~AsmodeuS~ писал(а):можно просто копировать и вставлять
так и сделал - пользовательский интерфейс заработал, но проблема, которую я поднимал на форуме раньше - не пускает ни одного пользователя, если в настройках "одновременно=1" осталась. Как видно из логов радиуса с ключиком -Х, проблема кроется в том, что радиусу пытаются дважды передать параметры подключения. Вот лог:
Код: Выделить всё
rad_recv: Access-Request packet from host 127.0.0.1:61875, id=75, length=175
NAS-Identifier = "K6"
NAS-Port = 0
NAS-Port-Type = Virtual
Service-Type = Framed-User
Framed-Protocol = PPP
Calling-Station-Id = "192.168.0.1 / 00:04:61:d4:c3:81 / rl0"
User-Name = "test"
MS-CHAP-Challenge = 0xbb1e689765b0390556ea3bbfee93b72d
MS-CHAP2-Response = 0x0100ce64b0d9460de20296b857661b5075590000000000000000d720876bd26813676dcc5bd4a3a649707a49dc8406406bb0
Exec-Program: /usr/abills/libexec/rauth.pl pre_auth
Exec-Program-Wait: value-pairs: User-Password == "test"
Exec-Program: returned: 0
Exec-Program: /usr/abills/libexec/rauth.pl
Exec-Program-Wait: value-pairs: Session-Timeout = 306419, Exppp-Traffic-Limit = 9437184, MS-MPPE-Encryption-Types = 0x00000006, Framed-IP-Address = 10.0.0.1, Framed-IP-Netmask = 255.255.255.255, MS-CHAP2-SUCCESS = 0x01533d33464630323644384237413031443743414243393439343741374639394336373634393932314535, MS-MPPE-Encryption-Policy = 0x00000001,
Exec-Program: returned: 0
Sending Access-Accept of id 75 to 127.0.0.1 port 61875
MS-CHAP2-Success = 0x01533d33464630323644384237413031443743414243393439343741374639394336373634393932314535
MS-MPPE-Recv-Key = 0x3d40f693a6875f62b0f2cb7a4b87ea34
MS-MPPE-Send-Key = 0xeaebd21e253e42f6a659fe4eaf5b42ac
MS-MPPE-Encryption-Policy = 0x00000001
MS-MPPE-Encryption-Types = 0x00000006
Session-Timeout = 306419
Exppp-Traffic-Limit = 9437184
Framed-IP-Address = 10.0.0.1
Framed-IP-Netmask = 255.255.255.255
rad_recv: Accounting-Request packet from host 127.0.0.1:61135, id=138, length=147
NAS-Identifier = "K6"
NAS-Port = 0
NAS-Port-Type = Virtual
Service-Type = Framed-User
Framed-Protocol = PPP
Calling-Station-Id = "192.168.0.1 / 00:04:61:d4:c3:81 / rl0"
User-Name = "test"
Framed-IP-Address = 10.0.0.1
Acct-Status-Type = Start
Acct-Session-Id = "2400781-pptp1"
Acct-Multi-Session-Id = "2400781-pptp1"
Acct-Link-Count = 1
Acct-Authentic = RADIUS
Exec-Program: /usr/abills/libexec/racct.pl
Sending Accounting-Response of id 138 to 127.0.0.1 port 61135
rad_recv: Access-Request packet from host 127.0.0.1:55669, id=4, length=175
NAS-Identifier = "K6"
NAS-Port = 0
NAS-Port-Type = Virtual
Service-Type = Framed-User
Framed-Protocol = PPP
Calling-Station-Id = "192.168.0.1 / 00:04:61:d4:c3:81 / rl0"
User-Name = "test"
MS-CHAP-Challenge = 0xbb1e689765b0390556ea3bbfee93b72d
MS-CHAP2-Response = 0x0100ce64b0d9460de20296b857661b5075590000000000000000d720876bd26813676dcc5bd4a3a649707a49dc8406406bb0
Exec-Program: /usr/abills/libexec/rauth.pl pre_auth
Exec-Program-Wait: value-pairs: User-Password == "test"
Exec-Program: returned: 0
Exec-Program: /usr/abills/libexec/rauth.pl
rad_recv: Access-Request packet from host 127.0.0.1:55669, id=4, length=175
Discarding duplicate request from client localhost:55669 - ID: 4 due to unfinished request 13
Exec-Program-Wait: value-pairs: Reply-Message = "More then allow login (1/1)"
Exec-Program: returned: 1
Exec-Program: /usr/abills/libexec/rauth.pl post_auth
Exec-Program: returned: 0
rad_recv: Access-Request packet from host 127.0.0.1:55669, id=4, length=175
Sending Access-Reject of id 4 to 127.0.0.1 port 55669
Reply-Message = "More then allow login (1/1)"
rad_recv: Accounting-Request packet from host 127.0.0.1:52132, id=24, length=143
NAS-Identifier = "K6"
NAS-Port = 0
NAS-Port-Type = Virtual
Service-Type = Framed-User
Framed-Protocol = PPP
User-Name = "test"
Framed-IP-Address = 10.0.0.1
Acct-Status-Type = Stop
Acct-Session-Id = "2400781-pptp1"
Acct-Multi-Session-Id = ""
Acct-Link-Count = 1
Acct-Authentic = RADIUS
Acct-Terminate-Cause = NAS-Request
Acct-Session-Time = 11
Acct-Input-Octets = 429
Acct-Input-Packets = 17
Acct-Output-Octets = 214
Acct-Output-Packets = 10
Acct-Input-Gigawords = 0
Acct-Output-Gigawords = 0
Exec-Program: /usr/abills/libexec/racct.pl
Sending Accounting-Response of id 24 to 127.0.0.1 port 52132
Если в настройках радиуса закомментировать вызов rauth.pl в файле users, то 1 пользователь с параметром "одновременно=1" подключится может, но в таком случае, насколько я понимаю, не будет происходить отключение пользователя при израсходовании трафика.
Помогите решить проблему! Если надо какие конфиги показать - пишите.
P.S. Freebsd6+freeradius+mpd 3.18(c патчами)