HomeForumsOpen-Source SoftwareCoovaChilli Development

radclient seems to not be communicating as required ???

Wed, 06/17/2009 - 12:11 — clubbing80s

I get this when trying to Disconnect a user ....

radclient seems to not be communicating as required :

radclient: no response from server for ID 125 socket 3
Sending Disconnect-Request of id 125 to 192.168.11.1 port 1812
User-Name = "greg"
Sending Disconnect-Request of id 125 to 192.168.11.1 port 1812
User-Name = "greg"
Sending Disconnect-Request of id 125 to 192.168.11.1 port 1812
User-Name = "greg"

I have tried this with a number of ports etc from the command line etc ..

[root@localhost ~]# echo "User-Name='greg'" | radclient -c '1' -n '3' -r '3' -t '3' -x '127.0.0.1:1812' 'disconnect' 'test123' 2>&1
Sending Disconnect-Request of id 231 to 127.0.0.1 port 1812
User-Name = "greg"
Sending Disconnect-Request of id 231 to 127.0.0.1 port 1812
User-Name = "greg"
Sending Disconnect-Request of id 231 to 127.0.0.1 port 1812
User-Name = "greg"
radclient: no response from server for ID 231 socket 3

What would cause this ? How would I fix it ?

‹ Some problems with kamikaze 8.09 Nanostation + Chilli redirection issue on some smartphones ›
Thu, 06/18/2009 - 15:21 — clubbing80s

Re: radclient seems to not be communicating as required ???

resolved

Issue was with the secret don't know what but replaced the secrets (default testing123) with my name and it worked.

working example for future ref.

/etc/chilli/config

HS_NASID=nas01
HS_UAMSERVER=192.168.11.1
HS_UAMSECRET=uamsharedsecret
HS_RADIUS=127.0.0.1 # replace with your radius server's ip
HS_RADIUS2=127.0.0.1
HS_RADSECRET=gregory

/etc/raddb.conf

client 127.0.0.1 {
secret = "gregory"
shortname = localhost
nastype = other
}

Wed, 06/17/2009 - 15:50 — clubbing80s

Re: radclient seems to not be communicating as required ???

ok I put chilli in debug mode and tail ed the messages log file and got the following

Jun 17 15:28:26 localhost coova-chilli[4895]: radius.c: 1523: Received radius request from wrong address 010ba8c0!
Jun 17 15:28:26 localhost coova-chilli[4895]: chilli.c: 3877: radius_ind() failed!
Jun 17 15:28:29 localhost coova-chilli[4895]: radius.c: 1523: Received radius request from wrong address 010ba8c0!
Jun 17 15:28:29 localhost coova-chilli[4895]: chilli.c: 3877: radius_ind() failed!
Jun 17 15:28:32 localhost coova-chilli[4895]: radius.c: 1523: Received radius request from wrong address 010ba8c0!
Jun 17 15:28:32 localhost coova-chilli[4895]: chilli.c: 3877: radius_ind() failed!
Jun 17 15:28:58 localhost coova-chilli[4895]: radius.c: 1523: Received radius request from wrong address 010ba8c0!
Jun 17 15:28:58 localhost coova-chilli[4895]: chilli.c: 3877: radius_ind() failed!
Jun 17 15:29:01 localhost coova-chilli[4895]: radius.c: 1523: Received radius request from wrong address 010ba8c0!
Jun 17 15:29:01 localhost coova-chilli[4895]: chilli.c: 3877: radius_ind() failed!

Jun 17 15:29:04 localhost coova-chilli[4895]: radius.c: 1523: Received radius request from wrong address 010ba8c0!
Jun 17 15:29:04 localhost coova-chilli[4895]: chilli.c: 3877: radius_ind() failed!
Jun 17 15:31:56 localhost coova-chilli[4895]: radius.c: 1529: Authenticator did not match MD5 of packet!
Jun 17 15:31:56 localhost coova-chilli[4895]: chilli.c: 3877: radius_ind() failed!
Jun 17 15:31:59 localhost coova-chilli[4895]: radius.c: 1529: Authenticator did not match MD5 of packet!
Jun 17 15:31:59 localhost coova-chilli[4895]: chilli.c: 3877: radius_ind() failed!
Jun 17 15:32:02 localhost coova-chilli[4895]: radius.c: 1529: Authenticator did not match MD5 of packet!
Jun 17 15:32:02 localhost coova-chilli[4895]: chilli.c: 3877: radius_ind() failed!

So look like and acl problem ... Which acls must I change ?

Wed, 06/17/2009 - 15:18 — clubbing80s

Re: radclient seems to not be communicating as required ???

Ok
I have added coaport 3977 to /etc/chilli.conf .

[root@localhost doc]# echo "User-Name='TC-Demo'" | radclient -c '1' -n '3' -r '3' -t '3' -x '192.168.11.1:3799' 'disconnect' 'test123'
Sending Disconnect-Request of id 137 to 192.168.11.1 port 3799
User-Name = "TC-Demo"
Sending Disconnect-Request of id 137 to 192.168.11.1 port 3799
User-Name = "TC-Demo"
Sending Disconnect-Request of id 137 to 192.168.11.1 port 3799
User-Name = "TC-Demo"
radclient: no response from server for ID 137 socket 3
[root@localhost doc]# echo "User-Name='TC-Demo'" | radclient -c '1' -n '3' -r '3' -t '3' -x '127.0.0.1:3799' 'disconnect' 'test123'
Sending Disconnect-Request of id 87 to 127.0.0.1 port 3799
User-Name = "TC-Demo"
Sending Disconnect-Request of id 87 to 127.0.0.1 port 3799
User-Name = "TC-Demo"
Sending Disconnect-Request of id 87 to 127.0.0.1 port 3799
User-Name = "TC-Demo"
radclient: no response from server for ID 87 socket 3

Same problem was experienced here, no resolution was posted ....
http://coova.org/phpBB3/viewtopic.php?f=4&t=1212&start=0&st=0&sk=t&sd=a&...
.....

I have added the port 3799 to the ACCEPT rules in the firewall

[root@localhost doc]# iptables -L -nv
Chain INPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0
1 105 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 flags:0x17/0x02
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:9990 flags:0x17/0x02
0 0 ACCEPT tcp -- tun0 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:3990 flags:0x17/0x02
0 0 ACCEPT tcp -- tun0 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 flags:0x17/0x02
0 0 ACCEPT tcp -- tun0 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:443 flags:0x17/0x02
0 0 ACCEPT udp -- tun0 * 0.0.0.0/0 0.0.0.0/0 udp dpt:53
0 0 ACCEPT udp -- tun0 * 0.0.0.0/0 0.0.0.0/0 udp dpt:3799
12 936 LOG_DROPI all -- * * 0.0.0.0/0 0.0.0.0/0

What else is missing ???