Hi, My problem is, If I try to assign a static I address to my user, I got error. I have Secovid OTP server as realm. And my all users use token to create password. In test case, when I try to connect to my radius server via gprs I see some error: ... .... Wed Jan 20 10:01:07 2010 : Error: Warning: Found 2 auth-types on request for user 'tevfikceydeliler' ... ... I did not edit DEFAULTS. My users settings is here: tevfikceydeliler Packet-Type == Access-Request , Proxy-To-Realm := 10.1.1.51, Framed-IP-Address := 172.30.64.120 , Framed-IP-Netmask := 255.255.255.255 And my ippool settings: ippool main_pool { range-start = 172.30.64.1 range-stop = 172.30.64.5 netmask = 255.255.240.0 cache-size = 5 session-db = ${db_dir}/db.ippool ip-index = ${db_dir}/db.ipindex override = no maximum-timeout = 0 } ippool birmas { range-start = 172.30.64.51 range-stop = 172.30.64.100 netmask = 255.255.240.0 session-db = ${db_dir}/db.ippool_birmas ip-index = ${db_dir}/db.ipindex_birmas override = yes maximum-timeout = 0 cache_size = 50 } And here is my sites-enabled/defults settings: authorize { preprocess detail chap mschap suffix eap { ok = return } unix files expiration logintime } authenticate { Auth-Type PAP { pap } Auth-Type CHAP { chap } Auth-Type MS-CHAP { mschap } unix eap } preacct { preprocess acct_unique suffix files } accounting { detail unix radutmp main_pool birmas }
session { radutmp } post-auth { main_pool birmas detail exec Post-Auth-Type REJECT { attr_filter.access_reject } } pre-proxy { detail } post-proxy { eap } I dont know how to solve tihs problem. Can anybody gives me a hint? Here is the my logs: r...@radiusii:/etc/freeradius# freeradius -Xxx Wed Jan 20 09:58:35 2010 : Info: FreeRADIUS Version 2.1.0, for host i486-pc-linux-gnu, built on Sep 17 2009 at 17:22:02 Wed Jan 20 09:58:35 2010 : Info: Copyright (C) 1999-2008 The FreeRADIUS server project and contributors. Wed Jan 20 09:58:35 2010 : Info: There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A Wed Jan 20 09:58:35 2010 : Info: PARTICULAR PURPOSE. Wed Jan 20 09:58:35 2010 : Info: You may redistribute copies of FreeRADIUS under the terms of the Wed Jan 20 09:58:35 2010 : Info: GNU General Public License v2. Wed Jan 20 09:58:35 2010 : Info: Starting - reading configuration files ... Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/radiusd.conf Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/proxy.conf Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/clients.conf Wed Jan 20 09:58:35 2010 : Debug: including files in directory /etc/freeradius/modules/ Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/attr_filter Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/ippool Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/preprocess Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/attr_rewrite Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/policy Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/expiration Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/detail Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/logintime Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/files Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/expr Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/exec Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/sradutmp Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/checkval Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/inner-eap Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/detail.log Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/mschap Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/passwd Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/radutmp Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/etc_group Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/chap Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/realm Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/echo Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/acct_unique Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/linelog Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/always Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/counter Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/modules/unix Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/eap.conf Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/policy.conf Wed Jan 20 09:58:35 2010 : Debug: including files in directory /etc/freeradius/sites-enabled/ Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/sites-enabled/default Wed Jan 20 09:58:35 2010 : Debug: including configuration file /etc/freeradius/sites-enabled/inner-tunnel Wed Jan 20 09:58:35 2010 : Debug: including dictionary file /etc/freeradius/dictionary Wed Jan 20 09:58:35 2010 : Debug: main { Wed Jan 20 09:58:35 2010 : Debug: prefix = "/usr" Wed Jan 20 09:58:35 2010 : Debug: localstatedir = "/var" Wed Jan 20 09:58:35 2010 : Debug: logdir = "/var/log/freeradius" Wed Jan 20 09:58:35 2010 : Debug: libdir = "/usr/lib/freeradius" Wed Jan 20 09:58:35 2010 : Debug: radacctdir = "/var/log/freeradius/radacct" Wed Jan 20 09:58:35 2010 : Debug: hostname_lookups = no Wed Jan 20 09:58:35 2010 : Debug: max_request_time = 30 Wed Jan 20 09:58:35 2010 : Debug: cleanup_delay = 5 Wed Jan 20 09:58:35 2010 : Debug: max_requests = 1024 Wed Jan 20 09:58:35 2010 : Debug: allow_core_dumps = no Wed Jan 20 09:58:35 2010 : Debug: pidfile = "/var/run/freeradius/freeradius.pid" Wed Jan 20 09:58:35 2010 : Debug: checkrad = "/usr/sbin/checkrad" Wed Jan 20 09:58:35 2010 : Debug: debug_level = 0 Wed Jan 20 09:58:35 2010 : Debug: proxy_requests = yes Wed Jan 20 09:58:35 2010 : Debug: log { Wed Jan 20 09:58:35 2010 : Debug: stripped_names = no Wed Jan 20 09:58:35 2010 : Debug: auth = no Wed Jan 20 09:58:35 2010 : Debug: auth_badpass = no Wed Jan 20 09:58:35 2010 : Debug: auth_goodpass = no Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: security { Wed Jan 20 09:58:35 2010 : Debug: max_attributes = 200 Wed Jan 20 09:58:35 2010 : Debug: reject_delay = 1 Wed Jan 20 09:58:35 2010 : Debug: status_server = yes Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: client localhost { Wed Jan 20 09:58:35 2010 : Debug: ipaddr = 127.0.0.1 Wed Jan 20 09:58:35 2010 : Debug: require_message_authenticator = no Wed Jan 20 09:58:35 2010 : Debug: secret = "testing123" Wed Jan 20 09:58:35 2010 : Debug: nastype = "other" Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: client 10.65.8.100 { Wed Jan 20 09:58:35 2010 : Debug: require_message_authenticator = no Wed Jan 20 09:58:35 2010 : Debug: secret = "testing123" Wed Jan 20 09:58:35 2010 : Debug: shortname = "tceydelilerNB" Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: client 172.30.80.1 { Wed Jan 20 09:58:35 2010 : Debug: require_message_authenticator = no Wed Jan 20 09:58:35 2010 : Debug: secret = "1q2w3e4r" Wed Jan 20 09:58:35 2010 : Debug: shortname = "turkcellapn" Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: radiusd: #### Loading Realms and Home Servers #### Wed Jan 20 09:58:35 2010 : Debug: proxy server { Wed Jan 20 09:58:35 2010 : Debug: retry_delay = 5 Wed Jan 20 09:58:35 2010 : Debug: retry_count = 3 Wed Jan 20 09:58:35 2010 : Debug: default_fallback = no Wed Jan 20 09:58:35 2010 : Debug: dead_time = 120 Wed Jan 20 09:58:35 2010 : Debug: wake_all_if_all_dead = no Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: realm 10.1.1.51 { Wed Jan 20 09:58:35 2010 : Debug: authhost = 10.1.1.51:1812 Wed Jan 20 09:58:35 2010 : Debug: secret = geheim Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: radiusd: #### Instantiating modules #### Wed Jan 20 09:58:35 2010 : Debug: instantiate { Wed Jan 20 09:58:35 2010 : Debug: (Loaded rlm_exec, checking if it's valid) Wed Jan 20 09:58:35 2010 : Debug: Module: Linked to module rlm_exec Wed Jan 20 09:58:35 2010 : Debug: Module: Instantiating exec Wed Jan 20 09:58:35 2010 : Debug: exec { Wed Jan 20 09:58:35 2010 : Debug: wait = no Wed Jan 20 09:58:35 2010 : Debug: input_pairs = "request" Wed Jan 20 09:58:35 2010 : Debug: shell_escape = yes Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: (Loaded rlm_expr, checking if it's valid) Wed Jan 20 09:58:35 2010 : Debug: Module: Linked to module rlm_expr Wed Jan 20 09:58:35 2010 : Debug: Module: Instantiating expr Wed Jan 20 09:58:35 2010 : Debug: (Loaded rlm_expiration, checking if it's valid) Wed Jan 20 09:58:35 2010 : Debug: Module: Linked to module rlm_expiration Wed Jan 20 09:58:35 2010 : Debug: Module: Instantiating expiration Wed Jan 20 09:58:35 2010 : Debug: expiration { Wed Jan 20 09:58:35 2010 : Debug: reply-message = "Password Has Expired " Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: (Loaded rlm_logintime, checking if it's valid) Wed Jan 20 09:58:35 2010 : Debug: Module: Linked to module rlm_logintime Wed Jan 20 09:58:35 2010 : Debug: Module: Instantiating logintime Wed Jan 20 09:58:35 2010 : Debug: logintime { Wed Jan 20 09:58:35 2010 : Debug: reply-message = "You are calling outside your allowed timespan " Wed Jan 20 09:58:35 2010 : Debug: minimum-timeout = 60 Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: radiusd: #### Loading Virtual Servers #### Wed Jan 20 09:58:35 2010 : Debug: server inner-tunnel { Wed Jan 20 09:58:35 2010 : Debug: modules { Wed Jan 20 09:58:35 2010 : Debug: Module: Checking authenticate {...} for more modules to load Wed Jan 20 09:58:35 2010 : Debug: (Loaded rlm_pap, checking if it's valid) Wed Jan 20 09:58:35 2010 : Debug: Module: Linked to module rlm_pap Wed Jan 20 09:58:35 2010 : Debug: Module: Instantiating pap Wed Jan 20 09:58:35 2010 : Debug: pap { Wed Jan 20 09:58:35 2010 : Debug: encryption_scheme = "auto" Wed Jan 20 09:58:35 2010 : Debug: auto_header = no Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: (Loaded rlm_chap, checking if it's valid) Wed Jan 20 09:58:35 2010 : Debug: Module: Linked to module rlm_chap Wed Jan 20 09:58:35 2010 : Debug: Module: Instantiating chap Wed Jan 20 09:58:35 2010 : Debug: (Loaded rlm_mschap, checking if it's valid) Wed Jan 20 09:58:35 2010 : Debug: Module: Linked to module rlm_mschap Wed Jan 20 09:58:35 2010 : Debug: Module: Instantiating mschap Wed Jan 20 09:58:35 2010 : Debug: mschap { Wed Jan 20 09:58:35 2010 : Debug: use_mppe = yes Wed Jan 20 09:58:35 2010 : Debug: require_encryption = no Wed Jan 20 09:58:35 2010 : Debug: require_strong = no Wed Jan 20 09:58:35 2010 : Debug: with_ntdomain_hack = no Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: (Loaded rlm_unix, checking if it's valid) Wed Jan 20 09:58:35 2010 : Debug: Module: Linked to module rlm_unix Wed Jan 20 09:58:35 2010 : Debug: Module: Instantiating unix Wed Jan 20 09:58:35 2010 : Debug: unix { Wed Jan 20 09:58:35 2010 : Debug: radwtmp = "/var/log/freeradius/radwtmp" Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: (Loaded rlm_eap, checking if it's valid) Wed Jan 20 09:58:35 2010 : Debug: Module: Linked to module rlm_eap Wed Jan 20 09:58:35 2010 : Debug: Module: Instantiating eap Wed Jan 20 09:58:35 2010 : Debug: eap { Wed Jan 20 09:58:35 2010 : Debug: default_eap_type = "md5" Wed Jan 20 09:58:35 2010 : Debug: timer_expire = 60 Wed Jan 20 09:58:35 2010 : Debug: ignore_unknown_eap_types = no Wed Jan 20 09:58:35 2010 : Debug: cisco_accounting_username_bug = no Wed Jan 20 09:58:35 2010 : Debug: max_sessions = 2048 Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: Module: Linked to sub-module rlm_eap_md5 Wed Jan 20 09:58:35 2010 : Debug: Module: Instantiating eap-md5 Wed Jan 20 09:58:35 2010 : Debug: Module: Linked to sub-module rlm_eap_leap Wed Jan 20 09:58:35 2010 : Debug: Module: Instantiating eap-leap Wed Jan 20 09:58:35 2010 : Debug: Module: Linked to sub-module rlm_eap_gtc Wed Jan 20 09:58:35 2010 : Debug: Module: Instantiating eap-gtc Wed Jan 20 09:58:35 2010 : Debug: gtc { Wed Jan 20 09:58:35 2010 : Debug: challenge = "Password: " Wed Jan 20 09:58:35 2010 : Debug: auth_type = "PAP" Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: Ignoring EAP-Type/tls because we do not have OpenSSL support. Wed Jan 20 09:58:35 2010 : Debug: Ignoring EAP-Type/ttls because we do not have OpenSSL support. Wed Jan 20 09:58:35 2010 : Debug: Ignoring EAP-Type/peap because we do not have OpenSSL support. Wed Jan 20 09:58:35 2010 : Debug: Module: Linked to sub-module rlm_eap_mschapv2 Wed Jan 20 09:58:35 2010 : Debug: Module: Instantiating eap-mschapv2 Wed Jan 20 09:58:35 2010 : Debug: mschapv2 { Wed Jan 20 09:58:35 2010 : Debug: with_ntdomain_hack = no Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: Module: Checking authorize {...} for more modules to load Wed Jan 20 09:58:35 2010 : Debug: (Loaded rlm_realm, checking if it's valid) Wed Jan 20 09:58:35 2010 : Debug: Module: Linked to module rlm_realm Wed Jan 20 09:58:35 2010 : Debug: Module: Instantiating suffix Wed Jan 20 09:58:35 2010 : Debug: realm suffix { Wed Jan 20 09:58:35 2010 : Debug: format = "suffix" Wed Jan 20 09:58:35 2010 : Debug: delimiter = "@" Wed Jan 20 09:58:35 2010 : Debug: ignore_default = no Wed Jan 20 09:58:35 2010 : Debug: ignore_null = no Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: (Loaded rlm_files, checking if it's valid) Wed Jan 20 09:58:35 2010 : Debug: Module: Linked to module rlm_files Wed Jan 20 09:58:35 2010 : Debug: Module: Instantiating files Wed Jan 20 09:58:35 2010 : Debug: files { Wed Jan 20 09:58:35 2010 : Debug: usersfile = "/etc/freeradius/users" Wed Jan 20 09:58:35 2010 : Debug: acctusersfile = "/etc/freeradius/acct_users" Wed Jan 20 09:58:35 2010 : Debug: preproxy_usersfile = "/etc/freeradius/preproxy_users" Wed Jan 20 09:58:35 2010 : Debug: compat = "no" Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: Module: Checking session {...} for more modules to load Wed Jan 20 09:58:35 2010 : Debug: (Loaded rlm_radutmp, checking if it's valid) Wed Jan 20 09:58:35 2010 : Debug: Module: Linked to module rlm_radutmp Wed Jan 20 09:58:35 2010 : Debug: Module: Instantiating radutmp Wed Jan 20 09:58:35 2010 : Debug: radutmp { Wed Jan 20 09:58:35 2010 : Debug: filename = "/var/log/freeradius/radutmp" Wed Jan 20 09:58:35 2010 : Debug: username = "%{User-Name}" Wed Jan 20 09:58:35 2010 : Debug: case_sensitive = yes Wed Jan 20 09:58:35 2010 : Debug: check_with_nas = yes Wed Jan 20 09:58:35 2010 : Debug: perm = 384 Wed Jan 20 09:58:35 2010 : Debug: callerid = yes Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: Module: Checking post-proxy {...} for more modules to load Wed Jan 20 09:58:35 2010 : Debug: Module: Checking post-auth {...} for more modules to load Wed Jan 20 09:58:35 2010 : Debug: (Loaded rlm_attr_filter, checking if it's valid) Wed Jan 20 09:58:35 2010 : Debug: Module: Linked to module rlm_attr_filter Wed Jan 20 09:58:35 2010 : Debug: Module: Instantiating attr_filter.access_reject Wed Jan 20 09:58:35 2010 : Debug: attr_filter attr_filter.access_reject { Wed Jan 20 09:58:35 2010 : Debug: attrsfile = "/etc/freeradius/attrs.access_reject" Wed Jan 20 09:58:35 2010 : Debug: key = "%{User-Name}" Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: modules { Wed Jan 20 09:58:35 2010 : Debug: Module: Checking authenticate {...} for more modules to load Wed Jan 20 09:58:35 2010 : Debug: Module: Checking authorize {...} for more modules to load Wed Jan 20 09:58:35 2010 : Debug: (Loaded rlm_preprocess, checking if it's valid) Wed Jan 20 09:58:35 2010 : Debug: Module: Linked to module rlm_preprocess Wed Jan 20 09:58:35 2010 : Debug: Module: Instantiating preprocess Wed Jan 20 09:58:35 2010 : Debug: preprocess { Wed Jan 20 09:58:35 2010 : Debug: huntgroups = "/etc/freeradius/huntgroups" Wed Jan 20 09:58:35 2010 : Debug: hints = "/etc/freeradius/hints" Wed Jan 20 09:58:35 2010 : Debug: with_ascend_hack = no Wed Jan 20 09:58:35 2010 : Debug: ascend_channels_per_line = 23 Wed Jan 20 09:58:35 2010 : Debug: with_ntdomain_hack = no Wed Jan 20 09:58:35 2010 : Debug: with_specialix_jetstream_hack = no Wed Jan 20 09:58:35 2010 : Debug: with_cisco_vsa_hack = no Wed Jan 20 09:58:35 2010 : Debug: with_alvarion_vsa_hack = no Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: (Loaded rlm_detail, checking if it's valid) Wed Jan 20 09:58:35 2010 : Debug: Module: Linked to module rlm_detail Wed Jan 20 09:58:35 2010 : Debug: Module: Instantiating detail Wed Jan 20 09:58:35 2010 : Debug: detail { Wed Jan 20 09:58:35 2010 : Debug: detailfile = "/var/log/freeradius/radacct/%{Client-IP-Address}/detail-%Y%m%d" Wed Jan 20 09:58:35 2010 : Debug: header = "%t" Wed Jan 20 09:58:35 2010 : Debug: detailperm = 384 Wed Jan 20 09:58:35 2010 : Debug: dirperm = 493 Wed Jan 20 09:58:35 2010 : Debug: locking = no Wed Jan 20 09:58:35 2010 : Debug: log_packet_header = no Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: Module: Checking preacct {...} for more modules to load Wed Jan 20 09:58:35 2010 : Debug: (Loaded rlm_acct_unique, checking if it's valid) Wed Jan 20 09:58:35 2010 : Debug: Module: Linked to module rlm_acct_unique Wed Jan 20 09:58:35 2010 : Debug: Module: Instantiating acct_unique Wed Jan 20 09:58:35 2010 : Debug: acct_unique { Wed Jan 20 09:58:35 2010 : Debug: key = "User-Name, Acct-Session-Id, NAS-IP-Address, Client-IP-Address, NAS-Port" Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: Module: Checking accounting {...} for more modules to load Wed Jan 20 09:58:35 2010 : Debug: (Loaded rlm_ippool, checking if it's valid) Wed Jan 20 09:58:35 2010 : Debug: Module: Linked to module rlm_ippool Wed Jan 20 09:58:35 2010 : Debug: Module: Instantiating main_pool Wed Jan 20 09:58:35 2010 : Debug: ippool main_pool { Wed Jan 20 09:58:35 2010 : Debug: session-db = "/etc/freeradius/db.ippool" Wed Jan 20 09:58:35 2010 : Debug: ip-index = "/etc/freeradius/db.ipindex" Wed Jan 20 09:58:35 2010 : Debug: key = "%{NAS-IP-Address} %{NAS-Port}" Wed Jan 20 09:58:35 2010 : Debug: range-start = 172.30.64.1 Wed Jan 20 09:58:35 2010 : Debug: range-stop = 172.30.64.5 Wed Jan 20 09:58:35 2010 : Debug: netmask = 255.255.255.0 Wed Jan 20 09:58:35 2010 : Debug: cache-size = 800 Wed Jan 20 09:58:35 2010 : Debug: override = no Wed Jan 20 09:58:35 2010 : Debug: maximum-timeout = 0 Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: Module: Instantiating birmas Wed Jan 20 09:58:35 2010 : Debug: ippool birmas { Wed Jan 20 09:58:35 2010 : Debug: session-db = "/etc/freeradius/db.ippool_birmas" Wed Jan 20 09:58:35 2010 : Debug: ip-index = "/etc/freeradius/db.ipindex_birmas" Wed Jan 20 09:58:35 2010 : Debug: key = "%{NAS-IP-Address} %{NAS-Port}" Wed Jan 20 09:58:35 2010 : Debug: range-start = 172.30.64.51 Wed Jan 20 09:58:35 2010 : Debug: range-stop = 172.30.64.100 Wed Jan 20 09:58:35 2010 : Debug: netmask = 255.255.240.0 Wed Jan 20 09:58:35 2010 : Debug: cache-size = 1000 Wed Jan 20 09:58:35 2010 : Debug: override = yes Wed Jan 20 09:58:35 2010 : Debug: maximum-timeout = 0 Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: Module: Instantiating attr_filter.accounting_response Wed Jan 20 09:58:35 2010 : Debug: attr_filter attr_filter.accounting_response { Wed Jan 20 09:58:35 2010 : Debug: attrsfile = "/etc/freeradius/attrs.accounting_response" Wed Jan 20 09:58:35 2010 : Debug: key = "%{User-Name}" Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: Module: Checking session {...} for more modules to load Wed Jan 20 09:58:35 2010 : Debug: Module: Checking pre-proxy {...} for more modules to load Wed Jan 20 09:58:35 2010 : Debug: Module: Checking post-proxy {...} for more modules to load Wed Jan 20 09:58:35 2010 : Debug: Module: Checking post-auth {...} for more modules to load Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: radiusd: #### Opening IP addresses and Ports #### Wed Jan 20 09:58:35 2010 : Debug: listen { Wed Jan 20 09:58:35 2010 : Debug: type = "auth" Wed Jan 20 09:58:35 2010 : Debug: ipaddr = * Wed Jan 20 09:58:35 2010 : Debug: port = 0 Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: listen { Wed Jan 20 09:58:35 2010 : Debug: type = "acct" Wed Jan 20 09:58:35 2010 : Debug: ipaddr = * Wed Jan 20 09:58:35 2010 : Debug: port = 0 Wed Jan 20 09:58:35 2010 : Debug: } Wed Jan 20 09:58:35 2010 : Debug: Listening on authentication address * port 1812 Wed Jan 20 09:58:35 2010 : Debug: Listening on accounting address * port 1813 Wed Jan 20 09:58:35 2010 : Debug: Listening on proxy address * port 1814 Wed Jan 20 09:58:35 2010 : Debug: Ready to process requests. .. ... rad_recv: Access-Request packet from host 172.30.80.1 port 2005, id=50, length=139 NAS-IP-Address = 172.30.80.1 NAS-Identifier = "GGFILE02" Called-Station-Id = "yasarapn" Framed-Protocol = GPRS-PDP-Context Service-Type = Framed-User NAS-Port-Type = Virtual NAS-Port = 57819256 CHAP-Challenge = 0x224a9ef9367e1507dc0e1114ce97e66b User-Name = "tevfikceydeliler" CHAP-Password = 0x0142e9c0c54eb5526890378c5f4d16ff35 Calling-Station-Id = "905308507313" Wed Jan 20 10:01:07 2010 : Info: +- entering group authorize {...} Wed Jan 20 10:01:07 2010 : Info: ++[preprocess] returns ok Wed Jan 20 10:01:07 2010 : Debug: expand: /var/log/freeradius/radacct/%{Client-IP-Address}/detail-%Y%m%d -> /var/log/freeradius/radacct/172.30.80.1/detail-20100120 Wed Jan 20 10:01:07 2010 : Info: [detail] /var/log/freeradius/radacct/%{Client-IP-Address}/detail-%Y%m%d expands to /var/log/freeradius/radacct/172.30.80.1/detail-20100120 Wed Jan 20 10:01:07 2010 : Debug: expand: %t -> Wed Jan 20 10:01:07 2010 Wed Jan 20 10:01:07 2010 : Info: ++[detail] returns ok Wed Jan 20 10:01:07 2010 : Info: [chap] Setting 'Auth-Type := CHAP' Wed Jan 20 10:01:07 2010 : Info: ++[chap] returns ok Wed Jan 20 10:01:07 2010 : Info: ++[mschap] returns noop Wed Jan 20 10:01:07 2010 : Info: [suffix] No '@' in User-Name = "tevfikceydeliler", looking up realm NULL Wed Jan 20 10:01:07 2010 : Info: [suffix] No such realm "NULL" Wed Jan 20 10:01:07 2010 : Info: ++[suffix] returns noop Wed Jan 20 10:01:07 2010 : Info: [eap] No EAP-Message, not doing EAP Wed Jan 20 10:01:07 2010 : Info: ++[eap] returns noop Wed Jan 20 10:01:07 2010 : Info: ++[unix] returns notfound Wed Jan 20 10:01:07 2010 : Info: [files] users: Matched entry tevfikceydeliler at line 219 Wed Jan 20 10:01:07 2010 : Info: ++[files] returns ok Wed Jan 20 10:01:07 2010 : Info: ++[expiration] returns noop Wed Jan 20 10:01:07 2010 : Info: ++[logintime] returns noop Wed Jan 20 10:01:07 2010 : Info: ++[pap] returns noop Wed Jan 20 10:01:07 2010 : Info: +- entering group pre-proxy {...} Wed Jan 20 10:01:07 2010 : Debug: expand: /var/log/freeradius/radacct/%{Client-IP-Address}/detail-%Y%m%d -> /var/log/freeradius/radacct/172.30.80.1/detail-20100120 Wed Jan 20 10:01:07 2010 : Info: [detail] /var/log/freeradius/radacct/%{Client-IP-Address}/detail-%Y%m%d expands to /var/log/freeradius/radacct/172.30.80.1/detail-20100120 Wed Jan 20 10:01:07 2010 : Debug: expand: %t -> Wed Jan 20 10:01:07 2010 Wed Jan 20 10:01:07 2010 : Info: ++[detail] returns ok Sending Access-Request of id 107 to 10.1.1.51 port 1812 NAS-IP-Address = 172.30.80.1 NAS-Identifier = "GGFILE02" Called-Station-Id = "yasarapn" Framed-Protocol = GPRS-PDP-Context Service-Type = Framed-User NAS-Port-Type = Virtual NAS-Port = 57819256 CHAP-Challenge = 0x224a9ef9367e1507dc0e1114ce97e66b User-Name = "tevfikceydeliler" CHAP-Password = 0x0142e9c0c54eb5526890378c5f4d16ff35 Calling-Station-Id = "905308507313" Proxy-State = 0x3530 Wed Jan 20 10:01:07 2010 : Info: Proxying request 1 to home server 10.1.1.51 port 1812 Sending Access-Request of id 107 to 10.1.1.51 port 1812 NAS-IP-Address = 172.30.80.1 NAS-Identifier = "GGFILE02" Called-Station-Id = "yasarapn" Framed-Protocol = GPRS-PDP-Context Service-Type = Framed-User NAS-Port-Type = Virtual NAS-Port = 57819256 CHAP-Challenge = 0x224a9ef9367e1507dc0e1114ce97e66b User-Name = "tevfikceydeliler" CHAP-Password = 0x0142e9c0c54eb5526890378c5f4d16ff35 Calling-Station-Id = "905308507313" Proxy-State = 0x3530 Wed Jan 20 10:01:07 2010 : Debug: Going to the next request Wed Jan 20 10:01:07 2010 : Debug: Waking up in 0.9 seconds. rad_recv: Access-Accept packet from host 10.1.1.51 port 1812, id=107, length=24 Proxy-State = 0x3530 Wed Jan 20 10:01:07 2010 : Info: +- entering group post-proxy {...} Wed Jan 20 10:01:07 2010 : Info: [eap] No pre-existing handler found Wed Jan 20 10:01:07 2010 : Info: ++[eap] returns noop Wed Jan 20 10:01:07 2010 : Info: Found Auth-Type = CHAP Wed Jan 20 10:01:07 2010 : Info: Found Auth-Type = Accept Wed Jan 20 10:01:07 2010 : Error: Warning: Found 2 auth-types on request for user 'tevfikceydeliler' >>>>>>>>>>>>>>>>>>>ERROR HERE Wed Jan 20 10:01:07 2010 : Info: Auth-Type = Accept, accepting the user Wed Jan 20 10:01:07 2010 : Info: +- entering group post-auth {...} Wed Jan 20 10:01:07 2010 : Info: [main_pool] Could not find Pool-Name attribute. Wed Jan 20 10:01:07 2010 : Info: ++[main_pool] returns noop Wed Jan 20 10:01:07 2010 : Info: [birmas] Could not find Pool-Name attribute. Wed Jan 20 10:01:07 2010 : Info: ++[birmas] returns noop Wed Jan 20 10:01:07 2010 : Debug: expand: /var/log/freeradius/radacct/%{Client-IP-Address}/detail-%Y%m%d -> /var/log/freeradius/radacct/172.30.80.1/detail-20100120 Wed Jan 20 10:01:07 2010 : Info: [detail] /var/log/freeradius/radacct/%{Client-IP-Address}/detail-%Y%m%d expands to /var/log/freeradius/radacct/172.30.80.1/detail-20100120 Wed Jan 20 10:01:07 2010 : Debug: expand: %t -> Wed Jan 20 10:01:07 2010 Wed Jan 20 10:01:07 2010 : Info: ++[detail] returns ok Wed Jan 20 10:01:07 2010 : Info: ++[exec] returns noop Sending Access-Accept of id 50 to 172.30.80.1 port 2005 Wed Jan 20 10:01:07 2010 : Info: Finished request 1. Wed Jan 20 10:01:07 2010 : Debug: Going to the next request Wed Jan 20 10:01:07 2010 : Debug: Waking up in 4.9 seconds. rad_recv: Access-Request packet from host 172.30.80.1 port 1806, id=154, length=139 NAS-IP-Address = 172.30.80.1 NAS-Identifier = "GGFILE02" Called-Station-Id = "yasarapn" Framed-Protocol = GPRS-PDP-Context Service-Type = Framed-User NAS-Port-Type = Virtual NAS-Port = 40329920 CHAP-Challenge = 0x224a9ef9367e1507dc0e1114ce97e66b User-Name = "tevfikceydeliler" CHAP-Password = 0x0142e9c0c54eb5526890378c5f4d16ff35 Calling-Station-Id = "905308507313" Wed Jan 20 10:01:07 2010 : Info: +- entering group authorize {...} Wed Jan 20 10:01:07 2010 : Info: ++[preprocess] returns ok Wed Jan 20 10:01:07 2010 : Debug: expand: /var/log/freeradius/radacct/%{Client-IP-Address}/detail-%Y%m%d -> /var/log/freeradius/radacct/172.30.80.1/detail-20100120 Wed Jan 20 10:01:07 2010 : Info: [detail] /var/log/freeradius/radacct/%{Client-IP-Address}/detail-%Y%m%d expands to /var/log/freeradius/radacct/172.30.80.1/detail-20100120 Wed Jan 20 10:01:07 2010 : Debug: expand: %t -> Wed Jan 20 10:01:07 2010 Wed Jan 20 10:01:07 2010 : Info: ++[detail] returns ok Wed Jan 20 10:01:07 2010 : Info: [chap] Setting 'Auth-Type := CHAP' Wed Jan 20 10:01:07 2010 : Info: ++[chap] returns ok Wed Jan 20 10:01:07 2010 : Info: ++[mschap] returns noop Wed Jan 20 10:01:07 2010 : Info: [suffix] No '@' in User-Name = "tevfikceydeliler", looking up realm NULL Wed Jan 20 10:01:07 2010 : Info: [suffix] No such realm "NULL" Wed Jan 20 10:01:07 2010 : Info: ++[suffix] returns noop Wed Jan 20 10:01:07 2010 : Info: [eap] No EAP-Message, not doing EAP Wed Jan 20 10:01:07 2010 : Info: ++[eap] returns noop Wed Jan 20 10:01:07 2010 : Info: ++[unix] returns notfound Wed Jan 20 10:01:07 2010 : Info: [files] users: Matched entry tevfikceydeliler at line 219 Wed Jan 20 10:01:07 2010 : Info: ++[files] returns ok Wed Jan 20 10:01:07 2010 : Info: ++[expiration] returns noop Wed Jan 20 10:01:07 2010 : Info: ++[logintime] returns noop Wed Jan 20 10:01:07 2010 : Info: ++[pap] returns noop Wed Jan 20 10:01:07 2010 : Info: +- entering group pre-proxy {...} Wed Jan 20 10:01:07 2010 : Debug: expand: /var/log/freeradius/radacct/%{Client-IP-Address}/detail-%Y%m%d -> /var/log/freeradius/radacct/172.30.80.1/detail-20100120 Wed Jan 20 10:01:07 2010 : Info: [detail] /var/log/freeradius/radacct/%{Client-IP-Address}/detail-%Y%m%d expands to /var/log/freeradius/radacct/172.30.80.1/detail-20100120 Wed Jan 20 10:01:07 2010 : Debug: expand: %t -> Wed Jan 20 10:01:07 2010 Wed Jan 20 10:01:07 2010 : Info: ++[detail] returns ok Sending Access-Request of id 115 to 10.1.1.51 port 1812 NAS-IP-Address = 172.30.80.1 NAS-Identifier = "GGFILE02" Called-Station-Id = "yasarapn" Framed-Protocol = GPRS-PDP-Context Service-Type = Framed-User NAS-Port-Type = Virtual NAS-Port = 40329920 CHAP-Challenge = 0x224a9ef9367e1507dc0e1114ce97e66b User-Name = "tevfikceydeliler" CHAP-Password = 0x0142e9c0c54eb5526890378c5f4d16ff35 Calling-Station-Id = "905308507313" Proxy-State = 0x313534 Wed Jan 20 10:01:07 2010 : Info: Proxying request 2 to home server 10.1.1.51 port 1812 Sending Access-Request of id 115 to 10.1.1.51 port 1812 NAS-IP-Address = 172.30.80.1 NAS-Identifier = "GGFILE02" Called-Station-Id = "yasarapn" Framed-Protocol = GPRS-PDP-Context Service-Type = Framed-User NAS-Port-Type = Virtual NAS-Port = 40329920 CHAP-Challenge = 0x224a9ef9367e1507dc0e1114ce97e66b User-Name = "tevfikceydeliler" CHAP-Password = 0x0142e9c0c54eb5526890378c5f4d16ff35 Calling-Station-Id = "905308507313" Proxy-State = 0x313534 Wed Jan 20 10:01:07 2010 : Debug: Going to the next request Wed Jan 20 10:01:07 2010 : Debug: Waking up in 0.9 seconds. rad_recv: Access-Reject packet from host 10.1.1.51 port 1812, id=115, length=25 Proxy-State = 0x313534 Wed Jan 20 10:01:07 2010 : Info: +- entering group post-proxy {...} Wed Jan 20 10:01:07 2010 : Info: [eap] No pre-existing handler found Wed Jan 20 10:01:07 2010 : Info: ++[eap] returns noop Wed Jan 20 10:01:07 2010 : Info: Using Post-Auth-Type Reject Wed Jan 20 10:01:07 2010 : Info: +- entering group REJECT {...} Wed Jan 20 10:01:07 2010 : Debug: expand: %{User-Name} -> tevfikceydeliler Wed Jan 20 10:01:07 2010 : Debug: attr_filter: Matched entry DEFAULT at line 11 Wed Jan 20 10:01:07 2010 : Info: ++[attr_filter.access_reject] returns updated Wed Jan 20 10:01:07 2010 : Info: Delaying reject of request 2 for 1 seconds Wed Jan 20 10:01:07 2010 : Debug: Going to the next request Wed Jan 20 10:01:07 2010 : Debug: Waking up in 0.9 seconds. Wed Jan 20 10:01:08 2010 : Info: Sending delayed reject for request 2 Sending Access-Reject of id 154 to 172.30.80.1 port 1806 Wed Jan 20 10:01:08 2010 : Debug: Waking up in 3.9 seconds. Wed Jan 20 10:01:12 2010 : Info: Cleaning up request 1 ID 50 with timestamp +166 Wed Jan 20 10:01:12 2010 : Debug: Waking up in 1.0 seconds. Wed Jan 20 10:01:13 2010 : Info: Cleaning up request 2 ID 154 with timestamp +166 Wed Jan 20 10:01:13 2010 : Debug: Ready to process requests. Tevfik Ceydeliler Ağ &Web Teknolojileri Uzmanı Astron Proje Ofisi (232) 435 82 88 dahili 131 ( tevfik.ceydeliler@ astron.yasar.com.tr www.astron.ws 7/24 Acil Müdahele: 0 533 658 85 57 Bu elektronik postada bulunan tum fikir ve gorusler ve ekindeki dosyalar sadece adres sahip/sahiplerine ait olup, Yasar Toplulugu Sirketleri bu mesajin icerigi ile ilgili olarak hic bir hukuksal sorumlulugu kabul etmez. Eger gonderilmesi dusunulen kisi veya kurulus degilseniz, lutfen gonderen kisiyi derhal haberdar ediniz ve mesaji sisteminizden siliniz.The information contained in this e-mail and any files transmitted with it are intended solely for the use of the individual or entity to whom they are addressed and Yasar Group Companies do not accept legal responsibility for the contents. If you are not the intended recipient, please immediately notify the sender and delete it from your system. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html