access-Request
Identifier: 121
Authentic: <246>yC<173><176><239><211><253><130><217>zN:<201>y<161>
Attributes:
User-Name =3D "bridge-max9.prw.net-1"
User-Password =3D =
"C<146><177>D<252><178><7>a<201><241>Tz<219><250>s<160>"
NAS-IP-Address =3D 208.249.78.17
NAS-Port =3D 0
NAS-Port-Type =3D Virtual
Service-Type =3D Outbound
Wed Jul 26 11:39:34 2000: DEBUG: Rewrote user name to =
bridge-max9.prw.net-1
Wed Jul 26 11:39:34 2000: DEBUG: Handling request with Handler =
'Realm=3DDEFAULT'
Wed Jul 26 11:39:34 2000: DEBUG: Deleting session for =
bridge-max9.prw.net-1, 208.249.78.17, 0
Wed Jul 26 11:39:34 2000: DEBUG: Handling with Radius::AuthFILE
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
bridge-max9.prw.net-1
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
DEFAULT
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE REJECT: Check item =
Hint expression 'LOCAL' does not match '' in request
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
DEFAULT1
Wed Jul 26 11:39:34 2000: DEBUG: Handling with Radius::AuthUNIX
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthUNIX looks for match with =
bridge-max9.prw.net-1
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE REJECT: No such user
Wed Jul 26 11:39:34 2000: INFO: Access rejected for =
bridge-max9.prw.net-1: No such user
Wed Jul 26 11:39:34 2000: DEBUG: Packet dump:
*** Sending to 208.249.78.17 port 1025 ....
Code: Access-Reject
Identifier: 121
Authentic: <246>yC<173><176><239><211><253><130><217>zN:<201>y<161>
Attributes:
Reply-Message =3D "Request Denied"
Wed Jul 26 11:39:34 2000: DEBUG: Packet dump:
*** Received from 208.249.78.17 port 1025 ....
Code: Access-Request
Identifier: 122
Authentic: <246>yC<173><176><239><211><253><130><217>zN:<201>y<161>
Attributes:
User-Name =3D "initial-banner-max9.prw.net"
User-Password =3D =
"C<146><177>D<252><178><7>a<201><241>Tz<219><250>s<160>"
NAS-IP-Address =3D 208.249.78.17
NAS-Port =3D 0
NAS-Port-Type =3D Virtual
Service-Type =3D Outbound
Wed Jul 26 11:39:34 2000: DEBUG: Rewrote user name to =
initial-banner-max9.prw.net
Wed Jul 26 11:39:34 2000: DEBUG: Handling request with Handler =
'Realm=3DDEFAULT'
Wed Jul 26 11:39:34 2000: DEBUG: Deleting session for =
initial-banner-max9.prw.net, 208.249.78.17, 0
Wed Jul 26 11:39:34 2000: DEBUG: Handling with Radius::AuthFILE
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
initial-banner-max9.prw.net
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
DEFAULT
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE REJECT: Check item =
Hint expression 'LOCAL' does not match '' in request
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
DEFAULT1
Wed Jul 26 11:39:34 2000: DEBUG: Handling with Radius::AuthUNIX
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthUNIX looks for match with =
initial-banner-max9.prw.net
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE REJECT: No such user
Wed Jul 26 11:39:34 2000: INFO: Access rejected for =
initial-banner-max9.prw.net: No such user
Wed Jul 26 11:39:34 2000: DEBUG: Packet dump:
*** Sending to 208.249.78.17 port 1025 ....
Code: Access-Reject
Identifier: 122
Authentic: <246>yC<173><176><239><211><253><130><217>zN:<201>y<161>
Attributes:
Reply-Message =3D "Request Denied"
Wed Jul 26 11:39:34 2000: DEBUG: Packet dump:
*** Received from 208.249.78.17 port 1025 ....
Code: Access-Request
Identifier: 123
Authentic: <246>yC<173><176><239><211><253><130><217>zN:<201>y<161>
Attributes:
User-Name =3D "banner"
User-Password =3D =
"C<146><177>D<252><178><7>a<201><241>Tz<219><250>s<160>"
NAS-IP-Address =3D 208.249.78.17
NAS-Port =3D 0
NAS-Port-Type =3D Virtual
Service-Type =3D Outbound
Wed Jul 26 11:39:34 2000: DEBUG: Rewrote user name to banner
Wed Jul 26 11:39:34 2000: DEBUG: Handling request with Handler =
'Realm=3DDEFAULT'
Wed Jul 26 11:39:34 2000: DEBUG: Deleting session for banner, =
208.249.78.17, 0
Wed Jul 26 11:39:34 2000: DEBUG: Handling with Radius::AuthFILE
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
banner
Wed Jul 26 11:39:34 2000: Login OK: [banner] (max9)
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE ACCEPT:=20
Wed Jul 26 11:39:34 2000: DEBUG: Access accepted for banner
Wed Jul 26 11:39:34 2000: DEBUG: Packet dump:
*** Sending to 208.249.78.17 port 1025 ....
Code: Access-Accept
Identifier: 123
Authentic: <246>yC<173><176><239><211><253><130><217>zN:<201>y<161>
Attributes:
Reply-Message =3D " PRW.NET Terminal Server"
Reply-Message =3D " "
Reply-Message =3D " Please select host for TELNET session"
Ascend-Host-Info =3D "208.249.78.6 home.prw.net"
Wed Jul 26 11:39:34 2000: DEBUG: Packet dump:
*** Received from 208.249.78.17 port 1025 ....
Code: Access-Request
Identifier: 124
Authentic: <246>yC<173><176><239><211><253><130><217>zN:<201>y<161>
Attributes:
User-Name =3D "dovbs-1"
User-Password =3D =
"C<146><177>D<252><178><7>a<201><241>Tz<219><250>s<160>"
NAS-IP-Address =3D 208.249.78.17
NAS-Port =3D 0
NAS-Port-Type =3D Virtual
Service-Type =3D Outbound
Wed Jul 26 11:39:34 2000: DEBUG: Rewrote user name to dovbs-1
Wed Jul 26 11:39:34 2000: DEBUG: Handling request with Handler =
'Realm=3DDEFAULT'
Wed Jul 26 11:39:34 2000: DEBUG: Deleting session for dovbs-1, =
208.249.78.17, 0
Wed Jul 26 11:39:34 2000: DEBUG: Handling with Radius::AuthFILE
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
dovbs-1
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
DEFAULT
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE REJECT: Check item =
Hint expression 'LOCAL' does not match '' in request
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
DEFAULT1
Wed Jul 26 11:39:34 2000: DEBUG: Handling with Radius::AuthUNIX
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthUNIX looks for match with =
dovbs-1
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE REJECT: No such user
Wed Jul 26 11:39:34 2000: INFO: Access rejected for dovbs-1: No such =
user
Wed Jul 26 11:39:34 2000: DEBUG: Packet dump:
*** Sending to 208.249.78.17 port 1025 ....
Code: Access-Reject
Identifier: 124
Authentic: <246>yC<173><176><239><211><253><130><217>zN:<201>y<161>
Attributes:
Reply-Message =3D "Request Denied"
Wed Jul 26 11:39:34 2000: DEBUG: Packet dump:
*** Received from 208.249.78.17 port 1025 ....
Code: Access-Request
Identifier: 125
Authentic: <246>yC<173><176><239><211><253><130><217>zN:<201>y<161>
Attributes:
User-Name =3D "route-1"
User-Password =3D =
"C<146><177>D<252><178><7>a<201><241>Tz<219><250>s<160>"
NAS-IP-Address =3D 208.249.78.17
NAS-Port =3D 0
NAS-Port-Type =3D Virtual
Service-Type =3D Outbound
Wed Jul 26 11:39:34 2000: DEBUG: Rewrote user name to route-1
Wed Jul 26 11:39:34 2000: DEBUG: Handling request with Handler =
'Realm=3DDEFAULT'
Wed Jul 26 11:39:34 2000: DEBUG: Deleting session for route-1, =
208.249.78.17, 0
Wed Jul 26 11:39:34 2000: DEBUG: Handling with Radius::AuthFILE
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
route-1
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
DEFAULT
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE REJECT: Check item =
Hint expression 'LOCAL' does not match '' in request
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE looks for match with =
DEFAULT1
Wed Jul 26 11:39:34 2000: DEBUG: Handling with Radius::AuthUNIX
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthUNIX looks for match with =
route-1
Wed Jul 26 11:39:34 2000: DEBUG: Radius::AuthFILE REJECT: No such user
Wed Jul 26 11:39:34 2000: INFO: Access rejected for route-1: No such =
user
Wed Jul 26 11:39:34 2000: DEBUG: Packet dump:
*** Sending to 208.249.78.17 port 1025 ....
Code: Access-Reject
Identifier: 125
Authentic: <246>yC<173><176><239><211><253><130><217>zN:<201>y<161>
Attributes:
Reply-Message =3D "Request Denied"
.... rest truncated
--
Mike McCauley [EMAIL PROTECTED]
Open System Consultants Pty. Ltd Unix, Perl, Motif, C++, WWW
24 Bateman St Hampton, VIC 3188 Australia http://www.open.com.au
Phone +61 3 9598-0985 Fax +61 3 9598-0955
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory etc etc
on Unix, Win95/8, 2000, NT, MacOS 9, MacOS X
===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
