API tools faq
paste
Guest User

Untitled

a guest
Dec 12th, 2018
162
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 24.50 KB | None | 0 0
raw download clone embed print report
  1. dailycounter: --> 21568
  2. (10) dailycounter: Allowing user, &control:Max-Daily-Session value (53333) is greater than counter value (21568)
  3. (10) dailycounter: Time remaining (30271s) is greater than time to reset (31765s). Adding 30271s to reply value
  4. (10) dailycounter: Setting &reply:Session-Timeout value to 30271
  5. (10) [dailycounter] = ok
  6.  
  7. (1) Received Access-Request Id 161 from 192.168.254.5:1645 to 192.168.6.11:1812 length 162
  8. (1) User-Name = "eman"
  9. (1) Framed-MTU = 1400
  10. (1) Called-Station-Id = "001c.b0e8.7660"
  11. (1) Calling-Station-Id = "6805.7153.0d04"
  12. (1) Cisco-AVPair = "ssid=eap-test"
  13. (1) Service-Type = Login-User
  14. (1) Message-Authenticator = 0x05495e7c97342fb911add62b6f0b81b8
  15. (1) EAP-Message = 0x0201000901656d616e
  16. (1) NAS-Port-Type = Wireless-802.11
  17. (1) Cisco-NAS-Port = "991"
  18. (1) NAS-Port = 991
  19. (1) NAS-Port-Id = "991"
  20. (1) NAS-IP-Address = 192.168.254.5
  21. (1) NAS-Identifier = "AP_3rd"
  22. (1) # Executing section authorize from file /opt/etc/raddb/sites-enabled/default
  23. (1) authorize {
  24. (1) policy filter_username {
  25. (1) if (&User-Name) {
  26. (1) if (&User-Name) -> TRUE
  27. (1) if (&User-Name) {
  28. (1) if (&User-Name =~ / /) {
  29. (1) if (&User-Name =~ / /) -> FALSE
  30. (1) if (&User-Name =~ /@[^@]*@/ ) {
  31. (1) if (&User-Name =~ /@[^@]*@/ ) -> FALSE
  32. (1) if (&User-Name =~ /../ ) {
  33. (1) if (&User-Name =~ /../ ) -> FALSE
  34. (1) if ((&User-Name =~ /@/) && (&User-Name !~ /@(.+).(.+)$/)) {
  35. (1) if ((&User-Name =~ /@/) && (&User-Name !~ /@(.+).(.+)$/)) -> FALSE
  36. (1) if (&User-Name =~ /.$/) {
  37. (1) if (&User-Name =~ /.$/) -> FALSE
  38. (1) if (&User-Name =~ /@./) {
  39. (1) if (&User-Name =~ /@./) -> FALSE
  40. (1) } # if (&User-Name) = notfound
  41. (1) } # policy filter_username = notfound
  42. (1) [preprocess] = ok
  43. (1) [chap] = noop
  44. (1) [mschap] = noop
  45. (1) [digest] = noop
  46. (1) suffix: Checking for suffix after "@"
  47. (1) suffix: No '@' in User-Name = "eman", looking up realm NULL
  48. (1) suffix: No such realm "NULL"
  49. (1) [suffix] = noop
  50. (1) sql: EXPAND %{User-Name}
  51. (1) sql: --> eman
  52. (1) sql: SQL-User-Name set to 'eman'
  53. rlm_sql (sql): Reserved connection (2)
  54. (1) sql: EXPAND SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id
  55. (1) sql: --> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'eman' ORDER BY id
  56. (1) sql: Executing select query: SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'eman' ORDER BY id
  57. (1) sql: User found in radcheck table
  58. (1) sql: Conditional check items matched, merging assignment check items
  59. (1) sql: Cleartext-Password := "25833"
  60. (1) sql: Max-Daily-Session := 53333
  61. (1) sql: EXPAND SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id
  62. (1) sql: --> SELECT id, username, attribute, value, op FROM radreply WHERE username = 'eman' ORDER BY id
  63. (1) sql: Executing select query: SELECT id, username, attribute, value, op FROM radreply WHERE username = 'eman' ORDER BY id
  64. (1) sql: EXPAND SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority
  65. (1) sql: --> SELECT groupname FROM radusergroup WHERE username = 'eman' ORDER BY priority
  66. (1) sql: Executing select query: SELECT groupname FROM radusergroup WHERE username = 'eman' ORDER BY priority
  67. (1) sql: User found in the group table
  68. (1) sql: EXPAND SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = '%{SQL-Group}' ORDER BY id
  69. (1) sql: --> SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = 'WiFi' ORDER BY id
  70. (1) sql: Executing select query: SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = 'WiFi' ORDER BY id
  71. (1) sql: Group "WiFi": Conditional check items matched
  72. (1) sql: Group "WiFi": Merging assignment check items
  73. (1) sql: NAS-Port-Type := Wireless-802.11
  74. (1) sql: EXPAND SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = '%{SQL-Group}' ORDER BY id
  75. (1) sql: --> SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = 'WiFi' ORDER BY id
  76. (1) sql: Executing select query: SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = 'WiFi' ORDER BY id
  77. (1) sql: Group "WiFi": Merging reply items
  78. rlm_sql (sql): Released connection (2)
  79. Need 3 more connections to reach 10 spares
  80. rlm_sql (sql): Opening additional connection (7), 1 of 25 pending slots used
  81. rlm_sql_mysql: Starting connect to MySQL server
  82. rlm_sql_mysql: Connected to database 'radius' on 192.168.6.11 via TCP/IP, server version 5.5.5-10.0.34-MariaDB, protocol version 10
  83. (1) [sql] = ok
  84. sqlcounter_expand: 'SELECT IFNULL(SUM(acctsessiontime - GREATEST((1544544000 - UNIX_TIMESTAMP(acctstarttime)), 0)),0) FROM radacct WHERE username = '%{User-Name}' AND UNIX_TIMESTAMP(acctstarttime) + acctsessiontime > '1544544000''
  85. (1) dailycounter: EXPAND %{User-Name}
  86. (1) dailycounter: --> eman
  87. (1) dailycounter: SQL-User-Name set to 'eman'
  88. rlm_sql (sql): Reserved connection (3)
  89. (1) dailycounter: Executing select query: SELECT IFNULL(SUM(acctsessiontime - GREATEST((1544544000 - UNIX_TIMESTAMP(acctstarttime)), 0)),0) FROM radacct WHERE username = 'eman' AND UNIX_TIMESTAMP(acctstarttime) + acctsessiontime > '1544544000'
  90. rlm_sql (sql): Released connection (3)
  91. (1) dailycounter: EXPAND %{sql:SELECT IFNULL(SUM(acctsessiontime - GREATEST((1544544000 - UNIX_TIMESTAMP(acctstarttime)), 0)),0) FROM radacct WHERE username = '%{User-Name}' AND UNIX_TIMESTAMP(acctstarttime) + acctsessiontime > '1544544000'}
  92. (1) dailycounter: --> 26931
  93. (1) dailycounter: Allowing user, &control:Max-Daily-Session value (53333) is greater than counter value (26931)
  94. (1) dailycounter: Time remaining (19702s) is greater than time to reset (26402s). Adding 19702s to reply value
  95. (1) dailycounter: Setting &reply:Session-Timeout value to 19702
  96. (1) [dailycounter] = ok
  97. (1) monthlycounter: WARNING: Couldn't find check attribute, control:Max-Monthly-Session, doing nothing...
  98. (1) [monthlycounter] = noop
  99. (1) eap: Peer sent EAP Response (code 2) ID 1 length 9
  100. (1) eap: EAP-Identity reply, returning 'ok' so we can short-circuit the rest of authorize
  101. (1) [eap] = ok
  102. (1) } # authorize = ok
  103. (1) Found Auth-Type = eap
  104. (1) # Executing group from file /opt/etc/raddb/sites-enabled/default
  105. (1) authenticate {
  106. (1) eap: Peer sent packet with method EAP Identity (1)
  107. (1) eap: Calling submodule eap_peap to process data
  108. (1) eap_peap: Initiating new EAP-TLS session
  109. (1) eap_peap: [eaptls start] = request
  110. (1) eap: Sending EAP Request (code 1) ID 2 length 6
  111. (1) eap: EAP session adding &reply:State = 0x1c9361911c917853
  112. (1) [eap] = handled
  113. (1) } # authenticate = handled
  114. (1) Using Post-Auth-Type Challenge
  115. (1) # Executing group from file /opt/etc/raddb/sites-enabled/default
  116. (1) Post-Auth-Type Challenge {
  117. (1) attr_filter.access_challenge: EXPAND %{User-Name}
  118. (1) attr_filter.access_challenge: --> eman
  119. (1) attr_filter.access_challenge: Matched entry DEFAULT at line 12
  120. (1) [attr_filter.access_challenge.post-auth] = updated
  121. (1) } # Post-Auth-Type Challenge = updated
  122. (1) Sent Access-Challenge Id 161 from 192.168.6.11:1812 to 192.168.254.5:1645 length 0
  123. (1) Session-Timeout = 0
  124. (1) EAP-Message = 0x010200061920
  125. (1) Message-Authenticator = 0x00000000000000000000000000000000
  126. (1) State = 0x1c9361911c917853951b0ee4bfb6fd46
  127. (1) Finished request
  128. Waking up in 4.9 seconds.
  129.  
  130. Waking up in 4.4 seconds.
  131. (10) Received Access-Request Id 170 from 192.168.254.5:1645 to 192.168.6.11:1812 length 217
  132. (10) User-Name = "eman"
  133. (10) Framed-MTU = 1400
  134. (10) Called-Station-Id = "001c.b0e8.7660"
  135. (10) Calling-Station-Id = "6805.7153.0d04"
  136. (10) Cisco-AVPair = "ssid=eap-test"
  137. (10) Service-Type = Login-User
  138. (10) Message-Authenticator = 0x9bdbf9b429f728ddbe1c6ea25e8d8b25
  139. (10) EAP-Message = 0x020a002e190017030300230000000000000004dbfe1067e10bd8bb061c780b75c7941b9e5b185fcdc7f3bbe1b23c
  140. (10) NAS-Port-Type = Wireless-802.11
  141. (10) Cisco-NAS-Port = "991"
  142. (10) NAS-Port = 991
  143. (10) NAS-Port-Id = "991"
  144. (10) State = 0x1c93619114997853951b0ee4bfb6fd46
  145. (10) NAS-IP-Address = 192.168.254.5
  146. (10) NAS-Identifier = "AP_3rd"
  147. (10) Restoring &session-state
  148. (10) &session-state:Session-Timeout += 0
  149. (10) # Executing section authorize from file /opt/etc/raddb/sites-enabled/default
  150. (10) authorize {
  151. (10) policy filter_username {
  152. (10) if (&User-Name) {
  153. (10) if (&User-Name) -> TRUE
  154. (10) if (&User-Name) {
  155. (10) if (&User-Name =~ / /) {
  156. (10) if (&User-Name =~ / /) -> FALSE
  157. (10) if (&User-Name =~ /@[^@]*@/ ) {
  158. (10) if (&User-Name =~ /@[^@]*@/ ) -> FALSE
  159. (10) if (&User-Name =~ /../ ) {
  160. (10) if (&User-Name =~ /../ ) -> FALSE
  161. (10) if ((&User-Name =~ /@/) && (&User-Name !~ /@(.+).(.+)$/)) {
  162. (10) if ((&User-Name =~ /@/) && (&User-Name !~ /@(.+).(.+)$/)) -> FALSE
  163. (10) if (&User-Name =~ /.$/) {
  164. (10) if (&User-Name =~ /.$/) -> FALSE
  165. (10) if (&User-Name =~ /@./) {
  166. (10) if (&User-Name =~ /@./) -> FALSE
  167. (10) } # if (&User-Name) = notfound
  168. (10) } # policy filter_username = notfound
  169. (10) [preprocess] = ok
  170. (10) [chap] = noop
  171. (10) [mschap] = noop
  172. (10) [digest] = noop
  173. (10) suffix: Checking for suffix after "@"
  174. (10) suffix: No '@' in User-Name = "eman", looking up realm NULL
  175. (10) suffix: No such realm "NULL"
  176. (10) [suffix] = noop
  177. (10) sql: EXPAND %{User-Name}
  178. (10) sql: --> eman
  179. (10) sql: SQL-User-Name set to 'eman'
  180. rlm_sql (sql): Reserved connection (1)
  181. (10) sql: EXPAND SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id
  182. (10) sql: --> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'eman' ORDER BY id
  183. (10) sql: Executing select query: SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'eman' ORDER BY id
  184. (10) sql: User found in radcheck table
  185. (10) sql: Conditional check items matched, merging assignment check items
  186. (10) sql: Cleartext-Password := "25833"
  187. (10) sql: Max-Daily-Session := 53333
  188. (10) sql: EXPAND SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id
  189. (10) sql: --> SELECT id, username, attribute, value, op FROM radreply WHERE username = 'eman' ORDER BY id
  190. (10) sql: Executing select query: SELECT id, username, attribute, value, op FROM radreply WHERE username = 'eman' ORDER BY id
  191. (10) sql: EXPAND SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority
  192. (10) sql: --> SELECT groupname FROM radusergroup WHERE username = 'eman' ORDER BY priority
  193. (10) sql: Executing select query: SELECT groupname FROM radusergroup WHERE username = 'eman' ORDER BY priority
  194. (10) sql: User found in the group table
  195. (10) sql: EXPAND SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = '%{SQL-Group}' ORDER BY id
  196. (10) sql: --> SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = 'WiFi' ORDER BY id
  197. (10) sql: Executing select query: SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = 'WiFi' ORDER BY id
  198. (10) sql: Group "WiFi": Conditional check items matched
  199. (10) sql: Group "WiFi": Merging assignment check items
  200. (10) sql: NAS-Port-Type := Wireless-802.11
  201. (10) sql: EXPAND SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = '%{SQL-Group}' ORDER BY id
  202. (10) sql: --> SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = 'WiFi' ORDER BY id
  203. (10) sql: Executing select query: SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = 'WiFi' ORDER BY id
  204. (10) sql: Group "WiFi": Merging reply items
  205. rlm_sql (sql): Released connection (1)
  206. (10) [sql] = ok
  207. sqlcounter_expand: 'SELECT IFNULL(SUM(acctsessiontime - GREATEST((1544544000 - UNIX_TIMESTAMP(acctstarttime)), 0)),0) FROM radacct WHERE username = '%{User-Name}' AND UNIX_TIMESTAMP(acctstarttime) + acctsessiontime > '1544544000''
  208. (10) dailycounter: EXPAND %{User-Name}
  209. (10) dailycounter: --> eman
  210. (10) dailycounter: SQL-User-Name set to 'eman'
  211. rlm_sql (sql): Reserved connection (6)
  212. (10) dailycounter: Executing select query: SELECT IFNULL(SUM(acctsessiontime - GREATEST((1544544000 - UNIX_TIMESTAMP(acctstarttime)), 0)),0) FROM radacct WHERE username = 'eman' AND UNIX_TIMESTAMP(acctstarttime) + acctsessiontime > '1544544000'
  213. rlm_sql (sql): Released connection (6)
  214. (10) dailycounter: EXPAND %{sql:SELECT IFNULL(SUM(acctsessiontime - GREATEST((1544544000 - UNIX_TIMESTAMP(acctstarttime)), 0)),0) FROM radacct WHERE username = '%{User-Name}' AND UNIX_TIMESTAMP(acctstarttime) + acctsessiontime > '1544544000'}
  215. (10) dailycounter: --> 26931
  216. (10) dailycounter: Allowing user, &control:Max-Daily-Session value (53333) is greater than counter value (26931)
  217. (10) dailycounter: Time remaining (19701s) is greater than time to reset (26402s). Adding 19701s to reply value
  218. (10) dailycounter: Setting &reply:Session-Timeout value to 19701
  219. (10) [dailycounter] = ok
  220. (10) monthlycounter: WARNING: Couldn't find check attribute, control:Max-Monthly-Session, doing nothing...
  221. (10) [monthlycounter] = noop
  222. (10) eap: Peer sent EAP Response (code 2) ID 10 length 46
  223. (10) eap: Continuing tunnel setup
  224. (10) [eap] = ok
  225. (10) } # authorize = ok
  226. (10) Found Auth-Type = eap
  227. (10) # Executing group from file /opt/etc/raddb/sites-enabled/default
  228. (10) authenticate {
  229. (10) eap: Expiring EAP session with state 0x1c93619114997853
  230. (10) eap: Finished EAP session with state 0x1c93619114997853
  231. (10) eap: Previous EAP request found for state 0x1c93619114997853, released from the list
  232. (10) eap: Peer sent packet with method EAP PEAP (25)
  233. (10) eap: Calling submodule eap_peap to process data
  234. (10) eap_peap: Continuing EAP-TLS
  235. (10) eap_peap: [eaptls verify] = ok
  236. (10) eap_peap: Done initial handshake
  237. (10) eap_peap: [eaptls process] = ok
  238. (10) eap_peap: Session established. Decoding tunneled attributes
  239. (10) eap_peap: PEAP state send tlv success
  240. (10) eap_peap: Received EAP-TLV response
  241. (10) eap_peap: Success
  242. (10) eap_peap: Using saved attributes from the original Access-Accept
  243. (10) eap_peap: Session-Timeout = 0
  244. (10) eap: Sending EAP Success (code 3) ID 10 length 4
  245. (10) eap: Freeing handler
  246. (10) [eap] = ok
  247. (10) } # authenticate = ok
  248. (10) # Executing section post-auth from file /opt/etc/raddb/sites-enabled/default
  249. (10) post-auth {
  250. (10) update {
  251. (10) &reply::Session-Timeout += &session-state:Session-Timeout[*] -> 0
  252. (10) } # update = noop
  253. (10) sql: EXPAND .query
  254. (10) sql: --> .query
  255. (10) sql: Using query template 'query'
  256. rlm_sql (sql): Reserved connection (2)
  257. (10) sql: EXPAND %{User-Name}
  258. (10) sql: --> eman
  259. (10) sql: SQL-User-Name set to 'eman'
  260. (10) sql: EXPAND INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( '%{SQL-User-Name}', '%{%{User-Password}:-%{Chap-Password}}', '%{reply:Packet-Type}', '%S')
  261. (10) sql: --> INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( 'eman', '', 'Access-Accept', '2018-12-12 18:31:39')
  262. (10) sql: Executing query: INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( 'eman', '', 'Access-Accept', '2018-12-12 18:31:39')
  263. (10) sql: SQL query returned: success
  264. (10) sql: 1 record(s) updated
  265. rlm_sql (sql): Released connection (2)
  266. (10) [sql] = ok
  267. (10) [exec] = noop
  268. (10) policy remove_reply_message_if_eap {
  269. (10) if (&reply:EAP-Message && &reply:Reply-Message) {
  270. (10) if (&reply:EAP-Message && &reply:Reply-Message) -> FALSE
  271. (10) else {
  272. (10) [noop] = noop
  273. (10) } # else = noop
  274. (10) } # policy remove_reply_message_if_eap = noop
  275. (10) } # post-auth = ok
  276. (10) Sent Access-Accept Id 170 from 192.168.6.11:1812 to 192.168.254.5:1645 length 0
  277. (10) Session-Timeout = 0
  278. (10) Session-Timeout = 0
  279. (10) MS-MPPE-Recv-Key = 0x01b82581a3dbd439a7e06e7cfb5c79fd3934fce1395184fafbca13140b14cdc2
  280. (10) MS-MPPE-Send-Key = 0x9d88fa0c521c4ba96801f2f2e73828ff3a76c0df4f2359fca0fa66f83c4c59f4
  281. (10) EAP-Message = 0x030a0004
  282. (10) Message-Authenticator = 0x00000000000000000000000000000000
  283. (10) User-Name = "eman"
  284. (10) Session-Timeout += 0
  285. (10) Finished request
  286. Waking up in 4.3 seconds.
  287. (11) Received Accounting-Request Id 122 from 192.168.254.5:1646 to 192.168.6.11:1813 length 238
  288. (11) Acct-Session-Id = "0000298F"
  289. (11) Called-Station-Id = "001c.b0e8.7660"
  290. (11) Calling-Station-Id = "6805.7153.0d04"
  291. (11) Cisco-AVPair = "ssid=eap-test"
  292. (11) Cisco-AVPair = "vlan-id=7"
  293. (11) Cisco-AVPair = "nas-location=unspecified"
  294. (11) User-Name = "eman"
  295. (11) Cisco-AVPair = "connect-progress=Call Up"
  296. (11) Acct-Authentic = RADIUS
  297. (11) Acct-Status-Type = Start
  298. (11) NAS-Port-Type = Wireless-802.11
  299. (11) Cisco-NAS-Port = "991"
  300. (11) NAS-Port = 991
  301. (11) NAS-Port-Id = "991"
  302. (11) Service-Type = Framed-User
  303. (11) NAS-IP-Address = 192.168.254.5
  304. (11) PMIP6-Home-HN-Prefix = 3835:3135:3830::/68
  305. (11) Acct-Delay-Time = 0
  306. (11) # Executing section preacct from file /opt/etc/raddb/sites-enabled/default
  307. (11) preacct {
  308. (11) [preprocess] = ok
  309. (11) policy acct_counters64.preacct {
  310. (11) update request {
  311. (11) WARNING: Can't find &Acct-Input-Gigawords. Using 0 as operand value
  312. (11) WARNING: Can't find &Acct-Input-Octets. Using 0 as operand value
  313. (11) EXPAND %{expr:(&Acct-Input-Gigawords << 32) | &Acct-Input-Octets}
  314. (11) --> 0
  315. (11) &Acct-Input-Octets64 = 0
  316. (11) WARNING: Can't find &Acct-Output-Gigawords. Using 0 as operand value
  317. (11) WARNING: Can't find &Acct-Output-Octets. Using 0 as operand value
  318. (11) EXPAND %{expr:(&Acct-Output-Gigawords << 32) | &Acct-Output-Octets}
  319. (11) --> 0
  320. (11) &Acct-Output-Octets64 = 0
  321. (11) } # update request = noop
  322. (11) } # policy acct_counters64.preacct = noop
  323. (11) update request {
  324. (11) EXPAND %{expr: %l - %{%{Acct-Session-Time}:-0} - %{%{Acct-Delay-Time}:-0}}
  325. (11) --> 1544610699
  326. (11) &FreeRADIUS-Acct-Session-Start-Time = Dec 12 2018 18:31:39 CST
  327. (11) } # update request = noop
  328. (11) policy acct_unique {
  329. (11) update request {
  330. (11) &Tmp-String-9 := "ai:"
  331. (11) } # update request = noop
  332. (11) if (("%{hex:&Class}" =~ /^%{hex:&Tmp-String-9}/) && ("%{string:&Class}" =~ /^ai:([0-9a-f]{32})/i)) {
  333. (11) EXPAND %{hex:&Class}
  334. (11) -->
  335. (11) EXPAND ^%{hex:&Tmp-String-9}
  336. (11) --> ^61693a
  337. (11) if (("%{hex:&Class}" =~ /^%{hex:&Tmp-String-9}/) && ("%{string:&Class}" =~ /^ai:([0-9a-f]{32})/i)) -> FALSE
  338. (11) else {
  339. (11) update request {
  340. (11) EXPAND %{md5:%{User-Name},%{Acct-Session-ID},%{%{NAS-IPv6-Address}:-%{NAS-IP-Address}},%{NAS-Identifier},%{NAS-Port-ID},%{NAS-Port}}
  341. (11) --> 688597e3bf3fb3a619985fcf0e000dea
  342. (11) &Acct-Unique-Session-Id := 688597e3bf3fb3a619985fcf0e000dea
  343. (11) } # update request = noop
  344. (11) } # else = noop
  345. (11) } # policy acct_unique = noop
  346. (11) IPASS: Checking for prefix before "/"
  347. (11) IPASS: No '/' in User-Name = "eman", looking up realm NULL
  348. (11) IPASS: No such realm "NULL"
  349. (11) [IPASS] = noop
  350. (11) suffix: Checking for suffix after "@"
  351. (11) suffix: No '@' in User-Name = "eman", looking up realm NULL
  352. (11) suffix: No such realm "NULL"
  353. (11) [suffix] = noop
  354. (11) } # preacct = ok
  355. (11) # Executing section accounting from file /opt/etc/raddb/sites-enabled/default
  356. (11) accounting {
  357. (11) [unix] = ok
  358. (11) radutmp: EXPAND /opt/var/log/radius/radutmp
  359. (11) radutmp: --> /opt/var/log/radius/radutmp
  360. (11) radutmp: EXPAND %{User-Name}
  361. (11) radutmp: --> eman
  362. (11) [radutmp] = ok
  363. (11) sradutmp: EXPAND /opt/var/log/radius/sradutmp
  364. (11) sradutmp: --> /opt/var/log/radius/sradutmp
  365. (11) sradutmp: EXPAND %{User-Name}
  366. (11) sradutmp: --> eman
  367. (11) [sradutmp] = ok
  368. (11) sql: EXPAND %{tolower:type.%{Acct-Status-Type}.query}
  369. (11) sql: --> type.start.query
  370. (11) sql: Using query template 'query'
  371. rlm_sql (sql): Reserved connection (7)
  372. (11) sql: EXPAND %{User-Name}
  373. (11) sql: --> eman
  374. (11) sql: SQL-User-Name set to 'eman'
  375. (11) sql: EXPAND INSERT INTO radacct (acctsessionid, acctuniqueid, username, realm, nasipaddress, nasportid, nasporttype, acctstarttime, acctupdatetime, acctstoptime, acctsessiontime, acctauthentic, connectinfo_start, connectinfo_stop, acctinputoctets, acctoutputoctets, calledstationid, callingstationid, acctterminatecause, servicetype,framedprotocol, framedipaddress) VALUES ('%{Acct-Session-Id}', '%{Acct-Unique-Session-Id}', '%{SQL-User-Name}', '%{Realm}', '%{NAS-IP-Address}', '%{%{NAS-Port-ID}:-%{NAS-Port}}', '%{NAS-Port-Type}', FROM_UNIXTIME(%{integer:Event-Timestamp}), FROM_UNIXTIME(%{integer:Event-Timestamp}), NULL, '0', '%{Acct-Authentic}', '%{Connect-Info}', '', '0', '0', '%{Called-Station-Id}', '%{Calling-Station-Id}', '', '%{Service-Type}', '%{Framed-Protocol}', '%{Framed-IP-Address}')
  376. (11) sql: --> INSERT INTO radacct (acctsessionid, acctuniqueid, username, realm, nasipaddress, nasportid, nasporttype, acctstarttime, acctupdatetime, acctstoptime, acctsessiontime, acctauthentic, connectinfo_start, connectinfo_stop, acctinputoctets, acctoutputoctets, calledstationid, callingstationid, acctterminatecause, servicetype,framedprotocol, framedipaddress) VALUES ('0000298F', '688597e3bf3fb3a619985fcf0e000dea', 'eman', '', '192.168.254.5', '991', 'Wireless-802.11', FROM_UNIXTIME(1544610699), FROM_UNIXTIME(1544610699), NULL, '0', 'RADIUS', '', '', '0', '0', '001c.b0e8.7660', '6805.7153.0d04', '', 'Framed-User', '', '')
  377. (11) sql: Executing query: INSERT INTO radacct (acctsessionid, acctuniqueid, username, realm, nasipaddress, nasportid, nasporttype, acctstarttime, acctupdatetime, acctstoptime, acctsessiontime, acctauthentic, connectinfo_start, connectinfo_stop, acctinputoctets, acctoutputoctets, calledstationid, callingstationid, acctterminatecause, servicetype, framedprotocol, framedipaddress) VALUES ('0000298F', '688597e3bf3fb3a619985fcf0e000dea', 'eman', '', '192.168.254.5', '991', 'Wireless-802.11', FROM_UNIXTIME(1544610699), FROM_UNIXTIME(1544610699), NULL, '0', 'RADIUS', '', '', '0', '0', '001c.b0e8.7660', '6805.7153.0d04', '', 'Framed-User', '', '')
  378. (11) sql: SQL query returned: success
  379. (11) sql: 1 record(s) updated
  380. rlm_sql (sql): Released connection (7)
  381. (11) [sql] = ok
  382. (11) [exec] = noop
  383. (11) attr_filter.accounting_response: EXPAND %{User-Name}
  384. (11) attr_filter.accounting_response: --> eman
  385. (11) attr_filter.accounting_response: Matched entry DEFAULT at line 12
  386. (11) [attr_filter.accounting_response] = updated
  387. (11) } # accounting = updated
  388. (11) Sent Accounting-Response Id 122 from 192.168.6.11:1813 to 192.168.254.5:1646 length 0
  389. (11) Finished request
  390. (11) Cleaning up request packet ID 122 with timestamp +44
  391. Waking up in 4.2 seconds.
  392. (1) Cleaning up request packet ID 161 with timestamp +43
  393. (2) Cleaning up request packet ID 162 with timestamp +43
  394. (3) Cleaning up request packet ID 163 with timestamp +44
  395. (4) Cleaning up request packet ID 164 with timestamp +44
  396. Waking up in 0.1 seconds.
  397. (5) Cleaning up request packet ID 165 with timestamp +44
  398. (6) Cleaning up request packet ID 166 with timestamp +44
  399. (7) Cleaning up request packet ID 167 with timestamp +44
  400. (8) Cleaning up request packet ID 168 with timestamp +44
  401. (9) Cleaning up request packet ID 169 with timestamp +44
  402. Waking up in 0.1 seconds.
  403. (10) Cleaning up request packet ID 170 with timestamp +44
  404. Ready to process requests
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!