Проблема следующая:
freebsd 6.1
mpd 3.18 с патчами отсюда
Авторизация проходит нормально, но в мониторинге не видно пользовательскую сессию, где копать?
Не видно сессий
-
~AsmodeuS~
- Site Admin
- Сообщения: 5749
- Зарегистрирован: Пт янв 28, 2005 3:11 pm
- Контактная информация:
-
~AsmodeuS~
- Site Admin
- Сообщения: 5749
- Зарегистрирован: Пт янв 28, 2005 3:11 pm
- Контактная информация:
-
~AsmodeuS~
- Site Admin
- Сообщения: 5749
- Зарегистрирован: Пт янв 28, 2005 3:11 pm
- Контактная информация:
Все подключается, авторизацию проходит, но сессии нет, инета нет/
Не могу разобраться, ткните носом пжлста
radiusd -x
mpd -c 10001
abills.log
Не могу разобраться, ткните носом пжлста
radiusd -x
Код: Выделить всё
Starting - reading configuration files ...
Using deprecated naslist file. Support for this will go away soon.
Using deprecated clients file. Support for this will go away soon.
Module: Loaded exec
rlm_exec: Wait=yes but no output defined. Did you mean output=none?
Module: Instantiated exec (exec)
Module: Loaded expr
Module: Instantiated expr (expr)
Module: Loaded PAP
Module: Instantiated pap (pap)
Module: Loaded CHAP
Module: Instantiated chap (chap)
Module: Loaded MS-CHAP
Module: Instantiated mschap (mschap)
Module: Loaded System
Module: Instantiated unix (unix)
Module: Loaded eap
rlm_eap: Loaded and initialized type md5
rlm_eap: Loaded and initialized type leap
rlm_eap: Loaded and initialized type gtc
rlm_eap: Loaded and initialized type mschapv2
Module: Instantiated eap (eap)
Module: Loaded preprocess
Module: Instantiated preprocess (preprocess)
Module: Loaded detail
Module: Instantiated detail (auth_log)
Module: Loaded files
Module: Instantiated files (files)
Module: Loaded Acct-Unique-Session-Id
Module: Instantiated acct_unique (acct_unique)
Module: Loaded realm
Module: Instantiated realm (suffix)
Module: Instantiated detail (detail)
Module: Loaded radutmp
Module: Instantiated radutmp (radutmp)
Initializing the thread pool...
Listening on authentication *:1812
Listening on accounting *:1813
Ready to process requests.
rad_recv: Access-Request packet from host 192.168.10.1:51709, id=61, length=166
NAS-Identifier = "rr"
NAS-IP-Address = 192.168.10.1
NAS-Port = 0
NAS-Port-Type = Virtual
Service-Type = Framed-User
Framed-Protocol = PPP
Calling-Station-Id = "192.168.10.15 / 00:40:45:2b:f7:6d / nve0"
User-Name = "111333"
CHAP-Password = 0x017173a6196ea7da19149183127422abae
CHAP-Challenge = 0xbb1e68226695b5e48c54b162edc5bb0eda66b3d78b5a2a914705d33c4f83fa8bd353ae39e8631d74b7
Exec-Program-Wait: value-pairs: Session-Timeout = 604800, Exppp-Traffic-Limit = 587202560, Framed-IP-Address = 192.168.4.110, Framed-IP-Netmask = 255.255.255.255,
Exec-Program: returned: 0
Login OK: [111333/<CHAP-Password>] (from client 192.168.10.1 port 0 cli 192.168.10.15 / 00:40:45:2b:f7:6d / nve0)
Sending Access-Accept of id 61 to 192.168.10.1 port 51709
Session-Timeout = 604800
Exppp-Traffic-Limit = 587202560
Framed-IP-Address = 192.168.4.110
Framed-IP-Netmask = 255.255.255.255
rad_recv: Accounting-Request packet from host 192.168.10.1:55703, id=52, length=158
NAS-Identifier = "rr"
NAS-IP-Address = 192.168.10.1
NAS-Port = 0
NAS-Port-Type = Virtual
Service-Type = Framed-User
Framed-Protocol = PPP
Calling-Station-Id = "192.168.10.15 / 00:40:45:2b:f7:6d / nve0"
User-Name = "111333"
Framed-IP-Address = 192.168.4.110
Acct-Status-Type = Start
Acct-Session-Id = "2088225-pptp0"
Acct-Multi-Session-Id = "2088225-pptp0"
Acct-Link-Count = 1
Acct-Authentic = RADIUS
Sending Accounting-Response of id 52 to 192.168.10.1 port 55703
Код: Выделить всё
Multi-link PPP for FreeBSD, by Archie L. Cobbs.
Based on iij-ppp, by Toshiharu OHNO.
mpd: pid 7738, version 3.18 (root@rr 19:48 20-Feb-2007)
mpd: telnet console address is 0.0.0.0:10001
[pptp0] ppp node is "mpd-pptp0"
[pptp0] using interface ng0
mpd: local IP address for PPTP is 192.168.10.1
[pptp1] ppp node is "mpd-pptp1"
[pptp1] using interface ng1
[pptp2] ppp node is "mpd-pptp2"
[pptp2] using interface ng2
[pptp2:pptp2] mpd: PPTP connection from 192.168.10.15:1188
pptp0: attached to connection with 192.168.10.15:1188
[pptp0] IFACE: Open event
[pptp0] IPCP: Open event
[pptp0] IPCP: state change Initial --> Starting
[pptp0] IPCP: LayerStart
[pptp0] IPCP: Open event
[pptp0] bundle: OPEN event in state CLOSED
[pptp0] opening link "pptp0"...
[pptp0] link: OPEN event
[pptp0] LCP: Open event
[pptp0] LCP: state change Initial --> Starting
[pptp0] LCP: LayerStart
[pptp0] device: OPEN event in state DOWN
[pptp0] attaching to peer's outgoing call
[pptp0] device is now in state OPENING
[pptp0] device: UP event in state OPENING
[pptp0] device is now in state UP
[pptp0] link: UP event
[pptp0] link: origination is remote
[pptp0] LCP: Up event
[pptp0] LCP: state change Starting --> Req-Sent
[pptp0] LCP: phase shift DEAD --> ESTABLISH
[pptp0] LCP: SendConfigReq #1
ACFCOMP
PROTOCOMP
MRU 1500
MAGICNUM ce4ecb00
AUTHPROTO CHAP MSOFTv2
pptp0-0: ignoring SetLinkInfo
[pptp0] LCP: rec'd Configure Request #0 link 0 (Req-Sent)
MRU 1400
MAGICNUM 764f610e
PROTOCOMP
ACFCOMP
CALLBACK
Not supported
[pptp0] LCP: SendConfigRej #0
CALLBACK
[pptp0] LCP: rec'd Configure Request #1 link 0 (Req-Sent)
MRU 1400
MAGICNUM 764f610e
PROTOCOMP
ACFCOMP
[pptp0] LCP: SendConfigAck #1
MRU 1400
MAGICNUM 764f610e
PROTOCOMP
ACFCOMP
[pptp0] LCP: state change Req-Sent --> Ack-Sent
[pptp0] LCP: SendConfigReq #2
ACFCOMP
PROTOCOMP
MRU 1500
MAGICNUM ce4ecb00
AUTHPROTO CHAP MSOFTv2
[pptp0] LCP: rec'd Configure Nak #2 link 0 (Ack-Sent)
AUTHPROTO CHAP MD5
[pptp0] LCP: SendConfigReq #3
ACFCOMP
PROTOCOMP
MRU 1500
MAGICNUM ce4ecb00
AUTHPROTO CHAP MD5
[pptp0] LCP: rec'd Configure Ack #3 link 0 (Ack-Sent)
ACFCOMP
PROTOCOMP
MRU 1500
MAGICNUM ce4ecb00
AUTHPROTO CHAP MD5
[pptp0] LCP: state change Ack-Sent --> Opened
[pptp0] LCP: phase shift ESTABLISH --> AUTHENTICATE
[pptp0] LCP: auth: peer wants nothing, I want CHAP
[pptp0] CHAP: sending CHALLENGE
[pptp0] LCP: LayerUp
[pptp0] LCP: rec'd Ident #2 link 0 (Opened)
MESG: MSRASV5.10
pptp0-0: ignoring SetLinkInfo
[pptp0] LCP: rec'd Ident #3 link 0 (Opened)
MESG: MSRAS-0-YOUR-6107CF4D7E
[pptp0] CHAP: rec'd RESPONSE #1
Name: "111333"
[pptp0] RADIUS: using /usr/local/etc/radius.conf
[pptp0] RADIUS: RadiusPutAuth: RADIUS_CHAP (MD5) peer name: 111333
[pptp0] RADIUS: RadiusSendRequest: RAD_ACCESS_ACCEPT for user 111333
[pptp0] RADIUS: RadiusGetParams: RAD_SESSION_TIMEOUT: 604800
[pptp0] RADIUS: RadiusGetParams: RAD_EXPPP_TRAFFIC_LIMIT: 587202560
[pptp0] RADIUS: RadiusGetParams: RAD_FRAMED_IP_ADDRESS: 192.168.4.110
[pptp0] RADIUS: RadiusGetParams: RAD_FRAMED_IP_NETMASK: 255.255.255.255
[pptp0] RADIUS: RadiusSetAuth: Trying to use IP-address from radius-server
[pptp0] RADIUS: RadiusSetAuth: using this IP: 192.168.4.110
Response is valid
[pptp0] CHAP: sending SUCCESS
[pptp0] LCP: authorization successful
[pptp0] LCP: phase shift AUTHENTICATE --> NETWORK
[pptp0] setting interface ng0 MTU to 1400 bytes
[pptp0] up: 1 link, total bandwidth 64000 bps
[pptp0] IPCP: Up event
[pptp0] IPCP: state change Starting --> Req-Sent
[pptp0] IPCP: SendConfigReq #1
IPADDR 192.168.0.66
COMPPROTO VJCOMP, 16 comp. channels, no comp-cid
[pptp0] CCP: Open event
[pptp0] CCP: state change Initial --> Starting
[pptp0] CCP: LayerStart
[pptp0] CCP: Up event
[pptp0] CCP: state change Starting --> Req-Sent
[pptp0] CCP: SendConfigReq #1
[pptp0] CCP: Checking whether 40 bits are enabled -> no (RADIUS)
[pptp0] CCP: Checking whether 56 bits are enabled -> no (RADIUS)
[pptp0] CCP: Checking whether 128 bits are enabled -> no (RADIUS)
[pptp0] RADIUS: RadiusAccount for: 111333
[pptp0] RADIUS: using /usr/local/etc/radius.conf
[pptp0] RADIUS: RadiusAccount: Sending accounting data (Type: 1)
[pptp0] RADIUS: RadiusSendRequest: RAD_ACCOUNTING_RESPONSE for user 111333
[pptp0] CCP: rec'd Configure Request #4 link 0 (Req-Sent)
MPPC
0x01000001: MPPC
[pptp0] CCP: Checking whether 40 bits are enabled -> no (RADIUS)
[pptp0] CCP: Checking whether 56 bits are enabled -> no (RADIUS)
[pptp0] CCP: Checking whether 128 bits are enabled -> no (RADIUS)
[pptp0] CCP: SendConfigNak #4
MPPC
0x01000000:
[pptp0] IPCP: rec'd Configure Request #5 link 0 (Req-Sent)
IPADDR 0.0.0.0
NAKing with 192.168.4.110
PRIDNS 0.0.0.0
NAKing with 10.10.10.1
PRINBNS 0.0.0.0
SECDNS 0.0.0.0
NAKing with 213.59.74.190
SECNBNS 0.0.0.0
[pptp0] IPCP: SendConfigRej #5
PRINBNS 0.0.0.0
SECNBNS 0.0.0.0
[pptp0] IPCP: rec'd Configure Reject #1 link 0 (Req-Sent)
COMPPROTO VJCOMP, 16 comp. channels, no comp-cid
[pptp0] IPCP: SendConfigReq #2
IPADDR 192.168.0.66
[pptp0] CCP: rec'd Configure Ack #1 link 0 (Req-Sent)
[pptp0] CCP: state change Req-Sent --> Ack-Rcvd
[pptp0] CCP: rec'd Configure Request #6 link 0 (Ack-Rcvd)
MPPC
0x01000000:
[pptp0] CCP: Checking whether 40 bits are enabled -> no (RADIUS)
[pptp0] CCP: Checking whether 56 bits are enabled -> no (RADIUS)
[pptp0] CCP: Checking whether 128 bits are enabled -> no (RADIUS)
[pptp0] CCP: SendConfigAck #6
MPPC
0x01000000:
[pptp0] CCP: state change Ack-Rcvd --> Opened
[pptp0] CCP: LayerUp
[pptp0] "enable chap" required for MPPE
[pptp0] can't determine credentials for MPPE
[pptp0] CCP: failed to negotiate required encryption
[pptp0] CCP: Close event
[pptp0] CCP: state change Opened --> Closing
[pptp0] CCP: SendTerminateReq #2
[pptp0] CCP: LayerDown
[pptp0] CCP: state change Closing --> Closed
[pptp0] CCP: LayerFinish
[pptp0] "enable chap" required for MPPE
[pptp0] can't determine credentials for MPPE
[pptp0] CCP: failed to negotiate required encryption
[pptp0] CCP: Close event
[pptp0] CCP: LayerFinish
Compress using:
Decompress using:
[pptp0] setting interface ng0 MTU to 1400 bytes
[pptp0] IPCP: rec'd Configure Request #7 link 0 (Req-Sent)
IPADDR 0.0.0.0
NAKing with 192.168.4.110
PRIDNS 0.0.0.0
NAKing with 10.10.10.1
SECDNS 0.0.0.0
NAKing with 213.59.74.190
[pptp0] IPCP: SendConfigNak #7
IPADDR 192.168.4.110
PRIDNS 10.10.10.1
SECDNS 213.59.74.190
[pptp0] IPCP: rec'd Configure Ack #2 link 0 (Req-Sent)
IPADDR 192.168.0.66
[pptp0] IPCP: state change Req-Sent --> Ack-Rcvd
[pptp0] CCP: rec'd Terminate Ack #2 link 0 (Closed)
[pptp0] IPCP: rec'd Configure Request #8 link 0 (Ack-Rcvd)
IPADDR 192.168.4.110
192.168.4.110 is OK
PRIDNS 10.10.10.1
SECDNS 213.59.74.190
[pptp0] IPCP: SendConfigAck #8
IPADDR 192.168.4.110
PRIDNS 10.10.10.1
SECDNS 213.59.74.190
[pptp0] IPCP: state change Ack-Rcvd --> Opened
[pptp0] IPCP: LayerUp
192.168.0.66 -> 192.168.4.110
[pptp0] IFACE: Up event
[pptp0] IFACE: using RADIUS session-timeout: 604800 seconds
[pptp0] IFACE: using RADIUS idle-timeout: 0 seconds
[pptp0] setting interface ng0 MTU to 1400 bytes
[pptp0] exec: /sbin/ifconfig ng0 192.168.0.66 192.168.4.110 netmask 0xffffffff -link0
[pptp0] exec: /sbin/route add 192.168.0.66 -iface lo0
[pptp0] IFACE: using 0 RADIUS routes
[pptp0] exec: /usr/local/abills/libexec/linkupdown mpd up ng0 inet 192.168.0.66 192.168.4.110 111333
[pptp0] exec: command returned 32512
[pptp0] IFACE: Up event
[pptp0] IFACE: using RADIUS session-timeout: 604800 seconds
[pptp0] IFACE: using RADIUS idle-timeout: 0 seconds
Код: Выделить всё
2007-02-21 20:03:45 LOG_INFO: AUTH [111333] NAS: 1 (192.168.10.1) GT: 0.08491
