root@nabuco:~# echo “User-Name := eduardo” | radclient -x 192.168.2.100 disconnect secret
Sending Disconnect-Request of id 23 to 192.168.2.100 port 1700
User-Name := “eduardo”
rad_recv: Disconnect-ACK packet from host 192.168.2.100 port 1700, id=23, length=34
rad_verify: Received Disconnect-ACK packet from client 192.168.2.100 port 1700 with invalid signature (err=2)! (Shared secret is incorrect.)
Sending Disconnect-Request of id 23 to 192.168.2.100 port 1700
User-Name := “eduardo”
rad_recv: Disconnect-NAK packet from host 192.168.2.100 port 1700, id=23, length=40
rad_verify: Received Disconnect-NAK packet from client 192.168.2.100 port 1700 with invalid signature (err=2)! (Shared secret is incorrect.)
When I run the radclient command, Mikrotik drops the connection and returns an ACK. But somewhere in the process, something goes wrong and the radclient try to send again the PoD, but the connection is already dropped and it goes into a loop.
I don’t know what can be this. The secret is correct. I tried to change the localhost secret to, now they are the same (localhost and mikrotik).
And just FYI - I suggest you read a few RFC documents. You need to send the NAS more information than just the User-Name. Please see the post at http://forum.mikrotik.com/t/radius-disconnect/5070/1 where it was discussed and imlpemented successfully, when MT introduced the radius listener into MT.
From experience, you can definately disconnect PPPoE connections from within Radius using a Disconnect Message as Normis said, not a POD.
