Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- rad_recv: Access-Request packet from host CLIENT_IP port 48219, id=14, length=269
- server dynamic_client_server {
- rlm_raw: WISPr-Location-Name = CALLED_STATION_ID
- rlm_raw: WISPr-Location-Name = CALLED_STATION_ID
- rlm_sql (sql): Reserving sql socket id: 31
- rlm_sql (sql): Released sql socket id: 31
- rlm_raw: WISPr-Location-Name = CALLED_STATION_ID
- rlm_sql (sql): Reserving sql socket id: 30
- rlm_sql (sql): Released sql socket id: 30
- rlm_raw: WISPr-Location-Name = CALLED_STATION_ID
- } # server dynamic_client_server
- - Added client CLIENT_IP with shared secret 8c4e70fa338ede5c6ef197f003a66aee
- rad_recv: Access-Request packet from host CLIENT_IP port 48219, id=14, length=269
- NAS-Port-Type = Wireless-802.11
- Calling-Station-Id = "CALLING_STATION_ID"
- Called-Station-Id = "CALLED_STATION_ID"
- NAS-Port-Id = "wlan2-hotspot"
- User-Name = "447123"
- NAS-Port = 2160066563
- Acct-Session-Id = "80c00003"
- Framed-IP-Address = 192.168.20.197
- Mikrotik-Host-IP = 192.168.20.197
- WISPr-Location-Name = "CALLED_STATION_ID"
- CHAP-Challenge = 0xacfb2a3b05aa9352faf8518b0c6b4944
- CHAP-Password = 0x8afcc119d00beb486878e0d70fe3926259
- Service-Type = Login-User
- WISPr-Logoff-URL = "http://192.168.20.1/logout"
- NAS-Identifier = "MikroTik"
- NAS-IP-Address = 192.168.0.123
- # Executing section authorize from file /usr/local/etc/raddb/sites-enabled/default
- +group authorize {
- ++[preprocess] = ok
- ++policy rewrite.called_station_id {
- +++? if ((Called-Station-Id) && "%{Called-Station-Id}" =~ /^%{config:policy.mac-addr}(:(.+))?$/i)
- ?? Evaluating (Called-Station-Id) -> TRUE
- expand: %{Called-Station-Id} -> CALLED_STATION_ID
- expand: policy.mac-addr -> policy.mac-addr
- expand: ^%{config:policy.mac-addr}(:(.+))?$ -> ^([0-9a-f]{2})[^0-9a-f]?([0-9a-f]{2})[^0-9a-f]?([0-9a-f]{2})[^0-9a-f]?([0-9a-f]{2})[^0-9a-f]?([0-9a-f]{2})[^0-9a-f]?([0-9a-f]{2})(:(.+))?$
- ? Evaluating ("%{Called-Station-Id}" =~ /^%{config:policy.mac-addr}(:(.+))?$/i) -> FALSE
- +++? if ((Called-Station-Id) && "%{Called-Station-Id}" =~ /^%{config:policy.mac-addr}(:(.+))?$/i) -> FALSE
- +++else else {
- ++++[noop] = noop
- +++} # else else = noop
- ++} # policy rewrite.called_station_id = noop
- [chap] Setting 'Auth-Type := CHAP'
- ++[chap] = ok
- ++[files] = noop
- [sql] expand: %{User-Name} -> 447123
- [sql] sql_set_user escaped user --> '447123'
- rlm_sql (sql): Reserving sql socket id: 29
- [sql] expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = '447123' ORDER BY id
- [sql] User found in radcheck table
- [sql] expand: SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radreply WHERE username = '447123' ORDER BY id
- [sql] expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = '447123' ORDER BY priority
- rlm_sql (sql): Released sql socket id: 29
- ++[sql] = ok
- ++[expiration] = noop
- ++[logintime] = noop
- [pap] WARNING: Auth-Type already set. Not setting to PAP
- ++[pap] = noop
- +} # group authorize = ok
- Found Auth-Type = CHAP
- # Executing group from file /usr/local/etc/raddb/sites-enabled/default
- +group CHAP {
- [chap] login attempt by "447123" with CHAP password
- [chap] Using clear text password "Le3ry" for user 447123 authentication.
- [chap] chap user 447123 authenticated succesfully
- ++[chap] = ok
- +} # group CHAP = ok
- Login OK: [447123/<CHAP-Password>] (from client CALLED_STATION_ID port 2160066563 cli CALLING_STATION_ID)
- # Executing section post-auth from file /usr/local/etc/raddb/sites-enabled/default
- +group post-auth {
- [sql] expand: %{User-Name} -> 447123
- [sql] sql_set_user escaped user --> '447123'
- [sql] expand: %{User-Password} ->
- [sql] ... expanding second conditional
- [sql] expand: %{Chap-Password} -> 0x8afcc119d00beb486878e0d70fe3926259
- [sql] expand: INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( '%{User-Name}', '%{%{User-Password}:-%{Chap-Password}}', '%{reply:Packet-Type}', '%S') -> INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( '447123', '0x8afcc119d00beb486878e0d70fe3926259', 'Access-Accept', '2017-01-11 02:53:44')
- rlm_sql (sql) in sql_postauth: query is INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( '447123', '0x8afcc119d00beb486878e0d70fe3926259', 'Access-Accept', '2017-01-11 02:53:44')
- rlm_sql (sql): Reserving sql socket id: 28
- rlm_sql (sql): Released sql socket id: 28
- ++[sql] = ok
- ++[exec] = noop
- +} # group post-auth = ok
- Sending Access-Accept of id 14 to CLIENT_IP port 48219
- Session-Timeout := 43200
- Idle-Timeout := 43200
- Finished request 0.
- Going to the next request
- Waking up in 4.9 seconds.
- rad_recv: Accounting-Request packet from host CLIENT_IP port 31837, id=15, length=48
- Acct-Status-Type = Accounting-On
- NAS-Identifier = "MikroTik"
- Acct-Delay-Time = 0
- NAS-IP-Address = 192.168.0.123
- # Executing section preacct from file /usr/local/etc/raddb/sites-enabled/default
- +group preacct {
- ++[preprocess] = ok
- [acct_unique] WARNING: Attribute NAS-Port was not found in request, unique ID MAY be inconsistent
- [acct_unique] WARNING: Attribute Acct-Session-Id was not found in request, unique ID MAY be inconsistent
- [acct_unique] WARNING: Attribute User-Name was not found in request, unique ID MAY be inconsistent
- [acct_unique] Hashing ',NAS-Identifier = "MikroTik",NAS-IP-Address = 192.168.0.123,,'
- [acct_unique] Acct-Unique-Session-ID = "86cdd5ba27ed23d8".
- ++[acct_unique] = ok
- [suffix] Proxy reply, or no User-Name. Ignoring.
- ++[suffix] = ok
- ++[files] = noop
- +} # group preacct = ok
- # Executing section accounting from file /usr/local/etc/raddb/sites-enabled/default
- +group accounting {
- [detail] expand: %{Packet-Src-IP-Address} -> CLIENT_IP
- [detail] expand: /var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d -> /var/log/radius/radacct/CLIENT_IP/detail-20170111
- [detail] /var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d expands to /var/log/radius/radacct/CLIENT_IP/detail-20170111
- [detail] expand: %t -> Wed Jan 11 02:53:44 2017
- ++[detail] = ok
- [sql] Received Acct On/Off packet
- [sql] expand: %{Acct-Delay-Time} -> 0
- [sql] expand: UPDATE radacct SET acctstoptime = '%S', acctsessiontime = unix_timestamp('%S') - unix_timestamp(acctstarttime), acctterminatecause = '%{Acct-Terminate-Cause}', acctstopdelay = %{%{Acct-Delay-Time}:-0} WHERE acctstoptime IS NULL AND nasipaddress = '%{NAS-IP-Address}' AND acctstarttime <= '%S' -> UPDATE radacct SET acctstoptime = '2017-01-11 02:53:44', acctsessiontime = unix_timestamp('2017-01-11 02:53:44') - unix_timestamp(acctstarttime), acctterminatecause = '', acctstopdelay = 0 WHERE acctstoptime IS NULL AND nasipaddress = '192.168.0.123' AND acctstarttime <= '2017-01-11 02:53:44'
- rlm_sql (sql): Reserving sql socket id: 27
- rlm_sql (sql): Released sql socket id: 27
- ++[sql] = ok
- ++[exec] = noop
- [attr_filter.accounting_response] expand: %{User-Name} ->
- ++[attr_filter.accounting_response] = noop
- +} # group accounting = ok
- Sending Accounting-Response of id 15 to CLIENT_IP port 31837
- Finished request 1.
- Cleaning up request 1 ID 15 with timestamp +25
- Going to the next request
- Waking up in 4.6 seconds.
- rad_recv: Accounting-Request packet from host CLIENT_IP port 27252, id=16, length=210
- Acct-Status-Type = Start
- NAS-Port-Type = Wireless-802.11
- Calling-Station-Id = "CALLING_STATION_ID"
- Called-Station-Id = "CALLED_STATION_ID"
- NAS-Port-Id = "wlan2-hotspot"
- User-Name = "447123"
- NAS-Port = 2160066563
- Acct-Session-Id = "80c00003"
- Framed-IP-Address = 192.168.20.197
- Mikrotik-Host-IP = 192.168.20.197
- WISPr-Location-Name = "CALLED_STATION_ID"
- Event-Timestamp = "Jan 11 2017 02:53:37 MSK"
- NAS-Identifier = "MikroTik"
- Acct-Delay-Time = 0
- NAS-IP-Address = 192.168.0.123
- # Executing section preacct from file /usr/local/etc/raddb/sites-enabled/default
- +group preacct {
- ++[preprocess] = ok
- [acct_unique] Hashing 'NAS-Port = 2160066563,NAS-Identifier = "MikroTik",NAS-IP-Address = 192.168.0.123,Acct-Session-Id = "80c00003",User-Name = "447123"'
- [acct_unique] Acct-Unique-Session-ID = "7c8829f85d172d95".
- ++[acct_unique] = ok
- [suffix] No '@' in User-Name = "447123", looking up realm NULL
- [suffix] No such realm "NULL"
- ++[suffix] = noop
- ++[files] = noop
- +} # group preacct = ok
- # Executing section accounting from file /usr/local/etc/raddb/sites-enabled/default
- +group accounting {
- [detail] expand: %{Packet-Src-IP-Address} -> CLIENT_IP
- [detail] expand: /var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d -> /var/log/radius/radacct/CLIENT_IP/detail-20170111
- [detail] /var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d expands to /var/log/radius/radacct/CLIENT_IP/detail-20170111
- [detail] expand: %t -> Wed Jan 11 02:53:44 2017
- ++[detail] = ok
- [sql] expand: %{User-Name} -> 447123
- [sql] sql_set_user escaped user --> '447123'
- [sql] expand: %{Acct-Delay-Time} -> 0
- [sql] expand: INSERT INTO radacct (acctsessionid, acctuniqueid, username, realm, nasipaddress, nasportid, nasporttype, acctstarttime, acctstoptime, acctsessiontime, acctauthentic, connectinfo_start, connectinfo_stop, acctinputoctets, acctoutputoctets, calledstationid, callingstationid, acctterminatecause, servicetype, framedprotocol, framedipaddress, acctstartdelay, acctstopdelay, xascendsessionsvrkey) VALUES ('%{Acct-Session-Id}', '%{Acct-Unique-Session-Id}', '%{SQL-User-Name}', '%{Realm}', '%{NAS-IP-Address}', '%{NAS-Port}', '%{NAS-Port-Type}', '%S', NULL, '0', '%{Acct-Authentic}', '%{Connect-Info}', '', '0', '0', '%{Called-Station-Id}', '%{Calling-Station-Id}', '', '%{Service-Type}', '%{Framed-Protocol}', '%{Framed-IP-Address}',
- rlm_sql (sql): Reserving sql socket id: 26
- rlm_sql (sql): Released sql socket id: 26
- ++[sql] = ok
- ++[exec] = noop
- [attr_filter.accounting_response] expand: %{User-Name} -> 447123
- attr_filter: Matched entry DEFAULT at line 12
- ++[attr_filter.accounting_response] = updated
- +} # group accounting = updated
- Sending Accounting-Response of id 16 to CLIENT_IP port 27252
- Finished request 2.
- Cleaning up request 2 ID 16 with timestamp +25
- Going to the next request
- Waking up in 4.6 seconds.
- Cleaning up request 0 ID 14 with timestamp +25
- Ready to process requests.
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement