[c-nsp] RADIUS - Local Pools in NPE-G1
oboehmer at cisco.com
oboehmer at cisco.com
Wed Sep 21 10:50:21 EDT 2005
This debug looks incomplete, the radius access-accept is missing, and
there are some strange things ( Pick method list 'default' - PASS - PASS
- PASS - PASS ) which shouldn't appear.
But looking at what you sent, there is no ip:addr-pool attribute being
passed within the attribute to tell the router a different pool to use,
so it uses whatever is being configured on the vtemplate..
oli
RH Lists <mailto:lists at 101.net> wrote on Wednesday, September 21, 2005
4:42 PM:
> Hi, thanks for your swift reply! It would seem the IOS is slightly
> different - old one was c7200-jk9o3s-mz.123-5a
>
> New one is c7200-jk9s-mz.123-11 - a difference of o3 and slightly
> newer.
>
>
>
> Here is the debug info you requested for a connection that should
> have been statically assigned 209.240.42.68 - it ended up in the
> default, res-dsl. I
> can see the ip address being sent - but it doesn't accept.
>
>
> Sep 21 11:30:26.577: AAA/BIND(0000154D): Bind i/f
> Sep 21 11:30:26.581: AAA/BIND(0000154D): Bind i/f Virtual-Template1
> Sep 21 11:30:26.645: AAA/AUTHEN/PPP (0000154D): Pick method list
> 'default'
> Sep 21 11:30:26.645: RADIUS/ENCODE(0000154D):Orig. component type =
> VPDN
> Sep 21 11:30:26.645: RADIUS(0000154D): Storing nasport 1216 in rad_db
> Sep 21 11:30:26.645: RADIUS(0000154D): Config NAS IP: 209.240.47.253
> Sep 21 11:30:26.645: RADIUS/ENCODE(0000154D): acct_session_id: 7320
> Sep 21 11:30:26.645: RADIUS(0000154D): sending
> Sep 21 11:30:26.645: RADIUS(0000154D): Send Access-Request to
> 207.2.99.230:1812 id 1645/49, len 119
> Sep 21 11:30:26.645: RADIUS: authenticator CF 97 00 35 9E DF 6C 5E -
> D9 25 19 17 75 08 97 E2
> Sep 21 11:30:26.645: RADIUS: Framed-Protocol [7] 6 PPP
> [1]
> Sep 21 11:30:26.645: RADIUS: User-Name [1] 22
> "rhdsl512 at transact.bm"
> Sep 21 11:30:26.645: RADIUS: User-Password [2] 18 *
> Sep 21 11:30:26.645: RADIUS: NAS-Port-Type [61] 6 Virtual
> [5]
> Sep 21 11:30:26.645: RADIUS: NAS-Port [5] 6 1216
> Sep 21 11:30:26.645: RADIUS: NAS-Port-Id [87] 18
> "Uniq-Sess-ID1216"
> Sep 21 11:30:26.645: RADIUS: Connect-Info [77] 11
> "155520000"
> Sep 21 11:30:26.645: RADIUS: Service-Type [6] 6 Framed
> [2]
> Sep 21 11:30:26.645: RADIUS: NAS-IP-Address [4] 6
> 209.240.47.253
> Sep 21 11:30:26.649: RADIUS: Received from id 1645/49
> 207.2.99.230:1812, Access-Accept, len 26
> Sep 21 11:30:26.649: RADIUS: authenticator 4B A1 03 6E 95 82 E1 B2 -
> 76 C6 48 AC 08 C3 B4 A4
> Sep 21 11:30:26.649: RADIUS: Framed-IP-Address [8] 6
> 209.240.42.68
> Sep 21 11:30:26.649: RADIUS(0000154D): Received from id 1645/49
> Sep 21 11:30:26.649: ppp1216 PPP/AAA: Check Attr: addr
> Sep 21 11:30:26.669: AAA/BIND(0000154D): Bind i/f Virtual-Access31.4
> Sep 21 11:30:26.673: AAA/AUTHOR (0x154D): Pick method list 'default'
> Sep 21 11:30:26.673: AAA/AUTHOR (0x154D): Pick method list 'default'
> - PASS - PASS - PASS - PASS
> Sep 21 11:30:26.673: Vi31.4 PPP/AAA: Check Attr: Framed-Protocol
> Sep 21 11:30:26.673: Vi31.4 PPP/AAA: Check Attr: username
> Sep 21 11:30:26.673: Vi31.4 AAA/AUTHOR/FSM: We can start LCP
> Sep 21 11:30:26.673: Vi31.4 PPP/AAA: Check Attr: Framed-Protocol
> Sep 21 11:30:26.673: Vi31.4 PPP/AAA: Check Attr: username
> Sep 21 11:30:26.673: Vi31.4 AAA/AUTHOR/FSM: We can start IPCP
> Sep 21 11:30:26.673: Vi31.4 AAA/AUTHOR/LCP: Process Author
> Sep 21 11:30:26.673: Vi31.4 AAA/AUTHOR/IPCP: Already authorized
> Sep 21 11:30:26.673: Vi31.4 AAA/AUTHOR/FSM: We can start IPCP
> Sep 21 11:30:26.693: Vi31.4 AAA/AUTHOR/IPCP: Start. Her address
> 0.0.0.0, we want 0.0.0.0
> Sep 21 11:30:26.693: Vi31.4 AAA/AUTHOR/IPCP: Authorization succeeded
> Sep 21 11:30:26.693: Vi31.4 AAA/AUTHOR/IPCP: Done. Her address
> 0.0.0.0, we want 0.0.0.0
> Sep 21 11:30:26.693: Vi31.4 AAA/AUTHOR/IPCP: no author-info for
> primary dns
> Sep 21 11:30:26.693: Vi31.4 AAA/AUTHOR/IPCP: no author-info for
> seconday dns Sep 21 11:30:26.713: Vi31.4 AAA/AUTHOR/IPCP: no
> author-info for primary dns
> Sep 21 11:30:26.713: Vi31.4 AAA/AUTHOR/IPCP: no author-info for
> seconday dns Sep 21 11:30:26.717: RADIUS/ENCODE(0000154D):Orig.
> component type = VPDN
> Sep 21 11:30:26.717: RADIUS(0000154D): Using existing nas_port 1216
> Sep 21 11:30:26.717: RADIUS(0000154D): Config NAS IP: 209.240.47.253
> Sep 21 11:30:26.725: RADIUS: Received from id 1646/248
> 209.240.43.182:1813, Accounting-response, len 20
>
>
> ---
> Checked for viruses by Transact Bermuda
More information about the cisco-nsp
mailing list