Hi Hugh,
I use radiator as a proxy-radius server, with the 6400 as ppp termination point. The secret key is used between the 6400 - proxyradius and proxyradius - isp radius. In RFC2138 it describes that the secret key is within the authenticator field. So I first assumed that the authentic field between the 6400 -proxyradius and proxyradius -isp is different. But this was unfortunatly not the case. Can anyond explain why ?
Cheers,
Michael
Chen
KPN
Telecom
Tue Sep 18 11:42:09 2001: DEBUG: Packet dump:
*** Received from 213.162.172.134 port 1645 ....
Code: Access-Request
Identifier: 96
Authentic: }<143>&6"{<180><150><221>\<142><29><205><199>l<206>
Attributes:
NAS-IP-Address = 10.28.25.145
NAS-Port = 285212872
Cisco-NAS-Port = "Virtual-Access2"
NAS-Port-Type = Virtual
User-Name = "user3@isp2"
CHAP-Password = a<182>9<139><10><151><182><254><221><186>t<139><8><150><246><185>b
Service-Type = Framed-User
Framed-Protocol = PPP
Tue Sep 18 11:42:09 2001: DEBUG: Handling request with Handler 'Realm=isp2'
Tue Sep 18 11:42:09 2001: DEBUG: Deleting session for user3@isp2, 10.28.25.145, 285212872
Tue Sep 18 11:42:09 2001: DEBUG: Handling with Radius::AuthRADIUS
Tue Sep 18 11:42:09 2001: DEBUG: Packet dump:
*** Sending to 10.17.30.100 port 1812 ....
Code: Access-Request
Identifier: 194
Authentic: }<143>&6"{<180><150><221>\<142><29><205><199>l<206>
Attributes:
NAS-IP-Address = 10.28.25.145
NAS-Port = 285212872
Cisco-NAS-Port = "Virtual-Access2"
NAS-Port-Type = Virtual
User-Name = "user3@isp2"
CHAP-Password = a<182>9<139><10><151><182><254><221><186>t<139><8><150><246><185>b
Service-Type = Framed-User
Framed-Protocol = PPP
Tue Sep 18 11:42:09 2001: DEBUG: Packet dump:
*** Received from 10.17.30.100 port 1812 ....
Code: Access-Accept
Identifier: 194
Authentic: <176><151><216><205>h<215>n<165>5<133><243><242>{<200>\'
Attributes:
Framed-IP-Address = 10.17.32.33
Framed-Protocol = PPP
Service-Type = Framed-User
Framed-IP-Netmask = 255.255.255.240
Ascend-Client-Primary-DNS = 194.151.52.2
Ascend-Client-Secondary-DNS = 194.151.52.2
Tue Sep 18 11:42:09 2001: DEBUG: Received reply in AuthRADIUS for req 194 from 10.17.30.100:1812
Tue Sep 18 11:42:09 2001: DEBUG: Access accepted for user3@isp2
Tue Sep 18 11:42:09 2001: DEBUG: Packet dump:
*** Sending to 213.162.172.134 port 1645 ....
Code: Access-Accept
Identifier: 96
Authentic: }<143>&6"{<180><150><221>\<142><29><205><199>l<206>
Attributes:
Framed-IP-Address = 10.17.32.33
Framed-IP-Netmask = 255.255.255.240
Service-Type = Framed-User
Framed-Protocol = PPP
cisco-avpair = "lcp:interface-config=ip vrf forwarding isp2-30\nip unnumbered loopback30\n"
cisco-avpair = "ip:route=vrf isp2-30 10.17.32.32 255.255.255.240 10.17.32.33 5"
cisco-avpair = "ip:dns-servers=194.151.52.2 194.151.52.2"
