Товарищи! В чем может быть проблема? Настраиваю сервер доступа. Он отсылает на радиус-сервер пакеты для авторизации пользователя, а радиус-сервер отсылает access-reject и пользователя отрубает. Но на другом (старом) сервере доступа этот же пользователь авторизацию проходит нормально и подключается. Вот что пишет радиус:
?Debug : Nov 09 10:27:16 RADIUS DBA: Updating Named Pool: Dial-Up 3
?Debug : Nov 09 10:27:16 RADIUS DBA: New Named Pool inserted: Dial-Up 3
?Debug : Nov 09 10:29:13 RADIUS Auth: Packet from <адрес nas>
?Debug : Nov 09 10:29:13 RADIUS Auth: User <test> connecting
ERROR : Nov 09 10:29:13 RADIUS DBA: Can't find login <test>
ERROR : Nov 09 10:29:13 RADIUS DBA: Can't find login <test>
ERROR : Nov 09 10:29:13 RADIUS DBA: Can't find card login <000000000>
ERROR : Nov 09 10:29:13 RADIUS DBA: Can't find card login <000000000>
?Debug : Nov 09 10:29:13 RADIUS Auth: Attempt to add new Card user: <test>
?Debug : Nov 09 10:29:13 RADIUS Auth: Card Auto-add is disabled
ERROR : Nov 09 10:29:13 RADIUS Auth: No data for User <test> found.
ERROR : Nov 09 10:29:13 RADIUS Auth: No data for User <test> found.
Авторизация не проходит
В догонку - дамп пакетов при попытке авторизации:
10:30:19.217422 IP (tos 0x0, ttl 63, id 6913, offset 0, flags [none], length: 130) nas-ip.41882 > billing-ip.1812: [udp sum ok] RADIUS, length: 102
Access Request (1), id: 0x10, Authenticator: b0b3111d20b399fe4894c1c86738d893
Username Attribute (1), length: 7, Value: test
Password Attribute (2), length: 18, Value:
NAS IP Address Attribute (4), length: 6, Value: nas-ip
NAS Port Attribute (5), length: 6, Value: 29
NAS Port Type Attribute (61), length: 6, Value: Async
Service Type Attribute (6), length: 6, Value: Framed
Framed Protocol Attribute (7), length: 6, Value: PPP
State Attribute (24), length: 2, Value:
Called Station Attribute (30), length: 8, Value: phone-num
Framed IP Address Attribute (8), length: 6, Value: user-ip
Accounting Session ID Attribute (44), length: 11, Value: 1dd331e7
10:30:19.218376 IP (tos 0x0, ttl 64, id 1, offset 0, flags [DF], length: 71) billing-ip.1812 > nas-ip.41882: [udp sum ok] RADIUS, length: 43
Access Reject (3), id: 0x10, Authenticator: 079661c65a0fd225e4c3c8545ac8131f
Reply Attribute (18), length: 23, Value: Authorization failed.
10:30:19.217422 IP (tos 0x0, ttl 63, id 6913, offset 0, flags [none], length: 130) nas-ip.41882 > billing-ip.1812: [udp sum ok] RADIUS, length: 102
Access Request (1), id: 0x10, Authenticator: b0b3111d20b399fe4894c1c86738d893
Username Attribute (1), length: 7, Value: test
Password Attribute (2), length: 18, Value:
NAS IP Address Attribute (4), length: 6, Value: nas-ip
NAS Port Attribute (5), length: 6, Value: 29
NAS Port Type Attribute (61), length: 6, Value: Async
Service Type Attribute (6), length: 6, Value: Framed
Framed Protocol Attribute (7), length: 6, Value: PPP
State Attribute (24), length: 2, Value:
Called Station Attribute (30), length: 8, Value: phone-num
Framed IP Address Attribute (8), length: 6, Value: user-ip
Accounting Session ID Attribute (44), length: 11, Value: 1dd331e7
10:30:19.218376 IP (tos 0x0, ttl 64, id 1, offset 0, flags [DF], length: 71) billing-ip.1812 > nas-ip.41882: [udp sum ok] RADIUS, length: 43
Access Reject (3), id: 0x10, Authenticator: 079661c65a0fd225e4c3c8545ac8131f
Reply Attribute (18), length: 23, Value: Authorization failed.