API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Sep 26th, 2017
75
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 24.99 KB | None | 0 0
raw download clone embed print report
  1. FreeRADIUS Version 2.1.10, for host i486-pc-linux-gnu, built on Nov 14 2010 at 20:41:03
  2. Copyright (C) 1999-2009 The FreeRADIUS server project and contributors.
  3. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A
  4. PARTICULAR PURPOSE.
  5. You may redistribute copies of FreeRADIUS under the terms of the
  6. GNU General Public License v2.
  7. Starting - reading configuration files ...
  8. including configuration file /etc/freeradius/radiusd.conf
  9. including configuration file /etc/freeradius/proxy.conf
  10. including configuration file /etc/freeradius/clients.conf
  11. including files in directory /etc/freeradius/modules/
  12. including configuration file /etc/freeradius/modules/exec
  13. including configuration file /etc/freeradius/modules/linelog
  14. including configuration file /etc/freeradius/modules/unix
  15. including configuration file /etc/freeradius/modules/acct_unique
  16. including configuration file /etc/freeradius/modules/krb5
  17. including configuration file /etc/freeradius/modules/counter
  18. including configuration file /etc/freeradius/modules/detail.example.com
  19. including configuration file /etc/freeradius/modules/mac2vlan
  20. including configuration file /etc/freeradius/modules/expiration
  21. including configuration file /etc/freeradius/modules/realm
  22. including configuration file /etc/freeradius/modules/sql_log
  23. including configuration file /etc/freeradius/modules/always
  24. including configuration file /etc/freeradius/modules/ldap
  25. including configuration file /etc/freeradius/modules/attr_rewrite
  26. including configuration file /etc/freeradius/modules/attr_filter
  27. including configuration file /etc/freeradius/modules/otp
  28. including configuration file /etc/freeradius/modules/smsotp
  29. including configuration file /etc/freeradius/modules/detail
  30. including configuration file /etc/freeradius/modules/chap
  31. including configuration file /etc/freeradius/modules/policy
  32. including configuration file /etc/freeradius/modules/sradutmp
  33. including configuration file /etc/freeradius/modules/ippool
  34. including configuration file /etc/freeradius/modules/mac2ip
  35. including configuration file /etc/freeradius/modules/smbpasswd
  36. including configuration file /etc/freeradius/modules/pam
  37. including configuration file /etc/freeradius/modules/cui
  38. including configuration file /etc/freeradius/modules/opendirectory
  39. including configuration file /etc/freeradius/modules/digest
  40. including configuration file /etc/freeradius/modules/etc_group
  41. including configuration file /etc/freeradius/modules/wimax
  42. including configuration file /etc/freeradius/modules/expr
  43. including configuration file /etc/freeradius/modules/detail.log
  44. including configuration file /etc/freeradius/modules/checkval
  45. including configuration file /etc/freeradius/modules/dynamic_clients
  46. including configuration file /etc/freeradius/modules/perl
  47. including configuration file /etc/freeradius/modules/files
  48. including configuration file /etc/freeradius/modules/ntlm_auth
  49. including configuration file /etc/freeradius/modules/preprocess
  50. including configuration file /etc/freeradius/modules/pap
  51. including configuration file /etc/freeradius/modules/mschap
  52. including configuration file /etc/freeradius/modules/sqlcounter_expire_on_login
  53. including configuration file /etc/freeradius/modules/radutmp
  54. including configuration file /etc/freeradius/modules/passwd
  55. including configuration file /etc/freeradius/modules/logintime
  56. including configuration file /etc/freeradius/modules/inner-eap
  57. including configuration file /etc/freeradius/modules/echo
  58. including configuration file /etc/freeradius/eap.conf
  59. including configuration file /etc/freeradius/sql.conf
  60. including configuration file /etc/freeradius/sql/mysql/dialup.conf
  61. including configuration file /etc/freeradius/sql/mysql/counter.conf
  62. including configuration file /etc/freeradius/policy.conf
  63. including files in directory /etc/freeradius/sites-enabled/
  64. including configuration file /etc/freeradius/sites-enabled/default
  65. including configuration file /etc/freeradius/sites-enabled/inner-tunnel
  66. main {
  67. user = "freerad"
  68. group = "freerad"
  69. allow_core_dumps = no
  70. }
  71. including dictionary file /etc/freeradius/dictionary
  72. main {
  73. prefix = "/usr"
  74. localstatedir = "/var"
  75. logdir = "/var/log/freeradius"
  76. libdir = "/usr/lib/freeradius"
  77. radacctdir = "/var/log/freeradius/radacct"
  78. hostname_lookups = no
  79. max_request_time = 30
  80. cleanup_delay = 5
  81. max_requests = 1024
  82. pidfile = "/var/run/freeradius/freeradius.pid"
  83. checkrad = "/usr/sbin/checkrad"
  84. debug_level = 0
  85. proxy_requests = yes
  86. log {
  87. stripped_names = no
  88. auth = no
  89. auth_badpass = no
  90. auth_goodpass = no
  91. }
  92. security {
  93. max_attributes = 200
  94. reject_delay = 1
  95. status_server = yes
  96. }
  97. }
  98. radiusd: #### Loading Realms and Home Servers ####
  99. proxy server {
  100. retry_delay = 5
  101. retry_count = 3
  102. default_fallback = no
  103. dead_time = 120
  104. wake_all_if_all_dead = no
  105. }
  106. home_server localhost {
  107. ipaddr = 127.0.0.1
  108. port = 1812
  109. type = "auth"
  110. secret = "testing123"
  111. response_window = 20
  112. max_outstanding = 65536
  113. require_message_authenticator = yes
  114. zombie_period = 40
  115. status_check = "status-server"
  116. ping_interval = 30
  117. check_interval = 30
  118. num_answers_to_alive = 3
  119. num_pings_to_alive = 3
  120. revive_interval = 120
  121. status_check_timeout = 4
  122. irt = 2
  123. mrt = 16
  124. mrc = 5
  125. mrd = 30
  126. }
  127. home_server_pool my_auth_failover {
  128. type = fail-over
  129. home_server = localhost
  130. }
  131. realm mojafirma.msft {
  132. auth_pool = my_auth_failover
  133. }
  134. realm LOCAL {
  135. }
  136. radiusd: #### Loading Clients ####
  137. client localhost {
  138. ipaddr = 127.0.0.1
  139. require_message_authenticator = no
  140. secret = "testing123"
  141. nastype = "other"
  142. }
  143. client 192.168.0.0/24 {
  144. require_message_authenticator = no
  145. secret = "testing123"
  146. }
  147. radiusd: #### Instantiating modules ####
  148. instantiate {
  149. Module: Linked to module rlm_exec
  150. Module: Instantiating module "exec" from file /etc/freeradius/modules/exec
  151. exec {
  152. wait = no
  153. input_pairs = "request"
  154. shell_escape = yes
  155. }
  156. Module: Linked to module rlm_expr
  157. Module: Instantiating module "expr" from file /etc/freeradius/modules/expr
  158. Module: Linked to module rlm_expiration
  159. Module: Instantiating module "expiration" from file /etc/freeradius/modules/expiration
  160. expiration {
  161. reply-message = "Password Has Expired "
  162. }
  163. Module: Linked to module rlm_logintime
  164. Module: Instantiating module "logintime" from file /etc/freeradius/modules/logintime
  165. logintime {
  166. reply-message = "You are calling outside your allowed timespan "
  167. minimum-timeout = 60
  168. }
  169. }
  170. radiusd: #### Loading Virtual Servers ####
  171. server inner-tunnel { # from file /etc/freeradius/sites-enabled/inner-tunnel
  172. modules {
  173. Module: Checking authenticate {...} for more modules to load
  174. Module: Linked to module rlm_pap
  175. Module: Instantiating module "pap" from file /etc/freeradius/modules/pap
  176. pap {
  177. encryption_scheme = "auto"
  178. auto_header = no
  179. }
  180. Module: Linked to module rlm_chap
  181. Module: Instantiating module "chap" from file /etc/freeradius/modules/chap
  182. Module: Linked to module rlm_mschap
  183. Module: Instantiating module "mschap" from file /etc/freeradius/modules/mschap
  184. mschap {
  185. use_mppe = yes
  186. require_encryption = no
  187. require_strong = no
  188. with_ntdomain_hack = no
  189. }
  190. Module: Linked to module rlm_unix
  191. Module: Instantiating module "unix" from file /etc/freeradius/modules/unix
  192. unix {
  193. radwtmp = "/var/log/freeradius/radwtmp"
  194. }
  195. Module: Linked to module rlm_eap
  196. Module: Instantiating module "eap" from file /etc/freeradius/eap.conf
  197. eap {
  198. default_eap_type = "peap"
  199. timer_expire = 60
  200. ignore_unknown_eap_types = no
  201. cisco_accounting_username_bug = no
  202. max_sessions = 4096
  203. }
  204. Module: Linked to sub-module rlm_eap_md5
  205. Module: Instantiating eap-md5
  206. Module: Linked to sub-module rlm_eap_leap
  207. Module: Instantiating eap-leap
  208. Module: Linked to sub-module rlm_eap_gtc
  209. Module: Instantiating eap-gtc
  210. gtc {
  211. challenge = "Password: "
  212. auth_type = "PAP"
  213. }
  214. Module: Linked to sub-module rlm_eap_tls
  215. Module: Instantiating eap-tls
  216. tls {
  217. rsa_key_exchange = no
  218. dh_key_exchange = yes
  219. rsa_key_length = 512
  220. dh_key_length = 512
  221. verify_depth = 0
  222. CA_path = "/etc/freeradius/certs"
  223. pem_file_type = yes
  224. private_key_file = "/etc/freeradius/certs/server.key"
  225. certificate_file = "/etc/freeradius/certs/server.pem"
  226. CA_file = "/etc/freeradius/certs/ca.pem"
  227. private_key_password = "testing123"
  228. dh_file = "/etc/freeradius/certs/dh"
  229. random_file = "/dev/urandom"
  230. fragment_size = 1024
  231. include_length = yes
  232. check_crl = no
  233. cipher_list = "DEFAULT"
  234. make_cert_command = "/etc/freeradius/certs/bootstrap"
  235. cache {
  236. enable = no
  237. lifetime = 24
  238. max_entries = 255
  239. }
  240. verify {
  241. }
  242. }
  243. Module: Linked to sub-module rlm_eap_ttls
  244. Module: Instantiating eap-ttls
  245. ttls {
  246. default_eap_type = "md5"
  247. copy_request_to_tunnel = no
  248. use_tunneled_reply = no
  249. virtual_server = "inner-tunnel"
  250. include_length = yes
  251. }
  252. Module: Linked to sub-module rlm_eap_peap
  253. Module: Instantiating eap-peap
  254. peap {
  255. default_eap_type = "mschapv2"
  256. copy_request_to_tunnel = no
  257. use_tunneled_reply = no
  258. proxy_tunneled_request_as_eap = yes
  259. virtual_server = "inner-tunnel"
  260. }
  261. Module: Linked to sub-module rlm_eap_mschapv2
  262. Module: Instantiating eap-mschapv2
  263. mschapv2 {
  264. with_ntdomain_hack = no
  265. }
  266. Module: Checking authorize {...} for more modules to load
  267. Module: Linked to module rlm_realm
  268. Module: Instantiating module "suffix" from file /etc/freeradius/modules/realm
  269. realm suffix {
  270. format = "suffix"
  271. delimiter = "@"
  272. ignore_default = no
  273. ignore_null = no
  274. }
  275. Module: Linked to module rlm_files
  276. Module: Instantiating module "files" from file /etc/freeradius/modules/files
  277. files {
  278. usersfile = "/etc/freeradius/users"
  279. acctusersfile = "/etc/freeradius/acct_users"
  280. preproxy_usersfile = "/etc/freeradius/preproxy_users"
  281. compat = "no"
  282. }
  283. Module: Checking session {...} for more modules to load
  284. Module: Linked to module rlm_radutmp
  285. Module: Instantiating module "radutmp" from file /etc/freeradius/modules/radutmp
  286. radutmp {
  287. filename = "/var/log/freeradius/radutmp"
  288. username = "%{User-Name}"
  289. case_sensitive = yes
  290. check_with_nas = yes
  291. perm = 384
  292. callerid = yes
  293. }
  294. Module: Checking post-proxy {...} for more modules to load
  295. Module: Checking post-auth {...} for more modules to load
  296. Module: Linked to module rlm_attr_filter
  297. Module: Instantiating module "attr_filter.access_reject" from file /etc/freeradius/modules/attr_filter
  298. attr_filter attr_filter.access_reject {
  299. attrsfile = "/etc/freeradius/attrs.access_reject"
  300. key = "%{User-Name}"
  301. }
  302. } # modules
  303. } # server
  304. server { # from file /etc/freeradius/radiusd.conf
  305. modules {
  306. Module: Checking authenticate {...} for more modules to load
  307. Module: Linked to module rlm_digest
  308. Module: Instantiating module "digest" from file /etc/freeradius/modules/digest
  309. Module: Checking authorize {...} for more modules to load
  310. Module: Linked to module rlm_preprocess
  311. Module: Instantiating module "preprocess" from file /etc/freeradius/modules/preprocess
  312. preprocess {
  313. huntgroups = "/etc/freeradius/huntgroups"
  314. hints = "/etc/freeradius/hints"
  315. with_ascend_hack = no
  316. ascend_channels_per_line = 23
  317. with_ntdomain_hack = no
  318. with_specialix_jetstream_hack = no
  319. with_cisco_vsa_hack = no
  320. with_alvarion_vsa_hack = no
  321. }
  322. Module: Linked to module rlm_sql
  323. Module: Instantiating module "sql" from file /etc/freeradius/sql.conf
  324. sql {
  325. driver = "rlm_sql_mysql"
  326. server = "localhost"
  327. port = ""
  328. login = "root"
  329. password = "zaq12wsx"
  330. radius_db = "radius"
  331. read_groups = yes
  332. sqltrace = no
  333. sqltracefile = "/var/log/freeradius/sqltrace.sql"
  334. readclients = yes
  335. deletestalesessions = yes
  336. num_sql_socks = 5
  337. lifetime = 0
  338. max_queries = 0
  339. sql_user_name = "%{User-Name}"
  340. default_user_profile = ""
  341. nas_query = "SELECT id, nasname, shortname, type, secret, server FROM nas"
  342. authorize_check_query = "SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id"
  343. authorize_reply_query = "SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id"
  344. authorize_group_check_query = "SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = '%{Sql-Group}' ORDER BY id"
  345. authorize_group_reply_query = "SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = '%{Sql-Group}' ORDER BY id"
  346. accounting_onoff_query = " UPDATE radacct SET acctstoptime = '%S', acctsessiontime = unix_timestamp('%S') - unix_timestamp(acctstarttime), acctterminatecause = '%{Acct-Terminate-Cause}', acctstopdelay = %{%{Acct-Delay-Time}:-0} WHERE acctstoptime IS NULL AND nasipaddress = '%{NAS-IP-Address}' AND acctstarttime <= '%S'"
  347. accounting_update_query = " UPDATE radacct SET framedipaddress = '%{Framed-IP-Address}', acctsessiontime = '%{Acct-Session-Time}', acctinputoctets = '%{%{Acct-Input-Gigawords}:-0}' << 32 | '%{%{Acct-Input-Octets}:-0}', acctoutputoctets = '%{%{Acct-Output-Gigawords}:-0}' << 32 | '%{%{Acct-Output-Octets}:-0}' WHERE acctsessionid = '%{Acct-Session-Id}' AND username = '%{SQL-User-Name}' AND nasipaddress = '%{NAS-IP-Address}'"
  348. accounting_update_query_alt = " INSERT INTO radacct (acctsessionid, acctuniqueid, username, realm, nasipaddress, nasportid, nasporttype, acctstarttime, acctsessiontime, acctauthentic, connectinfo_start, acctinputoctets, acctoutputoctets, calledstationid, callingstationid, servicetype, framedprotocol, framedipaddress, acctstartdelay, xascendsessionsvrkey) VALUES ('%{Acct-Session-Id}', '%{Acct-Unique-Session-Id}', '%{SQL-User-Name}', '%{Realm}', '%{NAS-IP-Address}', '%{NAS-Port}', '%{NAS-Port-Type}', DATE_SUB('%S', INTERVAL (%{%{Acct-Session-Time}:-0} + %{%{Acct-Delay-Time}:-0}) SECOND), '%{Acct-Session-Time}', '%{Acct-Authentic}', '', '%{%{Acct-Input-Gigawords}:-0}' << 32 | '%{%{Acct-Input-Octets}:-0}', '%{%{Acct-Output-Gigawords}:-0}' << 32 | '%{%{Acct-Output-Octets}:-0}', '%{Called-Station-Id}', '%{Calling-Station-Id}', '%{Service-Type}', '%{Framed-Protocol}', '%{Framed-IP-Address}', '0', '%{X-Ascend-Session-Svr-Key}')"
  349. accounting_start_query = " INSERT INTO radacct (acctsessionid, acctuniqueid, username, realm, nasipaddress, nasportid, nasporttype, acctstarttime, acctstoptime, acctsessiontime, acctauthentic, connectinfo_start, connectinfo_stop, acctinputoctets, acctoutputoctets, calledstationid, callingstationid, acctterminatecause, servicetype, framedprotocol, framedipaddress, acctstartdelay, acctstopdelay, xascendsessionsvrkey) VALUES ('%{Acct-Session-Id}', '%{Acct-Unique-Session-Id}', '%{SQL-User-Name}', '%{Realm}', '%{NAS-IP-Address}', '%{NAS-Port}', '%{NAS-Port-Type}', '%S', NULL, '0', '%{Acct-Authentic}', '%{Connect-Info}', '', '0', '0', '%{Called-Station-Id}', '%{Calling-Station-Id}', '', '%{Service-Type}', '%{Framed-Protocol}', '%{Framed-IP-Address}', '%{%{Acct-Delay-Time}:-0}', '0', '%{X-Ascend-Session-Svr-Key}')"
  350. accounting_start_query_alt = " UPDATE radacct SET acctstarttime = '%S', acctstartdelay = '%{%{Acct-Delay-Time}:-0}', connectinfo_start = '%{Connect-Info}' WHERE acctsessionid = '%{Acct-Session-Id}' AND username = '%{SQL-User-Name}' AND nasipaddress = '%{NAS-IP-Address}'"
  351. accounting_stop_query = " UPDATE radacct SET acctstoptime = '%S', acctsessiontime = '%{Acct-Session-Time}', acctinputoctets = '%{%{Acct-Input-Gigawords}:-0}' << 32 | '%{%{Acct-Input-Octets}:-0}', acctoutputoctets = '%{%{Acct-Output-Gigawords}:-0}' << 32 | '%{%{Acct-Output-Octets}:-0}', acctterminatecause = '%{Acct-Terminate-Cause}', acctstopdelay = '%{%{Acct-Delay-Time}:-0}', connectinfo_stop = '%{Connect-Info}' WHERE acctsessionid = '%{Acct-Session-Id}' AND username = '%{SQL-User-Name}' AND nasipaddress = '%{NAS-IP-Address}'"
  352. accounting_stop_query_alt = " INSERT INTO radacct (acctsessionid, acctuniqueid, username, realm, nasipaddress, nasportid, nasporttype, acctstarttime, acctstoptime, acctsessiontime, acctauthentic, connectinfo_start, connectinfo_stop, acctinputoctets, acctoutputoctets, calledstationid, callingstationid, acctterminatecause, servicetype, framedprotocol, framedipaddress, acctstartdelay, acctstopdelay) VALUES ('%{Acct-Session-Id}', '%{Acct-Unique-Session-Id}', '%{SQL-User-Name}', '%{Realm}', '%{NAS-IP-Address}', '%{NAS-Port}', '%{NAS-Port-Type}', DATE_SUB('%S', INTERVAL (%{%{Acct-Session-Time}:-0} + %{%{Acct-Delay-Time}:-0}) SECOND), '%S', '%{Acct-Session-Time}', '%{Acct-Authentic}', '', '%{Connect-Info}', '%{%{Acct-Input-Gigawords}:-0}' << 32 | '%{%{Acct-Input-Octets}:-0}', '%{%{Acct-Output-Gigawords}:-0}' << 32 | '%{%{Acct-Output-Octets}:-0}', '%{Called-Station-Id}', '%{Calling-Station-Id}', '%{Acct-Terminate-Cause}', '%{Service-Type}', '%{Framed-Protocol}', '%{Framed-IP-Address}', '0', '%{%{Acct-Delay-Time}:-0}')"
  353. group_membership_query = "SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority"
  354. connect_failure_retry_delay = 60
  355. simul_count_query = ""
  356. simul_verify_query = "SELECT radacctid, acctsessionid, username, nasipaddress, nasportid, framedipaddress, callingstationid, framedprotocol FROM radacct WHERE username = '%{SQL-User-Name}' AND acctstoptime IS NULL"
  357. postauth_query = "INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( '%{User-Name}', '%{%{User-Password}:-%{Chap-Password}}', '%{reply:Packet-Type}', '%S')"
  358. safe-characters = "@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-_: /"
  359. }
  360. rlm_sql (sql): Driver rlm_sql_mysql (module rlm_sql_mysql) loaded and linked
  361. rlm_sql (sql): Attempting to connect to root@localhost:/radius
  362. rlm_sql (sql): starting 0
  363. rlm_sql (sql): Attempting to connect rlm_sql_mysql #0
  364. rlm_sql_mysql: Starting connect to MySQL server for #0
  365. rlm_sql (sql): Connected new DB handle, #0
  366. rlm_sql (sql): starting 1
  367. rlm_sql (sql): Attempting to connect rlm_sql_mysql #1
  368. rlm_sql_mysql: Starting connect to MySQL server for #1
  369. rlm_sql (sql): Connected new DB handle, #1
  370. rlm_sql (sql): starting 2
  371. rlm_sql (sql): Attempting to connect rlm_sql_mysql #2
  372. rlm_sql_mysql: Starting connect to MySQL server for #2
  373. rlm_sql (sql): Connected new DB handle, #2
  374. rlm_sql (sql): starting 3
  375. rlm_sql (sql): Attempting to connect rlm_sql_mysql #3
  376. rlm_sql_mysql: Starting connect to MySQL server for #3
  377. rlm_sql (sql): Connected new DB handle, #3
  378. rlm_sql (sql): starting 4
  379. rlm_sql (sql): Attempting to connect rlm_sql_mysql #4
  380. rlm_sql_mysql: Starting connect to MySQL server for #4
  381. rlm_sql (sql): Connected new DB handle, #4
  382. rlm_sql (sql): Processing generate_sql_clients
  383. rlm_sql (sql) in generate_sql_clients: query is SELECT id, nasname, shortname, type, secret, server FROM nas
  384. rlm_sql (sql): Reserving sql socket id: 4
  385. rlm_sql (sql): Released sql socket id: 4
  386. Module: Checking preacct {...} for more modules to load
  387. Module: Linked to module rlm_acct_unique
  388. Module: Instantiating module "acct_unique" from file /etc/freeradius/modules/acct_unique
  389. acct_unique {
  390. key = "User-Name, Acct-Session-Id, NAS-IP-Address, Client-IP-Address, NAS-Port"
  391. }
  392. Module: Checking accounting {...} for more modules to load
  393. Module: Linked to module rlm_detail
  394. Module: Instantiating module "detail" from file /etc/freeradius/modules/detail
  395. detail {
  396. detailfile = "/var/log/freeradius/radacct/%{Client-IP-Address}/detail-%Y%m%d"
  397. header = "%t"
  398. detailperm = 384
  399. dirperm = 493
  400. locking = no
  401. log_packet_header = no
  402. }
  403. Module: Instantiating module "attr_filter.accounting_response" from file /etc/freeradius/modules/attr_filter
  404. attr_filter attr_filter.accounting_response {
  405. attrsfile = "/etc/freeradius/attrs.accounting_response"
  406. key = "%{User-Name}"
  407. }
  408. Module: Checking session {...} for more modules to load
  409. Module: Checking post-proxy {...} for more modules to load
  410. Module: Checking post-auth {...} for more modules to load
  411. } # modules
  412. } # server
  413. radiusd: #### Opening IP addresses and Ports ####
  414. listen {
  415. type = "auth"
  416. ipaddr = *
  417. port = 0
  418. }
  419. listen {
  420. type = "acct"
  421. ipaddr = *
  422. port = 0
  423. }
  424. listen {
  425. type = "auth"
  426. ipaddr = 127.0.0.1
  427. port = 18120
  428. }
  429. Listening on authentication address * port 1812
  430. Listening on accounting address * port 1813
  431. Listening on authentication address 127.0.0.1 port 18120 as server inner-tunnel
  432. Listening on proxy address * port 1814
  433. Ready to process requests.
  434. rad_recv: Access-Request packet from host 192.168.0.50 port 3072, id=111, length=165
  435. User-Name = "user"
  436. NAS-IP-Address = 192.168.0.50
  437. NAS-Port = 0
  438. Called-Station-Id = "00195b54c564"
  439. Calling-Station-Id = "001f5bb7c6a0"
  440. NAS-Identifier = "Realtek Access Point. 8181"
  441. Framed-MTU = 1400
  442. NAS-Port-Type = Wireless-802.11
  443. Service-Type = Framed-User
  444. Connect-Info = "CONNECT 11Mbps 802.11b"
  445. EAP-Message = 0x020000090175736572
  446. Message-Authenticator = 0x7407e4dfab8ffa564397056c7db71581
  447. # Executing section authorize from file /etc/freeradius/sites-enabled/default
  448. +- entering group authorize {...}
  449. ++[preprocess] returns ok
  450. ++[chap] returns noop
  451. ++[mschap] returns noop
  452. ++[digest] returns noop
  453. [suffix] No '@' in User-Name = "user", looking up realm NULL
  454. [suffix] No such realm "NULL"
  455. ++[suffix] returns noop
  456. [eap] EAP packet type response id 0 length 9
  457. [eap] No EAP Start, assuming it's an on-going EAP conversation
  458. ++[eap] returns updated
  459. ++[files] returns noop
  460. [sql] expand: %{User-Name} -> user
  461. [sql] sql_set_user escaped user --> 'user'
  462. rlm_sql (sql): Reserving sql socket id: 3
  463. [sql] expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'user' ORDER BY id
  464. [sql] User found in radcheck table
  465. [sql] expand: SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radreply WHERE username = 'user' ORDER BY id
  466. [sql] expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'user' ORDER BY priority
  467. rlm_sql (sql): Released sql socket id: 3
  468. ++[sql] returns ok
  469. ++[expiration] returns noop
  470. ++[logintime] returns noop
  471. [pap] WARNING: Auth-Type already set. Not setting to PAP
  472. ++[pap] returns noop
  473. Found Auth-Type = MSCHAP
  474. # Executing group from file /etc/freeradius/sites-enabled/default
  475. +- entering group MS-CHAP {...}
  476. [mschap] ERROR: You set 'Auth-Type = MS-CHAP' for a request that does not contain any MS-CHAP attributes!
  477. ++[mschap] returns reject
  478. Failed to authenticate the user.
  479. Using Post-Auth-Type Reject
  480. # Executing group from file /etc/freeradius/sites-enabled/default
  481. +- entering group REJECT {...}
  482. [attr_filter.access_reject] expand: %{User-Name} -> user
  483. attr_filter: Matched entry DEFAULT at line 11
  484. ++[attr_filter.access_reject] returns updated
  485. Delaying reject of request 0 for 1 seconds
  486. Going to the next request
  487. Waking up in 0.7 seconds.
  488. Sending delayed reject for request 0
  489. Sending Access-Reject of id 111 to 192.168.0.50 port 3072
  490. Waking up in 4.9 seconds.
  491. Cleaning up request 0 ID 111 with timestamp +53
  492. Ready to process requests.
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!