Hi Yi,

I took a look at the man page for radtest and the syntax is:

user password radius-server nas-port-number secret

You have:
radius#./bin/radtest test test 127.0.0.1 0 testing123

According to the man page for radtest  it states:

"Hostname or IP address of the radius server. Optionally, you may specify a
port by appending :port"

so your command line breaks down as follows:
/bin/radtest    the program to run (of course)
test               the username
test               the user's password
127.0.0.1       the "nas" sending the request
0                   the "nas" password
testing123      the server ignores this one [grin]

According to the man page if you want to have the optional port you would
list the above:

./bin/radtest test test 127.0.0.1:0 mytest

Note the ":" after the IP address to denote a port number follows - that is
where you have a mistake... I suspect the radius server is taking the '0' to
be the password being passed from radtest ... you do need the correct secret
as well for it to work (in this case the 'mytest' as listed in the clients
file).

Now, of course, all of the above is based on the man page for radtest - if
it is incorrect then I don't have a clue as to why radtest is not working
for you!

I DO know if the shared secret is not correct the radius server outputs
(been there - done that!):

"Ignoring request from unknown client <IP address>"

as a message when you are running in the debug mode and the shared secret is
not the same in the clients file as the NAS sends to the radius server...

Hope this helps...

gm...

----- Original Message ----- 
From: Yi Zheng
To: [EMAIL PROTECTED]
Sent: Tuesday, July 13, 2004 9:13 PM
Subject: Re: Ignoring request from unknown client


I am running radtest on the local system just to test freeradius is working.

It doesn't matter whether I use the correct shared secret or not. I guess it
didn't reach the logic to check the secret yet.

- Yi

Gary McKinney <[EMAIL PROTECTED]> wrote:
Hmmm - I see you have a secret defined for the client but WHERE in the
radtest call are you using it???

The server can not "communicate" with the "client" without the "client"
using the proper shared secret....

Check the man page on radtest for the syntax...


gm...

----- Original Message ----- 
From: Yi Zheng
To: [EMAIL PROTECTED]
Sent: Tuesday, July 13, 2004 7:18 PM
Subject: Ignoring request from unknown client


I am running freeradius 1.0.0-pre3 and seeing the following error messages.

radius#./bin/radtest test test 127.0.0.1 0 testing123
Sending Access-Request of id 161 to 127.0.0.1:1812
        User-Name = "test"
        User-Password = "test"
        NAS-IP-Address = radius
        NAS-Port = 0
rad_recv: Access-Request packet from host 127.0.0.1:1026, id=161, length=56
Ignoring request from unknown client 127.0.0.1:1026
--- Walking the entire request list ---
Nothing to do.  Sleeping until we see a request.

* In my etc/raddb/clients.conf file, I do have localhost defined as
following.
client 127.0.0.1 {
        secret          = mytest
        shortname       = test-network
}
* I am sure this clients.conf is the file radiusd read from, because if I
rename it, the radiusd will complain about missing clients.conf and won't
start.
What could be the problem? The only thing special about this setup is that I
am running freeradius on a arm platform, but this error seems to be
something more obvious?
- Yi

---
[This E-mail scanned for viruses by Declude Ant-Virus Scanner]


- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Reply via email to