Hi,<div><br></div><div>First of all - I've posted this to both the NAS en NSP list since it touches on both I guess.</div><div><br></div><div><div class="gmail_quote"><div>We have an old setup that authenticates ISDN dial-in users and puts them in a Cisco VRF depending on which user authenticates.</div>
<div>However this was all build about eight years ago using both home grown radius servers and L2F as the tunnel protocol. I've been</div><div>asked to migrate this setup to a new location which needs to be running before we can dismantle the old setup. I've trying to do</div>
<div>away with all of the homegrown bits and make it a standard solution using L2TP as the tunnel protocol.</div><div><br></div><div>A quick overview of the setup which I'm using to test with:</div><div>Cisco 180x as dial-in router</div>
<div>Cisco AS5350 (NAS/LAC terminating the ISDN call) running IOS c5350-jk9s-mz.124-15.T9.bin</div>
<div>Cisco 7200 (VHG/PE/LNS terminating the VPDN tunnel and ultimately the PPP session into an MPLS VPN) running IOS c7200-jk9s-mz.123-20.bin</div><div>Freeradius using MySQL as an backend.</div><div>
<br></div><div>I manage to get the call to dial-in, the NAS/LAC to setup the VPDN tunnel and the VHG/LNS to send the radius request to terminate the PPP</div><div>session. I actually see that the virtual-template gets cloned to a virtual-access interface - however after a few sessions the connection</div>
<div>drops and if I issue a "show run" on the virtual-access interface it does not seem to have any config on it while the session is up.</div><div><br></div><div>I've included the output of a debug of both the VHG/LNS as well as of the radius server at the end of this mail. I've also included the running</div>
<div>configuration of the AS5350 and 7200 incase I did something wrong there. I realize this makes for a rather large email - my apologies.</div><div><br></div><div>I guess the interesting bit so far from the debug is this section:</div>
<div><div>Aug 12 16:15:43.924 CEST: %LINEPROTO-5-UPDOWN: Line protocol on Interface Virtual-Access2, changed state to up</div><div>Aug 12 16:15:52.868 CEST: Vi2 CHAP: I CHALLENGE id 86 len 41 from "<a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a>"</div>
<div>Aug 12 16:15:52.868 CEST: RADIUS/ENCODE(0000003C): sendauth, failing over</div><div>Aug 12 16:15:52.868 CEST: RADIUS/ENCODE(0000003C): send packet; BEGIN</div><div>Aug 12 16:15:52.868 CEST: Vi2 CHAP: Unable to authenticate for peer</div>
<div>Aug 12 16:15:52.868 CEST: Vi2 PPP: Sending Acct Event[Down] id[3C]</div><div>Aug 12 16:15:52.868 CEST: Vi2 PPP: Phase is TERMINATING</div></div><div><br></div><div><div>I hope someone can tell me what it is that I'm doing wrong. If extra debug of information is needed please let me know - I'll be happy to supply this.</div>
</div><div>Thanks a lot for taking the time to have a look.</div><div><br></div><div> - Jasper</div><div><br></div><div>------------</div><div><br></div><div>Debug VHG:</div><div><div>Aug 12 16:15:42.916 CEST: ppp55 PPP: Phase is ESTABLISHING</div>
<div>Aug 12 16:15:42.916 CEST: ppp55 PPP: Send Message[Dynamic Bind Response]</div><div>Aug 12 16:15:42.916 CEST: ppp55 LCP: I FORCED rcvd CONFACK len 30</div><div>Aug 12 16:15:42.916 CEST: ppp55 LCP: AuthProto CHAP (0x0305C22305)</div>
<div>Aug 12 16:15:42.916 CEST: ppp55 LCP: MagicNumber 0x0D06A846 (0x05060D06A846)</div><div>Aug 12 16:15:42.916 CEST: ppp55 LCP: MRRU 1524 (0x110405F4)</div><div>Aug 12 16:15:42.916 CEST: ppp55 LCP: EndpointDisc 1 asd-tc3-ap01 (0x130F016173642D7463332D61703031)</div>
<div>Aug 12 16:15:42.916 CEST: ppp55 LCP: I FORCED sent CONFACK len 38</div><div>Aug 12 16:15:42.916 CEST: ppp55 LCP: AuthProto CHAP (0x0305C22305)</div><div>Aug 12 16:15:42.916 CEST: ppp55 LCP: MagicNumber 0x9A996122 (0x05069A996122)</div>
<div>Aug 12 16:15:42.916 CEST: ppp55 LCP: MRRU 1500 (0x110405DC)</div><div>Aug 12 16:15:42.916 CEST: ppp55 LCP: EndpointDisc 1 <a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a></div><div>
Aug 12 16:15:42.916 CEST: ppp55 LCP: (0x131701746573742D6B6C616E74406261)</div>
<div>Aug 12 16:15:42.916 CEST: ppp55 LCP: (0x636B75702E6E6C)</div><div>Aug 12 16:15:42.916 CEST: ppp55 PPP: Phase is FORWARDING, Attempting Forward</div><div>Aug 12 16:15:42.916 CEST: ppp55 PPP SSS: Receive SSS-Mgr Connect-Local</div>
<div>Aug 12 16:15:42.916 CEST: ppp55 PPP: Phase is AUTHENTICATING, Unauthenticated User</div><div>Aug 12 16:15:42.916 CEST: RADIUS/ENCODE(0000003C):Orig. component type = VPDN</div><div>Aug 12 16:15:42.916 CEST: RADIUS: AAA Unsupported Attr: interface [153] 14 </div>
<div>Aug 12 16:15:42.916 CEST: RADIUS: 55 6E 69 71 2D 53 65 73 73 2D 49 44 [Uniq-Sess-ID]</div><div>Aug 12 16:15:42.916 CEST: RADIUS(0000003C): Storing nasport 55 in rad_db</div><div>Aug 12 16:15:42.916 CEST: RADIUS(0000003C): Config NAS IP: 195.18.85.3</div>
<div>Aug 12 16:15:42.916 CEST: RADIUS/ENCODE(0000003C): acct_session_id: 60</div><div>Aug 12 16:15:42.916 CEST: RADIUS(0000003C): sending</div><div>Aug 12 16:15:42.916 CEST: RADIUS(0000003C): Send Access-Request to <a href="http://195.18.104.132:1812" target="_blank">195.18.104.132:1812</a> id 1645/71, len 114</div>
<div>Aug 12 16:15:42.916 CEST: RADIUS: authenticator DD 7C 9E 37 25 71 75 C1 - 3A F2 17 44 A0 BA BF E4</div><div>Aug 12 16:15:42.916 CEST: RADIUS: Framed-Protocol [7] 6 PPP [1]</div><div>Aug 12 16:15:42.916 CEST: RADIUS: User-Name [1] 22 "<a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a>"</div>
<div>Aug 12 16:15:42.916 CEST: RADIUS: CHAP-Password [3] 19 *</div><div>Aug 12 16:15:42.916 CEST: RADIUS: NAS-Port-Type [61] 6 Virtual [5]</div><div>Aug 12 16:15:42.916 CEST: RADIUS: NAS-Port [5] 6 55 </div>
<div>Aug 12 16:15:42.916 CEST: RADIUS: Calling-Station-Id [31] 12 "0365465531"</div><div>Aug 12 16:15:42.916 CEST: RADIUS: Called-Station-Id [30] 11 "207300300"</div><div>Aug 12 16:15:42.916 CEST: RADIUS: Service-Type [6] 6 Framed [2]</div>
<div>Aug 12 16:15:42.916 CEST: RADIUS: NAS-IP-Address [4] 6 195.18.85.3 </div><div>Aug 12 16:15:42.920 CEST: RADIUS: Received from id 1645/71 <a href="http://195.18.104.132:1812" target="_blank">195.18.104.132:1812</a>, Access-Accept, len 150</div>
<div>Aug 12 16:15:42.920 CEST: RADIUS: authenticator 4B 16 16 8C 36 79 DB 45 - 61 5E D1 5D 34 51 1A 0E</div><div>Aug 12 16:15:42.920 CEST: RADIUS: Service-Type [6] 6 Framed [2]</div><div>Aug 12 16:15:42.920 CEST: RADIUS: Framed-Protocol [7] 6 PPP [1]</div>
<div>Aug 12 16:15:42.920 CEST: RADIUS: Vendor, Cisco [26] 57 </div><div>Aug 12 16:15:42.920 CEST: RADIUS: Cisco AVpair [1] 51 "lcp:interface-config=ip vrf forwarding test-klant"</div><div>Aug 12 16:15:42.920 CEST: RADIUS: Vendor, Cisco [26] 55 </div>
<div>Aug 12 16:15:42.920 CEST: RADIUS: Cisco AVpair [1] 49 "lcp:interface-config=ip unnumbered Loopback1132"</div><div>Aug 12 16:15:42.920 CEST: RADIUS: Framed-IP-Address [8] 6 192.168.2.1 </div>
<div>Aug 12 16:15:42.920 CEST: RADIUS(0000003C): Received from id 1645/71</div><div>Aug 12 16:15:42.920 CEST: ppp55 PPP: Phase is FORWARDING, Attempting Forward</div><div>Aug 12 16:15:42.920 CEST: ppp55 PPP: Send Message[Connect Local]</div>
<div>Aug 12 16:15:42.920 CEST: Vi2 PPP: Phase is DOWN, Setup</div><div>Aug 12 16:15:42.920 CEST: ppp55 PPP: Bind to [Virtual-Access2]</div><div>Aug 12 16:15:42.920 CEST: Vi2 PPP: Send Message[Static Bind Response]</div><div>
Aug 12 16:15:42.924 CEST: %LINK-3-UPDOWN: Interface Virtual-Access2, changed state to up</div><div>Aug 12 16:15:42.924 CEST: Vi2 PPP: Phase is AUTHENTICATING, Authenticated User</div><div>Aug 12 16:15:42.924 CEST: Vi2 CHAP: O SUCCESS id 2 len 4</div>
<div>Aug 12 16:15:43.924 CEST: %LINEPROTO-5-UPDOWN: Line protocol on Interface Virtual-Access2, changed state to up</div><div>Aug 12 16:15:52.868 CEST: Vi2 CHAP: I CHALLENGE id 86 len 41 from "<a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a>"</div>
<div>Aug 12 16:15:52.868 CEST: RADIUS/ENCODE(0000003C): sendauth, failing over</div><div>Aug 12 16:15:52.868 CEST: RADIUS/ENCODE(0000003C): send packet; BEGIN</div><div>Aug 12 16:15:52.868 CEST: Vi2 CHAP: Unable to authenticate for peer</div>
<div>Aug 12 16:15:52.868 CEST: Vi2 PPP: Sending Acct Event[Down] id[3C]</div><div>Aug 12 16:15:52.868 CEST: Vi2 PPP: Phase is TERMINATING</div><div>Aug 12 16:15:52.868 CEST: Vi2 LCP: O TERMREQ [Open] id 1 len 4</div><div>
Aug 12 16:15:52.888 CEST: Vi2 LCP: I TERMACK [TERMsent] id 1 len 4</div><div>Aug 12 16:15:52.888 CEST: Vi2 LCP: State is Closed</div><div>Aug 12 16:15:52.888 CEST: Vi2 PPP: Phase is DOWN</div><div>Aug 12 16:15:52.888 CEST: Vi2 PPP: Send Message[Disconnect]</div>
<div>Aug 12 16:15:52.892 CEST: %LINK-3-UPDOWN: Interface Virtual-Access2, changed state to down</div><div>Aug 12 16:15:53.868 CEST: %LINEPROTO-5-UPDOWN: Line protocol on Interface Virtual-Access2, changed state to down</div>
</div><div><br></div><div>------------------------</div><div><br></div><div>Debug radius:</div><div><div>rad_recv: Access-Request packet from host <a href="http://195.18.85.193:1645" target="_blank">195.18.85.193:1645</a>, id=42, length=122</div>
<div> User-Name = "<a href="http://backup.nl" target="_blank">backup.nl</a>"</div><div> User-Password = "cisco"</div><div> NAS-Port = 20326</div><div> NAS-Port-Id = "Serial3/3:26"</div>
<div> NAS-Port-Type = ISDN</div><div> Calling-Station-Id = "0365465531"</div><div> Called-Station-Id = "207300300"</div><div> Connect-Info = "64000 HDLC"</div><div>
Service-Type = Dialout-Framed-User</div><div> NAS-IP-Address = 195.18.85.193</div><div> Processing the authorize section of radiusd.conf</div><div>modcall: entering group authorize for request 0</div><div>
modcall[authorize]: module "preprocess" returns ok for request 0</div><div>radius_xlat: '/var/log/radius/radacct/auth-detail-20100812'</div><div>rlm_detail: /var/log/radius/radacct/auth-detail-%Y%m%d expands to /var/log/radius/radacct/auth-detail-20100812</div>
<div> modcall[authorize]: module "auth_log" returns ok for request 0</div><div> modcall[authorize]: module "chap" returns noop for request 0</div><div>radius_xlat: '<a href="http://backup.nl" target="_blank">backup.nl</a>'</div>
<div>rlm_sql (sql): sql_set_user escaped user --> '<a href="http://backup.nl" target="_blank">backup.nl</a>'</div><div>radius_xlat: 'SELECT id, UserName, Attribute, Value, op FROM radcheck WHERE Username = '<a href="http://backup.nl" target="_blank">backup.nl</a>' ORDER BY id'</div>
<div>rlm_sql (sql): Reserving sql socket id: 4</div><div>radius_xlat: 'SELECT <a href="http://radgroupcheck.id" target="_blank">radgroupcheck.id</a>,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupcheck.Value,radgroupcheck.op FROM radgroupcheck,usergroup WHERE usergroup.Username = '<a href="http://backup.nl" target="_blank">backup.nl</a>' AND usergroup.GroupName = radgroupcheck.GroupName ORDER BY <a href="http://radgroupcheck.id" target="_blank">radgroupcheck.id</a>'</div>
<div>radius_xlat: 'SELECT id, UserName, Attribute, Value, op FROM radreply WHERE Username = '<a href="http://backup.nl" target="_blank">backup.nl</a>' ORDER BY id'</div><div>
radius_xlat: 'SELECT <a href="http://radgroupreply.id" target="_blank">radgroupreply.id</a>,radgroupreply.GroupName,radgroupreply.Attribute,radgroupreply.Value,radgroupreply.op FROM radgroupreply,usergroup WHERE usergroup.Username = '<a href="http://backup.nl" target="_blank">backup.nl</a>' AND usergroup.GroupName = radgroupreply.GroupName ORDER BY <a href="http://radgroupreply.id" target="_blank">radgroupreply.id</a>'</div>
<div>rlm_sql (sql): Released sql socket id: 4</div><div> modcall[authorize]: module "sql" returns ok for request 0</div><div>modcall: leaving group authorize (returns ok) for request 0</div><div>auth: type Local</div>
<div>auth: user supplied User-Password matches local User-Password</div><div> Processing the post-auth section of radiusd.conf</div><div>modcall: entering group post-auth for request 0</div><div>radius_xlat: '/var/log/radius/radacct/reply-detail-20100812'</div>
<div>rlm_detail: /var/log/radius/radacct/reply-detail-%Y%m%d expands to /var/log/radius/radacct/reply-detail-20100812</div><div> modcall[post-auth]: module "reply_log" returns ok for request 0</div><div>modcall: leaving group post-auth (returns ok) for request 0</div>
<div>Sending Access-Accept of id 42 to 195.18.85.193 port 1645</div><div> Cisco-AVPair += "vpdn:tunnel-id=AS5350-All"</div><div> Cisco-AVPair += "vpdn:ip-addresses=195.18.85.3"</div><div>
Cisco-AVPair += "vpdn:tunnel-type=l2tp"</div><div> Cisco-AVPair += "vpdn:l2tp-tunnel-password=cisco"</div><div>Finished request 0</div><div>Going to the next request</div><div>--- Walking the entire request list ---</div>
<div>Waking up in 6 seconds...</div><div>rad_recv: Access-Request packet from host <a href="http://195.18.85.3:1645" target="_blank">195.18.85.3:1645</a>, id=73, length=114</div><div> Framed-Protocol = PPP</div><div>
User-Name = "<a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a>"</div>
<div> CHAP-Password = 0x02011f8ce0ed5275d50c7a786cc7e47c6b</div><div> NAS-Port-Type = Virtual</div><div> NAS-Port = 57</div><div> Calling-Station-Id = "0365465531"</div><div> Called-Station-Id = "207300300"</div>
<div> Service-Type = Framed-User</div><div> NAS-IP-Address = 195.18.85.3</div><div> Processing the authorize section of radiusd.conf</div><div>modcall: entering group authorize for request 1</div><div> modcall[authorize]: module "preprocess" returns ok for request 1</div>
<div>radius_xlat: '/var/log/radius/radacct/auth-detail-20100812'</div><div>rlm_detail: /var/log/radius/radacct/auth-detail-%Y%m%d expands to /var/log/radius/radacct/auth-detail-20100812</div><div> modcall[authorize]: module "auth_log" returns ok for request 1</div>
<div> rlm_chap: Setting 'Auth-Type := CHAP'</div><div> modcall[authorize]: module "chap" returns ok for request 1</div><div>radius_xlat: '<a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a>'</div>
<div>rlm_sql (sql): sql_set_user escaped user --> '<a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a>'</div><div>radius_xlat: 'SELECT id, UserName, Attribute, Value, op FROM radcheck WHERE Username = '<a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a>' ORDER BY id'</div>
<div>rlm_sql (sql): Reserving sql socket id: 3</div><div>radius_xlat: 'SELECT <a href="http://radgroupcheck.id" target="_blank">radgroupcheck.id</a>,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupcheck.Value,radgroupcheck.op FROM radgroupcheck,usergroup WHERE usergroup.Username = '<a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a>' AND usergroup.GroupName = radgroupcheck.GroupName ORDER BY <a href="http://radgroupcheck.id" target="_blank">radgroupcheck.id</a>'</div>
<div>radius_xlat: 'SELECT id, UserName, Attribute, Value, op FROM radreply WHERE Username = '<a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a>' ORDER BY id'</div>
<div>radius_xlat: 'SELECT <a href="http://radgroupreply.id" target="_blank">radgroupreply.id</a>,radgroupreply.GroupName,radgroupreply.Attribute,radgroupreply.Value,radgroupreply.op FROM radgroupreply,usergroup WHERE usergroup.Username = '<a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a>' AND usergroup.GroupName = radgroupreply.GroupName ORDER BY <a href="http://radgroupreply.id" target="_blank">radgroupreply.id</a>'</div>
<div>rlm_sql (sql): Released sql socket id: 3</div><div> modcall[authorize]: module "sql" returns ok for request 1</div><div>modcall: leaving group authorize (returns ok) for request 1</div><div> rad_check_password: Found Auth-Type CHAP</div>
<div>auth: type "CHAP"</div><div> Processing the authenticate section of radiusd.conf</div><div>modcall: entering group CHAP for request 1</div><div> rlm_chap: login attempt by "<a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a>" with CHAP password</div>
<div> rlm_chap: Using clear text password test for user <a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a> authentication.</div><div> rlm_chap: chap user <a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a> authenticated succesfully</div>
<div> modcall[authenticate]: module "chap" returns ok for request 1</div><div>modcall: leaving group CHAP (returns ok) for request 1</div><div> Processing the post-auth section of radiusd.conf</div><div>modcall: entering group post-auth for request 1</div>
<div>radius_xlat: '/var/log/radius/radacct/reply-detail-20100812'</div><div>rlm_detail: /var/log/radius/radacct/reply-detail-%Y%m%d expands to /var/log/radius/radacct/reply-detail-20100812</div><div> modcall[post-auth]: module "reply_log" returns ok for request 1</div>
<div>modcall: leaving group post-auth (returns ok) for request 1</div><div>Sending Access-Accept of id 73 to 195.18.85.3 port 1645</div><div> Service-Type := Framed-User</div><div> Framed-Protocol := PPP</div>
<div> Cisco-AVPair += "lcp:interface-config#1=ip vrf forwarding test-klant"</div><div> Cisco-AVPair += "lcp:interface-config#2=ip vrf forwarding test-klant"</div><div>Finished request 1</div>
<div>Going to the next request</div><div>Waking up in 6 seconds...</div><div>--- Walking the entire request list ---</div><div>Cleaning up request 0 ID 42 with timestamp 4c64044c</div><div>Cleaning up request 1 ID 73 with timestamp 4c64044c</div>
<div>Nothing to do. Sleeping until we see a request.</div><div>rad_recv: Accounting-Request packet from host <a href="http://195.18.85.193:1646" target="_blank">195.18.85.193:1646</a>, id=43, length=263</div><div> Acct-Session-Id = "00000114"</div>
<div> Framed-Protocol = PPP</div><div> Tunnel-Medium-Type:0 = IP</div><div> Tunnel-Client-Endpoint:0 = "195.18.85.193"</div><div> Tunnel-Server-Endpoint:0 = "195.18.85.3"</div>
<div> Tunnel-Type:0 = L2TP</div><div> Acct-Tunnel-Connection = "1057600042"</div><div> Tunnel-Client-Auth-Id:0 = "AS5350-All"</div><div> Tunnel-Server-Auth-Id:0 = "asd-cap-dr03"</div>
<div> User-Name = "<a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a>"</div><div> Acct-Authentic = RADIUS</div><div> Acct-Session-Time = 10</div><div> Acct-Input-Octets = 53</div>
<div> Acct-Output-Octets = 16</div><div> Acct-Input-Packets = 2</div><div> Acct-Output-Packets = 2</div><div> Acct-Terminate-Cause = Host-Request</div><div> Acct-Status-Type = Stop</div>
<div> NAS-Port = 20326</div><div> NAS-Port-Id = "Serial3/3:26"</div><div> NAS-Port-Type = ISDN</div><div> Calling-Station-Id = "0365465531"</div><div> Called-Station-Id = "207300300"</div>
<div> Connect-Info = "64000 HDLC"</div><div> Service-Type = Framed-User</div><div> NAS-IP-Address = 195.18.85.193</div><div> Acct-Delay-Time = 0</div><div> Processing the preacct section of radiusd.conf</div>
<div>modcall: entering group preacct for request 2</div><div> modcall[preacct]: module "preprocess" returns noop for request 2</div><div>rlm_acct_unique: Hashing 'NAS-Port = 20326,Client-IP-Address = 195.18.85.193,NAS-IP-Address = 195.18.85.193,Acct-Session-Id = "00000114",User-Name = "<a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a>"'</div>
<div>rlm_acct_unique: Acct-Unique-Session-ID = "76ea71aaa12d8845".</div><div> modcall[preacct]: module "acct_unique" returns ok for request 2</div><div>modcall: leaving group preacct (returns ok) for request 2</div>
<div> Processing the accounting section of radiusd.conf</div><div>modcall: entering group accounting for request 2</div><div>radius_xlat: '/var/log/radius/radacct/detail-20100812'</div><div>rlm_detail: /var/log/radius/radacct/detail-%Y%m%d expands to /var/log/radius/radacct/detail-20100812</div>
<div> modcall[accounting]: module "detail" returns ok for request 2</div><div> modcall[accounting]: module "unix" returns ok for request 2</div><div>radius_xlat: '/var/log/radius/radutmp'</div>
<div>radius_xlat: '<a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a>'</div><div>rlm_radutmp: Logout for NAS asd-tc3-ap01 port 20326, but no Login record</div><div> modcall[accounting]: module "radutmp" returns ok for request 2</div>
<div>radius_xlat: '<a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a>'</div><div>rlm_sql (sql): sql_set_user escaped user --> '<a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a>'</div>
<div>radius_xlat: 'UPDATE radacct SET AcctStopTime = '2010-08-12 16:25:26', AcctSessionTime = '10', AcctInputOctets = '53', AcctOutputOctets = '16', AcctTerminateCause = 'Host-Request', AcctStopDelay = '0', ConnectInfo_stop = '64000 HDLC' WHERE AcctSessionId = '00000114' AND UserName = '<a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a>' AND NASIPAddress = '195.18.85.193''</div>
<div>rlm_sql (sql): Reserving sql socket id: 2</div><div>radius_xlat: 'INSERT into radacct (AcctSessionId, AcctUniqueId, UserName, Realm, NASIPAddress, NASPortId, NASPortType, AcctStartTime, AcctStopTime, AcctSessionTime, AcctAuthentic, ConnectInfo_start, ConnectInfo_stop, AcctInputOctets, AcctOutputOctets, CalledStationId, CallingStationId, AcctTerminateCause, ServiceType, FramedProtocol, FramedIPAddress, AcctStartDelay, AcctStopDelay) values('00000114', '76ea71aaa12d8845', '<a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a>', '', '195.18.85.193', '20326', 'ISDN', DATE_SUB('2010-08-12 16:25:26', INTERVAL (10 + 0) SECOND), '2010-08-12 16:25:26', '10', 'RADIUS', '', '64000 HDLC', '53', '16', '207300300', '0365465531', 'Host-Request', 'Framed-User', 'PPP', '', '0', '0')'</div>
<div>rlm_sql (sql): Released sql socket id: 2</div><div> modcall[accounting]: module "sql" returns ok for request 2</div><div>modcall: leaving group accounting (returns ok) for request 2</div><div>Sending Accounting-Response of id 43 to 195.18.85.193 port 1646</div>
<div>Finished request 2</div><div>Going to the next request</div><div>--- Walking the entire request list ---</div><div>Waking up in 6 seconds...</div><div>--- Walking the entire request list ---</div><div>Cleaning up request 2 ID 43 with timestamp 4c640456</div>
<div>Nothing to do. Sleeping until we see a request.</div></div><div><br></div><div>-------------------</div><div><br></div><div>Database entries MySQL:</div><div><div>mysql> select * from radcheck where UserName = '<a href="http://backup.nl" target="_blank">backup.nl</a>';</div>
<div>+------+-----------+-----------+----+-------+</div><div>| id | UserName | Attribute | op | Value |</div><div>+------+-----------+-----------+----+-------+</div><div>| 1445 | <a href="http://backup.nl" target="_blank">backup.nl</a> | Password | == | cisco | </div>
<div>+------+-----------+-----------+----+-------+</div><div>1 row in set (0.00 sec)</div><div><br></div><div><div>mysql> select * from radreply where UserName = '<a href="http://backup.nl" target="_blank">backup.nl</a>';</div>
<div>+------+-----------+--------------+----+---------------------------------+</div><div>| id | UserName | Attribute | op | Value |</div><div>+------+-----------+--------------+----+---------------------------------+</div>
<div>| 2246 | <a href="http://backup.nl" target="_blank">backup.nl</a> | Cisco-AVPair | += | vpdn:tunnel-id=AS5350-All | </div><div>| 2247 | <a href="http://backup.nl" target="_blank">backup.nl</a> | Cisco-AVPair | += | vpdn:ip-addresses=195.18.85.3 | </div>
<div>| 2248 | <a href="http://backup.nl" target="_blank">backup.nl</a> | Cisco-AVPair | += | vpdn:tunnel-type=l2tp | </div><div>| 2249 | <a href="http://backup.nl" target="_blank">backup.nl</a> | Cisco-AVPair | += | vpdn:l2tp-tunnel-password=cisco | </div>
<div>+------+-----------+--------------+----+---------------------------------+</div><div>4 rows in set (0.00 sec)</div></div><div><br></div><div>mysql> select * from radcheck where UserName = '<a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a>';</div>
<div>+------+----------------------+-----------+----+-------+</div><div>| id | UserName | Attribute | op | Value |</div><div>+------+----------------------+-----------+----+-------+</div><div>| 1444 | <a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a> | Password | == | test | </div>
<div>+------+----------------------+-----------+----+-------+</div><div>1 row in set (0.00 sec)</div><div><br></div><div>mysql> select * from radreply where UserName = '<a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a>';</div>
<div>+------+----------------------+-------------------+----+-----------------------------------------------------+</div><div>| id | UserName | Attribute | op | Value |</div>
<div>+------+----------------------+-------------------+----+-----------------------------------------------------+</div><div>| 2231 | <a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a> | Service-Type | := | Framed-User | </div>
<div>| 2250 | <a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a> | Framed-Protocol | := | PPP | </div><div>| 2263 | <a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a> | Cisco-AVPair | += | lcp:interface-config#1=ip vrf forwarding test-klant | </div>
<div>| 2264 | <a href="mailto:test-klant@backup.nl" target="_blank">test-klant@backup.nl</a> | Cisco-AVPair | += | lcp:interface-config#2=ip vrf forwarding test-klant | </div><div>+------+----------------------+-------------------+----+-----------------------------------------------------+</div>
<div>4 rows in set (0.00 sec)</div><div><br></div></div>
</div><br></div>