ошибка 629, все логи перерьіл, подскажьіте

Платформа Mikrotik
Ответить
Кузьменко
Сообщения: 24
Зарегистрирован: Сб мар 16, 2013 10:13 am

ошибка 629, все логи перерьіл, подскажьіте

Сообщение Кузьменко » Вс июн 30, 2013 8:24 am

билин работал, а тут пришло время его внедрять и снова запара

athlon# radiusd -X
Starting - reading configuration files ...
reread_config: reading radiusd.conf
Config: including file: /usr/local/etc/raddb/clients.conf
main: prefix = "/usr/local"
main: localstatedir = "/var"
main: logdir = "/var/log"
main: libdir = "/usr/local/lib"
main: radacctdir = "/var/log/radacct"
main: hostname_lookups = no
main: max_request_time = 30
main: cleanup_delay = 5
main: max_requests = 80960
main: delete_blocked_requests = 0
main: port = 0
main: allow_core_dumps = no
main: log_stripped_names = no
main: log_file = "/var/log/radius.log"
main: log_auth = no
main: log_auth_badpass = no
main: log_auth_goodpass = no
main: pidfile = "/var/run/radiusd/radiusd.pid"
main: user = "(null)"
main: group = "(null)"
main: usercollide = no
main: lower_user = "no"
main: lower_pass = "no"
main: nospace_user = "no"
main: nospace_pass = "no"
main: checkrad = "/usr/local/sbin/checkrad"
main: proxy_requests = no
security: max_attributes = 200
security: reject_delay = 1
security: status_server = no
main: debug_level = 0
read_config_files: reading dictionary
read_config_files: reading naslist
Using deprecated naslist file. Support for this will go away soon.
read_config_files: reading clients
read_config_files: reading realms
radiusd: entering modules setup
Module: Library search path is /usr/local/lib
Module: Loaded exec
exec: wait = yes
exec: program = "(null)"
exec: input_pairs = "request"
exec: output_pairs = "(null)"
exec: packet_type = "(null)"
rlm_exec: Wait=yes but no output defined. Did you mean output=none?
Module: Instantiated exec (exec)
Module: Loaded expr
Module: Instantiated expr (expr)
Module: Loaded PAP
pap: encryption_scheme = "crypt"
pap: auto_header = yes
Module: Instantiated pap (pap)
Module: Loaded CHAP
Module: Instantiated chap (chap)
Module: Loaded MS-CHAP
mschap: use_mppe = yes
mschap: require_encryption = no
mschap: require_strong = no
mschap: with_ntdomain_hack = no
mschap: passwd = "(null)"
mschap: ntlm_auth = "(null)"
Module: Instantiated mschap (mschap)
Module: Loaded preprocess
preprocess: huntgroups = "/usr/local/etc/raddb/huntgroups"
preprocess: hints = "/usr/local/etc/raddb/hints"
preprocess: with_ascend_hack = no
preprocess: ascend_channels_per_line = 23
preprocess: with_ntdomain_hack = no
preprocess: with_specialix_jetstream_hack = no
preprocess: with_cisco_vsa_hack = no
preprocess: with_alvarion_vsa_hack = no
Module: Instantiated preprocess (preprocess)
exec: wait = yes
exec: program = "/usr/abills/libexec/rauth.pl pre_auth"
exec: input_pairs = "request"
exec: output_pairs = "config"
exec: packet_type = "(null)"
Module: Instantiated exec (pre_auth)
Module: Loaded files
files: usersfile = "/usr/local/etc/raddb/users"
files: acctusersfile = "/usr/local/etc/raddb/acct_users"
files: preproxy_usersfile = "/usr/local/etc/raddb/preproxy_users"
files: compat = "no"
Module: Instantiated files (files)
Module: Loaded Acct-Unique-Session-Id
acct_unique: key = "User-Name, Acct-Session-Id, NAS-IP-Address, Client-IP-Addre ss, NAS-Port"
Module: Instantiated acct_unique (acct_unique)
Module: Loaded detail
detail: detailfile = "/var/log/radacct/%{Client-IP-Address}/detail-%Y%m%d"
detail: detailperm = 384
detail: dirperm = 493
detail: locking = no
Module: Instantiated detail (detail)
Listening on authentication *:1812
Listening on accounting *:1813
Ready to process requests.
rad_recv: Access-Request packet from host 10.10.11.1:43738, id=15, length=178
Service-Type = Framed-User
Framed-Protocol = PPP
NAS-Port = 899
NAS-Port-Type = Ethernet
User-Name = "test"
Calling-Station-Id = "74:2F:68:A3:59:8C"
Called-Station-Id = "2"
NAS-Port-Id = "bridge1"
MS-CHAP-Challenge = 0x044f61434745c6a4a7f6257c932d0eea
MS-CHAP2-Response = 0x0100c70ca13a9f2b48418a3c476a15f478ad00000000000000 004184c2cd42aeb82fac80e3def79cd1e3a29a378ae298763e
NAS-Identifier = "2_intel"
NAS-IP-Address = 10.10.11.1
Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 0
modcall[authorize]: module "preprocess" returns ok for request 0
Exec-Program output: User-Password == "123456"
Exec-Program-Wait: value-pairs: User-Password == "123456"
Exec-Program: returned: 0
modcall[authorize]: module "pre_auth" returns ok for request 0
rlm_mschap: Found MS-CHAP attributes. Setting 'Auth-Type = mschap'
modcall[authorize]: module "mschap" returns ok for request 0
users: Matched entry DEFAULT at line 1
modcall[authorize]: module "files" returns ok for request 0
modcall: leaving group authorize (returns ok) for request 0
rad_check_password: Found Auth-Type MS-CHAP
auth: type "MS-CHAP"
Processing the authenticate section of radiusd.conf
modcall: entering group MS-CHAP for request 0
rlm_mschap: Told to do MS-CHAPv2 for test with NT-Password
rlm_mschap: adding MS-CHAPv2 MPPE keys
modcall[authenticate]: module "mschap" returns ok for request 0
modcall: leaving group MS-CHAP (returns ok) for request 0
Exec-Program output: Acct-Interim-Interval = 300, Session-Timeout = 45863, Frame d-IP-Address = 10.10.11.226, Framed-IP-Netmask = 255.255.255.255, Mikrotik-Rate- Limit = "3M 5M 1M 8 8 3M",
Exec-Program-Wait: value-pairs: Acct-Interim-Interval = 300, Session-Timeout = 4 5863, Framed-IP-Address = 10.10.11.226, Framed-IP-Netmask = 255.255.255.255, Mik rotik-Rate-Limit = "3M 5M 1M 8 8 3M",
Exec-Program: returned: 0
Sending Access-Accept of id 15 to 10.10.11.1 port 43738
MS-CHAP2-Success = 0x01533d383731313446414135344345363742334241413042354 53341453242463846463335364339333532
MS-MPPE-Recv-Key = 0x5986534bbb0fcd9738e0a9befc58bef9
MS-MPPE-Send-Key = 0xab03950106805741ec87095f93ccec8d
MS-MPPE-Encryption-Policy = 0x00000001
MS-MPPE-Encryption-Types = 0x00000006
Acct-Interim-Interval = 300
Session-Timeout = 45863
Framed-IP-Address = 10.10.11.226
Framed-IP-Netmask = 255.255.255.255
Mikrotik-Rate-Limit = "3M 5M 1M 8 8 3M"
Finished request 0
Going to the next request
--- Walking the entire request list ---
Waking up in 6 seconds...
rad_recv: Access-Request packet from host 10.10.11.1:43738, id=15, length=178
Sending duplicate reply to client other:43738 - ID: 15
Re-sending Access-Accept of id 15 to 10.10.11.1 port 43738
--- Walking the entire request list ---
Waking up in 5 seconds...
rad_recv: Access-Request packet from host 10.10.11.1:43738, id=15, length=178
Sending duplicate reply to client other:43738 - ID: 15
Re-sending Access-Accept of id 15 to 10.10.11.1 port 43738
Waking up in 5 seconds...
--- Walking the entire request list ---
Cleaning up request 0 ID 15 with timestamp 51d01358
Nothing to do. Sleeping until we see a request.

~AsmodeuS~
Site Admin
Сообщения: 5592
Зарегистрирован: Пт янв 28, 2005 3:11 pm
Контактная информация:

Re: ошибка 629, все логи перерьіл, подскажьіте

Сообщение ~AsmodeuS~ » Вс июн 30, 2013 12:47 pm

сморите лог mikrotik

Кузьменко
Сообщения: 24
Зарегистрирован: Сб мар 16, 2013 10:13 am

Re: ошибка 629, все логи перерьіл, подскажьіте

Сообщение Кузьменко » Вс июн 30, 2013 1:30 pm

mikrotik log
<pppoe-0>: terminating... - user test authentication failed - radius timeout
<pppoe-0>: disconnected

radius.log
Sun Jun 30 16:52:44 2013 : Error: Discarding duplicate request from client mikrotik:55531 - ID: 44 due to unfinished request 0
Sun Jun 30 16:52:44 2013 : Error: Discarding duplicate request from client mikrotik:55531 - ID: 44 due to unfinished request 0

Кузьменко
Сообщения: 24
Зарегистрирован: Сб мар 16, 2013 10:13 am

Re: ошибка 629, все логи перерьіл, подскажьіте

Сообщение Кузьменко » Вт июл 02, 2013 9:07 pm

проблема в том же таймауте бьіла

ну и НАТ включить забьіл

Ответить