Re: [RadiusNT] SNMP Concurrency Allowing All Calls

• Messages sorted by: [ date ][ thread ][ subject ][ author ]
• Previous message: Malcolm Joosse: "RE: [RadiusNT] Quiet days ?"
• Next message: majordomo@essex1.com: "[RadiusNT] Total Control NAS"
• Maybe in reply to: Blair Bailey: "[RadiusNT] SNMP Concurrency Allowing All Calls"
• Next in thread: Herman verschooten: "RE: [RadiusNT] SNMP Concurrency Allowing All Calls"

Dave

===================================================
I N T E R N E T F O R B U S I N E S S
Mercury Network http://www.tm.net/
129 Ashman St / P O Box 117 Voice: 517-837-3790
Midland, MI 48640-0117 Fax: 517-837-3780
===================================================
-----Original Message-----
From: NCKCN <ttuttle@nckcn.com>
To: radiusnt@iea-software.com <radiusnt@iea-software.com>
Date: Thursday, March 09, 2000 7:07 PM
Subject: Re: [RadiusNT] SNMP Concurrency Allowing All Calls

Blair,

I think SNMP Concurrency Check is broke for any Ciscos. I had worked with
Tech Support at IEA for two days and they finally gave up. All the SNMP
information was exactly like it should be, just like your's below. I'm not
real sure whether it works for any NAS.

Thanks,
TKT

----- Original Message -----
From: "Blair Bailey" <blair@accsmail.accs.net>
To: <radiusnt@iea-software.com>
Sent: Thursday, March 09, 2000 6:00 PM
Subject: [RadiusNT] SNMP Concurrency Allowing All Calls

We are evaluating RadiusNT 3.0 Pro (our live system is Radius 2.5 Standard)
for its SNMP Concurrency Check feature. RadiusNT is up and running.
Concurrency and variable login limits are working. The SNMP check, however,
always overides the over limit reject. Thus, users who should be rejected
because they are already logged in are being allowed to login again (in our
test case).

The NAS is a Cisco 5248.

Watching the -x18 debug, I see:
Server: x.x.x.x SNMPUser: .1.3.6.1.4.1.9.2.9.2.1.18.1 User: yyyyy
Sending Ack of id 129 to 7f000001 (localhost)

Using the snmputil utility in the NTResKit:
C:\NTRESKIT>snmputil get x.x.x.x zzzzzz .1.3.6.1.4.1.9.2.9.2.1.18.1
Variable = .iso.org.dod.internet.private.enterprises.9.2.9.2.1.18.1
Value = OCTET STRING - yyyyy

x.x.x.x is the correct IP of the NAS
yyyyy is the username in question who is on port 1 of the NAS
zzzzz is the community name that is also listed in the Servers table
The first connection is a live user connection.
The second connection attempt is being made from radlogin.

Am I missing something?

Is testing with radlogin valid here?

Any thing else I should look at?

Thanks much
Blair

For more information about this list (including removal) go to:
http://www.iea-software.com/support/maillists/liststart

For more information about this list (including removal) go to:
http://www.iea-software.com/support/maillists/liststart

For more information about this list (including removal) go to:
http://www.iea-software.com/support/maillists/liststart

• Previous message: Malcolm Joosse: "RE: [RadiusNT] Quiet days ?"
• Next message: majordomo@essex1.com: "[RadiusNT] Total Control NAS"
• Maybe in reply to: Blair Bailey: "[RadiusNT] SNMP Concurrency Allowing All Calls"
• Next in thread: Herman verschooten: "RE: [RadiusNT] SNMP Concurrency Allowing All Calls"