RE: [Emerald] Radius junk logins from Ascend MAX 4000

Mike Hale ( (no email) )
Tue, 9 Jul 2002 09:07:48 -0700

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Previous message: BrianW@cadcap.co.uk: "RE: [Emerald] Custom data fields"
Next message: Dale E. Reed Jr.: "RE: [Emerald] Custom data fields"

Output from radius -x15 -X.

radrecv: Request from host d8409a02 code=3D1, id=3D173, length=3D70 01 =
ad 00
46 ef e1 e0 2d 7f e2 ae da 23 91 a7 06 93 d1 aa 32=20
Packet Information: 50 bytes:=20
01 11 69 6e 69 74 69 61 6c 2d 62 61 6e 6e 65 72 00 02 09 00 c5 26 63 2a
c3 8a 04 06 d8 40 9a 02 05 06 00 00 00 00 3d 06 00 00 00 05 06 06 00 00
00 05=20

radrecv: Request from host d8409a02 code=3D1, id=3D173, length=3D70
User-Name =3D "initial-banner"
Password =3D ""
Authenticate: from sellstoua-rtr2.toua.net - Invalid Password Length
Request from sellstoua-rtr2.toua.net - Malformed Packet
Resp Time: 31 Auth: 0/0 -> 0 Acct: 0/0/0 -> 0

Hope this helps us track down what's causing this.

Michael Hale=20
Network Engineer TOUA.net=20
phone: 520-383-5849=20
fax: 520-383-2218=20
e-mail: mhale@toua.net=20
web: http://www.toua.net/=20

-----Original Message-----
From: Dale E. Reed Jr. [mailto:daler@iea-software.com]=20
Sent: Friday, July 05, 2002 8:55 PM
To: emerald@iea-software.com
Subject: Re: [Emerald] Radius junk logins from Ascend MAX 4000

> If enabling malformed just means having the box 'allow malformed'=20
> checked in radius admin, then we are already allowing malformed=20
> requests. Is there anything else that might make RADIUS not NAK the=20
> MAXs requests? Will RADIUS mention a NAK in the log for these=20
> interfaces?

It should log them. According to the RFC, malformed packets are to be
ignored/dropped not NAKed. Try running RadiusNT in "radius -x15 -X"
debug mode and them send me the output from the radrecv() line to the
next
radrecv() line where the lines in between containt the malformed error.
Send me the thoes lines (including the first radrecv() line).

Dale

------------

This is a user supported list. If you require assistance from IEA
Software's Support Engineers, please check out our Support resources at
http://www.iea-software.com/support.

For more information about this list (including removal) go to:
http://www.iea-software.com/support/maillists/liststart
------------

This is a user supported list. If you require assistance from IEA Software's
Support Engineers, please check out our Support resources at
http://www.iea-software.com/support.

For more information about this list (including removal) go to:
http://www.iea-software.com/support/maillists/liststart

Previous message: BrianW@cadcap.co.uk: "RE: [Emerald] Custom data fields"
Next message: Dale E. Reed Jr.: "RE: [Emerald] Custom data fields"