ankos Posted July 15, 2008 Posted July 15, 2008 Всем привет! Поставил такую зборку Stg-2.405.9.8+VPN+freeradius 1. СТГ поднимается, а таже все модули в т.ч. freeradius; 2. Freeradius-1.1.7 также поднялся; 3. VPN тоже работает, еcли неиспользовать radius.so. При подключении VPN сообщает о ошибке 691: такого имени и пароля незарегестрировано, что то в этом роде. Подскажите куда копать?
ankos Posted July 15, 2008 Author Posted July 15, 2008 В логи! Смотрю, но они мне ничего неговорят! - тоисть туплю!
madf Posted July 15, 2008 Posted July 15, 2008 ... /var/log/messages ... radiusd -X ... ./build debug ...
ankos Posted July 15, 2008 Author Posted July 15, 2008 syslog Jul 15 17:53:12 ns pptpd[18619]: GRE: Bad checksum from pppd. Jul 15 17:53:15 ns pptpd[18619]: CTRL: Ignored a SET LINK INFO packet with real ACCMs! Jul 15 17:53:15 ns pppd[18620]: /etc/radiusclient/radiusclient.conf: line 86: unrecognized keyword: bindaddr Jul 15 17:53:15 ns pppd[18620]: RADIUS: Can't read config file /etc/radiusclient/radiusclient.conf Jul 15 17:53:15 ns pppd[18620]: Peer ankos failed CHAP authentication Jul 15 17:55:51 ns pptpd[18663]: GRE: Bad checksum from pppd. Jul 15 17:55:54 ns pptpd[18663]: CTRL: Ignored a SET LINK INFO packet with real ACCMs! Jul 15 17:55:54 ns pppd[18664]: /etc/radiusclient/radiusclient.conf: line 83: unrecognized keyword: radius_deadtime Jul 15 17:55:54 ns pppd[18664]: RADIUS: Can't read config file /etc/radiusclient/radiusclient.conf Jul 15 17:55:54 ns pppd[18664]: Peer ankos failed CHAP authentication Jul 15 18:01:08 ns pptpd[18764]: MGR: connections limit (100) reached, extra IP addresses ignored Jul 15 18:01:14 ns pptpd[18766]: GRE: Bad checksum from pppd. Jul 15 18:01:17 ns pptpd[18766]: CTRL: Ignored a SET LINK INFO packet with real ACCMs! Jul 15 18:01:17 ns pppd[18767]: /etc/radiusclient/radiusclient.conf: line 83: unrecognized keyword: radius_deadtime Jul 15 18:01:17 ns pppd[18767]: RADIUS: Can't read config file /etc/radiusclient/radiusclient.conf Jul 15 18:01:17 ns pppd[18767]: Peer ankos failed CHAP authentication messages Jul 15 18:01:08 ns /usr/sbin/gpm[3607]: *** info [client.c(275)]: Jul 15 18:01:08 ns /usr/sbin/gpm[3607]: Request on 6 (console 0) Jul 15 18:01:08 ns /usr/sbin/gpm[3607]: *** info [client.c(284)]: Jul 15 18:01:08 ns /usr/sbin/gpm[3607]: Closing Jul 15 18:01:08 ns pptpd[18765]: MGR: Manager process started Jul 15 18:01:08 ns pptpd[18765]: MGR: Maximum of 100 connections available Jul 15 18:01:09 ns /usr/sbin/gpm[3607]: *** info [client.c(137)]: Jul 15 18:01:09 ns /usr/sbin/gpm[3607]: Connecting at fd 6 Jul 15 18:01:10 ns /usr/sbin/gpm[3607]: *** info [client.c(275)]: Jul 15 18:01:10 ns /usr/sbin/gpm[3607]: Request on 6 (console 0) Jul 15 18:01:10 ns /usr/sbin/gpm[3607]: *** info [client.c(284)]: Jul 15 18:01:10 ns /usr/sbin/gpm[3607]: Closing Jul 15 18:01:11 ns /usr/sbin/gpm[3607]: *** info [client.c(137)]: Jul 15 18:01:11 ns /usr/sbin/gpm[3607]: Connecting at fd 6 Jul 15 18:01:14 ns pptpd[18766]: CTRL: Client 10.1.200.112 control connection started Jul 15 18:01:14 ns pptpd[18766]: CTRL: Starting call (launching pppd, opening GRE) Jul 15 18:01:14 ns pppd[18767]: Plugin radius.so loaded. Jul 15 18:01:14 ns pppd[18767]: RADIUS plugin initialized. Jul 15 18:01:14 ns pppd[18767]: Plugin /usr/lib/pptpd/pptpd-logwtmp.so loaded. Jul 15 18:01:14 ns pppd[18767]: pptpd-logwtmp: $Version$ Jul 15 18:01:14 ns pppd[18767]: pppd 2.4.4 started by root, uid 0 Jul 15 18:01:14 ns pppd[18767]: Using interface ppp0 Jul 15 18:01:14 ns pppd[18767]: Connect: ppp0 <--> /dev/pts/3 Jul 15 18:01:17 ns pppd[18767]: Connection terminated. Jul 15 18:01:17 ns pppd[18767]: Exit. Jul 15 18:01:17 ns pptpd[18766]: CTRL: Client 10.1.200.112 control connection finished debug pptp Jul 15 18:01:14 ns pppd[18767]: using channel 105Jul 15 18:01:14 ns pppd[18767]: sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x367b494> <pcomp> <accomp>] Jul 15 18:01:14 ns pppd[18767]: rcvd [LCP ConfReq id=0x0 <mru 1400> <magic 0x51096018> <pcomp> <accomp> <callback CBCP>] Jul 15 18:01:14 ns pppd[18767]: sent [LCP ConfRej id=0x0 <callback CBCP>] Jul 15 18:01:14 ns pppd[18767]: rcvd [LCP ConfReq id=0x1 <mru 1400> <magic 0x51096018> <pcomp> <accomp>] Jul 15 18:01:14 ns pppd[18767]: sent [LCP ConfAck id=0x1 <mru 1400> <magic 0x51096018> <pcomp> <accomp>] Jul 15 18:01:17 ns pppd[18767]: sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x367b494> <pcomp> <accomp>] Jul 15 18:01:17 ns pppd[18767]: rcvd [LCP ConfAck id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x367b494> <pcomp> <accomp>] Jul 15 18:01:17 ns pppd[18767]: sent [CHAP Challenge id=0xb8 <97e3a63a4f0e6b3df93709bee0e6abb2>, name = "pptpd"] Jul 15 18:01:17 ns pppd[18767]: rcvd [LCP Ident id=0x2 magic=0x51096018 "MSRASV5.10"] Jul 15 18:01:17 ns pppd[18767]: rcvd [LCP Ident id=0x3 magic=0x51096018 "MSRAS-0-TOLYAN"] Jul 15 18:01:17 ns pppd[18767]: rcvd [CHAP Response id=0xb8 <97d6614b27941d86d78aaa22210ce83000000000000000001b19988907a01bf89ff482b7f0c906c8778f47f8363501c700>, name = "ankos"] Jul 15 18:01:17 ns pppd[18767]: sent [CHAP Failure id=0xb8 ""] Jul 15 18:01:17 ns pppd[18767]: sent [LCP TermReq id=0x2 "Authentication failed"] Jul 15 18:01:17 ns pppd[18767]: rcvd [LCP TermAck id=0x2 "Authentication failed"] Jul 15 18:01:17 ns pptpd[18766]: CTRL: Reaping child PPP[18767 Логи! вижу что чтото нето, но что непонимаю!
madf Posted July 16, 2008 Posted July 16, 2008 radiusd -X и лог Stargazer PS: Jul 15 18:01:17 ns pppd[18767]: RADIUS: Can't read config file /etc/radiusclient/radiusclient.conf
ankos Posted July 16, 2008 Author Posted July 16, 2008 (edited) radiusd -X root@ns:/usr/sbin# ./radiusd -XStarting - reading configuration files ... reread_config: reading radiusd.conf Config: including file: /usr/etc/raddb/proxy.conf Config: including file: /usr/etc/raddb/clients.conf Config: including file: /usr/etc/raddb/snmp.conf Config: including file: /usr/etc/raddb/eap.conf main: prefix = "/usr" main: localstatedir = "/usr/var" main: logdir = "/usr/var/log/radius" main: libdir = "/usr/lib" main: radacctdir = "/usr/var/log/radius/radacct" main: hostname_lookups = no main: max_request_time = 30 main: cleanup_delay = 5 main: max_requests = 1024 main: delete_blocked_requests = 0 main: port = 0 main: allow_core_dumps = no main: log_stripped_names = no main: log_file = "/usr/var/log/radius/radius.log" main: log_auth = yes main: log_auth_badpass = yes main: log_auth_goodpass = no main: pidfile = "/usr/var/run/radiusd/radius.pid" main: user = "root" main: group = "root" main: usercollide = no main: lower_user = "no" main: lower_pass = "no" main: nospace_user = "no" main: nospace_pass = "no" main: checkrad = "/usr/sbin/checkrad" main: proxy_requests = yes proxy: retry_delay = 5 proxy: retry_count = 3 proxy: synchronous = no proxy: default_fallback = yes proxy: dead_time = 120 proxy: post_proxy_authorize = no proxy: wake_all_if_all_dead = no security: max_attributes = 200 security: reject_delay = 1 security: status_server = no main: debug_level = 0 read_config_files: reading dictionary read_config_files: reading naslist Using deprecated naslist file. Support for this will go away soon. read_config_files: reading clients read_config_files: reading realms radiusd: entering modules setup Module: Library search path is /usr/lib rlm_stg: stg_init() Module: Loaded stg rlm_stg: stg_instantiate() stg: password = "123456" stg: server = "127.0.0.1" stg: port = 6666 stg: local_port = 6667 Module: Instantiated stg (stg) Module: Loaded PAP pap: encryption_scheme = "crypt" pap: auto_header = no Module: Instantiated pap (pap) Module: Loaded CHAP Module: Instantiated chap (chap) Module: Loaded MS-CHAP mschap: use_mppe = yes mschap: require_encryption = no mschap: require_strong = no mschap: with_ntdomain_hack = no mschap: passwd = "(null)" mschap: ntlm_auth = "(null)" Module: Instantiated mschap (mschap) Module: Loaded eap eap: default_eap_type = "md5" eap: timer_expire = 60 eap: ignore_unknown_eap_types = no eap: cisco_accounting_username_bug = no rlm_eap: Loaded and initialized type md5 rlm_eap: Loaded and initialized type leap gtc: challenge = "Password: " gtc: auth_type = "PAP" rlm_eap: Loaded and initialized type gtc mschapv2: with_ntdomain_hack = no rlm_eap: Loaded and initialized type mschapv2 Module: Instantiated eap (eap) Module: Loaded preprocess preprocess: huntgroups = "/usr/etc/raddb/huntgroups" preprocess: hints = "/usr/etc/raddb/hints" preprocess: with_ascend_hack = no preprocess: ascend_channels_per_line = 23 preprocess: with_ntdomain_hack = no preprocess: with_specialix_jetstream_hack = no preprocess: with_cisco_vsa_hack = no preprocess: with_alvarion_vsa_hack = no Module: Instantiated preprocess (preprocess) Module: Loaded Acct-Unique-Session-Id acct_unique: key = "User-Name, Acct-Session-Id, NAS-IP-Address, Client-IP-Addre ss, NAS-Port" Module: Instantiated acct_unique (acct_unique) Module: Loaded detail detail: detailfile = "/usr/var/log/radius/radacct/%{Client-IP-Address}/detail-% Y%m%d" detail: detailperm = 384 detail: dirperm = 493 detail: locking = no Module: Instantiated detail (detail) Module: Loaded radutmp radutmp: filename = "/usr/var/log/radius/radutmp" radutmp: username = "%{User-Name}" radutmp: case_sensitive = yes radutmp: check_with_nas = yes radutmp: perm = 384 radutmp: callerid = yes Module: Instantiated radutmp (radutmp) Listening on authentication *:1812 Listening on accounting *:1813 Ready to process requests. STG log 2008-07-15 08:18:32 -- Stg v. Stg 2.4042008-07-15 08:18:32 -- Message queue created successfully. msgKey=5555 msgID=0 2008-07-15 08:18:32 -- Timer thread started successfully. 2008-07-15 08:18:32 -- Storage plugin: mysql_store v.0.67-mutex (STG-Web). Loading successfull. 2008-07-15 08:18:32 -- Users started successfully. 2008-07-15 08:18:32 -- Traffcounter started successfully. 2008-07-15 08:18:32 -- Module: 'ipq_cap v.1.1'. Start successfull. 0 2008-07-15 08:18:32 -- Module: 'Ether_cap v.1.0'. Start successfull. 10 2008-07-15 08:18:32 -- Module: 'RADIUS data access plugin v 0.5'. Start successfull. 20 2008-07-15 08:18:32 -- Module: 'InetAccess authorizator v.1.2'. Start successfull. 50 2008-07-15 08:18:32 -- Module: 'Always Online authorizator v.1.0'. Start successfull. 70 2008-07-15 08:18:32 -- Module: 'Pinger v.1.01'. Start successfull. 100 2008-07-15 08:18:32 -- Module: 'Stg configurator v.0.07'. Start successfull. 220 2008-07-15 08:18:32 -- Stg started successfully. 2008-07-15 08:18:32 -- +++++++++++++++++++++++++++++++++++++++++++++ Edited July 16, 2008 by ankos
-HS- Posted July 16, 2008 Posted July 16, 2008 У тебя есть конфиг /etc/radiusclient/radiusclient.conf ? От той ли он версии радиуса, проверь его содержимое на правильность. Судя по логу создается впечатление, что перепутаны конфиги radiusd.conf и radiusclient.conf.
ankos Posted July 17, 2008 Author Posted July 17, 2008 (edited) Есть у меня и radiusd.conf в /raddb и radiusclient.conf только в /usr/etc/radiusclient а на /etc/radiusclient я на всякий случай сделал симлинк Мои конфигкрации radiusd.conf prefix = /usrexec_prefix = ${prefix} sysconfdir = ${prefix}/etc localstatedir = ${prefix}/var sbindir = ${exec_prefix}/sbin logdir = ${localstatedir}/log/radius raddbdir = ${sysconfdir}/raddb radacctdir = ${logdir}/radacct confdir = ${raddbdir} run_dir = ${localstatedir}/run/radiusd log_file = ${logdir}/radius.log libdir = ${exec_prefix}/lib pidfile = ${run_dir}/radius.pid user = root group = root max_request_time = 30 delete_blocked_requests = no cleanup_delay = 5 max_requests = 1024 bind_address = * port = 0 hostname_lookups = no allow_core_dumps = no regular_expressions = yes extended_expressions = yes log_stripped_names = no log_auth = yes log_auth_badpass = yes log_auth_goodpass = no usercollide = no lower_user = no lower_pass = no nospace_user = no nospace_pass = no checkrad = ${sbindir}/checkrad security { max_attributes = 200 reject_delay = 1 status_server = no } proxy_requests = yes $INCLUDE ${confdir}/proxy.conf $INCLUDE ${confdir}/clients.conf snmp = no $INCLUDE ${confdir}/snmp.conf thread pool { start_servers = 5 max_servers = 32 min_spare_servers = 3 max_spare_servers = 10 max_requests_per_server = 0 } modules { pap { encryption_scheme = crypt } chap { authtype = CHAP } $INCLUDE ${confdir}/eap.conf mschap { use_mppe = yes authtype = MS-CHAP --username=%{Stripped-User-Name:-%{User-Name:-None}} --challenge=%{mschap:Challenge:-00} --nt-response=%{mschap:NT-Response:-00}" } preprocess { huntgroups = ${confdir}/huntgroups hints = ${confdir}/hints with_ascend_hack = no ascend_channels_per_line = 23 with_ntdomain_hack = no with_specialix_jetstream_hack = no with_cisco_vsa_hack = no } detail { detailfile = ${radacctdir}/%{Client-IP-Address}/detail-%Y%m%d detailperm = 0600 } acct_unique { key = "User-Name, Acct-Session-Id, NAS-IP-Address, Client-IP-Address, NAS-Port" } radutmp { filename = ${logdir}/radutmp username = %{User-Name} case_sensitive = yes check_with_nas = yes perm = 0600 callerid = "yes" } radutmp sradutmp { filename = ${logdir}/sradutmp perm = 0644 callerid = "no" } attr_filter { attrsfile = ${confdir}/attrs } counter daily { filename = ${raddbdir}/db.daily key = User-Name count-attribute = Acct-Session-Time reset = daily counter-name = Daily-Session-Time check-name = Max-Daily-Session allowed-servicetype = Framed-User cache-size = 5000 } always fail { rcode = fail } always reject { rcode = reject } always ok { rcode = ok simulcount = 0 mpp = no } stg { local_port = 6667 server = 127.0.0.1 port = 6666 password = 123456 } } instantiate { stg } authorize { preprocess chap mschap eap stg } authenticate { Auth-Type PAP { stg pap } Auth-Type CHAP { stg chap } Auth-Type MS-CHAP { stg mschap } eap } preacct { preprocess acct_unique } accounting { detail # daily radutmp stg } session { radutmp } post-auth { stg } pre-proxy { } post-proxy { eap } radiusclient.conf auth_order radius,locallogin_tries 4 login_timeout 60 nologin /etc/nologin issue /usr/etc/radiusclient/issue authserver localhost acctserver localhost servers /usr/etc/radiusclient/servers dictionary /usr/etc/radiusclient/dictionary login_radius /usr/sbin/login.radius seqfile /var/run/radius.seq mapfile /usr/etc/radiusclient/port-id-map default_realm radius_timeout 10 radius_retries 3 radius_deadtime 0 bindaddr * login_local /bin/login Edited July 17, 2008 by ankos
madf Posted July 17, 2008 Posted July 17, 2008 Не вижу в логах коннектов к радиусу. К стати, на радиусклиент он у тебя ругался: Jul 15 18:01:17 ns pppd[18767]: RADIUS: Can't read config file /etc/radiusclient/radiusclient.conf
ankos Posted July 17, 2008 Author Posted July 17, 2008 Не вижу в логах коннектов к радиусу.К стати, на радиусклиент он у тебя ругался: Jul 15 18:01:17 ns pppd[18767]: RADIUS: Can't read config file /etc/radiusclient/radiusclient.conf он вначале ругается на Jul 15 17:55:54 ns pppd[18664]: /etc/radiusclient/radiusclient.conf: line 83: unrecognized keyword: radius_deadtime потом на Jul 15 17:55:54 ns pppd[18664]: RADIUS: Can't read config file /etc/radiusclient/radiusclient.conf
madf Posted July 19, 2008 Posted July 19, 2008 1 - неверный параметр в конфиге. 2 - вобще не может файл прочитать. По причине его отсутствия, недостаточных прав или неправильного формата. Конечно, откдуда там коннекты будут...
ankos Posted July 19, 2008 Author Posted July 19, 2008 Когда закоментил параметр radius_deadtime и bindaddr * он перестал материться на RADIUS: Can't read config file /etc/radiusclient/radiusclient.conf. И теперь когда конектюсь по ВПН он долго проверяет логин и пароль, и заканчивается ошибкой 718: удаленный сервер неответил вовремя. да, нашол доку и там пишет такое. Check that your kernel has built-in support for MPPE encryption: 1. ### If it is not available # modprobe ppp-compress-18 && echo MPPE Module is ok FATAL: Module ppp_mppe not found. 2. ### If it is available # modprobe ppp-compress-18 && echo MPPE Module is ok MPPE Module is ok У меня получается первый вариант. Но если pptpd запустить без radius.so тогда запускается ВПН и MPPE я так понимаю тоже работает. P.S. Всем большое спосибо за помощь! Конфиги брались с Stg-2.405.9.8. Просто скопировал и подправил место нахождения
ankos Posted July 23, 2008 Author Posted July 23, 2008 Так проблема нерешается! Все тоже! Может кто подскажет у кого такая связка завелась, Какой freeradiusserver? radiusclient?, ppd?, pptp? Может еще какието настройки должны быть, что неуказаны в этой сборке? P.S. У меня ppp-2.4.4, pptpd-1.3.4, freeradius-1.1.7, freeradiusclient-1.1.6. Os Slackeware 12.0
madf Posted July 23, 2008 Posted July 23, 2008 У меня. Все заводится и работает. Проверь чтобы stg стартовал ДО FreeRADIUS. И чтобы он грузил mod_radius.so. И вобще - логи в студию!
ankos Posted July 23, 2008 Author Posted July 23, 2008 Шас будут! debug Jul 23 17:19:32 ns pptpd[23003]: MGR: Launching /usr/local/sbin/pptpctrl to handle clientJul 23 17:19:32 ns pptpd[23003]: CTRL: local address = 10.1.1.2 Jul 23 17:19:32 ns pptpd[23003]: CTRL: remote address = 192.168.1.1 Jul 23 17:19:32 ns pptpd[23003]: CTRL: pppd options file = /etc/ppp/options.pptpd Jul 23 17:19:32 ns pptpd[23003]: CTRL: Received PPTP Control Message (type: 1) Jul 23 17:19:32 ns pptpd[23003]: CTRL: Made a START CTRL CONN RPLY packet Jul 23 17:19:32 ns pptpd[23003]: CTRL: I wrote 156 bytes to the client. Jul 23 17:19:32 ns pptpd[23003]: CTRL: Sent packet to client Jul 23 17:19:32 ns pptpd[23003]: CTRL: Received PPTP Control Message (type: 7) Jul 23 17:19:32 ns pptpd[23003]: CTRL: Set parameters to 100000000 maxbps, 64 window size Jul 23 17:19:32 ns pptpd[23003]: CTRL: Made a OUT CALL RPLY packet Jul 23 17:19:32 ns pptpd[23003]: CTRL: pty_fd = 8 Jul 23 17:19:32 ns pptpd[23003]: CTRL: tty_fd = 9 Jul 23 17:19:32 ns pptpd[23004]: CTRL (PPPD Launcher): program binary = /usr/local/sbin/pppd Jul 23 17:19:32 ns pptpd[23004]: CTRL (PPPD Launcher): local address = 10.1.1.2 Jul 23 17:19:32 ns pptpd[23004]: CTRL (PPPD Launcher): remote address = 192.168.1.1 Jul 23 17:19:32 ns pptpd[23003]: CTRL: I wrote 32 bytes to the client. Jul 23 17:19:32 ns pptpd[23003]: CTRL: Sent packet to client Jul 23 17:19:32 ns pppd[23004]: using channel 142 Jul 23 17:19:32 ns pppd[23004]: sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x848d79bd> <pcomp> <accomp>] Jul 23 17:19:32 ns pptpd[23003]: CTRL: Received PPTP Control Message (type: 15) Jul 23 17:19:32 ns pptpd[23003]: CTRL: Got a SET LINK INFO packet with standard ACCMs Jul 23 17:19:32 ns pptpd[23003]: GRE: accepting packet #0 Jul 23 17:19:32 ns pppd[23004]: rcvd [LCP ConfReq id=0x0 <mru 1400> <magic 0x2dfe5e43> <pcomp> <accomp> <callback CBCP>] Jul 23 17:19:32 ns pppd[23004]: sent [LCP ConfRej id=0x0 <callback CBCP>] Jul 23 17:19:32 ns pptpd[23003]: GRE: accepting packet #1 Jul 23 17:19:32 ns pppd[23004]: rcvd [LCP ConfReq id=0x1 <mru 1400> <magic 0x2dfe5e43> <pcomp> <accomp>] Jul 23 17:19:32 ns pppd[23004]: sent [LCP ConfAck id=0x1 <mru 1400> <magic 0x2dfe5e43> <pcomp> <accomp>] Jul 23 17:19:35 ns pppd[23004]: sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x848d79bd> <pcomp> <accomp>] Jul 23 17:19:35 ns pptpd[23003]: GRE: accepting packet #2 Jul 23 17:19:35 ns pppd[23004]: rcvd [LCP ConfAck id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x848d79bd> <pcomp> <accomp>] Jul 23 17:19:35 ns pppd[23004]: sent [CHAP Challenge id=0xf4 <cc162f7598317cf75a038bbf3fb177ac>, name = "pptpd"] Jul 23 17:19:35 ns pptpd[23003]: GRE: accepting packet #3 Jul 23 17:19:35 ns pppd[23004]: rcvd [LCP Ident id=0x2 magic=0x2dfe5e43 "MSRASV5.10"] Jul 23 17:19:35 ns pptpd[23003]: CTRL: Received PPTP Control Message (type: 15) Jul 23 17:19:35 ns pptpd[23003]: GRE: accepting packet #4 Jul 23 17:19:35 ns pppd[23004]: rcvd [LCP Ident id=0x3 magic=0x2dfe5e43 "MSRAS-0-TOLYAN"] Jul 23 17:19:35 ns pptpd[23003]: GRE: accepting packet #5 Jul 23 17:19:36 ns pppd[23004]: rcvd [CHAP Response id=0xf4 <f14e20903ad05b1535679178240e5d7100000000000000001d30f31c8e7b3e03913a86ba50658 2e0c448a220c4a9542500>, name = "ankos"] Jul 23 17:19:36 ns pptpd[23003]: GRE: accepting packet #6 Jul 23 17:19:38 ns pptpd[23003]: GRE: accepting packet #7 Jul 23 17:19:40 ns pptpd[23003]: GRE: accepting packet #8 Jul 23 17:19:42 ns pptpd[23003]: GRE: accepting packet #9 Jul 23 17:19:44 ns pptpd[23003]: GRE: accepting packet #10 Jul 23 17:19:46 ns pptpd[23003]: GRE: accepting packet #11 Jul 23 17:19:48 ns pptpd[23003]: GRE: accepting packet #12 Jul 23 17:19:50 ns pptpd[23003]: GRE: accepting packet #13 Jul 23 17:19:52 ns pptpd[23003]: GRE: accepting packet #14 Jul 23 17:19:54 ns pptpd[23003]: CTRL: Received PPTP Control Message (type: 15) Jul 23 17:19:54 ns pptpd[23003]: CTRL: Got a SET LINK INFO packet with standard ACCMs Jul 23 17:19:54 ns pptpd[23003]: GRE: accepting packet #15 Jul 23 17:19:56 ns pptpd[23003]: GRE: accepting packet #16 Jul 23 17:19:58 ns pptpd[23003]: CTRL: Received PPTP Control Message (type: 12) Jul 23 17:19:58 ns pptpd[23003]: CTRL: Made a CALL DISCONNECT RPLY packet Jul 23 17:19:58 ns pptpd[23003]: CTRL: Received CALL CLR request (closing call) Jul 23 17:19:58 ns pptpd[23003]: CTRL: Reaping child PPP[23004] Jul 23 17:20:01 ns pptpd[23029]: MGR: Launching /usr/local/sbin/pptpctrl to handle client Jul 23 17:20:01 ns pptpd[23029]: CTRL: local address = 10.1.1.2 Jul 23 17:20:01 ns pptpd[23029]: CTRL: remote address = 192.168.1.2 Jul 23 17:20:01 ns pptpd[23029]: CTRL: pppd options file = /etc/ppp/options.pptpd Jul 23 17:20:01 ns pptpd[23029]: CTRL: Received PPTP Control Message (type: 1) Jul 23 17:20:01 ns pptpd[23029]: CTRL: Made a START CTRL CONN RPLY packet Jul 23 17:20:01 ns pptpd[23029]: CTRL: I wrote 156 bytes to the client. Jul 23 17:20:01 ns pptpd[23029]: CTRL: Sent packet to client Jul 23 17:20:01 ns pptpd[23029]: CTRL: Received PPTP Control Message (type: 7) Jul 23 17:20:01 ns pptpd[23029]: CTRL: Set parameters to 100000000 maxbps, 64 window size Jul 23 17:20:01 ns pptpd[23029]: CTRL: Made a OUT CALL RPLY packet Jul 23 17:20:01 ns pptpd[23029]: CTRL: pty_fd = 8 Jul 23 17:20:01 ns pptpd[23029]: CTRL: tty_fd = 9 Jul 23 17:20:01 ns pptpd[23030]: CTRL (PPPD Launcher): program binary = /usr/local/sbin/pppd Jul 23 17:20:01 ns pptpd[23030]: CTRL (PPPD Launcher): local address = 10.1.1.2 Jul 23 17:20:01 ns pptpd[23030]: CTRL (PPPD Launcher): remote address = 192.168.1.2 Jul 23 17:20:01 ns pptpd[23029]: CTRL: I wrote 32 bytes to the client. Jul 23 17:20:01 ns pptpd[23029]: CTRL: Sent packet to client Jul 23 17:20:01 ns pppd[23030]: using channel 143 Jul 23 17:20:01 ns pppd[23030]: sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x3867b0df> <pcomp> <accomp>] Jul 23 17:20:01 ns pptpd[23029]: CTRL: Received PPTP Control Message (type: 15) Jul 23 17:20:01 ns pptpd[23029]: CTRL: Got a SET LINK INFO packet with standard ACCMs Jul 23 17:20:01 ns pptpd[23029]: GRE: accepting packet #0 Jul 23 17:20:01 ns pptpd[23029]: GRE: accepting packet #1 Jul 23 17:20:01 ns pppd[23030]: rcvd [LCP ConfReq id=0x0 <mru 1400> <magic 0x21dc050a> <pcomp> <accomp> <callback CBCP>] Jul 23 17:20:01 ns pppd[23030]: sent [LCP ConfRej id=0x0 <callback CBCP>] Jul 23 17:20:01 ns pppd[23030]: rcvd [LCP ConfAck id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x3867b0df> <pcomp> <accomp>] Jul 23 17:20:01 ns pptpd[23029]: GRE: accepting packet #2 Jul 23 17:20:01 ns pppd[23030]: rcvd [LCP ConfReq id=0x1 <mru 1400> <magic 0x21dc050a> <pcomp> <accomp>] Jul 23 17:20:01 ns pppd[23030]: sent [LCP ConfAck id=0x1 <mru 1400> <magic 0x21dc050a> <pcomp> <accomp>] Jul 23 17:20:01 ns pppd[23030]: sent [CHAP Challenge id=0xe5 <ac936311e8f5490bd6d0c4dd1be2929e>, name = "pptpd"] Jul 23 17:20:01 ns pptpd[23029]: CTRL: Received PPTP Control Message (type: 15) Jul 23 17:20:01 ns pptpd[23029]: GRE: accepting packet #3 Jul 23 17:20:01 ns pptpd[23029]: GRE: accepting packet #4 Jul 23 17:20:01 ns pptpd[23029]: GRE: accepting packet #5 Jul 23 17:20:01 ns pppd[23030]: rcvd [LCP Ident id=0x2 magic=0x21dc050a "MSRASV5.10"] Jul 23 17:20:01 ns pppd[23030]: rcvd [LCP Ident id=0x3 magic=0x21dc050a "MSRAS-0-TOLYAN"] Jul 23 17:20:01 ns pppd[23030]: rcvd [CHAP Response id=0xe5 <aa49e6a3393d7edbefe3e825df02b2540000000000000000a93f38c7b2dfb8caa3e375d122a5a 7b53d5b3352ab882f6500>, name = "ankos"] Jul 23 17:20:03 ns pptpd[23029]: GRE: accepting packet #6 Jul 23 17:20:05 ns pptpd[23029]: GRE: accepting packet #7 Jul 23 17:20:06 ns pptpd[23029]: CTRL: Received PPTP Control Message (type: 15) Jul 23 17:20:06 ns pptpd[23029]: CTRL: Got a SET LINK INFO packet with standard ACCMs Jul 23 17:20:06 ns pptpd[23029]: GRE: accepting packet #8 Jul 23 17:20:07 ns pptpd[23029]: GRE: accepting packet #9 Jul 23 17:20:09 ns pptpd[23029]: CTRL: Received PPTP Control Message (type: 12) Jul 23 17:20:09 ns pptpd[23029]: CTRL: Made a CALL DISCONNECT RPLY packet Jul 23 17:20:09 ns pptpd[23029]: CTRL: Received CALL CLR request (closing call) Jul 23 17:20:09 ns pptpd[23029]: CTRL: Reaping child PPP[23030] messages Jul 23 17:18:38 ns /usr/sbin/gpm[3619]: *** info [client.c(275)]: Jul 23 17:18:38 ns /usr/sbin/gpm[3619]: Request on 6 (console 0) Jul 23 17:18:38 ns /usr/sbin/gpm[3619]: *** info [client.c(284)]: Jul 23 17:18:38 ns /usr/sbin/gpm[3619]: Closing Jul 23 17:18:39 ns /usr/sbin/gpm[3619]: *** info [client.c(137)]: Jul 23 17:18:39 ns /usr/sbin/gpm[3619]: Connecting at fd 6 Jul 23 17:19:06 ns /usr/sbin/gpm[3619]: *** info [client.c(275)]: Jul 23 17:19:06 ns /usr/sbin/gpm[3619]: Request on 6 (console 0) Jul 23 17:19:06 ns /usr/sbin/gpm[3619]: *** info [client.c(284)]: Jul 23 17:19:06 ns /usr/sbin/gpm[3619]: Closing Jul 23 17:19:17 ns /usr/sbin/gpm[3619]: *** info [client.c(137)]: Jul 23 17:19:17 ns /usr/sbin/gpm[3619]: Connecting at fd 6 Jul 23 17:19:19 ns /usr/sbin/gpm[3619]: *** info [client.c(275)]: Jul 23 17:19:19 ns /usr/sbin/gpm[3619]: Request on 6 (console 0) Jul 23 17:19:19 ns /usr/sbin/gpm[3619]: *** info [client.c(284)]: Jul 23 17:19:19 ns /usr/sbin/gpm[3619]: Closing Jul 23 17:19:23 ns /usr/sbin/gpm[3619]: *** info [client.c(137)]: Jul 23 17:19:23 ns /usr/sbin/gpm[3619]: Connecting at fd 6 Jul 23 17:19:32 ns pptpd[23003]: CTRL: Client 10.1.200.112 control connection started Jul 23 17:19:32 ns pptpd[23003]: CTRL: Starting call (launching pppd, opening GRE) Jul 23 17:19:32 ns pppd[23004]: Plugin radius.so loaded. Jul 23 17:19:32 ns pppd[23004]: RADIUS plugin initialized. Jul 23 17:19:32 ns pppd[23004]: Plugin radattr.so loaded. Jul 23 17:19:32 ns pppd[23004]: RADATTR plugin initialized. Jul 23 17:19:32 ns pppd[23004]: Plugin /usr/lib/pptpd/pptpd-logwtmp.so loaded. Jul 23 17:19:32 ns pppd[23004]: pptpd-logwtmp: $Version$ Jul 23 17:19:32 ns pppd[23004]: pppd 2.4.4 started by root, uid 0 Jul 23 17:19:32 ns pppd[23004]: Using interface ppp0 Jul 23 17:19:32 ns pppd[23004]: Connect: ppp0 <--> /dev/pts/4 Jul 23 17:19:46 ns /usr/sbin/gpm[3619]: *** info [client.c(275)]: Jul 23 17:19:46 ns /usr/sbin/gpm[3619]: Request on 6 (console 0) Jul 23 17:19:46 ns /usr/sbin/gpm[3619]: *** info [client.c(284)]: Jul 23 17:19:46 ns /usr/sbin/gpm[3619]: Closing Jul 23 17:19:49 ns /usr/sbin/gpm[3619]: *** info [client.c(137)]: Jul 23 17:19:49 ns /usr/sbin/gpm[3619]: Connecting at fd 6 Jul 23 17:20:01 ns pptpd[23029]: CTRL: Client 10.1.200.112 control connection started Jul 23 17:20:01 ns pptpd[23029]: CTRL: Starting call (launching pppd, opening GRE) Jul 23 17:20:01 ns pppd[23030]: Plugin radius.so loaded. Jul 23 17:20:01 ns pppd[23030]: RADIUS plugin initialized. Jul 23 17:20:01 ns pppd[23030]: Plugin radattr.so loaded. Jul 23 17:20:01 ns pppd[23030]: RADATTR plugin initialized. Jul 23 17:20:01 ns pppd[23030]: Plugin /usr/lib/pptpd/pptpd-logwtmp.so loaded. Jul 23 17:20:01 ns pppd[23030]: pptpd-logwtmp: $Version$ Jul 23 17:20:01 ns pppd[23030]: pppd 2.4.4 started by root, uid 0 Jul 23 17:20:01 ns pppd[23030]: Using interface ppp1 Jul 23 17:20:01 ns pppd[23030]: Connect: ppp1 <--> /dev/pts/5 syslog Jul 23 17:19:32 ns pptpd[23003]: GRE: Bad checksum from pppd.Jul 23 17:19:35 ns pptpd[23003]: CTRL: Ignored a SET LINK INFO packet with real ACCMs! Jul 23 17:20:01 ns pptpd[23029]: GRE: Bad checksum from pppd. Jul 23 17:20:01 ns pptpd[23029]: CTRL: Ignored a SET LINK INFO packet with real ACCMs! radius.log Wed Jul 23 17:18:38 2008 : Info: Using deprecated naslist file. Support for this will go away soon.Wed Jul 23 17:18:38 2008 : Info: Ready to process requests. STG стартует раньше radiusserver. modul radius.so загружен без ошибок, по крайней мере пишит в логе СТГ.
madf Posted July 24, 2008 Posted July 24, 2008 Шас будут!debug messages syslog radius.log STG стартует раньше radiusserver. modul radius.so загружен без ошибок, по крайней мере пишит в логе СТГ. radiusd -X Вот этот лог нужен и еще консольный лог старгейзера.
ankos Posted July 24, 2008 Author Posted July 24, 2008 radiusd -X Вот этот лог нужен и еще консольный лог старгейзера. root@ns:/usr/sbin# ./radiusd -X Starting - reading configuration files ...reread_config: reading radiusd.conf Config: including file: /usr/etc/raddb/proxy.conf Config: including file: /usr/etc/raddb/clients.conf Config: including file: /usr/etc/raddb/snmp.conf Config: including file: /usr/etc/raddb/eap.conf main: prefix = "/usr" main: localstatedir = "/usr/var" main: logdir = "/usr/var/log/radius" main: libdir = "/usr/lib" main: radacctdir = "/usr/var/log/radius/radacct" main: hostname_lookups = no main: max_request_time = 120 main: cleanup_delay = 5 main: max_requests = 1024 main: delete_blocked_requests = 0 main: port = 0 main: allow_core_dumps = no main: log_stripped_names = no main: log_file = "/usr/var/log/radius/radius.log" main: log_auth = no main: log_auth_badpass = yes main: log_auth_goodpass = no main: pidfile = "/usr/var/run/radiusd/radiusd.pid" main: user = "root" main: group = "root" main: usercollide = no main: lower_user = "no" main: lower_pass = "no" main: nospace_user = "no" main: nospace_pass = "no" main: checkrad = "/usr/sbin/checkrad" main: proxy_requests = yes proxy: retry_delay = 5 proxy: retry_count = 3 proxy: synchronous = no proxy: default_fallback = yes proxy: dead_time = 120 proxy: post_proxy_authorize = no proxy: wake_all_if_all_dead = no security: max_attributes = 200 security: reject_delay = 1 security: status_server = no main: debug_level = 0 read_config_files: reading dictionary read_config_files: reading naslist Using deprecated naslist file. Support for this will go away soon. read_config_files: reading clients read_config_files: reading realms radiusd: entering modules setup Module: Library search path is /usr/lib rlm_stg: stg_init() Module: Loaded stg rlm_stg: stg_instantiate() stg: password = "123456" stg: server = "127.0.0.1" stg: port = 6666 stg: local_port = 6667 Module: Instantiated stg (stg) Module: Loaded PAP pap: encryption_scheme = "crypt" pap: auto_header = no Module: Instantiated pap (pap) Module: Loaded CHAP Module: Instantiated chap (chap) Module: Loaded MS-CHAP mschap: use_mppe = yes mschap: require_encryption = yes mschap: require_strong = yes mschap: with_ntdomain_hack = no mschap: passwd = "(null)" mschap: ntlm_auth = "(null)" Module: Instantiated mschap (mschap) Module: Loaded eap eap: default_eap_type = "md5" eap: timer_expire = 60 eap: ignore_unknown_eap_types = no eap: cisco_accounting_username_bug = no rlm_eap: Loaded and initialized type md5 rlm_eap: Loaded and initialized type leap gtc: challenge = "Password: " gtc: auth_type = "PAP" rlm_eap: Loaded and initialized type gtc mschapv2: with_ntdomain_hack = no rlm_eap: Loaded and initialized type mschapv2 Module: Instantiated eap (eap) Module: Loaded preprocess preprocess: huntgroups = "/usr/etc/raddb/huntgroups" preprocess: hints = "/usr/etc/raddb/hints" preprocess: with_ascend_hack = no preprocess: ascend_channels_per_line = 23 preprocess: with_ntdomain_hack = no preprocess: with_specialix_jetstream_hack = no preprocess: with_cisco_vsa_hack = no preprocess: with_alvarion_vsa_hack = no Module: Instantiated preprocess (preprocess) Module: Loaded Acct-Unique-Session-Id acct_unique: key = "User-Name, Acct-Session-Id, NAS-IP-Address, Client-IP-Address, NAS-Port" Module: Instantiated acct_unique (acct_unique) Module: Loaded detail detail: detailfile = "/usr/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d" detail: detailperm = 384 detail: dirperm = 493 detail: locking = no Module: Instantiated detail (detail) Module: Loaded radutmp radutmp: filename = "/usr/var/log/radius/radutmp" radutmp: username = "%{User-Name}" radutmp: case_sensitive = yes radutmp: check_with_nas = yes radutmp: perm = 384 radutmp: callerid = yes Module: Instantiated radutmp (radutmp) Listening on authentication *:1812 Listening on accounting *:1813 Ready to process requests. Прошу прощения за тупой вопрос: как получть консольный лог старгейзера?
madf Posted July 24, 2008 Posted July 24, 2008 Путем компиляции его в отладочном режиме. $ ./build debug ... $ sudo bash # <заменить путь к модулям в конфига на './modules' используя свой любимый текстовый редактор> # export LD_LIBRARY_PATH=../../lib # ./stargazer ... ^C # <не забыть вернуть на место путь к модулям> PS: судя по логу - pppd не запрашивает у радиуса ничего
ankos Posted July 24, 2008 Author Posted July 24, 2008 root@ns:/usr/src/stg11/stg-2.405.9.8_STG-WEB/projects/stargazer# ./stargazer stg_timer.cpp > 18:09:06 > STG_TIMER started. Time: 1216930146 main.cpp > 18:09:06 > Module: /usr/lib/stg/mod_auth_ao.so main.cpp > 18:09:06 > Module: /usr/lib/stg/mod_auth_ia.so main.cpp > 18:09:06 > Module: /usr/lib/stg/mod_conf_sg.so main.cpp > 18:09:06 > Module: /usr/lib/stg/mod_cap_ether.so main.cpp > 18:09:06 > Module: /usr/lib/stg/mod_cap_ipq.so main.cpp > 18:09:06 > Module: /usr/lib/stg/mod_ping.so main.cpp > 18:09:06 > Module: /usr/lib/stg/mod_radius.so ao.cpp > 18:09:06 > constructor AO_CREATOR plugin_runner.cpp > 18:09:06 > Plugin Always Online authorizator v.1.0 parsesettings inetaccess.cpp > 18:09:06 > new AUTH_IA inetaccess.cpp > 18:09:06 > sizeof(CONN_SYN_6) = 96 96 inetaccess.cpp > 18:09:06 > sizeof(CONN_SYN_8) = 96 96 inetaccess.cpp > 18:09:06 > sizeof(CONN_SYN_ACK_6) = 192 192 inetaccess.cpp > 18:09:06 > sizeof(CONN_SYN_ACK_8) = 200 200 inetaccess.cpp > 18:09:06 > sizeof(CONN_ACK_6) = 64 64 inetaccess.cpp > 18:09:06 > sizeof(ALIVE_SYN_6) = 368 368 inetaccess.cpp > 18:09:06 > sizeof(ALIVE_SYN_8) = 384 384 inetaccess.cpp > 18:09:06 > sizeof(ALIVE_ACK_6) = 64 64 inetaccess.cpp > 18:09:06 > sizeof(DISCONN_SYN_6) = 96 96 inetaccess.cpp > 18:09:06 > sizeof(DISCONN_SYN_ACK_6) = 24 24 inetaccess.cpp > 18:09:06 > sizeof(DISCONN_SYN_ACK_8) = 32 32 inetaccess.cpp > 18:09:06 > sizeof(DISCONN_ACK_6) = 64 64 inetaccess.cpp > 18:09:06 > sizeof(FIN_6) = 24 24 inetaccess.cpp > 18:09:06 > sizeof(FIN_8) = 32 32 inetaccess.cpp > 18:09:06 > sizeof(ERR) = 256 256 inetaccess.cpp > 18:09:06 > sizeof(INFO_6) = 256 256 inetaccess.cpp > 18:09:06 > sizeof(INFO_7) = 272 272 inetaccess.cpp > 18:09:06 > sizeof(INFO_8) = 1068 1072 plugin_runner.cpp > 18:09:06 > Plugin InetAccess authorizator v.1.2 parsesettings inetaccess.cpp > 18:09:06 > AUTH_IA_SETTINGS::ParseSettings s.moduleParams.size=4 stgconfig.cpp > 18:09:06 > new AUTH_IA parser.cpp > 18:09:06 > PARSER_CHG_USER::Reset() plugin_runner.cpp > 18:09:06 > Plugin Stg configurator v.0.07 parsesettings ether_cap.cpp > 18:09:06 > constructor ETHER_CAP_CREATOR plugin_runner.cpp > 18:09:06 > Plugin Ether_cap v.1.0 parsesettings constructor IPQ_CAP_CREATOR plugin_runner.cpp > 18:09:06 > Plugin ipq_cap v.1.1 parsesettings ping.cpp > 18:09:06 > constructor PING_CREATOR plugin_runner.cpp > 18:09:06 > Plugin Pinger v.1.01 parsesettings radius.cpp > 18:09:06 > RAD_CREATOR: constructor radius.cpp > 18:09:06 > RAD_CREATOR: new RADIUS plugin_runner.cpp > 18:09:06 > Plugin RADIUS data access plugin v 0.5 parsesettings radius.cpp > 18:09:06 > RAD_SETTINGS::ParseSettings s.moduleParams.size=5 traffcounter.cpp > 18:09:06 > TRAFFCOUNTER::Start() ipq_cap.cpp > 18:09:06 > IPQ_CAP::Start() ether_cap.cpp > 18:09:06 > ETHER_CAP::Start() radius.cpp > 18:09:06 > RADIUS::Start() radius.cpp > 18:09:06 > AuthServices: radius.cpp > 18:09:06 > Login-User radius.cpp > 18:09:06 > AcctServices: radius.cpp > 18:09:06 > Framed-User users.cpp > 18:09:06 > =====================| pid: 25051 |===================== users.cpp > 18:09:06 > Day = 24 Min = 9 users.cpp > 18:09:06 > Monitor=0 file USERS /users_r radius.cpp > 18:09:06 > RADIUS::Start Encryption initiated with password '123456' radius.cpp > 18:09:06 > RADIUS::PrepareNet() >>>> Start successfull. inetaccess.cpp > 18:09:06 > AUTH_IA::Start() inetaccess.cpp > 18:09:06 > AUTH_IA::PrepareNet() >>>> Start successfull. Port: 5555 ao.cpp > 18:09:06 > users->OpenSearch() usernum=17 traffcounter.cpp > 18:09:06 > AddUser: TEST users.cpp > 18:09:06 > Add IP Idx ping.cpp > 18:09:06 > users->OpenSearch() usernum=17 ping.cpp > 18:09:06 > added IPS xx.xx.xx.xx ping.cpp > 18:09:06 > PING::Start() PingDelay = 15 inetaccess.cpp > 18:09:06 > Monitor=0 file AUTH_IA /inetaccess_r inetaccess.cpp > 18:09:06 > Monitor time 1216930086 1216930206 inetaccess.cpp > 18:09:06 > Monitor=0 file AUTH_IA /inetaccess_t stgconfig.cpp > 18:09:06 > STG_CONFIG::Start() configproto.cpp > 18:09:06 > CONFIGPROTO::SetTariffs tariffs=80F6C00 configproto.cpp > 18:09:06 > CONFIGPROTO::SetTariffs settings=80E5008 configproto.cpp > 18:09:06 > CONFIGPROTO::SetTariffs tariffs=80F6C00 rsconf.cpp > 18:09:06 > CONFIGPROTO::Prepare() rsconf.cpp > 18:09:06 > STG_CONFIG::Prepare() socket - ok rsconf.cpp > 18:09:06 > STG_CONFIG::Prepare() setsockopt - ok rsconf.cpp > 18:09:06 > STG_CONFIG::Prepare() bind - ok port: 5555 rsconf.cpp > 18:09:06 > STG_CONFIG::Prepare() listen - ok ping.cpp > 18:09:06 > PING::Run stgconfig.cpp > 18:09:06 > =====================| pid: 25051 |===================== stgconfig.cpp > 18:09:06 > STG_CONFIG::Run rsconf.cpp > 18:09:06 > CONFIGPROTO: Ready to accept sh: /etc/stargazer//OnConnect: cannot execute binary file sh: /etc/stargazer//OnConnect: cannot execute binary file sh: /etc/stargazer//OnConnect: cannot execute binary file sh: /etc/stargazer//OnConnect: cannot execute binary file sh: /etc/stargazer//OnConnect: cannot execute binary file sh: /etc/stargazer//OnConnect: cannot execute binary file sh: /etc/stargazer//OnConnect: cannot execute binary file ether_cap.cpp > 18:09:08 > =====================| pid: 25051 |===================== traffcounter.cpp > 18:09:11 > FlushAndRemove() packets: 3(rem 0) ip2packets: 6(rem 0) traffcounter.cpp > 18:09:16 > FlushAndRemove() packets: 5(rem 0) ip2packets: 10(rem 0) ping.cpp > 18:09:16 > PING::Run traffcounter.cpp > 18:09:21 > FlushAndRemove() packets: 34(rem 0) ip2packets: 68(rem 0) rsconf.cpp > 18:09:24 > Connection accepted from 127.0.0.1 rsconf.cpp > 18:09:24 > RecvHdr - ok buf = SG04 sizeof(STG_HEADER) = 4 configproto.cpp > 18:09:24 > ParseXMLStart configproto.cpp > 18:09:24 > Start parser.cpp > 18:09:24 > PARSER_GET_SERVER_INFO::ParseStart parser.cpp > 18:09:24 > PARSER_GET_SERVER_INFO::ParseEnd parser.cpp > 18:09:24 > PARSER_GET_SERVER_INFO CreateAnswer configproto.cpp > 18:09:24 > currParser == NULL rsconf.cpp > 18:09:24 > End was detected rsconf.cpp > 18:09:24 > ReciveSendConf close rsconf.cpp > 18:09:24 > CONFIGPROTO: Ready to accept rsconf.cpp > 18:09:24 > Connection accepted from 127.0.0.1 rsconf.cpp > 18:09:24 > RecvHdr - ok buf = SG04 sizeof(STG_HEADER) = 4 configproto.cpp > 18:09:24 > ParseXMLStart configproto.cpp > 18:09:24 > Start parser.cpp > 18:09:24 > PARSER_GET_SERVER_INFO::ParseStart configproto.cpp > 18:09:24 > Start parser.cpp > 18:09:24 > PARSER_GET_USERS::ParseStart configproto.cpp > 18:09:24 > Start Segmentation fault Только он начал вываливаться!? Я наверное гдето затупил
madf Posted July 24, 2008 Posted July 24, 2008 Только он начал вываливаться!?Я наверное гдето затупил Путь к модулям в конфиге сменил?
ankos Posted July 24, 2008 Author Posted July 24, 2008 Теперь точно изменил! root@ns:~# root@ns:/usr/sbin# ./stargazer stg_timer.cpp > 19:29:39 > STG_TIMER started. Time: 1216934979 main.cpp > 19:29:39 > Module: /usr/src/stg11/stg-2.405.9.8_STG-WEB/projects/stargazer/modules/mod_auth_ao.so main.cpp > 19:29:39 > Module: /usr/src/stg11/stg-2.405.9.8_STG-WEB/projects/stargazer/modules/mod_auth_ia.so main.cpp > 19:29:39 > Module: /usr/src/stg11/stg-2.405.9.8_STG-WEB/projects/stargazer/modules/mod_conf_sg.so main.cpp > 19:29:39 > Module: /usr/src/stg11/stg-2.405.9.8_STG-WEB/projects/stargazer/modules/mod_cap_ether.so main.cpp > 19:29:39 > Module: /usr/src/stg11/stg-2.405.9.8_STG-WEB/projects/stargazer/modules/mod_cap_ipq.so main.cpp > 19:29:39 > Module: /usr/src/stg11/stg-2.405.9.8_STG-WEB/projects/stargazer/modules/mod_ping.so main.cpp > 19:29:39 > Module: /usr/src/stg11/stg-2.405.9.8_STG-WEB/projects/stargazer/modules/mod_radius.so ao.cpp > 19:29:39 > constructor AO_CREATOR plugin_runner.cpp > 19:29:39 > Plugin Always Online authorizator v.1.0 parsesettings inetaccess.cpp > 19:29:39 > new AUTH_IA inetaccess.cpp > 19:29:39 > sizeof(CONN_SYN_6) = 96 96 inetaccess.cpp > 19:29:39 > sizeof(CONN_SYN_8) = 96 96 inetaccess.cpp > 19:29:39 > sizeof(CONN_SYN_ACK_6) = 192 192 inetaccess.cpp > 19:29:39 > sizeof(CONN_SYN_ACK_8) = 200 200 inetaccess.cpp > 19:29:39 > sizeof(CONN_ACK_6) = 64 64 inetaccess.cpp > 19:29:39 > sizeof(ALIVE_SYN_6) = 368 368 inetaccess.cpp > 19:29:39 > sizeof(ALIVE_SYN_8) = 384 384 inetaccess.cpp > 19:29:39 > sizeof(ALIVE_ACK_6) = 64 64 inetaccess.cpp > 19:29:39 > sizeof(DISCONN_SYN_6) = 96 96 inetaccess.cpp > 19:29:39 > sizeof(DISCONN_SYN_ACK_6) = 24 24 inetaccess.cpp > 19:29:39 > sizeof(DISCONN_SYN_ACK_8) = 32 32 inetaccess.cpp > 19:29:39 > sizeof(DISCONN_ACK_6) = 64 64 inetaccess.cpp > 19:29:39 > sizeof(FIN_6) = 24 24 inetaccess.cpp > 19:29:39 > sizeof(FIN_8) = 32 32 inetaccess.cpp > 19:29:39 > sizeof(ERR) = 256 256 inetaccess.cpp > 19:29:39 > sizeof(INFO_6) = 256 256 inetaccess.cpp > 19:29:39 > sizeof(INFO_7) = 272 272 inetaccess.cpp > 19:29:39 > sizeof(INFO_8) = 1068 1072 plugin_runner.cpp > 19:29:39 > Plugin InetAccess authorizator v.1.2 parsesettings inetaccess.cpp > 19:29:39 > AUTH_IA_SETTINGS::ParseSettings s.moduleParams.size=4 stgconfig.cpp > 19:29:39 > new AUTH_IA parser.cpp > 19:29:39 > PARSER_CHG_USER::Reset() plugin_runner.cpp > 19:29:39 > Plugin Stg configurator v.0.07 parsesettings ether_cap.cpp > 19:29:39 > constructor ETHER_CAP_CREATOR plugin_runner.cpp > 19:29:39 > Plugin Ether_cap v.1.0 parsesettings constructor IPQ_CAP_CREATOR plugin_runner.cpp > 19:29:39 > Plugin ipq_cap v.1.1 parsesettings ping.cpp > 19:29:39 > constructor PING_CREATOR plugin_runner.cpp > 19:29:39 > Plugin Pinger v.1.01 parsesettings radius.cpp > 19:29:39 > RAD_CREATOR: constructor radius.cpp > 19:29:39 > RAD_CREATOR: new RADIUS plugin_runner.cpp > 19:29:39 > Plugin RADIUS data access plugin v 0.5 parsesettings radius.cpp > 19:29:39 > RAD_SETTINGS::ParseSettings s.moduleParams.size=5 traffcounter.cpp > 19:29:39 > TRAFFCOUNTER::Start() ipq_cap.cpp > 19:29:39 > IPQ_CAP::Start() ether_cap.cpp > 19:29:39 > ETHER_CAP::Start() radius.cpp > 19:29:39 > RADIUS::Start() radius.cpp > 19:29:39 > AuthServices: radius.cpp > 19:29:39 > Login-User radius.cpp > 19:29:39 > AcctServices: radius.cpp > 19:29:39 > Framed-User radius.cpp > 19:29:39 > RADIUS::Start Encryption initiated with password '123456' radius.cpp > 19:29:39 > RADIUS::PrepareNet() >>>> Start successfull. inetaccess.cpp > 19:29:39 > AUTH_IA::Start() inetaccess.cpp > 19:29:39 > AUTH_IA::PrepareNet() >>>> Start successfull. Port: 5555 users.cpp > 19:29:39 > =====================| pid: 26817 |===================== users.cpp > 19:29:39 > Day = 24 Min = 29 users.cpp > 19:29:39 > Monitor=0 file USERS /users_r inetaccess.cpp > 19:29:39 > Monitor=0 file AUTH_IA /inetaccess_r inetaccess.cpp > 19:29:39 > Monitor time 1216934919 1216935039 ao.cpp > 19:29:39 > users->OpenSearch() usernum=17 traffcounter.cpp > 19:29:39 > AddUser: TEST users.cpp > 19:29:39 > Add IP Idx ping.cpp > 19:29:39 > users->OpenSearch() usernum=17 ping.cpp > 19:29:39 > added IPS xx.xx.xx.xx ping.cpp > 19:29:39 > PING::Start() PingDelay = 15 stgconfig.cpp > 19:29:39 > STG_CONFIG::Start() configproto.cpp > 19:29:39 > CONFIGPROTO::SetTariffs tariffs=80F6D48 configproto.cpp > 19:29:39 > CONFIGPROTO::SetTariffs settings=80E5008 configproto.cpp > 19:29:39 > CONFIGPROTO::SetTariffs tariffs=80F6D48 rsconf.cpp > 19:29:39 > CONFIGPROTO::Prepare() rsconf.cpp > 19:29:39 > STG_CONFIG::Prepare() socket - ok rsconf.cpp > 19:29:39 > STG_CONFIG::Prepare() setsockopt - ok rsconf.cpp > 19:29:39 > STG_CONFIG::Prepare() bind - ok port: 5555 rsconf.cpp > 19:29:39 > STG_CONFIG::Prepare() listen - ok inetaccess.cpp > 19:29:39 > Monitor=0 file AUTH_IA /inetaccess_t ping.cpp > 19:29:39 > PING::Run stgconfig.cpp > 19:29:39 > =====================| pid: 26817 |===================== stgconfig.cpp > 19:29:39 > STG_CONFIG::Run rsconf.cpp > 19:29:39 > CONFIGPROTO: Ready to accept sh: /etc/stargazer//OnConnect: cannot execute binary file sh: /etc/stargazer//OnConnect: cannot execute binary file sh: /etc/stargazer//OnConnect: cannot execute binary file sh: /etc/stargazer//OnConnect: cannot execute binary file sh: /etc/stargazer//OnConnect: cannot execute binary file sh: /etc/stargazer//OnConnect: cannot execute binary file sh: /etc/stargazer//OnConnect: cannot execute binary file ether_cap.cpp > 19:29:41 > =====================| pid: 26817 |=====================
ankos Posted July 25, 2008 Author Posted July 25, 2008 Что говорят логи? Вроди сам СТГ нормально запускается!?
madf Posted July 25, 2008 Posted July 25, 2008 Я же говорил уже выше - pppd не отправляет радиусу запросов. Смотри его настройки.
starki Posted August 7, 2008 Posted August 7, 2008 Не стал создавать новую тему. Ситуация похожа. Версия freeradius 1.1.7 При авторизации радиус вываливается с сообщением "Ошибка сегментирования". Вот кусок вывода radiusd -X: Listening on authentication *:1812 Listening on accounting *:1813 Ready to process requests. rad_recv: Access-Request packet from host 127.0.0.1:39575, id=171, length=63 Service-Type = Framed-User Framed-Protocol = PPP User-Name = "test" Calling-Station-Id = "192.168.1.5" NAS-IP-Address = 192.168.1.111 NAS-Port = 0 Processing the authorize section of radiusd.conf modcall: entering group authorize for request 0 modcall[authorize]: module "preprocess" returns ok for request 0 modcall[authorize]: module "chap" returns noop for request 0 modcall[authorize]: module "mschap" returns noop for request 0 rlm_realm: No '@' in User-Name = "test", looking up realm NULL rlm_realm: No such realm "NULL" modcall[authorize]: module "suffix" returns noop for request 0 rlm_eap: No EAP-Message, not doing EAP modcall[authorize]: module "eap" returns noop for request 0 rlm_stg: stg_authorize() Ошибка сегментирования root@dm:/etc/raddb# radiusd.conf сделан по образцу. В выводе отладки старгазера даже намёков на попытку радиуса с ним связаться нет. Кусок stargazer.conf касательно подключения модуля: <Module radius> Password = 123456 ServerIP = 127.0.0.1 Port = 6666 AuthServices = Login-User AcctServices = Framed-User </Module> Кудаб еще копнуть?
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now