CHAP FreeRadius and MPD

Andrew Karjagin Andrew.Karjagin at newmail.ru
Wed Dec 24 23:20:42 PST 2003 

Hello!
I am install FreeRadius 0.9.3 with mpd 3.15 on FreeBSD 4.9-STABLE. FreeRadius work with MySQL. And I can't setup VPN connection. View archive http://www.freebsd.org/cgi/getmsg.cgi?fetch=484342+498693+/usr/local/www/db/text/2003/freebsd-net/20031116.freebsd-net but it doesn't help me. microsoft dictionary to radius config includes.

This is my mpd.conf:
default:
    load pptp0
    
pptp0:
    new -i ng0 pptp0 pptp0
    set ipcp ranges 81.89.xx.251/32 81.89.xx.252/32
    load pptp_standart

pptp_standart:
    set iface disable on-demand
    set bundle enable multilink
    set link yes acfcomp protocomp
    set link no pap chap
    set link enable chap
    set link keep-alive 60 180
    set ipcp yes vjcomp
    set ipcp dns 81.89.xx.250 18.89.xy.2
    set iface enable proxy-arp
    set bundle enable compression
    set ccp yes mppc
    set ccp yes mpp-e40
    set ccp yes mpp-e128
    set ccp yes mpp-stateless
    set pptp enable incoming
    set pptp disable originate
    set link mtu 1440
    load radius
    
radius:
    set radius server 81.89.xx.xxy testpw 1812 1813
    set radius timeout 10
    set radius config /etc/radius.conf
    set radius retries 3
    set bundle enable radius-auth radius-fallback
    set bundle enable radius-acct
    set ipcp yes radius-ip 

And this is my mpd.log:
Dec 25 09:20:47 savvin /kernel: mpd
Dec 25 09:20:47 savvin mpd: mpd: pid 177, version 3.15 (root at savvin.tel.ru 13:53 19-Dec-2003) 
Dec 25 09:20:48 savvin mpd: [pptp0] ppp node is "mpd177-pptp0" 
Dec 25 09:20:48 savvin mpd: [pptp0] using interface ng0 
Dec 25 09:20:48 savvin mpd: mpd: local IP address for PPTP is 0.0.0.0 
Dec 25 09:25:44 savvin mpd: mpd: PPTP connection from 81.89.xx.x:1655 
Dec 25 09:25:44 savvin mpd: pptp0: attached to connection with 81.89.xx.x:1655 
Dec 25 09:25:44 savvin mpd: [pptp0] IFACE: Open event 
Dec 25 09:25:44 savvin mpd: [pptp0] IPCP: Open event 
Dec 25 09:25:44 savvin mpd: [pptp0] IPCP: state change Initial --> Starting 
Dec 25 09:25:44 savvin mpd: [pptp0] IPCP: LayerStart 
Dec 25 09:25:44 savvin mpd: [pptp0] IPCP: Open event 
Dec 25 09:25:44 savvin mpd: [pptp0] bundle: OPEN event in state CLOSED 
Dec 25 09:25:44 savvin mpd: [pptp0] opening link "pptp0"... 
Dec 25 09:25:44 savvin mpd: [pptp0] link: OPEN event 
Dec 25 09:25:44 savvin mpd: [pptp0] LCP: Open event 
Dec 25 09:25:44 savvin mpd: [pptp0] LCP: state change Initial --> Starting 
Dec 25 09:25:44 savvin mpd: [pptp0] LCP: LayerStart 
Dec 25 09:25:44 savvin mpd: [pptp0] device: OPEN event in state DOWN 
Dec 25 09:25:44 savvin mpd: [pptp0] attaching to peer's outgoing call 
Dec 25 09:25:45 savvin mpd: [pptp0] device is now in state OPENING 
Dec 25 09:25:45 savvin mpd: [pptp0] device: UP event in state OPENING 
Dec 25 09:25:45 savvin mpd: [pptp0] device is now in state UP 
Dec 25 09:25:45 savvin mpd: [pptp0] link: UP event 
Dec 25 09:25:45 savvin mpd: [pptp0] link: origination is remote 
Dec 25 09:25:45 savvin mpd: [pptp0] LCP: Up event 
Dec 25 09:25:45 savvin mpd: [pptp0] LCP: state change Starting --> Req-Sent 
Dec 25 09:25:45 savvin mpd: [pptp0] LCP: phase shift DEAD --> ESTABLISH 
Dec 25 09:25:45 savvin mpd: [pptp0] LCP: SendConfigReq #1 
Dec 25 09:25:45 savvin mpd:  ACFCOMP 
Dec 25 09:25:45 savvin mpd:  PROTOCOMP 
Dec 25 09:25:45 savvin mpd:  MRU 1500 
Dec 25 09:25:45 savvin mpd:  MAGICNUM 65229a88 
Dec 25 09:25:45 savvin mpd:  AUTHPROTO CHAP MSOFTv2 
Dec 25 09:25:45 savvin mpd:  MP MRRU 1600 
Dec 25 09:25:45 savvin mpd:  MP SHORTSEQ 
Dec 25 09:25:45 savvin mpd:  ENDPOINTDISC [802.1] 00 c0 26 a2 da 23 
Dec 25 09:25:46 savvin mpd: pptp0-0: ignoring SetLinkInfo 
Dec 25 09:25:46 savvin mpd: [pptp0] LCP: rec'd Configure Request #0 link 0 (Req-Sent) 
Dec 25 09:25:46 savvin mpd:  MRU 1400 
Dec 25 09:25:46 savvin mpd:  MAGICNUM 382c40eb 
Dec 25 09:25:46 savvin mpd:  PROTOCOMP 
Dec 25 09:25:46 savvin mpd:  ACFCOMP 
Dec 25 09:25:46 savvin mpd:  CALLBACK 
Dec 25 09:25:46 savvin mpd:    Not supported 
Dec 25 09:25:46 savvin mpd: [pptp0] LCP: SendConfigRej #0 
Dec 25 09:25:46 savvin mpd:  CALLBACK 
Dec 25 09:25:46 savvin mpd: [pptp0] LCP: rec'd Configure Request #1 link 0 (Req-Sent) 
Dec 25 09:25:46 savvin mpd:  MRU 1400 
Dec 25 09:25:46 savvin mpd:  MAGICNUM 382c40eb 
Dec 25 09:25:46 savvin mpd:  PROTOCOMP 
Dec 25 09:25:46 savvin mpd:  ACFCOMP 
Dec 25 09:25:46 savvin mpd: [pptp0] LCP: SendConfigAck #1 
Dec 25 09:25:46 savvin mpd:  MRU 1400 
Dec 25 09:25:46 savvin mpd:  MAGICNUM 382c40eb 
Dec 25 09:25:46 savvin mpd:  PROTOCOMP 
Dec 25 09:25:46 savvin mpd:  ACFCOMP 
Dec 25 09:25:46 savvin mpd: [pptp0] LCP: state change Req-Sent --> Ack-Sent 
Dec 25 09:25:47 savvin mpd: [pptp0] LCP: SendConfigReq #2 
Dec 25 09:25:47 savvin mpd:  ACFCOMP 
Dec 25 09:25:47 savvin mpd:  PROTOCOMP 
Dec 25 09:25:47 savvin mpd:  MRU 1500 
Dec 25 09:25:47 savvin mpd:  MAGICNUM 65229a88 
Dec 25 09:25:47 savvin mpd:  AUTHPROTO CHAP MSOFTv2 
Dec 25 09:25:47 savvin mpd:  MP MRRU 1600 
Dec 25 09:25:47 savvin mpd:  MP SHORTSEQ 
Dec 25 09:25:47 savvin mpd:  ENDPOINTDISC [802.1] 00 c0 26 a2 da 23 
Dec 25 09:25:47 savvin mpd: [pptp0] LCP: rec'd Configure Reject #2 link 0 (Ack-Sent) 
Dec 25 09:25:47 savvin mpd:  MP MRRU 1600 
Dec 25 09:25:47 savvin mpd:  MP SHORTSEQ 
Dec 25 09:25:47 savvin mpd:  ENDPOINTDISC [802.1] 00 c0 26 a2 da 23 
Dec 25 09:25:47 savvin mpd: [pptp0] LCP: SendConfigReq #3 
Dec 25 09:25:47 savvin mpd:  ACFCOMP 
Dec 25 09:25:47 savvin mpd:  PROTOCOMP 
Dec 25 09:25:47 savvin mpd:  MRU 1500 
Dec 25 09:25:47 savvin mpd:  MAGICNUM 65229a88 
Dec 25 09:25:47 savvin mpd:  AUTHPROTO CHAP MSOFTv2 
Dec 25 09:25:47 savvin mpd: [pptp0] LCP: rec'd Configure Ack #3 link 0 (Ack-Sent) 
Dec 25 09:25:47 savvin mpd:  ACFCOMP 
Dec 25 09:25:47 savvin mpd:  PROTOCOMP 
Dec 25 09:25:47 savvin mpd:  MRU 1500 
Dec 25 09:25:47 savvin mpd:  MAGICNUM 65229a88 
Dec 25 09:25:47 savvin mpd:  AUTHPROTO CHAP MSOFTv2 
Dec 25 09:25:47 savvin mpd: [pptp0] LCP: state change Ack-Sent --> Opened 
Dec 25 09:25:47 savvin mpd: [pptp0] LCP: phase shift ESTABLISH --> AUTHENTICATE 
Dec 25 09:25:47 savvin mpd: [pptp0] LCP: auth: peer wants nothing, I want CHAP 
Dec 25 09:25:47 savvin mpd: [pptp0] CHAP: sending CHALLENGE 
Dec 25 09:25:47 savvin mpd: [pptp0] LCP: LayerUp 
Dec 25 09:25:47 savvin mpd: pptp0-0: ignoring SetLinkInfo 
Dec 25 09:25:47 savvin mpd: [pptp0] LCP: rec'd Ident #2 link 0 (Opened) 
Dec 25 09:25:47 savvin mpd:  MESG: MSRASV5.10 
Dec 25 09:25:47 savvin mpd: [pptp0] LCP: rec'd Ident #3 link 0 (Opened) 
Dec 25 09:25:47 savvin mpd:  MESG: MSRAS-0-KARYAGIN 
Dec 25 09:25:47 savvin mpd: [pptp0] CHAP: rec'd RESPONSE #1 
Dec 25 09:25:47 savvin mpd:  Name: "richi" 
Dec 25 09:25:47 savvin mpd: [pptp0] RADIUS: using /etc/radius.conf 
Dec 25 09:25:47 savvin mpd: [pptp0] RADIUS: RadiusAddServer Adding 81.89.xx.xxy 
Dec 25 09:25:47 savvin mpd: [pptp0] RADIUS: RadiusPutAuth: RADIUS_CHAP (MSOFTv2) peer name: richi 
Dec 25 09:25:57 savvin mpd: [pptp0] RADIUS: RadiusSendRequest: RAD_ACCESS_REJECT for user richi 
Dec 25 09:25:57 savvin mpd: [pptp0] RADIUS: RadiusGetParams: PANIC no MS-CHAPv2 response received 
Dec 25 09:25:57 savvin mpd:  Peer name: "richi" 
Dec 25 09:25:57 savvin mpd: mpd: warning: line too long, truncated 
Dec 25 09:25:57 savvin mpd:  Can't get credentials for "richi" 
Dec 25 09:25:57 savvin mpd: [pptp0] CHAP: sending FAILURE 
Dec 25 09:25:57 savvin mpd: [pptp0] LCP: authorization failed 
Dec 25 09:25:57 savvin mpd: [pptp0] device: CLOSE event in state UP 
Dec 25 09:25:57 savvin mpd: pptp0-0: clearing call 
Dec 25 09:25:57 savvin mpd: pptp0-0: killing channel 
Dec 25 09:25:57 savvin mpd: [pptp0] PPTP call terminated 
Dec 25 09:25:57 savvin mpd: [pptp0] IFACE: Close event 
Dec 25 09:25:57 savvin mpd: [pptp0] IPCP: Close event 
Dec 25 09:25:57 savvin mpd: [pptp0] IPCP: state change Starting --> Initial 
Dec 25 09:25:57 savvin mpd: [pptp0] IPCP: LayerFinish 
Dec 25 09:25:57 savvin mpd: [pptp0] IFACE: Close event  

And this is my radius.log:
Thu Dec 25 09:12:03 2003 : Info: Using deprecated naslist file.  Support for this will go away soon.
Thu Dec 25 09:12:03 2003 : Info: Using deprecated clients file.  Support for this will go away soon.
Thu Dec 25 09:12:03 2003 : Info: Using deprecated realms file.  Support for this will go away soon.
Thu Dec 25 09:12:03 2003 : Info: rlm_sql (sql): Driver rlm_sql_mysql (module rlm_sql_mysql) loaded and linked
Thu Dec 25 09:12:03 2003 : Info: rlm_sql (sql): Attempting to connect to freeradius at localhost:/freeradius
Thu Dec 25 09:12:03 2003 : Info: rlm_sql_mysql: Starting connect to MySQL server for #0
Thu Dec 25 09:12:03 2003 : Info: rlm_sql_mysql: Starting connect to MySQL server for #1
Thu Dec 25 09:12:03 2003 : Info: rlm_sql_mysql: Starting connect to MySQL server for #2
Thu Dec 25 09:12:03 2003 : Info: rlm_sql_mysql: Starting connect to MySQL server for #3
Thu Dec 25 09:12:03 2003 : Info: rlm_sql_mysql: Starting connect to MySQL server for #4
Thu Dec 25 09:12:03 2003 : Info: Listening on IP address *, ports 1812/udp and 1813/udp.
Thu Dec 25 09:12:03 2003 : Info: Ready to process requests.
Thu Dec 25 09:17:01 2003 : Auth: Login incorrect: [richi/<no User-Password attribute>] (from client ns port 0 cli 81.89.64.105)
Thu Dec 25 09:17:11 2003 : Auth: Login incorrect: [richi/<no User-Password attribute>] (from client ns port 0)
Thu Dec 25 09:17:21 2003 : Auth: Login incorrect: [richi/<no User-Password attribute>] (from client ns port 0)

Can anyone help me - where and what I made wrong?
__________
www.newmail.ru -- всегда что-то новое.

More information about the freebsd-net mailing list