Re: ERROR 734
Danie J. Steenkamp wrote:
> Alan DeKok wrote:
>> It's not processing the accounting section for some reason. Are you
>> sure it's loading the right file?
>
> Sorry, I though I installed 2.1.6. It is 2.1.1.
> I am not sure if the right files loads, to me it looks like it. I have
> copied what radiusd -X loads:
Could you search the output for the word "accounting" ? It says
things like:
Module: Checking post-auth {...} for more modules to load
There is NO such line saying "checking accounting { ... } "
You have edited the configuration files, and broken them. Don't do that.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: ERROR 734
Alan DeKok wrote:
> It's not processing the accounting section for some reason. Are you
> sure it's loading the right file?
Sorry, I though I installed 2.1.6. It is 2.1.1.
I am not sure if the right files loads, to me it looks like it. I have
copied what radiusd -X loads:
FreeRADIUS Version 2.1.1, for host i686-redhat-linux-gnu, built on Aug
9 2009 at 23:16:25
Copyright (C) 1999-2008 The FreeRADIUS server project and contributors.
There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A
PARTICULAR PURPOSE.
You may redistribute copies of FreeRADIUS under the terms of the
GNU General Public License v2.
Starting - reading configuration files ...
including configuration file /etc/raddb/radiusd.conf
including configuration file /etc/raddb/proxy.conf
including configuration file /etc/raddb/clients.conf
including files in directory /etc/raddb/modules/
including configuration file /etc/raddb/modules/detail.log
including configuration file /etc/raddb/modules/files
including configuration file /etc/raddb/modules/expiration
including configuration file /etc/raddb/modules/smbpasswd
including configuration file /etc/raddb/modules/linelog
including configuration file /etc/raddb/modules/detail
including configuration file /etc/raddb/modules/digest
including configuration file /etc/raddb/modules/checkval
including configuration file /etc/raddb/modules/policy
including configuration file /etc/raddb/modules/etc_group
including configuration file /etc/raddb/modules/detail.example.com
including configuration file /etc/raddb/modules/mac2ip
including configuration file /etc/raddb/modules/wimax
including configuration file /etc/raddb/modules/mschap
including configuration file /etc/raddb/modules/pap
including configuration file /etc/raddb/modules/preprocess
including configuration file /etc/raddb/modules/expr
including configuration file /etc/raddb/modules/pam
including configuration file /etc/raddb/modules/realm
including configuration file /etc/raddb/modules/logintime
including configuration file /etc/raddb/modules/exec
including configuration file /etc/raddb/modules/always
including configuration file /etc/raddb/modules/mac2vlan
including configuration file /etc/raddb/modules/attr_rewrite
including configuration file /etc/raddb/modules/ippool
including configuration file /etc/raddb/modules/chap
including configuration file /etc/raddb/modules/attr_filter
including configuration file /etc/raddb/modules/radutmp
including configuration file /etc/raddb/modules/passwd
including configuration file /etc/raddb/modules/echo
including configuration file /etc/raddb/modules/unix
including configuration file /etc/raddb/modules/sql_log
including configuration file /etc/raddb/modules/acct_unique
including configuration file /etc/raddb/modules/inner-eap
including configuration file /etc/raddb/modules/sradutmp
including configuration file /etc/raddb/modules/counter
including configuration file /etc/raddb/sql.conf
including configuration file /etc/raddb/sql/mysql/dialup.conf
including configuration file /etc/raddb/sql/mysql/counter.conf
including configuration file /etc/raddb/policy.conf
including files in directory /etc/raddb/sites-enabled/
including configuration file /etc/raddb/sites-enabled/control-socket
including configuration file /etc/raddb/sites-enabled/inner-tunnel
including configuration file /etc/raddb/sites-enabled/default
group = radiusd
user = radiusd
including dictionary file /etc/raddb/dictionary
main {
prefix = "/usr"
localstatedir = "/var"
logdir = "/var/log/freeradius"
libdir = "/usr/lib/freeradius"
radacctdir = "/var/log/freeradius/radacct"
hostname_lookups = no
max_request_time = 30
cleanup_delay = 5
max_requests = 1024
allow_core_dumps = no
pidfile = "/var/run/radiusd/radiusd.pid"
checkrad = "/usr/sbin/checkrad"
debug_level = 0
proxy_requests = yes
log {
stripped_names = no
auth = yes
auth_badpass = yes
auth_goodpass = yes
}
security {
max_attributes = 200
reject_delay = 1
status_server = yes
}
}
client 127.0.0.1 {
require_message_authenticator = no
secret = "testing123"
shortname = "localhost"
nastype = "other"
}
client 10.20.255.253 {
require_message_authenticator = no
secret = "123jhbgaap"
shortname = "gaap-rad-1"
nastype = "other"
}
client XXX.XXX.XXX.XXX/28 {
require_message_authenticator = no
secret = "xx"
shortname = "MTN-RB-J20"
}
client 10.18.201.0/24 {
require_message_authenticator = no
secret = "testing123"
shortname = "djs-laptop"
nastype = "other"
}
client 10.18.205.0/24 {
require_message_authenticator = no
secret = "testing123"
shortname = "djs-laptop"
nastype = "other"
}
radiusd: Loading Realms and Home Servers
proxy server {
retry_delay
Re: ERROR 734
Danie J. Steenkamp wrote: > Hi, I have loaded Freeradius 2.1.6 on a Centos 5.3 server with Mysql. > The server is responding perfectly to any Authentication. >>From a Windows XP it connects, verifies the username, password & > Calling-Station-ID. It then immediately disconnects with Error 734: The > PPP link control protocol was terminated. In the log on the Radius > server it shows that the connection was OK: Then blame the NAS. If the server says "let the user log in", and the NAS doesn't let the user log in, then the NAS is broken. > Thu Aug 13 09:40:39 2009 : Auth: Login OK: [Danie1234/] (from client > MTN-RB-J20 port 24329888 cli 27X) > Using NTRadPING, authentication is successful. Authentication was successful with the NAS, too. That it's the problem. > However, using "Accounting Start" on NTRadPING it sends the accounting > packet through to the server and can clearly be seen when using debug > mode: > "rad_recv: Accounting-Request packet from host 10.18.205.5 port 4923, > id=4, length=56 > User-Name = "Danie1234" > Acct-Status-Type = Start > Acct-Session-Id = "2120" > Calling-Station-Id = "27833873873" > Finished request 5." It's not processing the accounting section for some reason. Are you sure it's loading the right file? Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: ERROR 734
Hi, that is the problem, there is no error message in the radius.log file.
I have run the server mostly in debug mode to try and capture the error without
success.
I have now replicated the error with the server running in normal mode and
below is the output to the log file:
Thu Aug 13 19:16:08 2009 : Info: rlm_sql (sql): Driver rlm_sql_mysql (module
rlm_sql_mysql) loaded and linked
Thu Aug 13 19:16:08 2009 : Info: rlm_sql (sql): Attempting to connect to
rad...@localhost:/radiusdb
Thu Aug 13 19:16:08 2009 : Info: rlm_sql_mysql: Starting connect to MySQL
server for #0
Thu Aug 13 19:16:08 2009 : Info: rlm_sql_mysql: Starting connect to MySQL
server for #1
Thu Aug 13 19:16:08 2009 : Info: rlm_sql_mysql: Starting connect to MySQL
server for #2
Thu Aug 13 19:16:08 2009 : Info: rlm_sql_mysql: Starting connect to MySQL
server for #3
Thu Aug 13 19:16:08 2009 : Info: rlm_sql_mysql: Starting connect to MySQL
server for #4
Thu Aug 13 19:16:08 2009 : Info: Ready to process requests.
Thu Aug 13 19:16:44 2009 : Auth: Login OK: [Danie1234/] (from client
djs-laptop port 0 cli 27x)
There is no indication on the radius server that something is wrong. It is only
when you connect from Windows XP or using NTRadPING that you realize that there
must be some sort of problem due to the errors received in these two programs.
From: freeradius-users-bounces+danie=gaap.co...@lists.freeradius.org
[mailto:freeradius-users-bounces+danie=gaap.co...@lists.freeradius.org] On
Behalf Of Glen Millard
Sent: 13 August 2009 18:39
To: FreeRadius users mailing list
Subject: Re: ERROR 734
Have a look at the logs - what do you see there?
Post the last 50 or so lines if you like.
Glen
On Thu, Aug 13, 2009 at 12:28, Danie J. Steenkamp wrote:
Hi, I have loaded Freeradius 2.1.6 on a Centos 5.3 server with Mysql.
The server is responding perfectly to any Authentication.
>From a Windows XP it connects, verifies the username, password &
Calling-Station-ID. It then immediately disconnects with Error 734: The
PPP link control protocol was terminated. In the log on the Radius
server it shows that the connection was OK:
Thu Aug 13 09:40:39 2009 : Auth: Login OK: [Danie1234/] (from client
MTN-RB-J20 port 24329888 cli 27X)
Using NTRadPING, authentication is successful.
However, using "Accounting Start" on NTRadPING it sends the accounting
packet through to the server and can clearly be seen when using debug
mode:
"rad_recv: Accounting-Request packet from host 10.18.205.5 port 4923,
id=4, length=56
User-Name = "Danie1234"
Acct-Status-Type = Start
Acct-Session-Id = "2120"
Calling-Station-Id = "27833873873"
Finished request 5."
NTRadPING reports back that there is no response from the server.
Under Listen in radiusd.conf I have the following:
listen {
ipaddr = *
port = 1813
type = acct
}
Under site-enabled/default I have the following:
accouting {
detail
sql
}
I will appreciate any help in solving this issue.
__ Information from ESET NOD32 Antivirus, version of virus
signature database 4314 (20090807) __
The message was checked by ESET NOD32 Antivirus.
http://www.eset.com
(GAAP DISCLAIMER)
The above message and all attachments may contain privileged and confidential
information intended only for the person or entity to which it is addressed.
Any review, retransmission, dissemination, copy or other use of, or taking of
any action in reliance upon this information by persons or entities other than
the intended recipient is prohibited. If you received this message in error,
please notify the sender immediately by e-mail, facsimile or telephone and
thereafter delete the material from your computer. Any views expressed in this
message are those of the individual sender, except where the sender
specifically states them to be the view of the entity transmitting the message.
UCS Group Limited and all of its subsidiary companies hereby distance
themselves from and accept no liability in respect of the unauthorised use of
its e-mail facility or the sending of e-mail communications for other than
strictly business purposes.
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
__ Information from ESET NOD32 Antivirus, version of virus signature
database 4314 (20090807) __
The message was checked by ESET NOD32 Antivirus.
http://www.eset.com
__ Information from ESET NOD32 Antivirus, version of virus signature
database 4314 (20090807) __
The message was checked by ESET NOD32 Antivirus.
http://www.eset.com
(GAAP DISCLAIMER)
The abo
Re: ERROR 734
Have a look at the logs - what do you see there?
Post the last 50 or so lines if you like.
Glen
On Thu, Aug 13, 2009 at 12:28, Danie J. Steenkamp wrote:
> Hi, I have loaded Freeradius 2.1.6 on a Centos 5.3 server with Mysql.
> The server is responding perfectly to any Authentication.
> >From a Windows XP it connects, verifies the username, password &
> Calling-Station-ID. It then immediately disconnects with Error 734: The
> PPP link control protocol was terminated. In the log on the Radius
> server it shows that the connection was OK:
> Thu Aug 13 09:40:39 2009 : Auth: Login OK: [Danie1234/] (from client
> MTN-RB-J20 port 24329888 cli 27X)
> Using NTRadPING, authentication is successful.
> However, using "Accounting Start" on NTRadPING it sends the accounting
> packet through to the server and can clearly be seen when using debug
> mode:
> "rad_recv: Accounting-Request packet from host 10.18.205.5 port 4923,
> id=4, length=56
>User-Name = "Danie1234"
>Acct-Status-Type = Start
>Acct-Session-Id = "2120"
>Calling-Station-Id = "27833873873"
> Finished request 5."
> NTRadPING reports back that there is no response from the server.
>
> Under Listen in radiusd.conf I have the following:
> listen {
>ipaddr = *
>port = 1813
>type = acct
> }
> Under site-enabled/default I have the following:
> accouting {
> detail
> sql
> }
>
> I will appreciate any help in solving this issue.
>
>
>
> __ Information from ESET NOD32 Antivirus, version of virus
> signature database 4314 (20090807) __
>
> The message was checked by ESET NOD32 Antivirus.
>
> http://www.eset.com
>
>
> (GAAP DISCLAIMER)
> The above message and all attachments may contain privileged and
> confidential information intended only for the person or entity to which it
> is addressed. Any review, retransmission, dissemination, copy or other use
> of, or taking of any action in reliance upon this information by persons or
> entities other than the intended recipient is prohibited. If you received
> this message in error, please notify the sender immediately by e-mail,
> facsimile or telephone and thereafter delete the material from your
> computer. Any views expressed in this message are those of the individual
> sender, except where the sender specifically states them to be the view of
> the entity transmitting the message. UCS Group Limited and all of its
> subsidiary companies hereby distance themselves from and accept no liability
> in respect of the unauthorised use of its e-mail facility or the sending of
> e-mail communications for other than strictly business purposes.
>
> --
> This message has been scanned for viruses and
> dangerous content by MailScanner, and is
> believed to be clean.
>
>
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: error 734
Don't worry, the issue is fixed. A vrf congiguration was missing. From: Issa Nkusi Karera [MTN Rwanda - MTN Centre] Sent: Wednesday, July 15, 2009 6:10 PM To: freeradius-users@lists.freeradius.org Subject: error 734 Hello folks, Below is log message after an attempt to authenticate. Wed Jul 15 16:31:31 2009 : Auth: Login OK: [t...@wimax.mtnonline.rw] (from client XX-bras-1 port 0) It is bring error 734 on a windows machine. Therefore, the user cannot be connected. Thanks in advance for you advise. Best regards, Issa This mail has been scanned by Symantec Mail Scan MTN Mail administrator- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
