2 Nov 15:34
dot1x timouts with VMPS
From: <Sean.Boran@...>
Subject: dot1x timouts with VMPS
Newsgroups: gmane.network.freenac.devel
Date: 2006-11-02 14:37:31 GMT
Subject: dot1x timouts with VMPS
Newsgroups: gmane.network.freenac.devel
Date: 2006-11-02 14:37:31 GMT
The perl script that handles the VMPS requests (rad2vmps) waits forever for VMPS answers: Thu Nov 2 15:25:17 2006 : Debug: modcall[authorize]: module "check_mac" returns noop for request 86 Thu Nov 2 15:25:17 2006 : Debug: modsingle[authorize]: calling eap (rlm_eap) for request 86 Thu Nov 2 15:25:17 2006 : Debug: rlm_eap: EAP packet type response id 18 length 6 Thu Nov 2 15:25:17 2006 : Debug: rlm_eap: No EAP Start, assuming it's an on-going EAP conversation Thu Nov 2 15:25:17 2006 : Debug: modsingle[authorize]: returned from eap (rlm_eap) for request 86 Thu Nov 2 15:25:17 2006 : Debug: modcall[authorize]: module "eap" returns updated for request 86 Thu Nov 2 15:25:17 2006 : Debug: modcall: leaving group authorize (returns updated) for request 86 Thu Nov 2 15:25:17 2006 : Debug: rad_check_password: Found Auth-Type EAP Thu Nov 2 15:25:17 2006 : Debug: auth: type "EAP" Thu Nov 2 15:25:17 2006 : Debug: Processing the authenticate section of radiusd.conf Thu Nov 2 15:25:17 2006 : Debug: modcall: entering group authenticate for request 86 Thu Nov 2 15:25:17 2006 : Debug: modsingle[authenticate]: calling eap (rlm_eap) for request 86 Thu Nov 2 15:25:17 2006 : Debug: rlm_eap: Request found, released from the list Thu Nov 2 15:25:17 2006 : Debug: rlm_eap: EAP/mschapv2 Thu Nov 2 15:25:17 2006 : Debug: rlm_eap: processing type mschapv2 Thu Nov 2 15:25:17 2006 : Debug: rlm_eap: Freeing handler Thu Nov 2 15:25:17 2006 : Debug: modsingle[authenticate]: returned from eap (rlm_eap) for request 86 Thu Nov 2 15:25:17 2006 : Debug: modcall[authenticate]: module "eap" returns ok for request 86 Thu Nov 2 15:25:17 2006 : Debug: modcall: leaving group authenticate (returns ok) for request 86 Thu Nov 2 15:25:17 2006 : Debug: radius_xlat: 'Required attributes "Calling-Station-Id" and "NAS-IP-Address" were not found in the request.' Thu Nov 2 15:25:17 2006 : Debug: Processing the post-auth section of radiusd.conf Thu Nov 2 15:25:17 2006 : Debug: modcall: entering group post-auth for request 86 Thu Nov 2 15:25:17 2006 : Debug: modsingle[post-auth]: calling check_mac (rlm_perl) for request 86 Thu Nov 2 15:25:17 2006 : Debug: perl_pool: item 0x834a818 asigned new request. Handled so far: 42 Thu Nov 2 15:25:17 2006 : Debug: found interpetator at address 0x834a818 So: - a timeout needs to be added (its only a UDP answer, that may never come) e.g. 200ms - and a number of retries, e.g. 5 - and a second vmps server IP address - all paramets should be configurable. Sean ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
RSS Feed