Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- rad_recv: Access-Request packet from host 10.53.0.120 port 41073, id=107, length=336
- User-Name = "expuser@hotcity.lu"
- NAS-IP-Address = 172.16.70.21
- NAS-Port = 108
- Framed-MTU = 1400
- Called-Station-Id = "20:b3:99:6c:74:c3"
- Calling-Station-Id = "74:e1:b6:87:66:df"
- NAS-Port-Type = Wireless-802.11
- NAS-Identifier = "HC_SECURE_VNS"
- Service-Type = Framed-User
- Siemens-AP-Serial = "12461237905C0000"
- Siemens-AP-Name = "HCSA_AP01"
- Siemens-VNS-Name = "HC_SECURE_VNS"
- Siemens-SSID = "HOTCITY_Secure"
- Siemens-BSS-MAC = "20:b3:99:6c:74:c3"
- Siemens-Policy-Name = "POST_EAP_POLICY"
- Siemens-Topology-Name = "POST_EAP_USERS"
- EAP-Message = 0x02000017016578707573657240686f74636974792e6c75
- Message-Authenticator = 0x48704ff09ee7d84bc18bf9aa254ccacb
- # Executing section authorize from file /etc/freeradius/sites-enabled/default
- +- entering group authorize {...}
- ++[preprocess] returns ok
- ++[chap] returns noop
- ++[mschap] returns noop
- ++[digest] returns noop
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ )
- ? Evaluating (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/) -> FALSE
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ ) -> FALSE
- ++? elsif (request:Realm == NULL )
- (Attribute request:Realm was not found)
- ? Evaluating (request:Realm == NULL ) -> FALSE
- ++? elsif (request:Realm == NULL ) -> FALSE
- [eap] EAP packet type response id 0 length 23
- [eap] No EAP Start, assuming it's an on-going EAP conversation
- ++[eap] returns updated
- [files] users: Matched entry expuser@hotcity.lu at line 207
- ++[files] returns ok
- [expiration] Checking Expiration time: '23 May 2014 08:30:00'
- ++[expiration] returns ok
- ++[logintime] returns noop
- [pap] WARNING: Auth-Type already set. Not setting to PAP
- ++[pap] returns noop
- Found Auth-Type = EAP
- # Executing group from file /etc/freeradius/sites-enabled/default
- +- entering group authenticate {...}
- [eap] EAP Identity
- [eap] processing type tls
- [tls] Initiate
- [tls] Start returned 1
- ++[eap] returns handled
- Sending Access-Challenge of id 107 to 10.53.0.120 port 41073
- Idle-Timeout = 60
- Termination-Action = RADIUS-Request
- Session-Timeout = 100
- EAP-Message = 0x010100061920
- Message-Authenticator = 0x00000000000000000000000000000000
- State = 0xaa6307a5aa621ea1f0ac6677f885127b
- Finished request 65.
- Going to the next request
- Waking up in 4.9 seconds.
- rad_recv: Access-Request packet from host 10.53.0.120 port 41073, id=193, length=483
- User-Name = "expuser@hotcity.lu"
- NAS-IP-Address = 172.16.70.21
- NAS-Port = 108
- Framed-MTU = 1400
- Called-Station-Id = "20:b3:99:6c:74:c3"
- Calling-Station-Id = "74:e1:b6:87:66:df"
- NAS-Port-Type = Wireless-802.11
- NAS-Identifier = "HC_SECURE_VNS"
- Service-Type = Framed-User
- Siemens-AP-Serial = "12461237905C0000"
- Siemens-AP-Name = "HCSA_AP01"
- Siemens-VNS-Name = "HC_SECURE_VNS"
- Siemens-SSID = "HOTCITY_Secure"
- Siemens-BSS-MAC = "20:b3:99:6c:74:c3"
- Siemens-Policy-Name = "POST_EAP_POLICY"
- Siemens-Topology-Name = "POST_EAP_USERS"
- EAP-Message = 0x0201009819800000008e1603010089010000850301537eea872445c78ea0988b58b546aeb6a8534ed130a1272f208b62cc95fd536600004a00ffc024c023c00ac009c007c008c028c027c014c013c011c012c026c025c02ac029c005c004c002c003c00fc00ec00cc00d003d003c002f000500040035000a0067006b00330039001601000012000a00080006001700180019000b00020100
- State = 0xaa6307a5aa621ea1f0ac6677f885127b
- Message-Authenticator = 0xb47217250bfa117e6c187f50387a7af5
- # Executing section authorize from file /etc/freeradius/sites-enabled/default
- +- entering group authorize {...}
- ++[preprocess] returns ok
- ++[chap] returns noop
- ++[mschap] returns noop
- ++[digest] returns noop
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ )
- ? Evaluating (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/) -> FALSE
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ ) -> FALSE
- ++? elsif (request:Realm == NULL )
- (Attribute request:Realm was not found)
- ? Evaluating (request:Realm == NULL ) -> FALSE
- ++? elsif (request:Realm == NULL ) -> FALSE
- [eap] EAP packet type response id 1 length 152
- [eap] Continuing tunnel setup.
- ++[eap] returns ok
- Found Auth-Type = EAP
- # Executing group from file /etc/freeradius/sites-enabled/default
- +- entering group authenticate {...}
- [eap] Request found, released from the list
- [eap] EAP/peap
- [eap] processing type peap
- [peap] processing EAP-TLS
- TLS Length 142
- [peap] Length Included
- [peap] eaptls_verify returned 11
- [peap] (other): before/accept initialization
- [peap] TLS_accept: before/accept initialization
- [peap] <<< TLS 1.0 Handshake [length 0089], ClientHello
- [peap] TLS_accept: SSLv3 read client hello A
- [peap] >>> TLS 1.0 Handshake [length 0039], ServerHello
- [peap] TLS_accept: SSLv3 write server hello A
- [peap] >>> TLS 1.0 Handshake [length 02ce], Certificate
- [peap] TLS_accept: SSLv3 write certificate A
- [peap] >>> TLS 1.0 Handshake [length 014b], ServerKeyExchange
- [peap] TLS_accept: SSLv3 write key exchange A
- [peap] >>> TLS 1.0 Handshake [length 0004], ServerHelloDone
- [peap] TLS_accept: SSLv3 write server done A
- [peap] TLS_accept: SSLv3 flush data
- [peap] TLS_accept: Need to read more data: SSLv3 read client certificate A
- In SSL Handshake Phase
- In SSL Accept mode
- [peap] eaptls_process returned 13
- [peap] EAPTLS_HANDLED
- ++[eap] returns handled
- Sending Access-Challenge of id 193 to 10.53.0.120 port 41073
- EAP-Message = 0x0102040019c00000046a1603010039020000350301537eea84c8fd72a208e95f12c963475de43bf0878fa2305207aa025a320ec60400c01400000dff01000100000b00040300010216030102ce0b0002ca0002c70002c4308202c0308201a8a003020102020900986dfc4d571507dd300d06092a864886f70d01010505003018311630140603550403130d48432d4141412d524144495553301e170d3134303131333139343734325a170d3234303131313139343734325a3018311630140603550403130d48432d4141412d52414449555330820122300d06092a864886f70d01010105000382010f003082010a0282010100d114b1f378116b16c7bf
- EAP-Message = 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
- EAP-Message = 0x300b30090603551d1304023000300d06092a864886f70d010105050003820101002e22fb1551dfeaf3fac790c5831d7397305620246204cdbb33388b379bfeb0375a98e6a2e3e1a028a0fb2ff393c3c8807471dbd23741f36a552290cf97e0c0853bfb3302a34f7c77d95c55b24f5cd9a38e0967158893e12d876a4f7d52a0475c3ed84711bb29f7fa11c058b369c927566193353fe4068c918ebab099842ca6b10c6fc1d63ebd7ef0e2dbe2d06431ce54c6065161335866b300b0ffab962c952b2ba192d8f3d7b124c176edb700fc33b548045a3d63de03f62407320dad2bcba3f0115ab30e2f915105a2dfa3d929ea2fd3e9a68b2d1455a4c8d93ba2
- EAP-Message = 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
- EAP-Message = 0x72e33337bea83783eb2fdeb7
- Message-Authenticator = 0x00000000000000000000000000000000
- State = 0xaa6307a5ab611ea1f0ac6677f885127b
- Finished request 66.
- Going to the next request
- Waking up in 4.9 seconds.
- rad_recv: Access-Request packet from host 10.53.0.120 port 41073, id=254, length=337
- User-Name = "expuser@hotcity.lu"
- NAS-IP-Address = 172.16.70.21
- NAS-Port = 108
- Framed-MTU = 1400
- Called-Station-Id = "20:b3:99:6c:74:c3"
- Calling-Station-Id = "74:e1:b6:87:66:df"
- NAS-Port-Type = Wireless-802.11
- NAS-Identifier = "HC_SECURE_VNS"
- Service-Type = Framed-User
- Siemens-AP-Serial = "12461237905C0000"
- Siemens-AP-Name = "HCSA_AP01"
- Siemens-VNS-Name = "HC_SECURE_VNS"
- Siemens-SSID = "HOTCITY_Secure"
- Siemens-BSS-MAC = "20:b3:99:6c:74:c3"
- Siemens-Policy-Name = "POST_EAP_POLICY"
- Siemens-Topology-Name = "POST_EAP_USERS"
- EAP-Message = 0x020200061900
- State = 0xaa6307a5ab611ea1f0ac6677f885127b
- Message-Authenticator = 0x58d6a3967ad03c5568430277df5a5b0d
- # Executing section authorize from file /etc/freeradius/sites-enabled/default
- +- entering group authorize {...}
- ++[preprocess] returns ok
- ++[chap] returns noop
- ++[mschap] returns noop
- ++[digest] returns noop
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ )
- ? Evaluating (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/) -> FALSE
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ ) -> FALSE
- ++? elsif (request:Realm == NULL )
- (Attribute request:Realm was not found)
- ? Evaluating (request:Realm == NULL ) -> FALSE
- ++? elsif (request:Realm == NULL ) -> FALSE
- [eap] EAP packet type response id 2 length 6
- [eap] Continuing tunnel setup.
- ++[eap] returns ok
- Found Auth-Type = EAP
- # Executing group from file /etc/freeradius/sites-enabled/default
- +- entering group authenticate {...}
- [eap] Request found, released from the list
- [eap] EAP/peap
- [eap] processing type peap
- [peap] processing EAP-TLS
- [peap] Received TLS ACK
- [peap] ACK handshake fragment handler
- [peap] eaptls_verify returned 1
- [peap] eaptls_process returned 13
- [peap] EAPTLS_HANDLED
- ++[eap] returns handled
- Sending Access-Challenge of id 254 to 10.53.0.120 port 41073
- EAP-Message = 0x0103007a1900d9927eac703cc214ea01c01a38f8dbbd8ba8bcc8d5bff0433a50b191848a3500cadf5e923e1af146422344931be247cae4b4cab1932e9724388f328afd0fc50f97cddbae9a37a323eb7f2a77f78ecd07e48a946ac707fea5dc015ccfed2d13def430226c0020c6cb38347916030100040e000000
- Message-Authenticator = 0x00000000000000000000000000000000
- State = 0xaa6307a5a8601ea1f0ac6677f885127b
- Finished request 67.
- Going to the next request
- Waking up in 4.8 seconds.
- rad_recv: Access-Request packet from host 10.53.0.120 port 41073, id=201, length=475
- User-Name = "expuser@hotcity.lu"
- NAS-IP-Address = 172.16.70.21
- NAS-Port = 108
- Framed-MTU = 1400
- Called-Station-Id = "20:b3:99:6c:74:c3"
- Calling-Station-Id = "74:e1:b6:87:66:df"
- NAS-Port-Type = Wireless-802.11
- NAS-Identifier = "HC_SECURE_VNS"
- Service-Type = Framed-User
- Siemens-AP-Serial = "12461237905C0000"
- Siemens-AP-Name = "HCSA_AP01"
- Siemens-VNS-Name = "HC_SECURE_VNS"
- Siemens-SSID = "HOTCITY_Secure"
- Siemens-BSS-MAC = "20:b3:99:6c:74:c3"
- Siemens-Policy-Name = "POST_EAP_POLICY"
- Siemens-Topology-Name = "POST_EAP_USERS"
- EAP-Message = 0x020300901980000000861603010046100000424104725180449d2f9a3bb832f54b9f165e73af410e7c7e1ed5c01130cbd79a292304458d23314e370aa8907bfdbb4d5620c7b6aa741a09d94b2731e81aa4fba2aff31403010001011603010030a3a2462355f9e642f2bb57320a7af0c98f5c4e5db57191e01a27f98010acf99c38ecde6d9d2d4189734a670102a0c0ea
- State = 0xaa6307a5a8601ea1f0ac6677f885127b
- Message-Authenticator = 0xb51221ffc6b0e63bdb36603367da54f9
- # Executing section authorize from file /etc/freeradius/sites-enabled/default
- +- entering group authorize {...}
- ++[preprocess] returns ok
- ++[chap] returns noop
- ++[mschap] returns noop
- ++[digest] returns noop
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ )
- ? Evaluating (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/) -> FALSE
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ ) -> FALSE
- ++? elsif (request:Realm == NULL )
- (Attribute request:Realm was not found)
- ? Evaluating (request:Realm == NULL ) -> FALSE
- ++? elsif (request:Realm == NULL ) -> FALSE
- [eap] EAP packet type response id 3 length 144
- [eap] Continuing tunnel setup.
- ++[eap] returns ok
- Found Auth-Type = EAP
- # Executing group from file /etc/freeradius/sites-enabled/default
- +- entering group authenticate {...}
- [eap] Request found, released from the list
- [eap] EAP/peap
- [eap] processing type peap
- [peap] processing EAP-TLS
- TLS Length 134
- [peap] Length Included
- [peap] eaptls_verify returned 11
- [peap] <<< TLS 1.0 Handshake [length 0046], ClientKeyExchange
- [peap] TLS_accept: SSLv3 read client key exchange A
- [peap] <<< TLS 1.0 ChangeCipherSpec [length 0001]
- [peap] <<< TLS 1.0 Handshake [length 0010], Finished
- [peap] TLS_accept: SSLv3 read finished A
- [peap] >>> TLS 1.0 ChangeCipherSpec [length 0001]
- [peap] TLS_accept: SSLv3 write change cipher spec A
- [peap] >>> TLS 1.0 Handshake [length 0010], Finished
- [peap] TLS_accept: SSLv3 write finished A
- [peap] TLS_accept: SSLv3 flush data
- [peap] (other): SSL negotiation finished successfully
- SSL Connection Established
- [peap] eaptls_process returned 13
- [peap] EAPTLS_HANDLED
- ++[eap] returns handled
- Sending Access-Challenge of id 201 to 10.53.0.120 port 41073
- EAP-Message = 0x0104004119001403010001011603010030e98b9304bd04421daac81b05e954c9dab0702da10f39fb487d20383db974b4ba1bd8665c7638b9b945020a8830a01716
- Message-Authenticator = 0x00000000000000000000000000000000
- State = 0xaa6307a5a9671ea1f0ac6677f885127b
- Finished request 68.
- Going to the next request
- Waking up in 4.8 seconds.
- rad_recv: Access-Request packet from host 10.53.0.120 port 41073, id=51, length=337
- User-Name = "expuser@hotcity.lu"
- NAS-IP-Address = 172.16.70.21
- NAS-Port = 108
- Framed-MTU = 1400
- Called-Station-Id = "20:b3:99:6c:74:c3"
- Calling-Station-Id = "74:e1:b6:87:66:df"
- NAS-Port-Type = Wireless-802.11
- NAS-Identifier = "HC_SECURE_VNS"
- Service-Type = Framed-User
- Siemens-AP-Serial = "12461237905C0000"
- Siemens-AP-Name = "HCSA_AP01"
- Siemens-VNS-Name = "HC_SECURE_VNS"
- Siemens-SSID = "HOTCITY_Secure"
- Siemens-BSS-MAC = "20:b3:99:6c:74:c3"
- Siemens-Policy-Name = "POST_EAP_POLICY"
- Siemens-Topology-Name = "POST_EAP_USERS"
- EAP-Message = 0x020400061900
- State = 0xaa6307a5a9671ea1f0ac6677f885127b
- Message-Authenticator = 0xd75fb0e139d02ecd40be5e0d20b71c68
- # Executing section authorize from file /etc/freeradius/sites-enabled/default
- +- entering group authorize {...}
- ++[preprocess] returns ok
- ++[chap] returns noop
- ++[mschap] returns noop
- ++[digest] returns noop
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ )
- ? Evaluating (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/) -> FALSE
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ ) -> FALSE
- ++? elsif (request:Realm == NULL )
- (Attribute request:Realm was not found)
- ? Evaluating (request:Realm == NULL ) -> FALSE
- ++? elsif (request:Realm == NULL ) -> FALSE
- [eap] EAP packet type response id 4 length 6
- [eap] Continuing tunnel setup.
- ++[eap] returns ok
- Found Auth-Type = EAP
- # Executing group from file /etc/freeradius/sites-enabled/default
- +- entering group authenticate {...}
- [eap] Request found, released from the list
- [eap] EAP/peap
- [eap] processing type peap
- [peap] processing EAP-TLS
- [peap] Received TLS ACK
- [peap] ACK handshake is finished
- [peap] eaptls_verify returned 3
- [peap] eaptls_process returned 3
- [peap] EAPTLS_SUCCESS
- [peap] Session established. Decoding tunneled attributes.
- [peap] Peap state TUNNEL ESTABLISHED
- ++[eap] returns handled
- Sending Access-Challenge of id 51 to 10.53.0.120 port 41073
- EAP-Message = 0x0105002b19001703010020ee97f6b59d201d9ee559874949eb8bab1ba3870393099c3dab5195748353efd1
- Message-Authenticator = 0x00000000000000000000000000000000
- State = 0xaa6307a5ae661ea1f0ac6677f885127b
- Finished request 69.
- Going to the next request
- Waking up in 4.7 seconds.
- rad_recv: Access-Request packet from host 10.53.0.120 port 41073, id=156, length=390
- User-Name = "expuser@hotcity.lu"
- NAS-IP-Address = 172.16.70.21
- NAS-Port = 108
- Framed-MTU = 1400
- Called-Station-Id = "20:b3:99:6c:74:c3"
- Calling-Station-Id = "74:e1:b6:87:66:df"
- NAS-Port-Type = Wireless-802.11
- NAS-Identifier = "HC_SECURE_VNS"
- Service-Type = Framed-User
- Siemens-AP-Serial = "12461237905C0000"
- Siemens-AP-Name = "HCSA_AP01"
- Siemens-VNS-Name = "HC_SECURE_VNS"
- Siemens-SSID = "HOTCITY_Secure"
- Siemens-BSS-MAC = "20:b3:99:6c:74:c3"
- Siemens-Policy-Name = "POST_EAP_POLICY"
- Siemens-Topology-Name = "POST_EAP_USERS"
- EAP-Message = 0x0205003b190017030100305698e56b60ed07f68bee7ae280a9741db20fe8577bd1880745c105a697692e14012600c49adb27cebceaf34cd9a026fa
- State = 0xaa6307a5ae661ea1f0ac6677f885127b
- Message-Authenticator = 0xe96efd612973144582854932287977ba
- # Executing section authorize from file /etc/freeradius/sites-enabled/default
- +- entering group authorize {...}
- ++[preprocess] returns ok
- ++[chap] returns noop
- ++[mschap] returns noop
- ++[digest] returns noop
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ )
- ? Evaluating (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/) -> FALSE
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ ) -> FALSE
- ++? elsif (request:Realm == NULL )
- (Attribute request:Realm was not found)
- ? Evaluating (request:Realm == NULL ) -> FALSE
- ++? elsif (request:Realm == NULL ) -> FALSE
- [eap] EAP packet type response id 5 length 59
- [eap] Continuing tunnel setup.
- ++[eap] returns ok
- Found Auth-Type = EAP
- # Executing group from file /etc/freeradius/sites-enabled/default
- +- entering group authenticate {...}
- [eap] Request found, released from the list
- [eap] EAP/peap
- [eap] processing type peap
- [peap] processing EAP-TLS
- [peap] eaptls_verify returned 7
- [peap] Done initial handshake
- [peap] eaptls_process returned 7
- [peap] EAPTLS_OK
- [peap] Session established. Decoding tunneled attributes.
- [peap] Peap state WAITING FOR INNER IDENTITY
- [peap] Identity - expuser@hotcity.lu
- [peap] Got inner identity 'expuser@hotcity.lu'
- [peap] Setting default EAP type for tunneled EAP session.
- [peap] Got tunneled request
- EAP-Message = 0x02050017016578707573657240686f74636974792e6c75
- server {
- [peap] Setting User-Name to expuser@hotcity.lu
- Sending tunneled request
- EAP-Message = 0x02050017016578707573657240686f74636974792e6c75
- FreeRADIUS-Proxied-To = 127.0.0.1
- User-Name = "expuser@hotcity.lu"
- server inner-tunnel {
- # Executing section authorize from file /etc/freeradius/sites-enabled/inner-tunnel
- +- entering group authorize {...}
- ++[chap] returns noop
- ++[mschap] returns noop
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++[control] returns noop
- [eap] EAP packet type response id 5 length 23
- [eap] No EAP Start, assuming it's an on-going EAP conversation
- ++[eap] returns updated
- [files] users: Matched entry expuser@hotcity.lu at line 207
- ++[files] returns ok
- [sql] expand: %{User-Name} -> expuser@hotcity.lu
- [sql] sql_set_user escaped user --> 'expuser@hotcity.lu'
- rlm_sql (sql): Reserving sql socket id: 3
- [sql] expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'expuser@hotcity.lu' ORDER BY id
- [sql] expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'expuser@hotcity.lu' ORDER BY priority
- rlm_sql (sql): Released sql socket id: 3
- [sql] User expuser@hotcity.lu not found
- ++[sql] returns notfound
- [expiration] Checking Expiration time: '23 May 2014 08:30:00'
- ++[expiration] returns ok
- ++[logintime] returns noop
- [pap] WARNING: Auth-Type already set. Not setting to PAP
- ++[pap] returns noop
- Found Auth-Type = EAP
- # Executing group from file /etc/freeradius/sites-enabled/inner-tunnel
- +- entering group authenticate {...}
- [eap] EAP Identity
- [eap] processing type mschapv2
- rlm_eap_mschapv2: Issuing Challenge
- ++[eap] returns handled
- } # server inner-tunnel
- [peap] Got tunneled reply code 11
- Idle-Timeout = 60
- Termination-Action = RADIUS-Request
- Session-Timeout = 99
- EAP-Message = 0x0106002c1a0106002710a9b60084282796d167cd418e48d14f9f6578707573657240686f74636974792e6c75
- Message-Authenticator = 0x00000000000000000000000000000000
- State = 0x924a2b54924c3198589e8196a503b5ef
- [peap] Got tunneled reply RADIUS code 11
- Idle-Timeout = 60
- Termination-Action = RADIUS-Request
- Session-Timeout = 99
- EAP-Message = 0x0106002c1a0106002710a9b60084282796d167cd418e48d14f9f6578707573657240686f74636974792e6c75
- Message-Authenticator = 0x00000000000000000000000000000000
- State = 0x924a2b54924c3198589e8196a503b5ef
- [peap] Got tunneled Access-Challenge
- ++[eap] returns handled
- Sending Access-Challenge of id 156 to 10.53.0.120 port 41073
- EAP-Message = 0x0106004b19001703010040a6af6beac42c72a820e57570891de9ff2e372bdfab5d4c947238c2daac1e4dd9f26ec8786d487c4d8853b34d374422885cb05315a577e393d787a97ea09c343b
- Message-Authenticator = 0x00000000000000000000000000000000
- State = 0xaa6307a5af651ea1f0ac6677f885127b
- Finished request 70.
- Going to the next request
- Waking up in 4.7 seconds.
- rad_recv: Access-Request packet from host 10.53.0.120 port 41073, id=126, length=438
- User-Name = "expuser@hotcity.lu"
- NAS-IP-Address = 172.16.70.21
- NAS-Port = 108
- Framed-MTU = 1400
- Called-Station-Id = "20:b3:99:6c:74:c3"
- Calling-Station-Id = "74:e1:b6:87:66:df"
- NAS-Port-Type = Wireless-802.11
- NAS-Identifier = "HC_SECURE_VNS"
- Service-Type = Framed-User
- Siemens-AP-Serial = "12461237905C0000"
- Siemens-AP-Name = "HCSA_AP01"
- Siemens-VNS-Name = "HC_SECURE_VNS"
- Siemens-SSID = "HOTCITY_Secure"
- Siemens-BSS-MAC = "20:b3:99:6c:74:c3"
- Siemens-Policy-Name = "POST_EAP_POLICY"
- Siemens-Topology-Name = "POST_EAP_USERS"
- EAP-Message = 0x0206006b19001703010060854ade5f3ea9bfd9c3d0fa220c7e0abfad11f14ed0d5f7c5da1f16dd28b30f8461377db48075b7c2927fcb889308b155df67270622551810be22b28c7403791778f56069126af2d5387c6acea7f8a621906414bd0247d2eb1da1266d5cb8082d
- State = 0xaa6307a5af651ea1f0ac6677f885127b
- Message-Authenticator = 0x29e66b3391db0ae3157435fb6f63d00d
- # Executing section authorize from file /etc/freeradius/sites-enabled/default
- +- entering group authorize {...}
- ++[preprocess] returns ok
- ++[chap] returns noop
- ++[mschap] returns noop
- ++[digest] returns noop
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ )
- ? Evaluating (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/) -> FALSE
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ ) -> FALSE
- ++? elsif (request:Realm == NULL )
- (Attribute request:Realm was not found)
- ? Evaluating (request:Realm == NULL ) -> FALSE
- ++? elsif (request:Realm == NULL ) -> FALSE
- [eap] EAP packet type response id 6 length 107
- [eap] Continuing tunnel setup.
- ++[eap] returns ok
- Found Auth-Type = EAP
- # Executing group from file /etc/freeradius/sites-enabled/default
- +- entering group authenticate {...}
- [eap] Request found, released from the list
- [eap] EAP/peap
- [eap] processing type peap
- [peap] processing EAP-TLS
- [peap] eaptls_verify returned 7
- [peap] Done initial handshake
- [peap] eaptls_process returned 7
- [peap] EAPTLS_OK
- [peap] Session established. Decoding tunneled attributes.
- [peap] Peap state phase2
- [peap] EAP type mschapv2
- [peap] Got tunneled request
- EAP-Message = 0x0206004d1a0206004831753dd25590388fb02e09ddeb7b370b4f0000000000000000d5c8eb8f09c6b2b8b78fd9475a6ca113602d56bbecfb4286006578707573657240686f74636974792e6c75
- server {
- [peap] Setting User-Name to expuser@hotcity.lu
- Sending tunneled request
- EAP-Message = 0x0206004d1a0206004831753dd25590388fb02e09ddeb7b370b4f0000000000000000d5c8eb8f09c6b2b8b78fd9475a6ca113602d56bbecfb4286006578707573657240686f74636974792e6c75
- FreeRADIUS-Proxied-To = 127.0.0.1
- User-Name = "expuser@hotcity.lu"
- State = 0x924a2b54924c3198589e8196a503b5ef
- server inner-tunnel {
- # Executing section authorize from file /etc/freeradius/sites-enabled/inner-tunnel
- +- entering group authorize {...}
- ++[chap] returns noop
- ++[mschap] returns noop
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++[control] returns noop
- [eap] EAP packet type response id 6 length 77
- [eap] No EAP Start, assuming it's an on-going EAP conversation
- ++[eap] returns updated
- [files] users: Matched entry expuser@hotcity.lu at line 207
- ++[files] returns ok
- [sql] expand: %{User-Name} -> expuser@hotcity.lu
- [sql] sql_set_user escaped user --> 'expuser@hotcity.lu'
- rlm_sql (sql): Reserving sql socket id: 2
- [sql] expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'expuser@hotcity.lu' ORDER BY id
- [sql] expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'expuser@hotcity.lu' ORDER BY priority
- rlm_sql (sql): Released sql socket id: 2
- [sql] User expuser@hotcity.lu not found
- ++[sql] returns notfound
- [expiration] Checking Expiration time: '23 May 2014 08:30:00'
- ++[expiration] returns ok
- ++[logintime] returns noop
- [pap] WARNING: Auth-Type already set. Not setting to PAP
- ++[pap] returns noop
- Found Auth-Type = EAP
- # Executing group from file /etc/freeradius/sites-enabled/inner-tunnel
- +- entering group authenticate {...}
- [eap] Request found, released from the list
- [eap] EAP/mschapv2
- [eap] processing type mschapv2
- [mschapv2] # Executing group from file /etc/freeradius/sites-enabled/inner-tunnel
- [mschapv2] +- entering group MS-CHAP {...}
- [mschap] Creating challenge hash with username: expuser@hotcity.lu
- [mschap] Told to do MS-CHAPv2 for expuser@hotcity.lu with NT-Password
- [mschap] adding MS-CHAPv2 MPPE keys
- ++[mschap] returns ok
- MSCHAP Success
- ++[eap] returns handled
- } # server inner-tunnel
- [peap] Got tunneled reply code 11
- Idle-Timeout = 60
- Termination-Action = RADIUS-Request
- Session-Timeout = 99
- EAP-Message = 0x010700331a0306002e533d34394634413444333239374439353634343534373130443437424638454431303138323436433434
- Message-Authenticator = 0x00000000000000000000000000000000
- State = 0x924a2b54934d3198589e8196a503b5ef
- [peap] Got tunneled reply RADIUS code 11
- Idle-Timeout = 60
- Termination-Action = RADIUS-Request
- Session-Timeout = 99
- EAP-Message = 0x010700331a0306002e533d34394634413444333239374439353634343534373130443437424638454431303138323436433434
- Message-Authenticator = 0x00000000000000000000000000000000
- State = 0x924a2b54934d3198589e8196a503b5ef
- [peap] Got tunneled Access-Challenge
- ++[eap] returns handled
- Sending Access-Challenge of id 126 to 10.53.0.120 port 41073
- EAP-Message = 0x0107005b190017030100506c3b9b0c928d0682117e85d84fde9d8d523b7936a9d369dfa0a18d20e1d2a63f901f6c0d73c0fed9685200691c9041286c6ec98010199e99490770f4654a06096b2b7612271427552193b2ce8907b5c3
- Message-Authenticator = 0x00000000000000000000000000000000
- State = 0xaa6307a5ac641ea1f0ac6677f885127b
- Finished request 71.
- Going to the next request
- Waking up in 4.6 seconds.
- rad_recv: Access-Request packet from host 10.53.0.120 port 41073, id=205, length=374
- User-Name = "expuser@hotcity.lu"
- NAS-IP-Address = 172.16.70.21
- NAS-Port = 108
- Framed-MTU = 1400
- Called-Station-Id = "20:b3:99:6c:74:c3"
- Calling-Station-Id = "74:e1:b6:87:66:df"
- NAS-Port-Type = Wireless-802.11
- NAS-Identifier = "HC_SECURE_VNS"
- Service-Type = Framed-User
- Siemens-AP-Serial = "12461237905C0000"
- Siemens-AP-Name = "HCSA_AP01"
- Siemens-VNS-Name = "HC_SECURE_VNS"
- Siemens-SSID = "HOTCITY_Secure"
- Siemens-BSS-MAC = "20:b3:99:6c:74:c3"
- Siemens-Policy-Name = "POST_EAP_POLICY"
- Siemens-Topology-Name = "POST_EAP_USERS"
- EAP-Message = 0x0207002b1900170301002044aa8ae36e637e4a835b46a5f591541a2cf9efbf2b213b4edc9c34578b1ab76c
- State = 0xaa6307a5ac641ea1f0ac6677f885127b
- Message-Authenticator = 0xad98a6a2fad5d6eafcc7e5bdef11f155
- # Executing section authorize from file /etc/freeradius/sites-enabled/default
- +- entering group authorize {...}
- ++[preprocess] returns ok
- ++[chap] returns noop
- ++[mschap] returns noop
- ++[digest] returns noop
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ )
- ? Evaluating (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/) -> FALSE
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ ) -> FALSE
- ++? elsif (request:Realm == NULL )
- (Attribute request:Realm was not found)
- ? Evaluating (request:Realm == NULL ) -> FALSE
- ++? elsif (request:Realm == NULL ) -> FALSE
- [eap] EAP packet type response id 7 length 43
- [eap] Continuing tunnel setup.
- ++[eap] returns ok
- Found Auth-Type = EAP
- # Executing group from file /etc/freeradius/sites-enabled/default
- +- entering group authenticate {...}
- [eap] Request found, released from the list
- [eap] EAP/peap
- [eap] processing type peap
- [peap] processing EAP-TLS
- [peap] eaptls_verify returned 7
- [peap] Done initial handshake
- [peap] eaptls_process returned 7
- [peap] EAPTLS_OK
- [peap] Session established. Decoding tunneled attributes.
- [peap] Peap state phase2
- [peap] EAP type mschapv2
- [peap] Got tunneled request
- EAP-Message = 0x020700061a03
- server {
- [peap] Setting User-Name to expuser@hotcity.lu
- Sending tunneled request
- EAP-Message = 0x020700061a03
- FreeRADIUS-Proxied-To = 127.0.0.1
- User-Name = "expuser@hotcity.lu"
- State = 0x924a2b54934d3198589e8196a503b5ef
- server inner-tunnel {
- # Executing section authorize from file /etc/freeradius/sites-enabled/inner-tunnel
- +- entering group authorize {...}
- ++[chap] returns noop
- ++[mschap] returns noop
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++[control] returns noop
- [eap] EAP packet type response id 7 length 6
- [eap] No EAP Start, assuming it's an on-going EAP conversation
- ++[eap] returns updated
- [files] users: Matched entry expuser@hotcity.lu at line 207
- ++[files] returns ok
- [sql] expand: %{User-Name} -> expuser@hotcity.lu
- [sql] sql_set_user escaped user --> 'expuser@hotcity.lu'
- rlm_sql (sql): Reserving sql socket id: 1
- [sql] expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'expuser@hotcity.lu' ORDER BY id
- [sql] expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'expuser@hotcity.lu' ORDER BY priority
- rlm_sql (sql): Released sql socket id: 1
- [sql] User expuser@hotcity.lu not found
- ++[sql] returns notfound
- [expiration] Checking Expiration time: '23 May 2014 08:30:00'
- ++[expiration] returns ok
- ++[logintime] returns noop
- [pap] WARNING: Auth-Type already set. Not setting to PAP
- ++[pap] returns noop
- Found Auth-Type = EAP
- # Executing group from file /etc/freeradius/sites-enabled/inner-tunnel
- +- entering group authenticate {...}
- [eap] Request found, released from the list
- [eap] EAP/mschapv2
- [eap] processing type mschapv2
- [eap] Freeing handler
- ++[eap] returns ok
- WARNING: Empty post-auth section. Using default return values.
- # Executing section post-auth from file /etc/freeradius/sites-enabled/inner-tunnel
- } # server inner-tunnel
- [peap] Got tunneled reply code 2
- Idle-Timeout = 60
- Termination-Action = RADIUS-Request
- Session-Timeout = 99
- MS-MPPE-Encryption-Policy = 0x00000001
- MS-MPPE-Encryption-Types = 0x00000006
- MS-MPPE-Send-Key = 0xdd21b871635c6374c6e548d53ef26c64
- MS-MPPE-Recv-Key = 0x54e8ec57ec641f6392c21590396d0fa5
- EAP-Message = 0x03070004
- Message-Authenticator = 0x00000000000000000000000000000000
- User-Name = "expuser@hotcity.lu"
- [peap] Got tunneled reply RADIUS code 2
- Idle-Timeout = 60
- Termination-Action = RADIUS-Request
- Session-Timeout = 99
- MS-MPPE-Encryption-Policy = 0x00000001
- MS-MPPE-Encryption-Types = 0x00000006
- MS-MPPE-Send-Key = 0xdd21b871635c6374c6e548d53ef26c64
- MS-MPPE-Recv-Key = 0x54e8ec57ec641f6392c21590396d0fa5
- EAP-Message = 0x03070004
- Message-Authenticator = 0x00000000000000000000000000000000
- User-Name = "expuser@hotcity.lu"
- [peap] Tunneled authentication was successful.
- [peap] SUCCESS
- ++[eap] returns handled
- Sending Access-Challenge of id 205 to 10.53.0.120 port 41073
- EAP-Message = 0x0108002b19001703010020f568047a1327771a06f666c157f6430661dd772297fb05368c9b5a9e325cd8cd
- Message-Authenticator = 0x00000000000000000000000000000000
- State = 0xaa6307a5ad6b1ea1f0ac6677f885127b
- Finished request 72.
- Going to the next request
- Waking up in 4.6 seconds.
- rad_recv: Access-Request packet from host 10.53.0.120 port 41073, id=79, length=374
- User-Name = "expuser@hotcity.lu"
- NAS-IP-Address = 172.16.70.21
- NAS-Port = 108
- Framed-MTU = 1400
- Called-Station-Id = "20:b3:99:6c:74:c3"
- Calling-Station-Id = "74:e1:b6:87:66:df"
- NAS-Port-Type = Wireless-802.11
- NAS-Identifier = "HC_SECURE_VNS"
- Service-Type = Framed-User
- Siemens-AP-Serial = "12461237905C0000"
- Siemens-AP-Name = "HCSA_AP01"
- Siemens-VNS-Name = "HC_SECURE_VNS"
- Siemens-SSID = "HOTCITY_Secure"
- Siemens-BSS-MAC = "20:b3:99:6c:74:c3"
- Siemens-Policy-Name = "POST_EAP_POLICY"
- Siemens-Topology-Name = "POST_EAP_USERS"
- EAP-Message = 0x0208002b19001703010020599dc26ab739361131d322ebab670a883aa9ad2e7e2fc21bdf7cfbc421dbab00
- State = 0xaa6307a5ad6b1ea1f0ac6677f885127b
- Message-Authenticator = 0x94046db6905734d52157c12025aee856
- # Executing section authorize from file /etc/freeradius/sites-enabled/default
- +- entering group authorize {...}
- ++[preprocess] returns ok
- ++[chap] returns noop
- ++[mschap] returns noop
- ++[digest] returns noop
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ )
- ? Evaluating (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/) -> FALSE
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ ) -> FALSE
- ++? elsif (request:Realm == NULL )
- (Attribute request:Realm was not found)
- ? Evaluating (request:Realm == NULL ) -> FALSE
- ++? elsif (request:Realm == NULL ) -> FALSE
- [eap] EAP packet type response id 8 length 43
- [eap] Continuing tunnel setup.
- ++[eap] returns ok
- Found Auth-Type = EAP
- # Executing group from file /etc/freeradius/sites-enabled/default
- +- entering group authenticate {...}
- [eap] Request found, released from the list
- [eap] EAP/peap
- [eap] processing type peap
- [peap] processing EAP-TLS
- [peap] eaptls_verify returned 7
- [peap] Done initial handshake
- [peap] eaptls_process returned 7
- [peap] EAPTLS_OK
- [peap] Session established. Decoding tunneled attributes.
- [peap] Peap state send tlv success
- [peap] Received EAP-TLV response.
- [peap] Success
- [eap] Freeing handler
- ++[eap] returns ok
- # Executing section post-auth from file /etc/freeradius/sites-enabled/default
- +- entering group post-auth {...}
- ++[exec] returns noop
- Sending Access-Accept of id 79 to 10.53.0.120 port 41073
- MS-MPPE-Recv-Key = 0x0da48666be327710abbee1797ec51c632790c7afa75767fdec99a71c94a5d62d
- MS-MPPE-Send-Key = 0xb27c39aa2620608e98639d0165540f19f572481242f202b434309b8d7bb5b150
- EAP-Message = 0x03080004
- Message-Authenticator = 0x00000000000000000000000000000000
- User-Name = "expuser@hotcity.lu"
- Finished request 73.
- Going to the next request
- Waking up in 4.6 seconds.
- rad_recv: Accounting-Request packet from host 10.53.0.120 port 54554, id=0, length=395
- Acct-Session-Id = "537eea98003d"
- NAS-Port = 108
- User-Name = "expuser@hotcity.lu"
- Filter-Id = "POST_EAP_POLICY"
- Acct-Interim-Interval = 1800
- Session-Timeout = 0
- Acct-Status-Type = Interim-Update
- Acct-Delay-Time = 19458482
- Acct-Authentic = RADIUS
- Framed-IP-Address = 10.30.118.192
- Connect-Info = "802.11b/g"
- NAS-Port-Type = Wireless-802.11
- Called-Station-Id = "20:B3:99:6C:74:C3"
- Calling-Station-Id = "74:E1:B6:87:66:DF"
- NAS-IP-Address = 172.16.70.21
- NAS-Identifier = "HC_SECURE_VNS"
- Siemens-AP-Serial = "12461237905C0000"
- Siemens-AP-Name = "HCSA_AP01"
- Siemens-BSS-MAC = "20:B3:99:6C:74:C3"
- Siemens-VNS-Name = "HC_SECURE_VNS"
- Siemens-SSID = "HOTCITY_Secure"
- Siemens-Policy-Name = "POST_EAP_POLICY"
- Siemens-Topology-Name = "POST_EAP_USERS"
- Siemens-Ingress-RC-Name = "n/a"
- Siemens-Egress-RC-Name = "n/a"
- Acct-Session-Time = 0
- Acct-Output-Packets = 0
- Acct-Input-Packets = 0
- Acct-Output-Octets = 0
- Acct-Input-Octets = 0
- # Executing section preacct from file /etc/freeradius/sites-enabled/default
- +- entering group preacct {...}
- ++[preprocess] returns ok
- [acct_unique] Hashing 'NAS-Port = 108,Client-IP-Address = 10.53.0.120,NAS-IP-Address = 172.16.70.21,Acct-Session-Id = "537eea98003d",User-Name = "expuser@hotcity.lu"'
- [acct_unique] Acct-Unique-Session-ID = "45f5660ca83bdef3".
- ++[acct_unique] returns ok
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++[files] returns noop
- # Executing section accounting from file /etc/freeradius/sites-enabled/default
- +- entering group accounting {...}
- [detail] expand: %{Packet-Src-IP-Address} -> 10.53.0.120
- [detail] expand: /var/log/freeradius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d -> /var/log/freeradius/radacct/10.53.0.120/detail-20140523
- [detail] /var/log/freeradius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d expands to /var/log/freeradius/radacct/10.53.0.120/detail-20140523
- [detail] expand: %t -> Fri May 23 08:28:21 2014
- ++[detail] returns ok
- ++[unix] returns noop
- [radutmp] expand: /var/log/freeradius/radutmp -> /var/log/freeradius/radutmp
- [radutmp] expand: %{User-Name} -> expuser@hotcity.lu
- ++[radutmp] returns ok
- ++[exec] returns noop
- [attr_filter.accounting_response] expand: %{User-Name} -> expuser@hotcity.lu
- attr_filter: Matched entry DEFAULT at line 12
- ++[attr_filter.accounting_response] returns updated
- Sending Accounting-Response of id 0 to 10.53.0.120 port 54554
- Finished request 74.
- Cleaning up request 74 ID 0 with timestamp +773
- Going to the next request
- Waking up in 4.4 seconds.
- rad_recv: Access-Request packet from host 10.53.0.120 port 37861, id=21, length=336
- User-Name = "expuser@hotcity.lu"
- NAS-IP-Address = 172.16.70.21
- NAS-Port = 108
- Framed-MTU = 1400
- Called-Station-Id = "20:b3:99:6c:74:c3"
- Calling-Station-Id = "74:e1:b6:87:66:df"
- NAS-Port-Type = Wireless-802.11
- NAS-Identifier = "HC_SECURE_VNS"
- Service-Type = Framed-User
- Siemens-AP-Serial = "12461237905C0000"
- Siemens-AP-Name = "HCSA_AP01"
- Siemens-VNS-Name = "HC_SECURE_VNS"
- Siemens-SSID = "HOTCITY_Secure"
- Siemens-BSS-MAC = "20:b3:99:6c:74:c3"
- Siemens-Policy-Name = "POST_EAP_POLICY"
- Siemens-Topology-Name = "POST_EAP_USERS"
- EAP-Message = 0x02000017016578707573657240686f74636974792e6c75
- Message-Authenticator = 0x89c0587e81aa2806b9f1fd7a2cffb505
- # Executing section authorize from file /etc/freeradius/sites-enabled/default
- +- entering group authorize {...}
- ++[preprocess] returns ok
- ++[chap] returns noop
- ++[mschap] returns noop
- ++[digest] returns noop
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ )
- ? Evaluating (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/) -> FALSE
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ ) -> FALSE
- ++? elsif (request:Realm == NULL )
- (Attribute request:Realm was not found)
- ? Evaluating (request:Realm == NULL ) -> FALSE
- ++? elsif (request:Realm == NULL ) -> FALSE
- [eap] EAP packet type response id 0 length 23
- [eap] No EAP Start, assuming it's an on-going EAP conversation
- ++[eap] returns updated
- [files] users: Matched entry expuser@hotcity.lu at line 207
- ++[files] returns ok
- [expiration] Checking Expiration time: '23 May 2014 08:30:00'
- ++[expiration] returns ok
- ++[logintime] returns noop
- [pap] WARNING: Auth-Type already set. Not setting to PAP
- ++[pap] returns noop
- Found Auth-Type = EAP
- # Executing group from file /etc/freeradius/sites-enabled/default
- +- entering group authenticate {...}
- [eap] EAP Identity
- [eap] processing type tls
- [tls] Initiate
- [tls] Start returned 1
- ++[eap] returns handled
- Sending Access-Challenge of id 21 to 10.53.0.120 port 37861
- Idle-Timeout = 60
- Termination-Action = RADIUS-Request
- Session-Timeout = 99
- EAP-Message = 0x010100061920
- Message-Authenticator = 0x00000000000000000000000000000000
- State = 0x7266577a72674e7b2983cf8ffc74c0c2
- Finished request 75.
- Going to the next request
- Waking up in 3.9 seconds.
- rad_recv: Access-Request packet from host 10.53.0.120 port 37861, id=132, length=483
- User-Name = "expuser@hotcity.lu"
- NAS-IP-Address = 172.16.70.21
- NAS-Port = 108
- Framed-MTU = 1400
- Called-Station-Id = "20:b3:99:6c:74:c3"
- Calling-Station-Id = "74:e1:b6:87:66:df"
- NAS-Port-Type = Wireless-802.11
- NAS-Identifier = "HC_SECURE_VNS"
- Service-Type = Framed-User
- Siemens-AP-Serial = "12461237905C0000"
- Siemens-AP-Name = "HCSA_AP01"
- Siemens-VNS-Name = "HC_SECURE_VNS"
- Siemens-SSID = "HOTCITY_Secure"
- Siemens-BSS-MAC = "20:b3:99:6c:74:c3"
- Siemens-Policy-Name = "POST_EAP_POLICY"
- Siemens-Topology-Name = "POST_EAP_USERS"
- EAP-Message = 0x0201009819800000008e1603010089010000850301537eea885cc9d1d1023f60a74aab1f8dd89884afc923b70891426a0483e5a58200004a00ffc024c023c00ac009c007c008c028c027c014c013c011c012c026c025c02ac029c005c004c002c003c00fc00ec00cc00d003d003c002f000500040035000a0067006b00330039001601000012000a00080006001700180019000b00020100
- State = 0x7266577a72674e7b2983cf8ffc74c0c2
- Message-Authenticator = 0x2f6bea276a09e98e156907077f172a95
- # Executing section authorize from file /etc/freeradius/sites-enabled/default
- +- entering group authorize {...}
- ++[preprocess] returns ok
- ++[chap] returns noop
- ++[mschap] returns noop
- ++[digest] returns noop
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ )
- ? Evaluating (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/) -> FALSE
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ ) -> FALSE
- ++? elsif (request:Realm == NULL )
- (Attribute request:Realm was not found)
- ? Evaluating (request:Realm == NULL ) -> FALSE
- ++? elsif (request:Realm == NULL ) -> FALSE
- [eap] EAP packet type response id 1 length 152
- [eap] Continuing tunnel setup.
- ++[eap] returns ok
- Found Auth-Type = EAP
- # Executing group from file /etc/freeradius/sites-enabled/default
- +- entering group authenticate {...}
- [eap] Request found, released from the list
- [eap] EAP/peap
- [eap] processing type peap
- [peap] processing EAP-TLS
- TLS Length 142
- [peap] Length Included
- [peap] eaptls_verify returned 11
- [peap] (other): before/accept initialization
- [peap] TLS_accept: before/accept initialization
- [peap] <<< TLS 1.0 Handshake [length 0089], ClientHello
- [peap] TLS_accept: SSLv3 read client hello A
- [peap] >>> TLS 1.0 Handshake [length 0039], ServerHello
- [peap] TLS_accept: SSLv3 write server hello A
- [peap] >>> TLS 1.0 Handshake [length 02ce], Certificate
- [peap] TLS_accept: SSLv3 write certificate A
- [peap] >>> TLS 1.0 Handshake [length 014b], ServerKeyExchange
- [peap] TLS_accept: SSLv3 write key exchange A
- [peap] >>> TLS 1.0 Handshake [length 0004], ServerHelloDone
- [peap] TLS_accept: SSLv3 write server done A
- [peap] TLS_accept: SSLv3 flush data
- [peap] TLS_accept: Need to read more data: SSLv3 read client certificate A
- In SSL Handshake Phase
- In SSL Accept mode
- [peap] eaptls_process returned 13
- [peap] EAPTLS_HANDLED
- ++[eap] returns handled
- Sending Access-Challenge of id 132 to 10.53.0.120 port 37861
- EAP-Message = 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
- EAP-Message = 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
- EAP-Message = 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
- EAP-Message = 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
- EAP-Message = 0xac90e2a6ff2243e1e6460305
- Message-Authenticator = 0x00000000000000000000000000000000
- State = 0x7266577a73644e7b2983cf8ffc74c0c2
- Finished request 76.
- Going to the next request
- Waking up in 3.8 seconds.
- rad_recv: Access-Request packet from host 10.53.0.120 port 37861, id=30, length=337
- User-Name = "expuser@hotcity.lu"
- NAS-IP-Address = 172.16.70.21
- NAS-Port = 108
- Framed-MTU = 1400
- Called-Station-Id = "20:b3:99:6c:74:c3"
- Calling-Station-Id = "74:e1:b6:87:66:df"
- NAS-Port-Type = Wireless-802.11
- NAS-Identifier = "HC_SECURE_VNS"
- Service-Type = Framed-User
- Siemens-AP-Serial = "12461237905C0000"
- Siemens-AP-Name = "HCSA_AP01"
- Siemens-VNS-Name = "HC_SECURE_VNS"
- Siemens-SSID = "HOTCITY_Secure"
- Siemens-BSS-MAC = "20:b3:99:6c:74:c3"
- Siemens-Policy-Name = "POST_EAP_POLICY"
- Siemens-Topology-Name = "POST_EAP_USERS"
- EAP-Message = 0x020200061900
- State = 0x7266577a73644e7b2983cf8ffc74c0c2
- Message-Authenticator = 0x8b4278fd4e3f2d944bfbb83e01752801
- # Executing section authorize from file /etc/freeradius/sites-enabled/default
- +- entering group authorize {...}
- ++[preprocess] returns ok
- ++[chap] returns noop
- ++[mschap] returns noop
- ++[digest] returns noop
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ )
- ? Evaluating (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/) -> FALSE
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ ) -> FALSE
- ++? elsif (request:Realm == NULL )
- (Attribute request:Realm was not found)
- ? Evaluating (request:Realm == NULL ) -> FALSE
- ++? elsif (request:Realm == NULL ) -> FALSE
- [eap] EAP packet type response id 2 length 6
- [eap] Continuing tunnel setup.
- ++[eap] returns ok
- Found Auth-Type = EAP
- # Executing group from file /etc/freeradius/sites-enabled/default
- +- entering group authenticate {...}
- [eap] Request found, released from the list
- [eap] EAP/peap
- [eap] processing type peap
- [peap] processing EAP-TLS
- [peap] Received TLS ACK
- [peap] ACK handshake fragment handler
- [peap] eaptls_verify returned 1
- [peap] eaptls_process returned 13
- [peap] EAPTLS_HANDLED
- ++[eap] returns handled
- Sending Access-Challenge of id 30 to 10.53.0.120 port 37861
- EAP-Message = 0x0103007a1900162e2cacceb04703f63e1f99dbee6afde75b7f70805daae40dbc203daad28ada9bb3d97a05568261fc074d166cdf0ab3a32a37fe395c9018fc4022e4206794429fc5c07c157e8f04db0bf3e42dce9187716a04a524192f68e655b96f35b2ec5015ed3ed1ee8ccdf8089fa516030100040e000000
- Message-Authenticator = 0x00000000000000000000000000000000
- State = 0x7266577a70654e7b2983cf8ffc74c0c2
- Finished request 77.
- Going to the next request
- Waking up in 3.8 seconds.
- rad_recv: Access-Request packet from host 10.53.0.120 port 37861, id=171, length=475
- User-Name = "expuser@hotcity.lu"
- NAS-IP-Address = 172.16.70.21
- NAS-Port = 108
- Framed-MTU = 1400
- Called-Station-Id = "20:b3:99:6c:74:c3"
- Calling-Station-Id = "74:e1:b6:87:66:df"
- NAS-Port-Type = Wireless-802.11
- NAS-Identifier = "HC_SECURE_VNS"
- Service-Type = Framed-User
- Siemens-AP-Serial = "12461237905C0000"
- Siemens-AP-Name = "HCSA_AP01"
- Siemens-VNS-Name = "HC_SECURE_VNS"
- Siemens-SSID = "HOTCITY_Secure"
- Siemens-BSS-MAC = "20:b3:99:6c:74:c3"
- Siemens-Policy-Name = "POST_EAP_POLICY"
- Siemens-Topology-Name = "POST_EAP_USERS"
- EAP-Message = 0x020300901980000000861603010046100000424104f750212f950cfbaba37737100f530454b6526be69f22f6af34f135672a5d8b24fa15d28be098335dd2f1cd8eda98ad31f804bbe04d511b9b470b1ef8437063591403010001011603010030d9ae25e88a1feead0b25ac6b241cbebe145f7ff8a4a0f5664b17aeadd2c5bc48a91f813e4c6d784310c4a233e5e10295
- State = 0x7266577a70654e7b2983cf8ffc74c0c2
- Message-Authenticator = 0x2965d358f142cf8bd6a0730e4ac84c6f
- # Executing section authorize from file /etc/freeradius/sites-enabled/default
- +- entering group authorize {...}
- ++[preprocess] returns ok
- ++[chap] returns noop
- ++[mschap] returns noop
- ++[digest] returns noop
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ )
- ? Evaluating (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/) -> FALSE
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ ) -> FALSE
- ++? elsif (request:Realm == NULL )
- (Attribute request:Realm was not found)
- ? Evaluating (request:Realm == NULL ) -> FALSE
- ++? elsif (request:Realm == NULL ) -> FALSE
- [eap] EAP packet type response id 3 length 144
- [eap] Continuing tunnel setup.
- ++[eap] returns ok
- Found Auth-Type = EAP
- # Executing group from file /etc/freeradius/sites-enabled/default
- +- entering group authenticate {...}
- [eap] Request found, released from the list
- [eap] EAP/peap
- [eap] processing type peap
- [peap] processing EAP-TLS
- TLS Length 134
- [peap] Length Included
- [peap] eaptls_verify returned 11
- [peap] <<< TLS 1.0 Handshake [length 0046], ClientKeyExchange
- [peap] TLS_accept: SSLv3 read client key exchange A
- [peap] <<< TLS 1.0 ChangeCipherSpec [length 0001]
- [peap] <<< TLS 1.0 Handshake [length 0010], Finished
- [peap] TLS_accept: SSLv3 read finished A
- [peap] >>> TLS 1.0 ChangeCipherSpec [length 0001]
- [peap] TLS_accept: SSLv3 write change cipher spec A
- [peap] >>> TLS 1.0 Handshake [length 0010], Finished
- [peap] TLS_accept: SSLv3 write finished A
- [peap] TLS_accept: SSLv3 flush data
- [peap] (other): SSL negotiation finished successfully
- SSL Connection Established
- [peap] eaptls_process returned 13
- [peap] EAPTLS_HANDLED
- ++[eap] returns handled
- Sending Access-Challenge of id 171 to 10.53.0.120 port 37861
- EAP-Message = 0x01040041190014030100010116030100307babda810c0357853f04b98a12238a64c9e517f1c08f63bec3b498bd25b58be8715ae3deb8eb0683554e4d82ed86bf05
- Message-Authenticator = 0x00000000000000000000000000000000
- State = 0x7266577a71624e7b2983cf8ffc74c0c2
- Finished request 78.
- Going to the next request
- Waking up in 3.7 seconds.
- rad_recv: Access-Request packet from host 10.53.0.120 port 37861, id=171, length=337
- Cleaning up request 78 ID 171 with timestamp +774
- User-Name = "expuser@hotcity.lu"
- NAS-IP-Address = 172.16.70.21
- NAS-Port = 108
- Framed-MTU = 1400
- Called-Station-Id = "20:b3:99:6c:74:c3"
- Calling-Station-Id = "74:e1:b6:87:66:df"
- NAS-Port-Type = Wireless-802.11
- NAS-Identifier = "HC_SECURE_VNS"
- Service-Type = Framed-User
- Siemens-AP-Serial = "12461237905C0000"
- Siemens-AP-Name = "HCSA_AP01"
- Siemens-VNS-Name = "HC_SECURE_VNS"
- Siemens-SSID = "HOTCITY_Secure"
- Siemens-BSS-MAC = "20:b3:99:6c:74:c3"
- Siemens-Policy-Name = "POST_EAP_POLICY"
- Siemens-Topology-Name = "POST_EAP_USERS"
- EAP-Message = 0x020400061900
- State = 0x7266577a71624e7b2983cf8ffc74c0c2
- Message-Authenticator = 0x2df665bd00868a487af89f6e402d2d8f
- # Executing section authorize from file /etc/freeradius/sites-enabled/default
- +- entering group authorize {...}
- ++[preprocess] returns ok
- ++[chap] returns noop
- ++[mschap] returns noop
- ++[digest] returns noop
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ )
- ? Evaluating (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/) -> FALSE
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ ) -> FALSE
- ++? elsif (request:Realm == NULL )
- (Attribute request:Realm was not found)
- ? Evaluating (request:Realm == NULL ) -> FALSE
- ++? elsif (request:Realm == NULL ) -> FALSE
- [eap] EAP packet type response id 4 length 6
- [eap] Continuing tunnel setup.
- ++[eap] returns ok
- Found Auth-Type = EAP
- # Executing group from file /etc/freeradius/sites-enabled/default
- +- entering group authenticate {...}
- [eap] Request found, released from the list
- [eap] EAP/peap
- [eap] processing type peap
- [peap] processing EAP-TLS
- [peap] Received TLS ACK
- [peap] ACK handshake is finished
- [peap] eaptls_verify returned 3
- [peap] eaptls_process returned 3
- [peap] EAPTLS_SUCCESS
- [peap] Session established. Decoding tunneled attributes.
- [peap] Peap state TUNNEL ESTABLISHED
- ++[eap] returns handled
- Sending Access-Challenge of id 171 to 10.53.0.120 port 37861
- EAP-Message = 0x0105002b190017030100208d1785db1b47ee6ee58aad58ded743540850ed5de9ad31935043d3da986e8dc3
- Message-Authenticator = 0x00000000000000000000000000000000
- State = 0x7266577a76634e7b2983cf8ffc74c0c2
- Finished request 79.
- Going to the next request
- Waking up in 3.7 seconds.
- rad_recv: Access-Request packet from host 10.53.0.120 port 37861, id=253, length=390
- User-Name = "expuser@hotcity.lu"
- NAS-IP-Address = 172.16.70.21
- NAS-Port = 108
- Framed-MTU = 1400
- Called-Station-Id = "20:b3:99:6c:74:c3"
- Calling-Station-Id = "74:e1:b6:87:66:df"
- NAS-Port-Type = Wireless-802.11
- NAS-Identifier = "HC_SECURE_VNS"
- Service-Type = Framed-User
- Siemens-AP-Serial = "12461237905C0000"
- Siemens-AP-Name = "HCSA_AP01"
- Siemens-VNS-Name = "HC_SECURE_VNS"
- Siemens-SSID = "HOTCITY_Secure"
- Siemens-BSS-MAC = "20:b3:99:6c:74:c3"
- Siemens-Policy-Name = "POST_EAP_POLICY"
- Siemens-Topology-Name = "POST_EAP_USERS"
- EAP-Message = 0x0205003b19001703010030d2723e9c5eddaddc78ff25c2fbced9748b137e672a79d13b01c33af95b5e2bc65c1c742f8970439b7eecd65a5f5cdb8a
- State = 0x7266577a76634e7b2983cf8ffc74c0c2
- Message-Authenticator = 0x479afa6ebfbcd130fe08ee95c39dd973
- # Executing section authorize from file /etc/freeradius/sites-enabled/default
- +- entering group authorize {...}
- ++[preprocess] returns ok
- ++[chap] returns noop
- ++[mschap] returns noop
- ++[digest] returns noop
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ )
- ? Evaluating (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/) -> FALSE
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ ) -> FALSE
- ++? elsif (request:Realm == NULL )
- (Attribute request:Realm was not found)
- ? Evaluating (request:Realm == NULL ) -> FALSE
- ++? elsif (request:Realm == NULL ) -> FALSE
- [eap] EAP packet type response id 5 length 59
- [eap] Continuing tunnel setup.
- ++[eap] returns ok
- Found Auth-Type = EAP
- # Executing group from file /etc/freeradius/sites-enabled/default
- +- entering group authenticate {...}
- [eap] Request found, released from the list
- [eap] EAP/peap
- [eap] processing type peap
- [peap] processing EAP-TLS
- [peap] eaptls_verify returned 7
- [peap] Done initial handshake
- [peap] eaptls_process returned 7
- [peap] EAPTLS_OK
- [peap] Session established. Decoding tunneled attributes.
- [peap] Peap state WAITING FOR INNER IDENTITY
- [peap] Identity - expuser@hotcity.lu
- [peap] Got inner identity 'expuser@hotcity.lu'
- [peap] Setting default EAP type for tunneled EAP session.
- [peap] Got tunneled request
- EAP-Message = 0x02050017016578707573657240686f74636974792e6c75
- server {
- [peap] Setting User-Name to expuser@hotcity.lu
- Sending tunneled request
- EAP-Message = 0x02050017016578707573657240686f74636974792e6c75
- FreeRADIUS-Proxied-To = 127.0.0.1
- User-Name = "expuser@hotcity.lu"
- server inner-tunnel {
- # Executing section authorize from file /etc/freeradius/sites-enabled/inner-tunnel
- +- entering group authorize {...}
- ++[chap] returns noop
- ++[mschap] returns noop
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++[control] returns noop
- [eap] EAP packet type response id 5 length 23
- [eap] No EAP Start, assuming it's an on-going EAP conversation
- ++[eap] returns updated
- [files] users: Matched entry expuser@hotcity.lu at line 207
- ++[files] returns ok
- [sql] expand: %{User-Name} -> expuser@hotcity.lu
- [sql] sql_set_user escaped user --> 'expuser@hotcity.lu'
- rlm_sql (sql): Reserving sql socket id: 0
- [sql] expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'expuser@hotcity.lu' ORDER BY id
- [sql] expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'expuser@hotcity.lu' ORDER BY priority
- rlm_sql (sql): Released sql socket id: 0
- [sql] User expuser@hotcity.lu not found
- ++[sql] returns notfound
- [expiration] Checking Expiration time: '23 May 2014 08:30:00'
- ++[expiration] returns ok
- ++[logintime] returns noop
- [pap] WARNING: Auth-Type already set. Not setting to PAP
- ++[pap] returns noop
- Found Auth-Type = EAP
- # Executing group from file /etc/freeradius/sites-enabled/inner-tunnel
- +- entering group authenticate {...}
- [eap] EAP Identity
- [eap] processing type mschapv2
- rlm_eap_mschapv2: Issuing Challenge
- ++[eap] returns handled
- } # server inner-tunnel
- [peap] Got tunneled reply code 11
- Idle-Timeout = 60
- Termination-Action = RADIUS-Request
- Session-Timeout = 98
- EAP-Message = 0x0106002c1a0106002710a2130142a89dcca320b5cd9b4ea47c466578707573657240686f74636974792e6c75
- Message-Authenticator = 0x00000000000000000000000000000000
- State = 0x84aafae584ace04616af5f9939797486
- [peap] Got tunneled reply RADIUS code 11
- Idle-Timeout = 60
- Termination-Action = RADIUS-Request
- Session-Timeout = 98
- EAP-Message = 0x0106002c1a0106002710a2130142a89dcca320b5cd9b4ea47c466578707573657240686f74636974792e6c75
- Message-Authenticator = 0x00000000000000000000000000000000
- State = 0x84aafae584ace04616af5f9939797486
- [peap] Got tunneled Access-Challenge
- ++[eap] returns handled
- Sending Access-Challenge of id 253 to 10.53.0.120 port 37861
- EAP-Message = 0x0106004b19001703010040b52bb9480f1e5d4e35f233218f0a34cdf04cfb957f70e571071dc7c8ad541a43d02573b3a80d59918e8d69a5bbfb855b69246161268519cb11b8124ff0f0e8d4
- Message-Authenticator = 0x00000000000000000000000000000000
- State = 0x7266577a77604e7b2983cf8ffc74c0c2
- Finished request 80.
- Going to the next request
- Waking up in 3.7 seconds.
- rad_recv: Access-Request packet from host 10.53.0.120 port 37861, id=190, length=438
- User-Name = "expuser@hotcity.lu"
- NAS-IP-Address = 172.16.70.21
- NAS-Port = 108
- Framed-MTU = 1400
- Called-Station-Id = "20:b3:99:6c:74:c3"
- Calling-Station-Id = "74:e1:b6:87:66:df"
- NAS-Port-Type = Wireless-802.11
- NAS-Identifier = "HC_SECURE_VNS"
- Service-Type = Framed-User
- Siemens-AP-Serial = "12461237905C0000"
- Siemens-AP-Name = "HCSA_AP01"
- Siemens-VNS-Name = "HC_SECURE_VNS"
- Siemens-SSID = "HOTCITY_Secure"
- Siemens-BSS-MAC = "20:b3:99:6c:74:c3"
- Siemens-Policy-Name = "POST_EAP_POLICY"
- Siemens-Topology-Name = "POST_EAP_USERS"
- EAP-Message = 0x0206006b19001703010060554054274d88ca45d3ba2468b9495fd8bdf8293403ae505aa9a436f1e335b9fa3827a468b7117a4d880bffb63509c588fb339b2bed48f3552e5c72b3245e4f9158c2d43fe8b0ab8dc0893ec7b161f5a114cede2a87850d1970b73966bc91f1da
- State = 0x7266577a77604e7b2983cf8ffc74c0c2
- Message-Authenticator = 0xb94771468ba45eeb32946ec410a5dcfd
- # Executing section authorize from file /etc/freeradius/sites-enabled/default
- +- entering group authorize {...}
- ++[preprocess] returns ok
- ++[chap] returns noop
- ++[mschap] returns noop
- ++[digest] returns noop
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ )
- ? Evaluating (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/) -> FALSE
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ ) -> FALSE
- ++? elsif (request:Realm == NULL )
- (Attribute request:Realm was not found)
- ? Evaluating (request:Realm == NULL ) -> FALSE
- ++? elsif (request:Realm == NULL ) -> FALSE
- [eap] EAP packet type response id 6 length 107
- [eap] Continuing tunnel setup.
- ++[eap] returns ok
- Found Auth-Type = EAP
- # Executing group from file /etc/freeradius/sites-enabled/default
- +- entering group authenticate {...}
- [eap] Request found, released from the list
- [eap] EAP/peap
- [eap] processing type peap
- [peap] processing EAP-TLS
- [peap] eaptls_verify returned 7
- [peap] Done initial handshake
- [peap] eaptls_process returned 7
- [peap] EAPTLS_OK
- [peap] Session established. Decoding tunneled attributes.
- [peap] Peap state phase2
- [peap] EAP type mschapv2
- [peap] Got tunneled request
- EAP-Message = 0x0206004d1a020600483160b4cc7dfabf0cc0c6ac10a3a26690aa00000000000000004070733024014a119ea9e532960f5cba9c44d4d222571a43006578707573657240686f74636974792e6c75
- server {
- [peap] Setting User-Name to expuser@hotcity.lu
- Sending tunneled request
- EAP-Message = 0x0206004d1a020600483160b4cc7dfabf0cc0c6ac10a3a26690aa00000000000000004070733024014a119ea9e532960f5cba9c44d4d222571a43006578707573657240686f74636974792e6c75
- FreeRADIUS-Proxied-To = 127.0.0.1
- User-Name = "expuser@hotcity.lu"
- State = 0x84aafae584ace04616af5f9939797486
- server inner-tunnel {
- # Executing section authorize from file /etc/freeradius/sites-enabled/inner-tunnel
- +- entering group authorize {...}
- ++[chap] returns noop
- ++[mschap] returns noop
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++[control] returns noop
- [eap] EAP packet type response id 6 length 77
- [eap] No EAP Start, assuming it's an on-going EAP conversation
- ++[eap] returns updated
- [files] users: Matched entry expuser@hotcity.lu at line 207
- ++[files] returns ok
- [sql] expand: %{User-Name} -> expuser@hotcity.lu
- [sql] sql_set_user escaped user --> 'expuser@hotcity.lu'
- rlm_sql (sql): Reserving sql socket id: 4
- [sql] expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'expuser@hotcity.lu' ORDER BY id
- [sql] expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'expuser@hotcity.lu' ORDER BY priority
- rlm_sql (sql): Released sql socket id: 4
- [sql] User expuser@hotcity.lu not found
- ++[sql] returns notfound
- [expiration] Checking Expiration time: '23 May 2014 08:30:00'
- ++[expiration] returns ok
- ++[logintime] returns noop
- [pap] WARNING: Auth-Type already set. Not setting to PAP
- ++[pap] returns noop
- Found Auth-Type = EAP
- # Executing group from file /etc/freeradius/sites-enabled/inner-tunnel
- +- entering group authenticate {...}
- [eap] Request found, released from the list
- [eap] EAP/mschapv2
- [eap] processing type mschapv2
- [mschapv2] # Executing group from file /etc/freeradius/sites-enabled/inner-tunnel
- [mschapv2] +- entering group MS-CHAP {...}
- [mschap] Creating challenge hash with username: expuser@hotcity.lu
- [mschap] Told to do MS-CHAPv2 for expuser@hotcity.lu with NT-Password
- [mschap] adding MS-CHAPv2 MPPE keys
- ++[mschap] returns ok
- MSCHAP Success
- ++[eap] returns handled
- } # server inner-tunnel
- [peap] Got tunneled reply code 11
- Idle-Timeout = 60
- Termination-Action = RADIUS-Request
- Session-Timeout = 98
- EAP-Message = 0x010700331a0306002e533d45303043344133343936323846354541373745384635334241464538354646463536384542433343
- Message-Authenticator = 0x00000000000000000000000000000000
- State = 0x84aafae585ade04616af5f9939797486
- [peap] Got tunneled reply RADIUS code 11
- Idle-Timeout = 60
- Termination-Action = RADIUS-Request
- Session-Timeout = 98
- EAP-Message = 0x010700331a0306002e533d45303043344133343936323846354541373745384635334241464538354646463536384542433343
- Message-Authenticator = 0x00000000000000000000000000000000
- State = 0x84aafae585ade04616af5f9939797486
- [peap] Got tunneled Access-Challenge
- ++[eap] returns handled
- Sending Access-Challenge of id 190 to 10.53.0.120 port 37861
- EAP-Message = 0x0107005b1900170301005029b40bad6ec7cab815666d5a15276896d6a500d086d65c3fab2742dababa1c828f02024a777a4442eeff409954a9ebb6af6e29586f1a9b18b255949ac8d7396f23b1be71c57857c64872eb6aa9dfa13e
- Message-Authenticator = 0x00000000000000000000000000000000
- State = 0x7266577a74614e7b2983cf8ffc74c0c2
- Finished request 81.
- Going to the next request
- Waking up in 3.6 seconds.
- rad_recv: Access-Request packet from host 10.53.0.120 port 37861, id=219, length=374
- User-Name = "expuser@hotcity.lu"
- NAS-IP-Address = 172.16.70.21
- NAS-Port = 108
- Framed-MTU = 1400
- Called-Station-Id = "20:b3:99:6c:74:c3"
- Calling-Station-Id = "74:e1:b6:87:66:df"
- NAS-Port-Type = Wireless-802.11
- NAS-Identifier = "HC_SECURE_VNS"
- Service-Type = Framed-User
- Siemens-AP-Serial = "12461237905C0000"
- Siemens-AP-Name = "HCSA_AP01"
- Siemens-VNS-Name = "HC_SECURE_VNS"
- Siemens-SSID = "HOTCITY_Secure"
- Siemens-BSS-MAC = "20:b3:99:6c:74:c3"
- Siemens-Policy-Name = "POST_EAP_POLICY"
- Siemens-Topology-Name = "POST_EAP_USERS"
- EAP-Message = 0x0207002b19001703010020f261e9c254ac9b3b67e597220d9c2a9e6ed360de3e0ff7b65dd08f87b32f427d
- State = 0x7266577a74614e7b2983cf8ffc74c0c2
- Message-Authenticator = 0x66eed3c7162094a02db668c8e6fdbd27
- # Executing section authorize from file /etc/freeradius/sites-enabled/default
- +- entering group authorize {...}
- ++[preprocess] returns ok
- ++[chap] returns noop
- ++[mschap] returns noop
- ++[digest] returns noop
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ )
- ? Evaluating (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/) -> FALSE
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ ) -> FALSE
- ++? elsif (request:Realm == NULL )
- (Attribute request:Realm was not found)
- ? Evaluating (request:Realm == NULL ) -> FALSE
- ++? elsif (request:Realm == NULL ) -> FALSE
- [eap] EAP packet type response id 7 length 43
- [eap] Continuing tunnel setup.
- ++[eap] returns ok
- Found Auth-Type = EAP
- # Executing group from file /etc/freeradius/sites-enabled/default
- +- entering group authenticate {...}
- [eap] Request found, released from the list
- [eap] EAP/peap
- [eap] processing type peap
- [peap] processing EAP-TLS
- [peap] eaptls_verify returned 7
- [peap] Done initial handshake
- [peap] eaptls_process returned 7
- [peap] EAPTLS_OK
- [peap] Session established. Decoding tunneled attributes.
- [peap] Peap state phase2
- [peap] EAP type mschapv2
- [peap] Got tunneled request
- EAP-Message = 0x020700061a03
- server {
- [peap] Setting User-Name to expuser@hotcity.lu
- Sending tunneled request
- EAP-Message = 0x020700061a03
- FreeRADIUS-Proxied-To = 127.0.0.1
- User-Name = "expuser@hotcity.lu"
- State = 0x84aafae585ade04616af5f9939797486
- server inner-tunnel {
- # Executing section authorize from file /etc/freeradius/sites-enabled/inner-tunnel
- +- entering group authorize {...}
- ++[chap] returns noop
- ++[mschap] returns noop
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++[control] returns noop
- [eap] EAP packet type response id 7 length 6
- [eap] No EAP Start, assuming it's an on-going EAP conversation
- ++[eap] returns updated
- [files] users: Matched entry expuser@hotcity.lu at line 207
- ++[files] returns ok
- [sql] expand: %{User-Name} -> expuser@hotcity.lu
- [sql] sql_set_user escaped user --> 'expuser@hotcity.lu'
- rlm_sql (sql): Reserving sql socket id: 3
- [sql] expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'expuser@hotcity.lu' ORDER BY id
- [sql] expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'expuser@hotcity.lu' ORDER BY priority
- rlm_sql (sql): Released sql socket id: 3
- [sql] User expuser@hotcity.lu not found
- ++[sql] returns notfound
- [expiration] Checking Expiration time: '23 May 2014 08:30:00'
- ++[expiration] returns ok
- ++[logintime] returns noop
- [pap] WARNING: Auth-Type already set. Not setting to PAP
- ++[pap] returns noop
- Found Auth-Type = EAP
- # Executing group from file /etc/freeradius/sites-enabled/inner-tunnel
- +- entering group authenticate {...}
- [eap] Request found, released from the list
- [eap] EAP/mschapv2
- [eap] processing type mschapv2
- [eap] Freeing handler
- ++[eap] returns ok
- WARNING: Empty post-auth section. Using default return values.
- # Executing section post-auth from file /etc/freeradius/sites-enabled/inner-tunnel
- } # server inner-tunnel
- [peap] Got tunneled reply code 2
- Idle-Timeout = 60
- Termination-Action = RADIUS-Request
- Session-Timeout = 98
- MS-MPPE-Encryption-Policy = 0x00000001
- MS-MPPE-Encryption-Types = 0x00000006
- MS-MPPE-Send-Key = 0xc80906005e0910f8d4ffeb9a5ada1c7f
- MS-MPPE-Recv-Key = 0x705a7a1164263b06c73a3ae886174209
- EAP-Message = 0x03070004
- Message-Authenticator = 0x00000000000000000000000000000000
- User-Name = "expuser@hotcity.lu"
- [peap] Got tunneled reply RADIUS code 2
- Idle-Timeout = 60
- Termination-Action = RADIUS-Request
- Session-Timeout = 98
- MS-MPPE-Encryption-Policy = 0x00000001
- MS-MPPE-Encryption-Types = 0x00000006
- MS-MPPE-Send-Key = 0xc80906005e0910f8d4ffeb9a5ada1c7f
- MS-MPPE-Recv-Key = 0x705a7a1164263b06c73a3ae886174209
- EAP-Message = 0x03070004
- Message-Authenticator = 0x00000000000000000000000000000000
- User-Name = "expuser@hotcity.lu"
- [peap] Tunneled authentication was successful.
- [peap] SUCCESS
- ++[eap] returns handled
- Sending Access-Challenge of id 219 to 10.53.0.120 port 37861
- EAP-Message = 0x0108002b1900170301002098dc9156e032400c0beeafef92469a63e41512878d4aa2c31b68b83b6a05c83f
- Message-Authenticator = 0x00000000000000000000000000000000
- State = 0x7266577a756e4e7b2983cf8ffc74c0c2
- Finished request 82.
- Going to the next request
- Waking up in 3.6 seconds.
- rad_recv: Access-Request packet from host 10.53.0.120 port 37861, id=146, length=374
- User-Name = "expuser@hotcity.lu"
- NAS-IP-Address = 172.16.70.21
- NAS-Port = 108
- Framed-MTU = 1400
- Called-Station-Id = "20:b3:99:6c:74:c3"
- Calling-Station-Id = "74:e1:b6:87:66:df"
- NAS-Port-Type = Wireless-802.11
- NAS-Identifier = "HC_SECURE_VNS"
- Service-Type = Framed-User
- Siemens-AP-Serial = "12461237905C0000"
- Siemens-AP-Name = "HCSA_AP01"
- Siemens-VNS-Name = "HC_SECURE_VNS"
- Siemens-SSID = "HOTCITY_Secure"
- Siemens-BSS-MAC = "20:b3:99:6c:74:c3"
- Siemens-Policy-Name = "POST_EAP_POLICY"
- Siemens-Topology-Name = "POST_EAP_USERS"
- EAP-Message = 0x0208002b190017030100205b399352bcead68483457aec14f11d90864726a833b2b2d80dc1267f7186221a
- State = 0x7266577a756e4e7b2983cf8ffc74c0c2
- Message-Authenticator = 0x312677e03cdda442e43050df9827b2be
- # Executing section authorize from file /etc/freeradius/sites-enabled/default
- +- entering group authorize {...}
- ++[preprocess] returns ok
- ++[chap] returns noop
- ++[mschap] returns noop
- ++[digest] returns noop
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ )
- ? Evaluating (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/) -> FALSE
- ++? if (request:User-Name =~ /^6(2|6|9)1[0-9]{6}$/ ) -> FALSE
- ++? elsif (request:Realm == NULL )
- (Attribute request:Realm was not found)
- ? Evaluating (request:Realm == NULL ) -> FALSE
- ++? elsif (request:Realm == NULL ) -> FALSE
- [eap] EAP packet type response id 8 length 43
- [eap] Continuing tunnel setup.
- ++[eap] returns ok
- Found Auth-Type = EAP
- # Executing group from file /etc/freeradius/sites-enabled/default
- +- entering group authenticate {...}
- [eap] Request found, released from the list
- [eap] EAP/peap
- [eap] processing type peap
- [peap] processing EAP-TLS
- [peap] eaptls_verify returned 7
- [peap] Done initial handshake
- [peap] eaptls_process returned 7
- [peap] EAPTLS_OK
- [peap] Session established. Decoding tunneled attributes.
- [peap] Peap state send tlv success
- [peap] Received EAP-TLV response.
- [peap] Success
- [eap] Freeing handler
- ++[eap] returns ok
- # Executing section post-auth from file /etc/freeradius/sites-enabled/default
- +- entering group post-auth {...}
- ++[exec] returns noop
- Sending Access-Accept of id 146 to 10.53.0.120 port 37861
- MS-MPPE-Recv-Key = 0x323d1b5ce6fdf64d9c9c20ab35f2ee6ee8b4ef9464393808eae5efe36d9245a1
- MS-MPPE-Send-Key = 0xab0cc48caf65fa8f5ad74a4778477fe2b337123866a9c49395545812be4cf962
- EAP-Message = 0x03080004
- Message-Authenticator = 0x00000000000000000000000000000000
- User-Name = "expuser@hotcity.lu"
- Finished request 83.
- Going to the next request
- Waking up in 3.6 seconds.
- rad_recv: Accounting-Request packet from host 10.53.0.120 port 54554, id=0, length=395
- Acct-Session-Id = "537eea98003d"
- NAS-Port = 108
- User-Name = "expuser@hotcity.lu"
- Filter-Id = "POST_EAP_POLICY"
- Acct-Interim-Interval = 1800
- Session-Timeout = 0
- Acct-Status-Type = Interim-Update
- Acct-Delay-Time = 1
- Acct-Authentic = RADIUS
- Framed-IP-Address = 10.30.118.192
- Connect-Info = "802.11b/g"
- NAS-Port-Type = Wireless-802.11
- Called-Station-Id = "20:B3:99:6C:74:C3"
- Calling-Station-Id = "74:E1:B6:87:66:DF"
- NAS-IP-Address = 172.16.70.21
- NAS-Identifier = "HC_SECURE_VNS"
- Siemens-AP-Serial = "12461237905C0000"
- Siemens-AP-Name = "HCSA_AP01"
- Siemens-BSS-MAC = "20:B3:99:6C:74:C3"
- Siemens-VNS-Name = "HC_SECURE_VNS"
- Siemens-SSID = "HOTCITY_Secure"
- Siemens-Policy-Name = "POST_EAP_POLICY"
- Siemens-Topology-Name = "POST_EAP_USERS"
- Siemens-Ingress-RC-Name = "n/a"
- Siemens-Egress-RC-Name = "n/a"
- Acct-Session-Time = 2
- Acct-Output-Packets = 0
- Acct-Input-Packets = 0
- Acct-Output-Octets = 0
- Acct-Input-Octets = 0
- # Executing section preacct from file /etc/freeradius/sites-enabled/default
- +- entering group preacct {...}
- ++[preprocess] returns ok
- [acct_unique] Hashing 'NAS-Port = 108,Client-IP-Address = 10.53.0.120,NAS-IP-Address = 172.16.70.21,Acct-Session-Id = "537eea98003d",User-Name = "expuser@hotcity.lu"'
- [acct_unique] Acct-Unique-Session-ID = "45f5660ca83bdef3".
- ++[acct_unique] returns ok
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++[files] returns noop
- # Executing section accounting from file /etc/freeradius/sites-enabled/default
- +- entering group accounting {...}
- [detail] expand: %{Packet-Src-IP-Address} -> 10.53.0.120
- [detail] expand: /var/log/freeradius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d -> /var/log/freeradius/radacct/10.53.0.120/detail-20140523
- [detail] /var/log/freeradius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d expands to /var/log/freeradius/radacct/10.53.0.120/detail-20140523
- [detail] expand: %t -> Fri May 23 08:28:23 2014
- ++[detail] returns ok
- ++[unix] returns noop
- [radutmp] expand: /var/log/freeradius/radutmp -> /var/log/freeradius/radutmp
- [radutmp] expand: %{User-Name} -> expuser@hotcity.lu
- ++[radutmp] returns ok
- ++[exec] returns noop
- [attr_filter.accounting_response] expand: %{User-Name} -> expuser@hotcity.lu
- attr_filter: Matched entry DEFAULT at line 12
- ++[attr_filter.accounting_response] returns updated
- Sending Accounting-Response of id 0 to 10.53.0.120 port 54554
- Finished request 84.
- Cleaning up request 84 ID 0 with timestamp +775
- Going to the next request
- Waking up in 2.4 seconds.
- rad_recv: Accounting-Request packet from host 10.53.0.120 port 54554, id=0, length=395
- Acct-Session-Id = "537eea98003d"
- NAS-Port = 108
- User-Name = "expuser@hotcity.lu"
- Filter-Id = "POST_EAP_POLICY"
- Acct-Interim-Interval = 1800
- Session-Timeout = 0
- Acct-Status-Type = Interim-Update
- Acct-Delay-Time = 3
- Acct-Authentic = RADIUS
- Framed-IP-Address = 10.135.0.105
- Connect-Info = "802.11b/g"
- NAS-Port-Type = Wireless-802.11
- Called-Station-Id = "20:B3:99:6C:74:C3"
- Calling-Station-Id = "74:E1:B6:87:66:DF"
- NAS-IP-Address = 172.16.70.21
- NAS-Identifier = "HC_SECURE_VNS"
- Siemens-AP-Serial = "12461237905C0000"
- Siemens-AP-Name = "HCSA_AP01"
- Siemens-BSS-MAC = "20:B3:99:6C:74:C3"
- Siemens-VNS-Name = "HC_SECURE_VNS"
- Siemens-SSID = "HOTCITY_Secure"
- Siemens-Policy-Name = "POST_EAP_POLICY"
- Siemens-Topology-Name = "POST_EAP_USERS"
- Siemens-Ingress-RC-Name = "n/a"
- Siemens-Egress-RC-Name = "n/a"
- Acct-Session-Time = 4
- Acct-Output-Packets = 0
- Acct-Input-Packets = 0
- Acct-Output-Octets = 0
- Acct-Input-Octets = 0
- # Executing section preacct from file /etc/freeradius/sites-enabled/default
- +- entering group preacct {...}
- ++[preprocess] returns ok
- [acct_unique] Hashing 'NAS-Port = 108,Client-IP-Address = 10.53.0.120,NAS-IP-Address = 172.16.70.21,Acct-Session-Id = "537eea98003d",User-Name = "expuser@hotcity.lu"'
- [acct_unique] Acct-Unique-Session-ID = "45f5660ca83bdef3".
- ++[acct_unique] returns ok
- [suffix] Looking up realm "hotcity.lu" for User-Name = "expuser@hotcity.lu"
- [suffix] No such realm "hotcity.lu"
- ++[suffix] returns noop
- ++[files] returns noop
- # Executing section accounting from file /etc/freeradius/sites-enabled/default
- +- entering group accounting {...}
- [detail] expand: %{Packet-Src-IP-Address} -> 10.53.0.120
- [detail] expand: /var/log/freeradius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d -> /var/log/freeradius/radacct/10.53.0.120/detail-20140523
- [detail] /var/log/freeradius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d expands to /var/log/freeradius/radacct/10.53.0.120/detail-20140523
- [detail] expand: %t -> Fri May 23 08:28:25 2014
- ++[detail] returns ok
- ++[unix] returns noop
- [radutmp] expand: /var/log/freeradius/radutmp -> /var/log/freeradius/radutmp
- [radutmp] expand: %{User-Name} -> expuser@hotcity.lu
- ++[radutmp] returns ok
- ++[exec] returns noop
- [attr_filter.accounting_response] expand: %{User-Name} -> expuser@hotcity.lu
- attr_filter: Matched entry DEFAULT at line 12
- ++[attr_filter.accounting_response] returns updated
- Sending Accounting-Response of id 0 to 10.53.0.120 port 54554
- Finished request 85.
- Cleaning up request 85 ID 0 with timestamp +777
- Going to the next request
- Waking up in 0.4 seconds.
- Cleaning up request 65 ID 107 with timestamp +772
- Cleaning up request 66 ID 193 with timestamp +772
- Cleaning up request 67 ID 254 with timestamp +773
- Cleaning up request 68 ID 201 with timestamp +773
- Cleaning up request 69 ID 51 with timestamp +773
- Cleaning up request 70 ID 156 with timestamp +773
- Cleaning up request 71 ID 126 with timestamp +773
- Cleaning up request 72 ID 205 with timestamp +773
- Cleaning up request 73 ID 79 with timestamp +773
- Waking up in 0.6 seconds.
- Cleaning up request 75 ID 21 with timestamp +773
- Cleaning up request 76 ID 132 with timestamp +774
- Cleaning up request 77 ID 30 with timestamp +774
- Waking up in 0.1 seconds.
- Cleaning up request 79 ID 171 with timestamp +774
- Cleaning up request 80 ID 253 with timestamp +774
- Cleaning up request 81 ID 190 with timestamp +774
- Cleaning up request 82 ID 219 with timestamp +774
- Cleaning up request 83 ID 146 with timestamp +774
- Ready to process requests.
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement