Cisco + radius

[pol88]

Сразу приношу извинения если повторю тему, но ответа не нашел! )

Вопрос такой, стоит УТМ 5.2.1-005 на одном компьютере ОС Red Hat Enterprise Linux 5.4 все работает нормально.

при авторизации ВПН через Cisco-2600 авторизация проходит нормально, но в отчете Dialup и VPN в колонке IP адрес стоит 0.0.0.0
Соответственно не срабатывает правила Динамическое распределение IP адресов

В колонке "Вызывающий абонент" все правильно

Где копать? Настройки сделаны как написано в мануале

[TiRider]

Копай в сторону прошивки циски. Может быть вполне дело и в ней. Хотя скинь сюда описалово radius5.cfg и логов при авторизации пользователя grep "user" /var/log/utm/radius.log

[pol88]

да конфиг я особо не трогал

core_host=127.0.0.1
core_port=12758
radius_auth_mppe=enable
radius_card_autoadd=yes
log_file_main=/netup/utm5/log/radius.log
log_file_debug=/netup/utm5/log/radius.log
radius_auth_vap=1

лог при регистрации
Debug : Mar 23 20:26:45 RadiusSocket: RADIUS packet successfully received
?Debug : Mar 23 20:26:45 RadiusSocket: RADIUS raw data obtained
?Debug : Mar 23 20:26:45 RADIUS Packet: Size <154>; HDR.Size <154>
?Debug : Mar 23 20:26:45 AuthServer: Recv...
?Debug : Mar 23 20:26:45 AuthServer: Packet from NAS <192.168.20.111>
?Debug : Mar 23 20:26:45 RADIUS DBA: NAS found. Data size <0>
?Debug : Mar 23 20:26:45 AuthServer: Packet from <192.168.20.111> packet dump: RPacket:
Code: 1; ID: 15
<Vendor: 0; Attr: 1>[4]: 74657374
<Vendor: 0; Attr: 4>[4]: c0a8146f
<Vendor: 0; Attr: 5>[4]: 0000000f
<Vendor: 0; Attr: 6>[4]: 00000002
<Vendor: 0; Attr: 7>[4]: 00000001
<Vendor: 0; Attr: 61>[4]: 00000005
<Vendor: 0; Attr: 87>[14]: 556e69712d536573732d49443135
<Vendor: 311; Attr: 11>[16]: 5631ae88996751e269c3b944e87bcdcb
<Vendor: 311; Attr: 25>[50]: 0100dff6711e2709ef0577946fb198de1b1c0000000000000000fe5f3dc6fa10bbd21d1128bb4d7e8e9d44f49962474b410b

?Debug : Mar 23 20:26:45 AuthServer: User <test> connecting
?Debug : Mar 23 20:26:45 AuthServer: Session for sessionid <test> not found in <192.168.20.111> cache
?Debug : Mar 23 20:26:45 RADIUS DBA: Info for login <test> found. type <2>
?Debug : Mar 23 20:26:45 AuthServer: Auth scheme: MS-CHAPv2
?Debug : Mar 23 20:26:45 AuthServer: MS-CHAPv2: Authorized user <test>
?Debug : Mar 23 20:26:45 AuthServer: MS-CHAPv2: MPPE Keys send
?Debug : Mar 23 20:26:45 AuthServer: Dialup session limit:1 session count:0 for user:test
Info : Mar 23 20:26:45 UT: calc timeout
Info : Mar 23 20:26:45 UT: t 1269368805, left money 0.000028
Info : Mar 23 20:26:45 UT: tr_id 8, mult 0.000000, next 1269381600
Info : Mar 23 20:26:45 UT: quantity 12795 for borders
Info : Mar 23 20:26:45 UT: after borders q=12795, downloaded=12795, downed_as_prepaid=0 cost_info size <1>
Info : Mar 23 20:26:45 UT: added entire 12795
Info : Mar 23 20:26:45 UT: i==cost_info->end()
Info : Mar 23 20:26:45 UT: session_timeout <12795> session_limit <86400> old_session_timeout <0>
Info : Mar 23 20:26:45 UT: t 1269381600, left money 0.000028
Info : Mar 23 20:26:45 UT: tr_id 8, mult 0.000000, next 1269468000
Info : Mar 23 20:26:45 UT: quantity 86400 for borders
Info : Mar 23 20:26:45 UT: after borders q=86400, downloaded=99195, downed_as_prepaid=0 cost_info size <1>
Info : Mar 23 20:26:45 UT: added entire 86400
Info : Mar 23 20:26:45 UT: i==cost_info->end()
Info : Mar 23 20:26:45 UT: session_timeout <99195> session_limit <86400> old_session_timeout <12795>
Info : Mar 23 20:26:45 UT: session_timeout > session_limit or session_timeout - old_session_timeout too small. Breaking ...
?Debug : Mar 23 20:26:45 AuthServer: Calculated maximum session time: 86400
?Debug : Mar 23 20:26:45 AuthServer: IP from Named Pool test claimed: 0xc0a82825
?Debug : Mar 23 20:26:45 RADIUS DBA: dialup_link_update called for slink:1178
?Debug : Mar 23 20:26:45 RADIUS DBA: soft dialup_link_update for slink:1178 session_count:0
?Debug : Mar 23 20:26:45 AuthServer: Calling fill radius attributes for service. Attr storage size <0>
?Debug : Mar 23 20:26:45 AuthServer: Calling fill radius attributes for slink. Attr storage size <0>
?Debug : Mar 23 20:26:45 AuthServer: Calling fill radius attributes for NAS. Attr storage size <0>
Notice: Mar 23 20:26:45 AuthServer: Login OK <test> from NAS <192.168.20.111> CLID <> Calling-station <>
?Debug : Mar 23 20:26:45 AuthServer: Setting interim update interval from config
?Debug : Mar 23 20:26:45 AuthServer: Auth reply: RPacket:
Code: 2; ID: 15
<Vendor: 0; Attr: 6>[4]: 00000002
<Vendor: 0; Attr: 7>[4]: 00000001
<Vendor: 0; Attr: 8>[4]: c0a82825
<Vendor: 0; Attr: 9>[4]: ffffffff
<Vendor: 0; Attr: 10>[4]: 00000000
<Vendor: 0; Attr: 27>[4]: 00015180
<Vendor: 311; Attr: 7>[4]: 00000001
<Vendor: 311; Attr: 8>[4]: 00000006
<Vendor: 311; Attr: 16>[34]: 86ee8707dccd18d2b8817c7a8d81f9ba6a62b6fb3d997de4a15ae98d81e69953276a
<Vendor: 311; Attr: 17>[34]: 8fa3f01717f5086824620c5e7c0d72358a2a30fb5dea5e39b24bd3b4ef01c91e3c78
<Vendor: 311; Attr: 26>[43]: 81533d38384531334142414437324643343333333244303541323944443033334635383935423245363537

?Debug : Mar 23 20:26:45 RADIUS Packet: raw data constructed! size <215>
?Debug : Mar 23 20:26:45 RadiusSocket: Moving RADIUS packet into send queue
?Debug : Mar 23 20:26:45 AuthServer: Next...
?Trace : Mar 23 20:26:45 AuthServer: Process loop step
?Debug : Mar 23 20:26:45 RadiusSocket: Waiting for RADIUS raw data
?Debug : Mar 23 20:26:45 RadiusSocket: RADIUS raw data sent
?Debug : Mar 23 20:26:46 RadiusSocket: RADIUS packet successfully received
?Debug : Mar 23 20:26:46 RadiusSocket: RADIUS raw data obtained
?Debug : Mar 23 20:26:46 RADIUS Packet: Size <139>; HDR.Size <139>
?Debug : Mar 23 20:26:46 AcctServer: Recv...
?Debug : Mar 23 20:26:46 AcctServer: Packet from <192.168.20.111> packet dump: RPacket:
Code: 4; ID: 19
<Vendor: 0; Attr: 1>[4]: 74657374
<Vendor: 0; Attr: 4>[4]: c0a8146f
<Vendor: 0; Attr: 5>[4]: 0000000f
<Vendor: 0; Attr: 6>[4]: 00000002
<Vendor: 0; Attr: 7>[4]: 00000001
<Vendor: 0; Attr: 40>[4]: 00000001
<Vendor: 0; Attr: 41>[4]: 00000000
<Vendor: 0; Attr: 44>[8]: 3030303030303142
<Vendor: 0; Attr: 45>[4]: 00000001
<Vendor: 0; Attr: 61>[4]: 00000005
<Vendor: 0; Attr: 65>[4]: 00000001
<Vendor: 0; Attr: 66>[12]: 3139322e3136382e32342e32
<Vendor: 0; Attr: 67>[14]: 3139322e3136382e32302e313131
<Vendor: 0; Attr: 82>[1]: 31
<Vendor: 0; Attr: 87>[14]: 556e69712d536573732d49443135

?Debug : Mar 23 20:26:46 RADIUS DBA: NAS found. Data size <0>
?Debug : Mar 23 20:26:46 AcctServer: Acct packet with session ID: 0000001B
?Debug : Mar 23 20:26:46 RADIUS DBA: NAS found. Data size <0>
?Debug : Mar 23 20:26:46 AcctServer: Acct-Start packet
?Debug : Mar 23 20:26:46 AcctServer: Acct-Start: User <test>
?Debug : Mar 23 20:26:46 AcctServer: Acct-Session-Time (46) not present in accounting packet.
?Debug : Mar 23 20:26:46 AcctServer: No h323-setup-time (9, 25) attribute in accountig start packet. Setting to NOW <1269368806>!
?Debug : Mar 23 20:26:46 RADIUS DBA: Info for login <test> found. type <2>
?Debug : Mar 23 20:26:46 RADIUS DBA: info for user found. type <4> info addr <-1242517664>
?Debug : Mar 23 20:26:46 RADIUS DBA: search_user_info return info <-1242517664>
?Debug : Mar 23 20:26:46 RADIUS DBA: search_user_info return valid info
?Debug : Mar 23 20:26:46 RADIUS IPPool: Bind <0> : <c0a82800>
?Debug : Mar 23 20:26:46 RADIUS DBA: Setting interim interval <0> for session id <0000001B>
?Debug : Mar 23 20:26:46 RADIUS DBA: Calling send_session_log_init_sync ...
?Debug : Mar 23 20:26:46 RADIUS Stream[plugin]: send_session_log_init_sync
?Debug : Mar 23 20:26:46 RADIUS Stream[plugin]: init log id <125>
?Debug : Mar 23 20:26:46 AcctServer: Reply packet dump: RPacket:
Code: 5; ID: 19

?Debug : Mar 23 20:26:46 RadiusSocket: Moving RADIUS packet into send queue
?Debug : Mar 23 20:26:46 AcctServer: Next...
?Debug : Mar 23 20:26:46 RadiusSocket: Waiting for RADIUS raw data
?Debug : Mar 23 20:26:46 RadiusSocket: RADIUS raw data sent
?Debug : Mar 23 20:26:48 RADIUS Stream[plugin]: Ping reply received
?Debug : Mar 23 20:26:50 RADIUS Stream[plugin]: Account <158> with balance <94.223>
?Debug : Mar 23 20:26:50 RADIUS Stream[plugin]: Account <158> with balance <94.223>
?Debug : Mar 23 20:26:50 RADIUS Stream[plugin]: Account <104> with balance <149.051>
?Debug : Mar 23 20:26:50 RADIUS Stream[plugin]: Account <104> with balance <149.051>
?Debug : Mar 23 20:26:52 RadiusSocket: RADIUS packet successfully received
?Debug : Mar 23 20:26:52 RadiusSocket: RADIUS raw data obtained
?Debug : Mar 23 20:26:52 RADIUS Packet: Size <181>; HDR.Size <181>
?Debug : Mar 23 20:26:52 AcctServer: Recv...
?Debug : Mar 23 20:26:52 AcctServer: Packet from <192.168.20.111> packet dump: RPacket:
Code: 4; ID: 20
<Vendor: 0; Attr: 1>[4]: 74657374
<Vendor: 0; Attr: 4>[4]: c0a8146f
<Vendor: 0; Attr: 5>[4]: 0000000f
<Vendor: 0; Attr: 6>[4]: 00000002
<Vendor: 0; Attr: 7>[4]: 00000001
<Vendor: 0; Attr: 8>[4]: c0a82825
<Vendor: 0; Attr: 40>[4]: 00000002
<Vendor: 0; Attr: 41>[4]: 00000000
<Vendor: 0; Attr: 42>[4]: 000079c1
<Vendor: 0; Attr: 43>[4]: 00000334
<Vendor: 0; Attr: 44>[8]: 3030303030303142
<Vendor: 0; Attr: 45>[4]: 00000001
<Vendor: 0; Attr: 46>[4]: 00000006
<Vendor: 0; Attr: 47>[4]: 000000da
<Vendor: 0; Attr: 48>[4]: 00000012
<Vendor: 0; Attr: 49>[4]: 00000001
<Vendor: 0; Attr: 61>[4]: 00000005
<Vendor: 0; Attr: 65>[4]: 00000001
<Vendor: 0; Attr: 66>[12]: 3139322e3136382e32342e32
<Vendor: 0; Attr: 67>[14]: 3139322e3136382e32302e313131
<Vendor: 0; Attr: 82>[1]: 31
<Vendor: 0; Attr: 87>[14]: 556e69712d536573732d49443135

?Debug : Mar 23 20:26:52 RADIUS DBA: NAS found. Data size <0>
?Debug : Mar 23 20:26:52 AcctServer: Acct packet with session ID: 0000001B
?Debug : Mar 23 20:26:52 RADIUS DBA: NAS found. Data size <0>
?Debug : Mar 23 20:26:52 AcctServer: Acct-Stop packet
?Debug : Mar 23 20:26:52 RADIUS DBA: Session erase ... login type <4>
?Debug : Mar 23 20:26:52 RADIUS DBA: login type login_pool or login_named_pool
?Debug : Mar 23 20:26:52 RADIUS DBA: login type login_dialup or login_named_pool
Info : Mar 23 20:26:52 UT: session_addon <0>
Info : Mar 23 20:26:52 UT: tarification for slink 1178, tr_id 8, mult 0.000000, next 1269368812
Info : Mar 23 20:26:52 UT: cost info:
Info : Mar 23 20:26:52 UT: type 0 deny 0 base_cost 1.000000 size 6 tr_id 8 mult 0.000000 added 0 sum 0.000000
?Debug : Mar 23 20:26:52 RADIUS DBA: Dialup Discount: TR ID 8: 0.000 for 6 sec
?Debug : Mar 23 20:26:52 RADIUS Stream[plugin]: finish log id <125>
?Debug : Mar 23 20:26:52 AcctServer: Reply packet dump: RPacket:
Code: 5; ID: 20