Re: [Radiusplugin-users] Re: radiusplugin on freebsd

radiusplugin-users

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Radiusplugin-users] Re: radiusplugin on freebsd

From:	Ralf Lübben
Subject:	Re: [Radiusplugin-users] Re: radiusplugin on freebsd
Date:	Wed, 15 Jul 2009 13:29:02 +0200
User-agent:	KMail/1.11.2 (Linux/2.6.28-13-generic; KDE/4.2.2; i686; ; )

Hi,

sorry, but the mailing list is for questions/help for the plugin from 
http://www.nongnu.org/radiusplugin/ .

The plugin additionally supports the interpretation of some radius attributes 
and converts them to OpenVPN attributes.



Regards
Ralf

On Wednesday 15 July 2009 10:17:02 am Robert Blacquiere wrote:
> Hi,
>
> I forgot to mention openvpn is working with pam to radius.
>
> Regards
>
> Robert
>
> On Wed, Jul 15, 2009 at 10:01 AM, Robert
>
> Blacquiere<address@hidden> wrote:
> > Hi,
> >
> > I have a problem getting radiusplugin working with openvpn 2.1 (beta
> > 15 i think). Openvpn starts up and with verbose logging i see in
> > comming connections. But the all stop at:
> > I have replaced client ip with XXX.XXX.XXX.XXX
> >
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561
> > TCPv4_SERVER READ [142] from XXX.XXX.XXX.XXX:52561: P_CONTROL_V1 kid=0
> > pid=[ #30 ] [ ] pid=6 DATA len=100
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ACK read
> > ID 6 (buf->len=100)
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ACK RWBS
> > rel->size=8 rel->packet_id=00000006 id=00000006 ret=1
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ACK mark
> > active incoming ID 6
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ACK
> > acknowledge ID 6 (ack->len=1)
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ACK
> > reliable_can_send active=0 current=0 : [26]
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 BIO write
> > tls_write_ciphertext 100 bytes
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ACK
> > reliable_can_send active=0 current=0 : [26]
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ACK write
> > ID 6 (ack->len=1, n=1)
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ACK
> > reliable_send_timeout 604800 [26]
> > Jul 15 09:46:59 extern openvpn[73377]: MULTI TCP: multi_tcp_post
> > TA_SOCKET_READ_RESIDUAL -> TA_SOCKET_WRITE
> > Jul 15 09:46:59 extern openvpn[73377]: MULTI TCP: multi_tcp_action
> > a=TA_SOCKET_WRITE p=1
> > Jul 15 09:46:59 extern openvpn[73377]: MULTI TCP: multi_tcp_wait_lite
> > a=TA_SOCKET_WRITE mi=0x800e6d000
> > Jul 15 09:46:59 extern openvpn[73377]: PO_CTL rwflags=0x0002 ev=9
> > arg=0x00574684 Jul 15 09:46:59 extern openvpn[73377]: PO_CTL
> > rwflags=0x0001 ev=8 arg=0x0056b6a8 Jul 15 09:46:59 extern openvpn[73377]:
> > I/O WAIT TR|Tw|Sr|SW [0/0] Jul 15 09:46:59 extern openvpn[73377]:
> > PO_WAIT[0,0] fd=9
> > rev=0x00000004 rwflags=0x0002 arg=0x00574684
> > Jul 15 09:46:59 extern openvpn[73377]: I/O WAIT status=0x0002
> > Jul 15 09:46:59 extern openvpn[73377]: MULTI TCP: multi_tcp_dispatch
> > a=TA_SOCKET_WRITE mi=0x800e6d000
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561
> > TCPv4_SERVER WRITE [50] to XXX.XXX.XXX.XXX:52561: P_ACK_V1 kid=0 pid=[
> > #30 ] [ 6 ]
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ACK
> > reliable_can_send active=0 current=0 : [26]
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ACK
> > reliable_send_timeout 604800 [26]
> > Jul 15 09:46:59 extern openvpn[73377]: MULTI TCP: multi_tcp_post
> > TA_SOCKET_WRITE -> TA_SOCKET_READ_RESIDUAL
> > Jul 15 09:46:59 extern openvpn[73377]: MULTI TCP: multi_tcp_action
> > a=TA_SOCKET_READ_RESIDUAL p=1
> > Jul 15 09:46:59 extern openvpn[73377]: MULTI TCP: multi_tcp_dispatch
> > a=TA_SOCKET_READ_RESIDUAL mi=0x800e6d000
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561
> > TCPv4_SERVER READ [88] from XXX.XXX.XXX.XXX:52561: P_CONTROL_V1 kid=0
> > pid=[ #31 ] [ ] pid=7 DATA len=46
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ACK read
> > ID 7 (buf->len=46)
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ACK RWBS
> > rel->size=8 rel->packet_id=00000007 id=00000007 ret=1
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ACK mark
> > active incoming ID 7
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ACK
> > acknowledge ID 7 (ack->len=1)
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ACK
> > reliable_can_send active=0 current=0 : [26]
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 BIO write
> > tls_write_ciphertext 46 bytes
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 BIO read
> > tls_read_plaintext 278 bytes
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561
> > PLUGIN_CALL: PRE type=PLUGIN_AUTH_USER_PASS_VERIFY
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ARGV[0] =
> > '/usr/local/lib/radiusplugin.so'
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ENVP[0] =
> > 'auth_control_file=openvpn_acf_bed8fa66db6df342bed3ea2c1163bff4.tmp'
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ENVP[1] =
> > 'untrusted_port=52561'
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ENVP[2] =
> > 'untrusted_ip=XXX.XXX.XXX.XXX'
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ENVP[4] =
> > 'username=USER'
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ENVP[5] =
> > 'remote_port_1=443'
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ENVP[6] =
> > 'local_port_1=443'
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ENVP[7] =
> > 'proto_1=tcp-server'
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ENVP[8] =
> > 'daemon_log_redirect=0'
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ENVP[9] =
> > 'daemon=1'
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ENVP[10] =
> > 'verb=8' Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561
> > ENVP[11] = 'config=/usr/local/etc/openvpn/server.conf'
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ENVP[12]
> > = 'ifconfig_local=192.168.203.17'
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ENVP[13]
> > = 'ifconfig_netmask=255.255.255.240'
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ENVP[14]
> > = 'ifconfig_broadcast=192.168.203.31'
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ENVP[15]
> > = 'script_context=init'
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ENVP[16]
> > = 'tun_mtu=1500'
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ENVP[17]
> > = 'link_mtu=1575'
> > Jul 15 09:46:59 extern openvpn[73377]: XXX.XXX.XXX.XXX:52561 ENVP[18]
> > = 'dev=tap0'XXX.XXX.XXX.XXX
> > -> and nothing happens after this.
> > I also see no radius requests at the radius server.
> >
> > What am i missing?
> >
> > Regards
> >
> > Robert
>
> _______________________________________________
> Radiusplugin-users mailing list
> address@hidden
> http://lists.nongnu.org/mailman/listinfo/radiusplugin-users

[Prev in Thread]

Current Thread

[Next in Thread]

[Radiusplugin-users] radiusplugin on freebsd, Robert Blacquiere, 2009/07/15
- [Radiusplugin-users] Re: radiusplugin on freebsd, Robert Blacquiere, 2009/07/15
  - Re: [Radiusplugin-users] Re: radiusplugin on freebsd, Ralf Lübben <=
    - Re: [Radiusplugin-users] Re: radiusplugin on freebsd, Robert Blacquiere, 2009/07/15

Prev by Date: [Radiusplugin-users] Re: radiusplugin on freebsd
Next by Date: Re: [Radiusplugin-users] Re: radiusplugin on freebsd
Previous by thread: [Radiusplugin-users] Re: radiusplugin on freebsd
Next by thread: Re: [Radiusplugin-users] Re: radiusplugin on freebsd
Index(es):
- Date
- Thread