auth-server

1.  
2.  
3. (3) Received Access-Request Id 4 from 10.27.253.1:33856 to 10.27.253.56:1814 length 226
4. (3) ChilliSpot-Version = "1.3.1-svn"
5. (3) User-Name = "username"
6. (3) User-Password = "\341\332ޟ"
7. (3) Service-Type = Login-User
8. (3) Acct-Session-Id = "5b5039b300000003"
9. (3) Framed-IP-Address = 192.168.182.3
10. (3) NAS-Port-Type = Wireless-802.11
11. (3) NAS-Port = 3
12. (3) NAS-Port-Id = "00000003"
13. (3) Calling-Station-Id = "68-EF-43-27-56-EB"
14. (3) Called-Station-Id = "72-B3-D5-3D-50-16"
15. (3) NAS-IP-Address = 192.168.182.1
16. (3) NAS-Identifier = "nas01"
17. (3) WISPr-Logoff-URL = "http://192.168.182.1:3990/logoff"
18. (3) Message-Authenticator = 0xc83c101f6d09e1dca76ca0d5ac03fd68
19. (3) # Executing section authorize from file /etc/freeradius/sites-enabled/default
20. (3) authorize {
21. (3) update control {
22. (3) Auth-Type := Accept
23. (3) } # update control = noop
24. (3) [ok] = ok
25. (3) policy filter_username {
26. (3) if (&User-Name) {
27. (3) if (&User-Name) -> TRUE
28. (3) if (&User-Name) {
29. (3) if (&User-Name =~ / /) {
30. (3) if (&User-Name =~ / /) -> FALSE
31. (3) if (&User-Name =~ /@[^@]*@/ ) {
32. (3) if (&User-Name =~ /@[^@]*@/ ) -> FALSE
33. (3) if (&User-Name =~ /\.\./ ) {
34. (3) if (&User-Name =~ /\.\./ ) -> FALSE
35. (3) if ((&User-Name =~ /@/) && (&User-Name !~ /@(.+)\.(.+)$/)) {
36. (3) if ((&User-Name =~ /@/) && (&User-Name !~ /@(.+)\.(.+)$/)) -> FALSE
37. (3) if (&User-Name =~ /\.$/) {
38. (3) if (&User-Name =~ /\.$/) -> FALSE
39. (3) if (&User-Name =~ /@\./) {
40. (3) if (&User-Name =~ /@\./) -> FALSE
41. (3) } # if (&User-Name) = ok
42. (3) } # policy filter_username = ok
43. (3) [preprocess] = ok
44. (3) [chap] = noop
45. (3) [mschap] = noop
46. (3) [digest] = noop
47. (3) suffix: Checking for suffix after "@"
48. (3) suffix: No '@' in User-Name = "username", looking up realm NULL
49. (3) suffix: No such realm "NULL"
50. (3) [suffix] = noop
51. (3) eap: No EAP-Message, not doing EAP
52. (3) [eap] = noop
53. (3) [files] = noop
54. (3) sql: EXPAND %{User-Name}
55. (3) sql: --> username
56. (3) sql: SQL-User-Name set to 'username'
57. rlm_sql (sql): Reserved connection (3)
58. (3) sql: EXPAND SELECT id, UserName, Attribute, Value, Op FROM radcheck WHERE Username = '%{SQL-User-Name}' ORDER BY id
59. (3) sql: --> SELECT id, UserName, Attribute, Value, Op FROM radcheck WHERE Username = 'username' ORDER BY id
60. (3) sql: Executing select query: SELECT id, UserName, Attribute, Value, Op FROM radcheck WHERE Username = 'username' ORDER BY id
61. rlm_sql_postgresql: Status: PGRES_TUPLES_OK
62. rlm_sql_postgresql: query affected rows = 0 , fields = 5
63. (3) sql: EXPAND SELECT GroupName FROM radusergroup WHERE UserName='%{SQL-User-Name}' ORDER BY priority
64. (3) sql: --> SELECT GroupName FROM radusergroup WHERE UserName='username' ORDER BY priority
65. (3) sql: Executing select query: SELECT GroupName FROM radusergroup WHERE UserName='username' ORDER BY priority
66. rlm_sql_postgresql: Status: PGRES_TUPLES_OK
67. rlm_sql_postgresql: query affected rows = 0 , fields = 1
68. (3) sql: User not found in any groups
69. rlm_sql (sql): Released connection (3)
70. Need 2 more connections to reach 10 spares
71. rlm_sql (sql): Opening additional connection (8), 1 of 24 pending slots used
72. rlm_sql_postgresql: Connecting using parameters: dbname='demo' host='localhost' port=5432 user='postgres'
73. Connected to database 'demo' on 'localhost' server version 90512, protocol version 3, backend PID 14924
74. (3) [sql] = notfound
75. (3) [expiration] = noop
76. (3) [logintime] = noop
77. (3) pap: WARNING: Auth-Type already set. Not setting to PAP
78. (3) [pap] = noop
79. (3) } # authorize = ok
80. (3) Found Auth-Type = Accept
81. (3) Auth-Type = Accept, accepting the user
82. (3) # Executing section post-auth from file /etc/freeradius/sites-enabled/default
83. (3) post-auth {
84. (3) update {
85. (3) No attributes updated
86. (3) } # update = noop
87. (3) sql: EXPAND .query
88. (3) sql: --> .query
89. (3) sql: Using query template 'query'
90. rlm_sql (sql): Reserved connection (4)
91. (3) sql: EXPAND %{User-Name}
92. (3) sql: --> username
93. (3) sql: SQL-User-Name set to 'username'
94. (3) sql: EXPAND INSERT INTO radpostauth (username, pass, reply, authdate) VALUES('%{User-Name}', '%{%{User-Password}:-Chap-Password}', '%{reply:Packet-Type}', NOW())
95. (3) sql: --> INSERT INTO radpostauth (username, pass, reply, authdate) VALUES('username', '=3DE1=3DDAޟ', 'Access-Accept', NOW())
96. (3) sql: Executing query: INSERT INTO radpostauth (username, pass, reply, authdate) VALUES('username', '=3DE1=3DDAޟ', 'Access-Accept', NOW())
97. rlm_sql_postgresql: Status: PGRES_COMMAND_OK
98. rlm_sql_postgresql: query affected rows = 1
99. (3) sql: SQL query returned: success
100. (3) sql: 1 record(s) updated
101. rlm_sql (sql): Released connection (4)
102. (3) [sql] = ok
103. (3) [exec] = noop
104. (3) policy remove_reply_message_if_eap {
105. (3) if (&reply:EAP-Message && &reply:Reply-Message) {
106. (3) if (&reply:EAP-Message && &reply:Reply-Message) -> FALSE
107. (3) else {
108. (3) [noop] = noop
109. (3) } # else = noop
110. (3) } # policy remove_reply_message_if_eap = noop
111. (3) } # post-auth = ok
112. (3) Sent Access-Accept Id 4 from 10.27.253.56:1814 to 10.27.253.1:33856 length 0
113. (3) Finished request
114. Waking up in 4.9 seconds.
115. (4) Received Accounting-Request Id 1 from 10.27.253.1:38558 to 10.27.253.56:1815 length 168
116. (4) ChilliSpot-Version = "1.3.1-svn"
117. (4) Attr-26.14559.10 = 0x00000002
118. (4) Event-Timestamp = "Jul 19 2018 12:41:57 IST"
119. (4) User-Name = "username"
120. (4) Acct-Status-Type = Start
121. (4) Acct-Session-Id = "5b5039b300000003"
122. (4) Framed-IP-Address = 192.168.182.3
123. (4) NAS-Port-Type = Wireless-802.11
124. (4) NAS-Port = 3
125. (4) NAS-Port-Id = "00000003"
126. (4) Calling-Station-Id = "68-EF-43-27-56-EB"
127. (4) Called-Station-Id = "72-B3-D5-3D-50-16"
128. (4) NAS-IP-Address = 192.168.182.1
129. (4) NAS-Identifier = "nas01"
130. (4) # Executing section preacct from file /etc/freeradius/sites-enabled/default
131. (4) preacct {
132. (4) [preprocess] = ok
133. (4) policy acct_unique {
134. (4) update request {
135. (4) &Tmp-String-9 := "ai:"
136. (4) } # update request = noop
137. (4) if (("%{hex:&Class}" =~ /^%{hex:&Tmp-String-9}/) && ("%{string:&Class}" =~ /^ai:([0-9a-f]{32})/i)) {
138. (4) EXPAND %{hex:&Class}
139. (4) -->
140. (4) EXPAND ^%{hex:&Tmp-String-9}
141. (4) --> ^61693a
142. (4) if (("%{hex:&Class}" =~ /^%{hex:&Tmp-String-9}/) && ("%{string:&Class}" =~ /^ai:([0-9a-f]{32})/i)) -> FALSE
143. (4) else {
144. (4) update request {
145. (4) EXPAND %{md5:%{User-Name},%{Acct-Session-ID},%{%{NAS-IPv6-Address}:-%{NAS-IP-Address}},%{NAS-Identifier},%{NAS-Port-ID},%{NAS-Port}}
146. (4) --> f4ec7732348b7c6744e45edeaaf8dde0
147. (4) &Acct-Unique-Session-Id := f4ec7732348b7c6744e45edeaaf8dde0
148. (4) } # update request = noop
149. (4) } # else = noop
150. (4) } # policy acct_unique = noop
151. (4) suffix: Checking for suffix after "@"
152. (4) suffix: No '@' in User-Name = "username", looking up realm NULL
153. (4) suffix: No such realm "NULL"
154. (4) [suffix] = noop
155. (4) [files] = noop
156. (4) } # preacct = ok
157. (4) # Executing section accounting from file /etc/freeradius/sites-enabled/default
158. (4) accounting {
159. (4) detail: EXPAND /var/log/freeradius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d
160. (4) detail: --> /var/log/freeradius/radacct/10.27.253.1/detail-20180719
161. (4) detail: /var/log/freeradius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d expands to /var/log/freeradius/radacct/10.27.253.1/detail-20180719
162. (4) detail: EXPAND %t
163. (4) detail: --> Thu Jul 19 12:41:57 2018
164. (4) [detail] = ok
165. (4) [unix] = ok
166. (4) sql: EXPAND %{tolower:type.%{%{Acct-Status-Type}:-none}.query}
167. (4) sql: --> type.start.query
168. (4) sql: Using query template 'query'
169. rlm_sql (sql): Reserved connection (0)
170. (4) sql: EXPAND %{User-Name}
171. (4) sql: --> username
172. (4) sql: SQL-User-Name set to 'username'
173. (4) sql: EXPAND INSERT INTO radacct (AcctSessionId, AcctUniqueId, UserName, Realm, NASIPAddress, NASPortId, NASPortType, AcctStartTime, AcctUpdateTime, AcctStopTime, AcctSessionTime, AcctAuthentic, ConnectInfo_start, ConnectInfo_Stop, AcctInputOctets, AcctOutputOctets, CalledStationId, CallingStationId, AcctTerminateCause, ServiceType, FramedProtocol, FramedIpAddress) VALUES('%{Acct-Session-Id}', '%{Acct-Unique-Session-Id}', '%{SQL-User-Name}', NULLIF('%{Realm}', ''), '%{%{NAS-IPv6-Address}:-%{NAS-IP-Address}}', NULLIF('%{%{NAS-Port-ID}:-%{NAS-Port}}', ''), '%{NAS-Port-Type}', TO_TIMESTAMP(%{integer:Event-Timestamp}), TO_TIMESTAMP(%{integer:Event-Timestamp}), NULL, 0, '%{Acct-Authentic}', '%{Connect-Info}', NULL, 0, 0, '%{Called-Station-Id}', '%{Calling-Station-Id}', NULL, '%{Service-Type}', '%{Framed-Protocol}', NULLIF('%{Framed-IP-Address}', '')::inet)
174. (4) sql: --> INSERT INTO radacct (AcctSessionId, AcctUniqueId, UserName, Realm, NASIPAddress, NASPortId, NASPortType, AcctStartTime, AcctUpdateTime, AcctStopTime, AcctSessionTime, AcctAuthentic, ConnectInfo_start, ConnectInfo_Stop, AcctInputOctets, AcctOutputOctets, CalledStationId, CallingStationId, AcctTerminateCause, ServiceType, FramedProtocol, FramedIpAddress) VALUES('5b5039b300000003', 'f4ec7732348b7c6744e45edeaaf8dde0', 'username', NULLIF('', ''), '192.168.182.1', NULLIF('00000003', ''), 'Wireless-802.11', TO_TIMESTAMP(1531984317), TO_TIMESTAMP(1531984317), NULL, 0, '', '', NULL, 0, 0, '72-B3-D5-3D-50-16', '68-EF-43-27-56-EB', NULL, '', '', NULLIF('192.168.182.3', '')::inet)
175. (4) sql: Executing query: INSERT INTO radacct (AcctSessionId, AcctUniqueId, UserName, Realm, NASIPAddress, NASPortId, NASPortType, AcctStartTime, AcctUpdateTime, AcctStopTime, AcctSessionTime, AcctAuthentic, ConnectInfo_start, ConnectInfo_Stop, AcctInputOctets, AcctOutputOctets, CalledStationId, CallingStationId, AcctTerminateCause, ServiceType, FramedProtocol, FramedIpAddress) VALUES('5b5039b300000003', 'f4ec7732348b7c6744e45edeaaf8dde0', 'username', NULLIF('', ''), '192.168.182.1', NULLIF('00000003', ''), 'Wireless-802.11', TO_TIMESTAMP(1531984317), TO_TIMESTAMP(1531984317), NULL, 0, '', '', NULL, 0, 0, '72-B3-D5-3D-50-16', '68-EF-43-27-56-EB', NULL, '', '', NULLIF('192.168.182.3', '')::inet)
176. rlm_sql_postgresql: Status: PGRES_COMMAND_OK
177. rlm_sql_postgresql: query affected rows = 1
178. (4) sql: SQL query returned: success
179. (4) sql: 1 record(s) updated
180. rlm_sql (sql): Released connection (0)
181. (4) [sql] = ok
182. (4) [exec] = noop
183. (4) attr_filter.accounting_response: EXPAND %{User-Name}
184. (4) attr_filter.accounting_response: --> username
185. (4) attr_filter.accounting_response: Matched entry DEFAULT at line 12
186. (4) [attr_filter.accounting_response] = updated
187. (4) } # accounting = updated
188. (4) Sent Accounting-Response Id 1 from 10.27.253.56:1815 to 10.27.253.1:38558 length 0
189. (4) Finished request
190. (4) Cleaning up request packet ID 1 with timestamp +26
191. Waking up in 4.6 seconds.
192.  
193. (3) Cleaning up request packet ID 4 with timestamp +26
194. Ready to process requests