Hi everyone,
I am currently trying to get the online/offline state working. It
seems that the state is working if requests are coming from Wireless
AccessPoints (My device gets registered when online and unregistered
when offline)
But if I try the same with my Cisco 2960S switches the nodes remain "unknown".
>From what I understood pfacct supersedes radiusd-acct. The service
pfacct is running and there is no firewall in between. Switch is
configured to send accounting to PF on port 1813.
My switch debug tells me that there is no response from Server, which
I also can verify on PF side. A TCPDUMP shows that Radius Accounting
Requests arrive at the PF but no response is being generated.
If I check the pfacct.log it is empty... I pasted a radsniff on port
1813 below...
Interestingly, if I disable pfacct and enable radiusd-acct a
Accounting-Reply is generated to the switch but the online/offline
state remains unknown.
2020-10-15 11:42:21.448660 (5) Accounting-Request Id 49
eth1:10.0.20.253:1646 -> 10.0.20.14:1813 +10.924
User-Name = "b8:27:eb:3f:01:c8"
NAS-IP-Address = 10.0.20.253
NAS-Port = 50102
Service-Type = Framed-User
Framed-IP-Address = 10.0.40.61
Called-Station-Id = "3C-0E-23-5A-3E-02"
Calling-Station-Id = "B8-27-EB-3F-01-C8"
NAS-Port-Type = Ethernet
Acct-Status-Type = Interim-Update
Acct-Delay-Time = 10
Acct-Input-Octets = 15178
Acct-Output-Octets = 1620296
Acct-Session-Id = "0000004B"
Acct-Authentic = RADIUS
Acct-Session-Time = 6229
Acct-Input-Packets = 225
Acct-Output-Packets = 9530
NAS-Port-Id = "GigabitEthernet1/0/2"
PMIP6-Home-HN-Prefix = 3831:3437:4232::/57
Cisco-AVPair = "audit-session-id=0A0014FD0000002AC57E41EC"
Cisco-AVPair = "connect-progress=Auth Open"
Authenticator-Field = 0xe184ba9b392f14f26741c4f7c64c815a
2020-10-15 11:42:21.214706 (4) ** norsp ** Accounting-Request Id 48
eth1:10.0.20.253:1646 -> 10.0.20.14:1813
2020-10-15 11:42:21.214706 (4) Cleaning up request packet ID 48
2020-10-15 11:42:26.606010 (6) Accounting-Request Id 50
eth1:10.0.20.253:1646 -> 10.0.20.14:1813 +15.940
User-Name = "b8:27:eb:3f:01:c8"
NAS-IP-Address = 10.0.20.253
NAS-Port = 50102
Service-Type = Framed-User
Framed-IP-Address = 10.0.40.61
Called-Station-Id = "3C-0E-23-5A-3E-02"
Calling-Station-Id = "B8-27-EB-3F-01-C8"
NAS-Port-Type = Ethernet
Acct-Status-Type = Interim-Update
Acct-Delay-Time = 15
Acct-Input-Octets = 15178
Acct-Output-Octets = 1620296
Acct-Session-Id = "0000004B"
Acct-Authentic = RADIUS
Acct-Session-Time = 6229
Acct-Input-Packets = 225
Acct-Output-Packets = 9530
NAS-Port-Id = "GigabitEthernet1/0/2"
PMIP6-Home-HN-Prefix = 3831:3437:4232::/57
Cisco-AVPair = "audit-session-id=0A0014FD0000002AC57E41EC"
Cisco-AVPair = "connect-progress=Auth Open"
Authenticator-Field = 0xe77e42cc33f62dcd1164461139b59e6d
2020-10-15 11:42:26.244866 (5) ** norsp ** Accounting-Request Id 49
eth1:10.0.20.253:1646 -> 10.0.20.14:1813
2020-10-15 11:42:26.244866 (5) Cleaning up request packet ID 49
2020-10-15 11:42:31.260601 (6) ** norsp ** Accounting-Request Id 50
eth1:10.0.20.253:1646 -> 10.0.20.14:1813
2020-10-15 11:42:31.260601 (6) Cleaning up request packet ID 50
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
