I have configured the authentication to MikroTik via FreeRadius. I see the strange packets in Radius Logs and MikroTik Radius Logs. Initially, MikroTik sends Access-Request without password (login only) to FreeRadius twice. After that MikroTik sends Access-Request with login and password twice too. Why does it do that?
FreeRadius log:
Mikrotik log:Wed Jun 10 10:53:06 2015 : Auth: Login incorrect: [user] (from client mkr_test port 0 cli 10.250.3.3)
Wed Jun 10 10:53:13 2015 : Auth: Login OK: [user] (from client mkr_test port 0 cli 10.250.3.3)
Wed Jun 10 10:53:18 2015 : Auth: Login OK: [user] (from client mkr_test port 0 cli 10.250.3.3)
Mikrotik config:10:52:08 radius,debug new request 0d:06 code=Access-Request service=login
10:52:08 radius,debug sending 0d:06 to 10.250.3.3:1812
10:52:08 radius,debug,packet sending Access-Request with id 37 to 10.250.3.3:1812
10:52:08 radius,debug,packet Signature = 0x7e0c57b177ae35eb579be4f1310c50b3
10:52:08 radius,debug,packet Service-Type = 1
10:52:08 radius,debug,packet User-Name = "user"
10:52:08 radius,debug,packet User-Password = 0x
10:52:08 radius,debug,packet Calling-Station-Id = "10.250.3.3"
10:52:08 radius,debug,packet NAS-Identifier = "MikroTik"
10:52:08 radius,debug,packet NAS-IP-Address = 10.52.21.24
10:52:10 radius,debug resending 0d:06
10:52:10 radius,debug,packet sending Access-Request with id 37 to 10.250.3.3:1812
10:52:10 radius,debug,packet Signature = 0x7e0c57b177ae35eb579be4f1310c50b3
10:52:10 radius,debug,packet Service-Type = 1
10:52:10 radius,debug,packet User-Name = "user"
10:52:10 radius,debug,packet User-Password = 0x
10:52:10 radius,debug,packet Calling-Station-Id = "10.250.3.3"
10:52:10 radius,debug,packet NAS-Identifier = "MikroTik"
10:52:10 radius,debug,packet NAS-IP-Address = 10.52.21.24
10:52:11 radius,debug,packet received Access-Reject with id 37 from 10.250.3.3:1812
10:52:11 radius,debug,packet Signature = 0xd7c795b70780ed54b62e9b21cf104469
10:52:11 radius,debug received reply for 0d:06
10:52:15 radius,debug new request 0d:07 code=Access-Request service=login
10:52:15 radius,debug sending 0d:07 to 10.250.3.3:1812
10:52:15 radius,debug,packet sending Access-Request with id 38 to 10.250.3.3:1812
10:52:15 radius,debug,packet Signature = 0x5ff87e052f305def25a70bf71dbabf00
10:52:15 radius,debug,packet Service-Type = 1
10:52:15 radius,debug,packet User-Name = "user"
10:52:15 radius,debug,packet User-Password = 0x313233
10:52:15 radius,debug,packet Calling-Station-Id = "10.250.3.3"
10:52:15 radius,debug,packet NAS-Identifier = "MikroTik"
10:52:15 radius,debug,packet NAS-IP-Address = 10.52.21.24
10:52:16 radius,debug,packet received Access-Accept with id 38 from 10.250.3.3:1812
10:52:16 radius,debug,packet Signature = 0x8de4fa18a0ebac1cfbbfbc8a514ead11
10:52:16 radius,debug received reply for 0d:07
10:52:19 radius,debug new request 0d:08 code=Access-Request service=login
10:52:19 radius,debug sending 0d:08 to 10.250.3.3:1812
10:52:19 radius,debug,packet sending Access-Request with id 39 to 10.250.3.3:1812
10:52:19 radius,debug,packet Signature = 0x4ad084e91f48eaa11381823a5db70ae5
10:52:19 radius,debug,packet Service-Type = 1
10:52:19 radius,debug,packet User-Name = "user"
10:52:19 radius,debug,packet User-Password = 0x313233
10:52:19 radius,debug,packet Calling-Station-Id = "10.250.3.3"
10:52:19 radius,debug,packet NAS-Identifier = "MikroTik"
10:52:19 radius,debug,packet NAS-IP-Address = 10.52.21.24
10:52:21 radius,debug,packet received Access-Accept with id 39 from 10.250.3.3:1812
10:52:21 radius,debug,packet Signature = 0x33aab39e9612240e03f58b0d3ca1c13b
10:52:21 radius,debug received reply for 0d:08
10:52:21 system,info,account user user logged in from 10.250.3.3 via ssh
Code: Select all
[admin@MikroTik] > radius print detail
Flags: X - disabled
0 service=login called-id="" domain="" address=10.250.3.3 secret="secret" authentication-port=1812 accounting-port=1813 timeout=2s accounting-backup=no realm="" src-address=10.52.21.24
[admin@MikroTik] > user aaa print
use-radius: yes
accounting: no
interim-update: 0s
default-group: read
exclude-groups: