From owner-freebsd-net@FreeBSD.ORG Wed Dec 24 23:20:42 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7B05316A4CE for ; Wed, 24 Dec 2003 23:20:42 -0800 (PST) Received: from flock1.newmail.ru (morda.newmail.ru [212.48.140.150]) by mx1.FreeBSD.org (Postfix) with SMTP id 562E243D41 for ; Wed, 24 Dec 2003 23:20:38 -0800 (PST) (envelope-from Andrew.Karjagin@newmail.ru) Received: (qmail 20265 invoked by alias); 25 Dec 2003 07:20:38 -0000 Message-ID: <20031225072038.20264.qmail@flock1.newmail.ru> From: Andrew Karjagin To: freebsd-net@freebsd.org X-Priority: 3 MIME-Version: 1.0 X-Mailer: DenMail v1.0 by ORC X-Uid: 689 X-RemoteIP: 81.89.64.3 (81.89.64.105) Date: Thu, 25 Dec 2003 10:20:38 +0300 Content-type: text/plain; charset="koi8-r" Subject: CHAP FreeRadius and MPD X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 25 Dec 2003 07:20:42 -0000 Hello! I am install FreeRadius 0.9.3 with mpd 3.15 on FreeBSD 4.9-STABLE. FreeRadius work with MySQL. And I can't setup VPN connection. View archive http://www.freebsd.org/cgi/getmsg.cgi?fetch=484342+498693+/usr/local/www/db/text/2003/freebsd-net/20031116.freebsd-net but it doesn't help me. microsoft dictionary to radius config includes. This is my mpd.conf: default: load pptp0 pptp0: new -i ng0 pptp0 pptp0 set ipcp ranges 81.89.xx.251/32 81.89.xx.252/32 load pptp_standart pptp_standart: set iface disable on-demand set bundle enable multilink set link yes acfcomp protocomp set link no pap chap set link enable chap set link keep-alive 60 180 set ipcp yes vjcomp set ipcp dns 81.89.xx.250 18.89.xy.2 set iface enable proxy-arp set bundle enable compression set ccp yes mppc set ccp yes mpp-e40 set ccp yes mpp-e128 set ccp yes mpp-stateless set pptp enable incoming set pptp disable originate set link mtu 1440 load radius radius: set radius server 81.89.xx.xxy testpw 1812 1813 set radius timeout 10 set radius config /etc/radius.conf set radius retries 3 set bundle enable radius-auth radius-fallback set bundle enable radius-acct set ipcp yes radius-ip And this is my mpd.log: Dec 25 09:20:47 savvin /kernel: mpd Dec 25 09:20:47 savvin mpd: mpd: pid 177, version 3.15 (root@savvin.tel.ru 13:53 19-Dec-2003) Dec 25 09:20:48 savvin mpd: [pptp0] ppp node is "mpd177-pptp0" Dec 25 09:20:48 savvin mpd: [pptp0] using interface ng0 Dec 25 09:20:48 savvin mpd: mpd: local IP address for PPTP is 0.0.0.0 Dec 25 09:25:44 savvin mpd: mpd: PPTP connection from 81.89.xx.x:1655 Dec 25 09:25:44 savvin mpd: pptp0: attached to connection with 81.89.xx.x:1655 Dec 25 09:25:44 savvin mpd: [pptp0] IFACE: Open event Dec 25 09:25:44 savvin mpd: [pptp0] IPCP: Open event Dec 25 09:25:44 savvin mpd: [pptp0] IPCP: state change Initial --> Starting Dec 25 09:25:44 savvin mpd: [pptp0] IPCP: LayerStart Dec 25 09:25:44 savvin mpd: [pptp0] IPCP: Open event Dec 25 09:25:44 savvin mpd: [pptp0] bundle: OPEN event in state CLOSED Dec 25 09:25:44 savvin mpd: [pptp0] opening link "pptp0"... Dec 25 09:25:44 savvin mpd: [pptp0] link: OPEN event Dec 25 09:25:44 savvin mpd: [pptp0] LCP: Open event Dec 25 09:25:44 savvin mpd: [pptp0] LCP: state change Initial --> Starting Dec 25 09:25:44 savvin mpd: [pptp0] LCP: LayerStart Dec 25 09:25:44 savvin mpd: [pptp0] device: OPEN event in state DOWN Dec 25 09:25:44 savvin mpd: [pptp0] attaching to peer's outgoing call Dec 25 09:25:45 savvin mpd: [pptp0] device is now in state OPENING Dec 25 09:25:45 savvin mpd: [pptp0] device: UP event in state OPENING Dec 25 09:25:45 savvin mpd: [pptp0] device is now in state UP Dec 25 09:25:45 savvin mpd: [pptp0] link: UP event Dec 25 09:25:45 savvin mpd: [pptp0] link: origination is remote Dec 25 09:25:45 savvin mpd: [pptp0] LCP: Up event Dec 25 09:25:45 savvin mpd: [pptp0] LCP: state change Starting --> Req-Sent Dec 25 09:25:45 savvin mpd: [pptp0] LCP: phase shift DEAD --> ESTABLISH Dec 25 09:25:45 savvin mpd: [pptp0] LCP: SendConfigReq #1 Dec 25 09:25:45 savvin mpd: ACFCOMP Dec 25 09:25:45 savvin mpd: PROTOCOMP Dec 25 09:25:45 savvin mpd: MRU 1500 Dec 25 09:25:45 savvin mpd: MAGICNUM 65229a88 Dec 25 09:25:45 savvin mpd: AUTHPROTO CHAP MSOFTv2 Dec 25 09:25:45 savvin mpd: MP MRRU 1600 Dec 25 09:25:45 savvin mpd: MP SHORTSEQ Dec 25 09:25:45 savvin mpd: ENDPOINTDISC [802.1] 00 c0 26 a2 da 23 Dec 25 09:25:46 savvin mpd: pptp0-0: ignoring SetLinkInfo Dec 25 09:25:46 savvin mpd: [pptp0] LCP: rec'd Configure Request #0 link 0 (Req-Sent) Dec 25 09:25:46 savvin mpd: MRU 1400 Dec 25 09:25:46 savvin mpd: MAGICNUM 382c40eb Dec 25 09:25:46 savvin mpd: PROTOCOMP Dec 25 09:25:46 savvin mpd: ACFCOMP Dec 25 09:25:46 savvin mpd: CALLBACK Dec 25 09:25:46 savvin mpd: Not supported Dec 25 09:25:46 savvin mpd: [pptp0] LCP: SendConfigRej #0 Dec 25 09:25:46 savvin mpd: CALLBACK Dec 25 09:25:46 savvin mpd: [pptp0] LCP: rec'd Configure Request #1 link 0 (Req-Sent) Dec 25 09:25:46 savvin mpd: MRU 1400 Dec 25 09:25:46 savvin mpd: MAGICNUM 382c40eb Dec 25 09:25:46 savvin mpd: PROTOCOMP Dec 25 09:25:46 savvin mpd: ACFCOMP Dec 25 09:25:46 savvin mpd: [pptp0] LCP: SendConfigAck #1 Dec 25 09:25:46 savvin mpd: MRU 1400 Dec 25 09:25:46 savvin mpd: MAGICNUM 382c40eb Dec 25 09:25:46 savvin mpd: PROTOCOMP Dec 25 09:25:46 savvin mpd: ACFCOMP Dec 25 09:25:46 savvin mpd: [pptp0] LCP: state change Req-Sent --> Ack-Sent Dec 25 09:25:47 savvin mpd: [pptp0] LCP: SendConfigReq #2 Dec 25 09:25:47 savvin mpd: ACFCOMP Dec 25 09:25:47 savvin mpd: PROTOCOMP Dec 25 09:25:47 savvin mpd: MRU 1500 Dec 25 09:25:47 savvin mpd: MAGICNUM 65229a88 Dec 25 09:25:47 savvin mpd: AUTHPROTO CHAP MSOFTv2 Dec 25 09:25:47 savvin mpd: MP MRRU 1600 Dec 25 09:25:47 savvin mpd: MP SHORTSEQ Dec 25 09:25:47 savvin mpd: ENDPOINTDISC [802.1] 00 c0 26 a2 da 23 Dec 25 09:25:47 savvin mpd: [pptp0] LCP: rec'd Configure Reject #2 link 0 (Ack-Sent) Dec 25 09:25:47 savvin mpd: MP MRRU 1600 Dec 25 09:25:47 savvin mpd: MP SHORTSEQ Dec 25 09:25:47 savvin mpd: ENDPOINTDISC [802.1] 00 c0 26 a2 da 23 Dec 25 09:25:47 savvin mpd: [pptp0] LCP: SendConfigReq #3 Dec 25 09:25:47 savvin mpd: ACFCOMP Dec 25 09:25:47 savvin mpd: PROTOCOMP Dec 25 09:25:47 savvin mpd: MRU 1500 Dec 25 09:25:47 savvin mpd: MAGICNUM 65229a88 Dec 25 09:25:47 savvin mpd: AUTHPROTO CHAP MSOFTv2 Dec 25 09:25:47 savvin mpd: [pptp0] LCP: rec'd Configure Ack #3 link 0 (Ack-Sent) Dec 25 09:25:47 savvin mpd: ACFCOMP Dec 25 09:25:47 savvin mpd: PROTOCOMP Dec 25 09:25:47 savvin mpd: MRU 1500 Dec 25 09:25:47 savvin mpd: MAGICNUM 65229a88 Dec 25 09:25:47 savvin mpd: AUTHPROTO CHAP MSOFTv2 Dec 25 09:25:47 savvin mpd: [pptp0] LCP: state change Ack-Sent --> Opened Dec 25 09:25:47 savvin mpd: [pptp0] LCP: phase shift ESTABLISH --> AUTHENTICATE Dec 25 09:25:47 savvin mpd: [pptp0] LCP: auth: peer wants nothing, I want CHAP Dec 25 09:25:47 savvin mpd: [pptp0] CHAP: sending CHALLENGE Dec 25 09:25:47 savvin mpd: [pptp0] LCP: LayerUp Dec 25 09:25:47 savvin mpd: pptp0-0: ignoring SetLinkInfo Dec 25 09:25:47 savvin mpd: [pptp0] LCP: rec'd Ident #2 link 0 (Opened) Dec 25 09:25:47 savvin mpd: MESG: MSRASV5.10 Dec 25 09:25:47 savvin mpd: [pptp0] LCP: rec'd Ident #3 link 0 (Opened) Dec 25 09:25:47 savvin mpd: MESG: MSRAS-0-KARYAGIN Dec 25 09:25:47 savvin mpd: [pptp0] CHAP: rec'd RESPONSE #1 Dec 25 09:25:47 savvin mpd: Name: "richi" Dec 25 09:25:47 savvin mpd: [pptp0] RADIUS: using /etc/radius.conf Dec 25 09:25:47 savvin mpd: [pptp0] RADIUS: RadiusAddServer Adding 81.89.xx.xxy Dec 25 09:25:47 savvin mpd: [pptp0] RADIUS: RadiusPutAuth: RADIUS_CHAP (MSOFTv2) peer name: richi Dec 25 09:25:57 savvin mpd: [pptp0] RADIUS: RadiusSendRequest: RAD_ACCESS_REJECT for user richi Dec 25 09:25:57 savvin mpd: [pptp0] RADIUS: RadiusGetParams: PANIC no MS-CHAPv2 response received Dec 25 09:25:57 savvin mpd: Peer name: "richi" Dec 25 09:25:57 savvin mpd: mpd: warning: line too long, truncated Dec 25 09:25:57 savvin mpd: Can't get credentials for "richi" Dec 25 09:25:57 savvin mpd: [pptp0] CHAP: sending FAILURE Dec 25 09:25:57 savvin mpd: [pptp0] LCP: authorization failed Dec 25 09:25:57 savvin mpd: [pptp0] device: CLOSE event in state UP Dec 25 09:25:57 savvin mpd: pptp0-0: clearing call Dec 25 09:25:57 savvin mpd: pptp0-0: killing channel Dec 25 09:25:57 savvin mpd: [pptp0] PPTP call terminated Dec 25 09:25:57 savvin mpd: [pptp0] IFACE: Close event Dec 25 09:25:57 savvin mpd: [pptp0] IPCP: Close event Dec 25 09:25:57 savvin mpd: [pptp0] IPCP: state change Starting --> Initial Dec 25 09:25:57 savvin mpd: [pptp0] IPCP: LayerFinish Dec 25 09:25:57 savvin mpd: [pptp0] IFACE: Close event And this is my radius.log: Thu Dec 25 09:12:03 2003 : Info: Using deprecated naslist file. Support for this will go away soon. Thu Dec 25 09:12:03 2003 : Info: Using deprecated clients file. Support for this will go away soon. Thu Dec 25 09:12:03 2003 : Info: Using deprecated realms file. Support for this will go away soon. Thu Dec 25 09:12:03 2003 : Info: rlm_sql (sql): Driver rlm_sql_mysql (module rlm_sql_mysql) loaded and linked Thu Dec 25 09:12:03 2003 : Info: rlm_sql (sql): Attempting to connect to freeradius@localhost:/freeradius Thu Dec 25 09:12:03 2003 : Info: rlm_sql_mysql: Starting connect to MySQL server for #0 Thu Dec 25 09:12:03 2003 : Info: rlm_sql_mysql: Starting connect to MySQL server for #1 Thu Dec 25 09:12:03 2003 : Info: rlm_sql_mysql: Starting connect to MySQL server for #2 Thu Dec 25 09:12:03 2003 : Info: rlm_sql_mysql: Starting connect to MySQL server for #3 Thu Dec 25 09:12:03 2003 : Info: rlm_sql_mysql: Starting connect to MySQL server for #4 Thu Dec 25 09:12:03 2003 : Info: Listening on IP address *, ports 1812/udp and 1813/udp. Thu Dec 25 09:12:03 2003 : Info: Ready to process requests. Thu Dec 25 09:17:01 2003 : Auth: Login incorrect: [richi/] (from client ns port 0 cli 81.89.64.105) Thu Dec 25 09:17:11 2003 : Auth: Login incorrect: [richi/] (from client ns port 0) Thu Dec 25 09:17:21 2003 : Auth: Login incorrect: [richi/] (from client ns port 0) Can anyone help me - where and what I made wrong? __________ www.newmail.ru -- всегда что-то новое.