[c-nsp] RADIUS - Local Pools in NPE-G1

oboehmer at cisco.com oboehmer at cisco.com
Wed Sep 21 10:50:21 EDT 2005 

This debug looks incomplete, the radius access-accept is missing, and
there are some strange things ( Pick method list 'default' - PASS - PASS
- PASS - PASS ) which shouldn't appear.
But looking at what you sent, there is no ip:addr-pool attribute being
passed within the attribute to tell the router a different pool to use,
so it uses whatever is being configured on the vtemplate..

	oli

RH Lists <mailto:lists at 101.net> wrote on Wednesday, September 21, 2005
4:42 PM:

> Hi, thanks for your swift reply!  It would seem the IOS is slightly
> different - old one was c7200-jk9o3s-mz.123-5a
> 
> New one is c7200-jk9s-mz.123-11 - a difference of o3 and slightly
> newer. 
> 
> 
> 
> Here is the debug info you requested for a connection that should
> have been statically assigned 209.240.42.68 - it ended up in the
> default, res-dsl. I 
> can see the ip address being sent - but it doesn't accept.
> 
> 
> Sep 21 11:30:26.577: AAA/BIND(0000154D): Bind i/f
> Sep 21 11:30:26.581: AAA/BIND(0000154D): Bind i/f Virtual-Template1
> Sep 21 11:30:26.645: AAA/AUTHEN/PPP (0000154D): Pick method list
> 'default' 
> Sep 21 11:30:26.645: RADIUS/ENCODE(0000154D):Orig. component type =
> VPDN 
> Sep 21 11:30:26.645: RADIUS(0000154D): Storing nasport 1216 in rad_db
> Sep 21 11:30:26.645: RADIUS(0000154D): Config NAS IP: 209.240.47.253
> Sep 21 11:30:26.645: RADIUS/ENCODE(0000154D): acct_session_id: 7320
> Sep 21 11:30:26.645: RADIUS(0000154D): sending
> Sep 21 11:30:26.645: RADIUS(0000154D): Send Access-Request to
> 207.2.99.230:1812 id 1645/49, len 119
> Sep 21 11:30:26.645: RADIUS:  authenticator CF 97 00 35 9E DF 6C 5E -
> D9 25 19 17 75 08 97 E2
> Sep 21 11:30:26.645: RADIUS:  Framed-Protocol     [7]   6   PPP
> [1]
> Sep 21 11:30:26.645: RADIUS:  User-Name           [1]   22
> "rhdsl512 at transact.bm"
> Sep 21 11:30:26.645: RADIUS:  User-Password       [2]   18  *
> Sep 21 11:30:26.645: RADIUS:  NAS-Port-Type       [61]  6   Virtual
> [5]
> Sep 21 11:30:26.645: RADIUS:  NAS-Port            [5]   6   1216
> Sep 21 11:30:26.645: RADIUS:  NAS-Port-Id         [87]  18
> "Uniq-Sess-ID1216"
> Sep 21 11:30:26.645: RADIUS:  Connect-Info        [77]  11 
> "155520000" 
> Sep 21 11:30:26.645: RADIUS:  Service-Type        [6]   6   Framed
> [2]
> Sep 21 11:30:26.645: RADIUS:  NAS-IP-Address      [4]   6  
> 209.240.47.253 
> Sep 21 11:30:26.649: RADIUS: Received from id 1645/49
> 207.2.99.230:1812, Access-Accept, len 26
> Sep 21 11:30:26.649: RADIUS:  authenticator 4B A1 03 6E 95 82 E1 B2 -
> 76 C6 48 AC 08 C3 B4 A4
> Sep 21 11:30:26.649: RADIUS:  Framed-IP-Address   [8]   6  
> 209.240.42.68 
> Sep 21 11:30:26.649: RADIUS(0000154D): Received from id 1645/49
> Sep 21 11:30:26.649: ppp1216 PPP/AAA: Check Attr: addr
> Sep 21 11:30:26.669: AAA/BIND(0000154D): Bind i/f Virtual-Access31.4
> Sep 21 11:30:26.673: AAA/AUTHOR (0x154D): Pick method list 'default'
> Sep 21 11:30:26.673: AAA/AUTHOR (0x154D): Pick method list 'default'
> - PASS - PASS - PASS - PASS
> Sep 21 11:30:26.673: Vi31.4 PPP/AAA: Check Attr: Framed-Protocol
> Sep 21 11:30:26.673: Vi31.4 PPP/AAA: Check Attr: username
> Sep 21 11:30:26.673: Vi31.4 AAA/AUTHOR/FSM: We can start LCP
> Sep 21 11:30:26.673: Vi31.4 PPP/AAA: Check Attr: Framed-Protocol
> Sep 21 11:30:26.673: Vi31.4 PPP/AAA: Check Attr: username
> Sep 21 11:30:26.673: Vi31.4 AAA/AUTHOR/FSM: We can start IPCP
> Sep 21 11:30:26.673: Vi31.4 AAA/AUTHOR/LCP: Process Author
> Sep 21 11:30:26.673: Vi31.4 AAA/AUTHOR/IPCP: Already authorized
> Sep 21 11:30:26.673: Vi31.4 AAA/AUTHOR/FSM: We can start IPCP
> Sep 21 11:30:26.693: Vi31.4 AAA/AUTHOR/IPCP: Start.  Her address
> 0.0.0.0, we want 0.0.0.0
> Sep 21 11:30:26.693: Vi31.4 AAA/AUTHOR/IPCP: Authorization succeeded
> Sep 21 11:30:26.693: Vi31.4 AAA/AUTHOR/IPCP: Done.  Her address
> 0.0.0.0, we want 0.0.0.0
> Sep 21 11:30:26.693: Vi31.4 AAA/AUTHOR/IPCP: no author-info for
> primary dns 
> Sep 21 11:30:26.693: Vi31.4 AAA/AUTHOR/IPCP: no author-info for
> seconday dns Sep 21 11:30:26.713: Vi31.4 AAA/AUTHOR/IPCP: no
> author-info for primary dns 
> Sep 21 11:30:26.713: Vi31.4 AAA/AUTHOR/IPCP: no author-info for
> seconday dns Sep 21 11:30:26.717: RADIUS/ENCODE(0000154D):Orig.
> component type = VPDN 
> Sep 21 11:30:26.717: RADIUS(0000154D): Using existing nas_port 1216
> Sep 21 11:30:26.717: RADIUS(0000154D): Config NAS IP: 209.240.47.253
> Sep 21 11:30:26.725: RADIUS: Received from id 1646/248
> 209.240.43.182:1813, Accounting-response, len 20
> 
> 
> ---
> Checked for viruses by Transact Bermuda

More information about the cisco-nsp mailing list