Re: [Emerald] Work on SNMP Concurrency Checking

TIA ( (no email) )
Sun, 16 Apr 2000 19:15:11 -0500

Dale,

Right you are, of course, since you built it.. ;^) Here are the results I
see with radius -x31. It looks like it is supposed to work. It works for me,
but that's like the taking your car to a mechanic thing, I have never had
any trouble of any kind dialing in, authenticating, etc. It must be some
real crappy Rocksmell chip modems or something. I would then ask what
specifically the On-line table in Emerald is looking at so that I could use
a SQL query to clear the "hung" connections instead of going into the
On-line Table and hitting the Clear button one at a time. Is there a SQL
query that will do this?

=========================
Radius -x31 with Cisco 2511 & Concurrent user incorrectly listed as already
on:

radrecv: Request from host cefd3812 (rtr1-clyde) code=1, id=253, length=76
NAS-Identifier = 206.253.56.18
NAS-Port = 13
NAS-Port-Type = Async
User-Name = "tvkoch"
Password = "1\007\200\246\310\304J\247Cc\241\324\027@uk"
User-Service = Framed-User
Framed-Protocol = PPP
Checking for duplicate logins.
SQL Statement: {CALL RadCheckOnlineSNMP('tvkoch')}
Server:rtr1-clyde SNMPUser:.1.3.6.1.4.1.9.2.9.2.1.18.13 User:
Sending Ack of id 253 to cefd3812 (rtr1-clyde)
User-Service = Framed-User
Framed-Protocol = PPP
Session-Timeout = 18000
Idle-Timeout = 900
Class = "IEAS1\00419212\00227"
Resp Time: 922 Auth: 1/0 -> 1 Acct: 1/0/0 -> 1

radrecv: Request from host cefd3812 (rtr1-clyde) code=4, id=254, length=102
NAS-Identifier = 206.253.56.18
NAS-Port = 13
NAS-Port-Type = Async
User-Name = "tvkoch"
Acct-Status-Type = Start
Class = "IEAS1\00419212\00227"
Acct-Authentic = RADIUS
User-Service = Framed-User
Acct-Session-Id = "00003835"
Framed-Protocol = PPP
Acct-Delay-Time = 0
Sending Accounting Ack of id 254 to cefd3812 (rtr1-clyde)
Resp Time: 485 Auth: 1/0 -> 1 Acct: 2/0/0 -> 2

======================================

Radius -x31 with Cisco 2511 & Concurrent user confirmed already on:

radrecv: Request from host cefd3812 (rtr1-clyde) code=1, id=6, length=76
NAS-Identifier = 206.253.56.18
NAS-Port = 13
NAS-Port-Type = Async
User-Name = "bohunk"
Password = "s\314U\314\002\255\011\274\225\275\245\357\220E\333P"
User-Service = Framed-User
Framed-Protocol = PPP
Checking for duplicate logins.
SQL Statement: {CALL RadCheckOnlineSNMP('bohunk')}
Server:rtr1-clyde SNMPUser:.1.3.6.1.4.1.9.2.9.2.1.18.7 User:bohunk

SQL Statement: {CALL RadGetUser('bohunk',NULL)}

SQL Statement: {CALL RadGetUser('bohunk',NULL)}
SQL Statement: {CALL RadGetConfigs(837)}
1 ODBC Users Loaded
Checking for duplicate logins.
SQL Statement: {CALL RadCheckOnlineSNMP('bohunk')}
Server:rtr1-clyde SNMPUser:.1.3.6.1.4.1.9.2.9.2.1.18.7 User:bohunk
Sending Reject of id 6 to cefd3812 (rtr1-clyde)
Resp Time: 828 Auth: 0/3 -> 3 Acct: 0/0/0 -> 0

======================================

Radius -x31 with 3Com TCM & Concurrent user confirmed already on:

radrecv: Request from host cefd3c14 (tcm-belleville) code=1, id=147,
length=176
User-Name = "sps"
Challenge-Response = "\004W\224\030Ck\277c\003T\356x\177\d\233\036"
NAS-Identifier = 206.253.60.20
NAS-Port = 1029
Acct-Session-Id = "67371084"
Interface_Index = 2285
Received unknown attribute 39049, vendor 429
User-Service = Framed-User
Framed-Protocol = PPP
Chasis-Call-Slot = 5
Chasis-Call-Span = 1
Chasis-Call-Channel = 5
Connect-Speed = 1
Caller-Id = ""
NAS-Port-DNIS = "5057"
NAS-Port-Type = Async
Checking for duplicate logins.
SQL Statement: {CALL RadCheckOnlineSNMP('sps')}
Server:tcm-belleville SNMPUser:.1.3.6.1.4.1.429.4.10.1.1.18.2282 User:sps
Server:tcm-belleville SNMPUser:.1.3.6.1.4.1.429.4.10.1.1.18.2283 User:sps

SQL Statement: {CALL RadGetUser('sps',NULL)}

SQL Statement: {CALL RadGetUser('sps',NULL)}
SQL Statement: {CALL RadGetConfigs(2303)}
1 ODBC Users Loaded
Checking for duplicate logins.
SQL Statement: {CALL RadCheckOnlineSNMP('sps')}
Server:tcm-belleville SNMPUser:.1.3.6.1.4.1.429.4.10.1.1.18.2282 User:sps
Server:tcm-belleville SNMPUser:.1.3.6.1.4.1.429.4.10.1.1.18.2283 User:sps
Sending Reject of id 147 to cefd3c14 (tcm-belleville)
Resp Time: 1234 Auth: 1/4 -> 5 Acct: 2/0/0 -> 2

-------------------------------
Thanks again Dale,
TKT

----- Original Message -----
From: "Dale E. Reed Jr." <daler@iea-software.com>
To: <emerald@iea-software.com>
Sent: Sunday, April 16, 2000 2:36 PM
Subject: Re: [Emerald] Work on SNMP Concurrency Checking

> TIA wrote:
> >
> > OK, I ran with debug and have included the whole enchilada ;^) I tried
to
> > run radius -x15, radius -x18, and radius -x31 on a Cisco 2511, and a
> > 3Com/USR Total Control Hub. The radius -x18 gave nothing and would not
> > authenticate, so I didn't use it on the 3Com/USR. I don't see any SNMP
calls
> > what-so-ever. Maybe I'm missing something. I checked that the Stored
> > Procedure RadCheckOnlineSNMP is created and that EmeraldApps has
permission
> > (I am connected as sa from this RadiusNT server)
> >
> > Sorry for the length, but I wanted to be as thorough as possible:
>
> You will only see the SNMP requests when a concurrency checking
> user logs in AND that user is already logged in (or atleast lists in
> the calls on-line as such). A simple test would be to look at the
> calls online, find a user, and try to authenticate as that user. In
> that case, SNMP checking should occur. You will not see SNMP debug
> under normal situations where a user authenticates and is NOT listed
> as being on-line.
>
> -x15 will not show SNMP, as 16 is the snmp debug bit.
>
>
> --
>
> Dale E. Reed Jr. Emerald and RadiusNT
> __________________________________________
> IEA Software, Inc. www.iea-software.com
>
> For more information about this list (including removal) go to:
> http://www.iea-software.com/support/maillists/liststart

For more information about this list (including removal) go to:
http://www.iea-software.com/support/maillists/liststart