RE: [RadiusNT] Help with Bay Networks RAC 8000

Herman verschooten ( H.verschooten@WebVisie.net )
Mon, 15 Mar 1999 19:40:05 +0100

Hi,
first of all in the ADMIN of the RA8000 set the following parameters

enable_security:*Y security_broadcast:*N
pref_secure1_host:*1.1.1.2 pref_secure2_host:*1.1.1.3
network_turnaround: 2 loose_source_route: Y
acp_key: "<unset>" password:*"<set>"
lock_enable: Y passwd_limit: 3
chap_auth_name:*"RLAN" max_chap_chall_int: 0
auth_protocol:*radius enable_radius_acct:*Y
radius_acct1_host:*1.1.1.2 radius_acct2_host:*1.1.1.3
radius_auth1_port: 1645 radius_auth2_port: 1645
radius_acct1_port: 1646 radius_acct2_port: 1646
radius_auth1_secret:*"<set>" radius_auth2_secret:*"<set>"
radius_acct1_secret:*"<set>" radius_acct2_secret:*"<set>"
radius_auth_timeout: 4 radius_acct_timeout: 4
radius_retries: 10 radius_acct_level:*basic
radius_port_encoding:*channel
radius_user_prompt: "Annex%susername%c"
radius_pass_prompt: "Annex%spassword%c"
compatibility_mode: BayNetworks

ofcourse change the IP-addresses to your servers...

The radius_port_encoding lets the RA send the port in a more useful way,
indicating the WAN-channel, Type of Call and port the call was on... It
works for us.

Herman

-----Original Message-----
From: Timothy Farmer [mailto:tim.farmer@computerland1.com]
Sent: maandag 15 maart 1999 19:06
To: 'ntisp@iea-software.com'; 'radiusnt@iea-software.com';
'emerald@iea-software.com'
Subject: [RadiusNT] Help with Bay Networks RAC 8000

I am having trouble getting the On-line feature to work in Emerald with
a
Bay Networks RAC8000. When I run radius in debug mode I see the
following:

Resp Time: 10 Auth: 135/28 -> 163 Acct: 2/0/0 -> 2
radrecv: Request from host d84dbe42 code=1, id=79, length=128
User-Name = "jcbradford"
Password = "\036l\313\322\007\370\214\335\024\234r\332\347\353"
User-Service = Framed-User
Framed-Protocol = PPP
NAS-Identifier = 216.77.190.66
Framed-Address = 216.77.190.68
NAS-Port = 12
NAS-Port-Type = ISDN
NAS-Port-DNIS = "5024440608"
Caller-Id = "5024438078"
Signature = "\201P\037E\233gpZ\263\027\2261\357?i\300"
rad_authenticate_ODBC()
Password = "\036l\313\322\007\370\214\335\024\234r\332\347\353"

SQL Statement: Select DateDiff(Minute, GetDate(), DateAdd(Day,
(ma.Extension+ma
..OverDue+1), maExpireDate)), DateDiff(Minute, GetDate(), DateAdd(Day,
sa.Extensi
on+1, saExpireDate)), sa.AccountID, sa.AccountType, sa.Password,
sa.Login,
sa.Sh
ell, sa.LoginLimit, ma.Balance, ma.OverLimit From MasterAccounts ma,
SubAccounts
sa Where (sa.Login='jcbradford' or sa.Shell='jcbradford' or
sa.Email='jcbradfo
rd') AND ma.CustomerID=sa.CustomerID and sa.Active<>0 and ma.Active<>0

Decrypted Password: davidson
Database Password: davidson
Checking for duplicate logins.

SQL Statement: RadCheckOnline 'jcbradford'

jcbradford found on-line 0 time(s).

SQL Statement: RadGetConfigs 63

Loading radius defaults for this type...

SQL Statement: RadGetATConfigs 'PPP'

User-Service = Framed-User (2)
Framed-Protocol = PPP (1)
Sending Ack of id 79 to d84dbe42 (RAC8000)
User-Service = Framed-User
Framed-Protocol = PPP

Resp Time: 10 Auth: 136/28 -> 164 Acct: 2/0/0 -> 2

It appears that the RAC8000 is sending the NAS-port = 12. However, I do
not
see the call online. Nor does it appear in the users log file. I called
Bay
to ask them what the port values where and they said on async they use
1-48
and on sync 1-64.

Any clues?

I have been trying to make this think work for 2 weeks and am starting
to
look for loaded gun.

Tim Farmer
<<Timothy Farmer.vcf>>

For more information about this list, including removal, please
see this URL: http://www.iea-software.com/maillist.html