Community discussions

MikroTik App
  4. RouterOS
  5. General

RADIUS server is not responding - RB333 3.7

Post Reply
 
altere
just joined
Topic Author
Posts: 19
Joined: Tue Apr 03, 2007 7:13 pm

RADIUS server is not responding - RB333 3.7

Thu May 08, 2008 1:33 am

We just setup a new AP with radius hotspot authentication, it's setup exactly like the rest of our units that are working perfectly fine.

This unit always logs RADIUS server is not responding. Below is some information..
Code: Select all
 0   service=login,hotspot,wireless,dhcp called-id="" domain="" 
     address=xx.xx.xx.xx secret="xxxx" authentication-port=1812 
     accounting-port=1813 timeout=2s accounting-backup=no realm=""
Code: Select all
 0   name="hotspot1" interface=wlan1 address-pool=hs-pool-4 profile=hsprof1 
     idle-timeout=5m keepalive-timeout=none addresses-per-mac=3
Code: Select all
 1   name="hsprof1" hotspot-address=10.10.2.1 dns-name="" 
     html-directory=hotspot rate-limit="" http-proxy=0.0.0.0:0 
     smtp-server=0.0.0.0 login-by=mac,http-chap mac-auth-password="" 
     split-user-domain=no use-radius=yes radius-accounting=yes 
     radius-interim-update=received nas-port-type=wireless-802.11 
     radius-default-domain="" radius-location-id="" radius-location-name=""
Code: Select all
rad_recv: Access-Request packet from host xx.xx.xx.xx:35989, id=36, length=209
        NAS-Port-Type = Wireless-802.11
        Calling-Station-Id = "00:02:6F:45:7D:EF"
        Called-Station-Id = "hotspot1"
        NAS-Port-Id = "wlan1"
        User-Name = "00:02:6F:45:7D:EF"
        NAS-Port = 2153775134
        Acct-Session-Id = "8060001e"
        Framed-IP-Address = 10.10.2.150
        Mikrotik-Host-IP = 10.10.2.150
        CHAP-Challenge = 0x441339ea712235d12f5cb17537eca8e1
        CHAP-Password = 0xc3ab7aeaf60eec30eac9dcf7a2409f2b62
        Service-Type = Login-User
        WISPr-Logoff-URL = "http://10.10.2.1/logout"
        NAS-Identifier = "twilight-gwa"
        NAS-IP-Address = xx.xx.xx.xx
  Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 1
  modcall[authorize]: module "preprocess" returns ok for request 1
  rlm_chap: Setting 'Auth-Type := CHAP'
  modcall[authorize]: module "chap" returns ok for request 1
  modcall[authorize]: module "mschap" returns noop for request 1
    rlm_realm: No '@' in User-Name = "00:02:6F:45:7D:EF", looking up realm NULL
    rlm_realm: No such realm "NULL"
  modcall[authorize]: module "suffix" returns noop for request 1
  modcall[authorize]: module "files" returns notfound for request 1
radius_xlat:  '00:02:6F:45:7D:EF'
rlm_sql (sql): sql_set_user escaped user --> '00:02:6F:45:7D:EF'
radius_xlat:  'SELECT id, UserName, Attribute, Value, op           FROM radcheck           WHERE Username = '00:02:6F:45:7D:EF'           ORDER BY id'
rlm_sql (sql): Reserving sql socket id: 2
rlm_sql (sql): User 00:02:6F:45:7D:EF not found in radcheck
radius_xlat:  'SELECT radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupcheck.Value,radgroupcheck.op  FROM radgroupcheck,usergroup WHERE usergroup.Username = '00:02:6F:45:7D:EF' AND usergroup.GroupName = radgroupcheck.GroupName ORDER BY radgroupcheck.id'
radius_xlat:  'SELECT radgroupreply.id,radgroupreply.GroupName,radgroupreply.Attribute,radgroupreply.Value,radgroupreply.op  FROM radgroupreply,usergroup WHERE usergroup.Username = '00:02:6F:45:7D:EF' AND usergroup.GroupName = radgroupreply.GroupName ORDER BY radgroupreply.id'
rlm_sql (sql): Released sql socket id: 2
  modcall[authorize]: module "sql" returns ok for request 1
rlm_pap: Found existing Auth-Type, not changing it.
  modcall[authorize]: module "pap" returns noop for request 1
modcall: leaving group authorize (returns ok) for request 1
  rad_check_password:  Found Auth-Type Local
auth: type Local
auth: user supplied CHAP-Password matches local User-Password
  Processing the post-auth section of radiusd.conf
modcall: entering group post-auth for request 1
rlm_sql (sql): Processing sql_postauth
radius_xlat:  '00:02:6F:45:7D:EF'
rlm_sql (sql): sql_set_user escaped user --> '00:02:6F:45:7D:EF'
radius_xlat:  'INSERT into radpostauth (id, user, pass, reply, date) values ('', '00:02:6F:45:7D:EF', 'Chap-Password', 'Access-Accept', NOW())'
rlm_sql (sql) in sql_postauth: query is INSERT into radpostauth (id, user, pass, reply, date) values ('', '00:02:6F:45:7D:EF', 'Chap-Password', 'Access-Accept', NOW())
rlm_sql (sql): Reserving sql socket id: 1
rlm_sql (sql): Released sql socket id: 1
  modcall[post-auth]: module "sql" returns ok for request 1
modcall: leaving group post-auth (returns ok) for request 1
Sending Access-Accept of id 36 to xx.xx.xx.xx port 35989
        MS-Primary-DNS-Server = xx.xx.xx.xx
        MS-Secondary-DNS-Server = xx.xx.xx.xx
        Framed-Compression = Van-Jacobson-TCP-IP
        Framed-Protocol = PPP
        Service-Type = Framed-User
        Mikrotik-Rate-Limit := "128k/384k"
Finished request 1
Going to the next request
--- Walking the entire request list ---
Waking up in 6 seconds...
rad_recv: Access-Request packet from host xx.xx.xx.xx:35989, id=36, length=209
Sending duplicate reply to client twilight-gwa:35989 - ID: 36
Re-sending Access-Accept of id 36 to xx.xx.xx.xx port 35989
--- Walking the entire request list ---
Waking up in 4 seconds...
Radius is getting the information and accepts it but the unit responds in the logs with trying to login by mac and radius server not responding. Again this is the same setup we have on other units using the same radius server and the rest of them are working. I've removed the hotspot server/profile, radius profile and re-entered it several times with no luck. I've changed the secret but I keep getting the same results from the radius server, it gets the information but the mikrotik board isn't authenticating. Any help would be appreciated.
Top
 
altere
just joined
Topic Author
Posts: 19
Joined: Tue Apr 03, 2007 7:13 pm

Re: RADIUS server is not responding - RB333 3.7

Mon May 12, 2008 5:10 pm

bump..

i could really use some insight to this. I've not taken the config from a working unit and put it on this with the change of the ssid and ip address and still..... nothing!
Top
 
kthameen
Frequent Visitor
Frequent Visitor
Posts: 87
Joined: Wed Dec 21, 2005 4:22 am
Location: Leuven,Belgium

Re: RADIUS server is not responding - RB333 3.7

Mon May 12, 2008 6:16 pm

Change your Radius and Userman ip to your wan ip
Top
 
altere
just joined
Topic Author
Posts: 19
Joined: Tue Apr 03, 2007 7:13 pm

Re: RADIUS server is not responding - RB333 3.7

Tue May 13, 2008 10:40 pm

What? Why, I'm trying to access a remote FreeRadius server. I do not want authentication from the mikrotik itself. This unit replaced a Star-OS box that was working fine as well. I've changed all the users profiles as well to work with mikrotik. This is quite annoying.
Top
Post Reply

Who is online

Users browsing this forum: Bing [Bot], DNAT, maigonis, Renfrew and 114 guests
  4. RouterOS
  5. General