CHAP FreeRadius and MPD
From: Andrew Karjagin (Andrew.Karjagin_at_newmail.ru)
Date: 12/25/03
- Previous message: Michael Sierchio: "Re: bridge with access on both interfaces"
- Next in thread: Michael Bretterklieber: "Re: CHAP FreeRadius and MPD"
- Reply: Michael Bretterklieber: "Re: CHAP FreeRadius and MPD"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
To: freebsd-net@freebsd.org Date: Thu, 25 Dec 2003 10:20:38 +0300
Hello!
I am install FreeRadius 0.9.3 with mpd 3.15 on FreeBSD 4.9-STABLE. FreeRadius work with MySQL. And I can't setup VPN connection. View archive http://www.freebsd.org/cgi/getmsg.cgi?fetch=484342+498693+/usr/local/www/db/text/2003/freebsd-net/20031116.freebsd-net but it doesn't help me. microsoft dictionary to radius config includes.
This is my mpd.conf:
default:
load pptp0
pptp0:
new -i ng0 pptp0 pptp0
set ipcp ranges 81.89.xx.251/32 81.89.xx.252/32
load pptp_standart
pptp_standart:
set iface disable on-demand
set bundle enable multilink
set link yes acfcomp protocomp
set link no pap chap
set link enable chap
set link keep-alive 60 180
set ipcp yes vjcomp
set ipcp dns 81.89.xx.250 18.89.xy.2
set iface enable proxy-arp
set bundle enable compression
set ccp yes mppc
set ccp yes mpp-e40
set ccp yes mpp-e128
set ccp yes mpp-stateless
set pptp enable incoming
set pptp disable originate
set link mtu 1440
load radius
radius:
set radius server 81.89.xx.xxy testpw 1812 1813
set radius timeout 10
set radius config /etc/radius.conf
set radius retries 3
set bundle enable radius-auth radius-fallback
set bundle enable radius-acct
set ipcp yes radius-ip
And this is my mpd.log:
Dec 25 09:20:47 savvin /kernel: mpd
Dec 25 09:20:47 savvin mpd: mpd: pid 177, version 3.15 (root@savvin.tel.ru 13:53 19-Dec-2003)
Dec 25 09:20:48 savvin mpd: [pptp0] ppp node is "mpd177-pptp0"
Dec 25 09:20:48 savvin mpd: [pptp0] using interface ng0
Dec 25 09:20:48 savvin mpd: mpd: local IP address for PPTP is 0.0.0.0
Dec 25 09:25:44 savvin mpd: mpd: PPTP connection from 81.89.xx.x:1655
Dec 25 09:25:44 savvin mpd: pptp0: attached to connection with 81.89.xx.x:1655
Dec 25 09:25:44 savvin mpd: [pptp0] IFACE: Open event
Dec 25 09:25:44 savvin mpd: [pptp0] IPCP: Open event
Dec 25 09:25:44 savvin mpd: [pptp0] IPCP: state change Initial --> Starting
Dec 25 09:25:44 savvin mpd: [pptp0] IPCP: LayerStart
Dec 25 09:25:44 savvin mpd: [pptp0] IPCP: Open event
Dec 25 09:25:44 savvin mpd: [pptp0] bundle: OPEN event in state CLOSED
Dec 25 09:25:44 savvin mpd: [pptp0] opening link "pptp0"...
Dec 25 09:25:44 savvin mpd: [pptp0] link: OPEN event
Dec 25 09:25:44 savvin mpd: [pptp0] LCP: Open event
Dec 25 09:25:44 savvin mpd: [pptp0] LCP: state change Initial --> Starting
Dec 25 09:25:44 savvin mpd: [pptp0] LCP: LayerStart
Dec 25 09:25:44 savvin mpd: [pptp0] device: OPEN event in state DOWN
Dec 25 09:25:44 savvin mpd: [pptp0] attaching to peer's outgoing call
Dec 25 09:25:45 savvin mpd: [pptp0] device is now in state OPENING
Dec 25 09:25:45 savvin mpd: [pptp0] device: UP event in state OPENING
Dec 25 09:25:45 savvin mpd: [pptp0] device is now in state UP
Dec 25 09:25:45 savvin mpd: [pptp0] link: UP event
Dec 25 09:25:45 savvin mpd: [pptp0] link: origination is remote
Dec 25 09:25:45 savvin mpd: [pptp0] LCP: Up event
Dec 25 09:25:45 savvin mpd: [pptp0] LCP: state change Starting --> Req-Sent
Dec 25 09:25:45 savvin mpd: [pptp0] LCP: phase shift DEAD --> ESTABLISH
Dec 25 09:25:45 savvin mpd: [pptp0] LCP: SendConfigReq #1
Dec 25 09:25:45 savvin mpd: ACFCOMP
Dec 25 09:25:45 savvin mpd: PROTOCOMP
Dec 25 09:25:45 savvin mpd: MRU 1500
Dec 25 09:25:45 savvin mpd: MAGICNUM 65229a88
Dec 25 09:25:45 savvin mpd: AUTHPROTO CHAP MSOFTv2
Dec 25 09:25:45 savvin mpd: MP MRRU 1600
Dec 25 09:25:45 savvin mpd: MP SHORTSEQ
Dec 25 09:25:45 savvin mpd: ENDPOINTDISC [802.1] 00 c0 26 a2 da 23
Dec 25 09:25:46 savvin mpd: pptp0-0: ignoring SetLinkInfo
Dec 25 09:25:46 savvin mpd: [pptp0] LCP: rec'd Configure Request #0 link 0 (Req-Sent)
Dec 25 09:25:46 savvin mpd: MRU 1400
Dec 25 09:25:46 savvin mpd: MAGICNUM 382c40eb
Dec 25 09:25:46 savvin mpd: PROTOCOMP
Dec 25 09:25:46 savvin mpd: ACFCOMP
Dec 25 09:25:46 savvin mpd: CALLBACK
Dec 25 09:25:46 savvin mpd: Not supported
Dec 25 09:25:46 savvin mpd: [pptp0] LCP: SendConfigRej #0
Dec 25 09:25:46 savvin mpd: CALLBACK
Dec 25 09:25:46 savvin mpd: [pptp0] LCP: rec'd Configure Request #1 link 0 (Req-Sent)
Dec 25 09:25:46 savvin mpd: MRU 1400
Dec 25 09:25:46 savvin mpd: MAGICNUM 382c40eb
Dec 25 09:25:46 savvin mpd: PROTOCOMP
Dec 25 09:25:46 savvin mpd: ACFCOMP
Dec 25 09:25:46 savvin mpd: [pptp0] LCP: SendConfigAck #1
Dec 25 09:25:46 savvin mpd: MRU 1400
Dec 25 09:25:46 savvin mpd: MAGICNUM 382c40eb
Dec 25 09:25:46 savvin mpd: PROTOCOMP
Dec 25 09:25:46 savvin mpd: ACFCOMP
Dec 25 09:25:46 savvin mpd: [pptp0] LCP: state change Req-Sent --> Ack-Sent
Dec 25 09:25:47 savvin mpd: [pptp0] LCP: SendConfigReq #2
Dec 25 09:25:47 savvin mpd: ACFCOMP
Dec 25 09:25:47 savvin mpd: PROTOCOMP
Dec 25 09:25:47 savvin mpd: MRU 1500
Dec 25 09:25:47 savvin mpd: MAGICNUM 65229a88
Dec 25 09:25:47 savvin mpd: AUTHPROTO CHAP MSOFTv2
Dec 25 09:25:47 savvin mpd: MP MRRU 1600
Dec 25 09:25:47 savvin mpd: MP SHORTSEQ
Dec 25 09:25:47 savvin mpd: ENDPOINTDISC [802.1] 00 c0 26 a2 da 23
Dec 25 09:25:47 savvin mpd: [pptp0] LCP: rec'd Configure Reject #2 link 0 (Ack-Sent)
Dec 25 09:25:47 savvin mpd: MP MRRU 1600
Dec 25 09:25:47 savvin mpd: MP SHORTSEQ
Dec 25 09:25:47 savvin mpd: ENDPOINTDISC [802.1] 00 c0 26 a2 da 23
Dec 25 09:25:47 savvin mpd: [pptp0] LCP: SendConfigReq #3
Dec 25 09:25:47 savvin mpd: ACFCOMP
Dec 25 09:25:47 savvin mpd: PROTOCOMP
Dec 25 09:25:47 savvin mpd: MRU 1500
Dec 25 09:25:47 savvin mpd: MAGICNUM 65229a88
Dec 25 09:25:47 savvin mpd: AUTHPROTO CHAP MSOFTv2
Dec 25 09:25:47 savvin mpd: [pptp0] LCP: rec'd Configure Ack #3 link 0 (Ack-Sent)
Dec 25 09:25:47 savvin mpd: ACFCOMP
Dec 25 09:25:47 savvin mpd: PROTOCOMP
Dec 25 09:25:47 savvin mpd: MRU 1500
Dec 25 09:25:47 savvin mpd: MAGICNUM 65229a88
Dec 25 09:25:47 savvin mpd: AUTHPROTO CHAP MSOFTv2
Dec 25 09:25:47 savvin mpd: [pptp0] LCP: state change Ack-Sent --> Opened
Dec 25 09:25:47 savvin mpd: [pptp0] LCP: phase shift ESTABLISH --> AUTHENTICATE
Dec 25 09:25:47 savvin mpd: [pptp0] LCP: auth: peer wants nothing, I want CHAP
Dec 25 09:25:47 savvin mpd: [pptp0] CHAP: sending CHALLENGE
Dec 25 09:25:47 savvin mpd: [pptp0] LCP: LayerUp
Dec 25 09:25:47 savvin mpd: pptp0-0: ignoring SetLinkInfo
Dec 25 09:25:47 savvin mpd: [pptp0] LCP: rec'd Ident #2 link 0 (Opened)
Dec 25 09:25:47 savvin mpd: MESG: MSRASV5.10
Dec 25 09:25:47 savvin mpd: [pptp0] LCP: rec'd Ident #3 link 0 (Opened)
Dec 25 09:25:47 savvin mpd: MESG: MSRAS-0-KARYAGIN
Dec 25 09:25:47 savvin mpd: [pptp0] CHAP: rec'd RESPONSE #1
Dec 25 09:25:47 savvin mpd: Name: "richi"
Dec 25 09:25:47 savvin mpd: [pptp0] RADIUS: using /etc/radius.conf
Dec 25 09:25:47 savvin mpd: [pptp0] RADIUS: RadiusAddServer Adding 81.89.xx.xxy
Dec 25 09:25:47 savvin mpd: [pptp0] RADIUS: RadiusPutAuth: RADIUS_CHAP (MSOFTv2) peer name: richi
Dec 25 09:25:57 savvin mpd: [pptp0] RADIUS: RadiusSendRequest: RAD_ACCESS_REJECT for user richi
Dec 25 09:25:57 savvin mpd: [pptp0] RADIUS: RadiusGetParams: PANIC no MS-CHAPv2 response received
Dec 25 09:25:57 savvin mpd: Peer name: "richi"
Dec 25 09:25:57 savvin mpd: mpd: warning: line too long, truncated
Dec 25 09:25:57 savvin mpd: Can't get credentials for "richi"
Dec 25 09:25:57 savvin mpd: [pptp0] CHAP: sending FAILURE
Dec 25 09:25:57 savvin mpd: [pptp0] LCP: authorization failed
Dec 25 09:25:57 savvin mpd: [pptp0] device: CLOSE event in state UP
Dec 25 09:25:57 savvin mpd: pptp0-0: clearing call
Dec 25 09:25:57 savvin mpd: pptp0-0: killing channel
Dec 25 09:25:57 savvin mpd: [pptp0] PPTP call terminated
Dec 25 09:25:57 savvin mpd: [pptp0] IFACE: Close event
Dec 25 09:25:57 savvin mpd: [pptp0] IPCP: Close event
Dec 25 09:25:57 savvin mpd: [pptp0] IPCP: state change Starting --> Initial
Dec 25 09:25:57 savvin mpd: [pptp0] IPCP: LayerFinish
Dec 25 09:25:57 savvin mpd: [pptp0] IFACE: Close event
And this is my radius.log:
Thu Dec 25 09:12:03 2003 : Info: Using deprecated naslist file. Support for this will go away soon.
Thu Dec 25 09:12:03 2003 : Info: Using deprecated clients file. Support for this will go away soon.
Thu Dec 25 09:12:03 2003 : Info: Using deprecated realms file. Support for this will go away soon.
Thu Dec 25 09:12:03 2003 : Info: rlm_sql (sql): Driver rlm_sql_mysql (module rlm_sql_mysql) loaded and linked
Thu Dec 25 09:12:03 2003 : Info: rlm_sql (sql): Attempting to connect to freeradius@localhost:/freeradius
Thu Dec 25 09:12:03 2003 : Info: rlm_sql_mysql: Starting connect to MySQL server for #0
Thu Dec 25 09:12:03 2003 : Info: rlm_sql_mysql: Starting connect to MySQL server for #1
Thu Dec 25 09:12:03 2003 : Info: rlm_sql_mysql: Starting connect to MySQL server for #2
Thu Dec 25 09:12:03 2003 : Info: rlm_sql_mysql: Starting connect to MySQL server for #3
Thu Dec 25 09:12:03 2003 : Info: rlm_sql_mysql: Starting connect to MySQL server for #4
Thu Dec 25 09:12:03 2003 : Info: Listening on IP address *, ports 1812/udp and 1813/udp.
Thu Dec 25 09:12:03 2003 : Info: Ready to process requests.
Thu Dec 25 09:17:01 2003 : Auth: Login incorrect: [richi/<no User-Password attribute>] (from client ns port 0 cli 81.89.64.105)
Thu Dec 25 09:17:11 2003 : Auth: Login incorrect: [richi/<no User-Password attribute>] (from client ns port 0)
Thu Dec 25 09:17:21 2003 : Auth: Login incorrect: [richi/<no User-Password attribute>] (from client ns port 0)
Can anyone help me - where and what I made wrong?
__________
www.newmail.ru -- всегда что-то новое.
_______________________________________________
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"
- Previous message: Michael Sierchio: "Re: bridge with access on both interfaces"
- Next in thread: Michael Bretterklieber: "Re: CHAP FreeRadius and MPD"
- Reply: Michael Bretterklieber: "Re: CHAP FreeRadius and MPD"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
