Не работает MS DNS

Radius related questions
Post Reply
vetheslav
Posts: 21
Joined: 14 Jul 2016, 12:45

Не работает MS DNS

Post by vetheslav »

Пытаюсь передавать Microsoft MS-Primary-DNS-Server и Microsoft MS-Secondary-DNS-Server с radius сервера на клиента, но к сожалению на клиенте ни в какую не прописываются эти DNS.

Лог подключения?

Code: Select all

[2016-07-14 15:59:57]:  info: eth1: send [RADIUS(1) Access-Request id=1 <User-Name "test"> <NAS-Identifier "NAS TEST2"> <NAS-IP-Address 10.74.0.9> <NAS-Port-Type Virtual> <Service-Type Framed-User> <Framed-Protocol PPP> <Calling-Station-Id "00:22:15:41:02:05"> <Called-Station-Id "eth1:00:1b:21:5f:8e:f5"> <Acct-Session-Id "aa906960b61b99ec"> <CHAP-Challenge > <CHAP-Password >]
[2016-07-14 15:59:57]:  info: eth1: recv [RADIUS(1) Access-Accept id=1 <Service-Type Framed-User> <Termination-Action RADIUS-Request> <Framed-IP-Address 10.74.88.10><Microsoft MS-Primary-DNS-Server 10.74.0.233><Microsoft MS-Secondary-DNS-Server 10.74.0.234>]
[2016-07-14 15:59:57]:  info: ppp0: connect: ppp0 <--> pppoe(00:22:15:41:02:05)
[2016-07-14 15:59:57]:  info: ppp0: test: authentication succeeded
[2016-07-14 15:59:57]:  info: ppp0: send [RADIUS(1) Accounting-Request id=1 <User-Name "test"> <NAS-Identifier "NAS TEST2"> <NAS-IP-Address 10.74.0.9> <NAS-Port 0> <NAS-Port-Id "ppp0"> <NAS-Port-Type Virtual> <Service-Type Framed-User> <Framed-Protocol PPP> <Calling-Station-Id "00:22:15:41:02:05"> <Called-Station-Id "eth1:00:1b:21:5f:8e:f5"> <Acct-Status-Type Start> <Acct-Authentic RADIUS> <Acct-Session-Id "aa906960b61b99ec"> <Acct-Session-Time 0> <Acct-Input-Octets 0> <Acct-Output-Octets 0> <Acct-Input-Packets 0> <Acct-Output-Packets 0> <Acct-Input-Gigawords 0> <Acct-Output-Gigawords 0> <Framed-IP-Address 10.74.88.10>]
[2016-07-14 15:59:57]:  info: ppp0: recv [RADIUS(1) Accounting-Response id=1]
Конфиг radius:

Code: Select all

[radius]
dictionary=/usr/local/share/accel-ppp/radius/dictionary
nas-identifier=NAS TEST2
nas-ip-address=10.74.0.9
gw-ip-address=10.74.0.9
server=10.74.0.2,secretpass,auth-port=1812,acct-port=1813,weight=2
server=10.74.0.1,secretpass,auth-port=1812,acct-port=1813,weight=1
#dae-server=127.0.0.1:3799,secretpass
verbose=5
timeout=5
max-try=3
acct-timeout=300
acct-on=1
sid_in_auth=1
Dictionary в "/usr/local/share/accel-ppp/radius/dictionary" и на radius сервере совпадают для microsoft.

На клиенте, DNS нет:
Image

Версия accel 1.11.0
Dmitry
Администратор
Posts: 954
Joined: 09 Oct 2014, 10:06

Re: Не работает MS DNS

Post by Dmitry »

весь процесс подключения покажи с уровнем логов 4 и verbose=1
vetheslav
Posts: 21
Joined: 14 Jul 2016, 12:45

Re: Не работает MS DNS

Post by vetheslav »

Code: Select all

[2016-07-14 17:41:40]:  info: eth1: recv [PPPoE PADT 00:22:15:41:02:05 => 00:1b:21:5f:8e:f5 sid=0001]
[2016-07-14 17:41:43]:  info: eth1: recv [PPPoE PADI 00:22:15:41:02:05 => ff:ff:ff:ff:ff:ff sid=0000 <Service-Name prov> <Host-Uniq 1600000027000000>]
[2016-07-14 17:41:43]:  info: eth1: send [PPPoE PADO 00:1b:21:5f:8e:f5 => 00:22:15:41:02:05 sid=0000 <AC-Name accel-ppp> <Service-Name prov> <AC-Cookie a3bea462b04c6e4fd6c2c1b64fab453277fcd3fca374a543> <Host-Uniq 1600000027000000>]
[2016-07-14 17:41:43]:  info: eth1: recv [PPPoE PADR 00:22:15:41:02:05 => 00:1b:21:5f:8e:f5 sid=0000 <Service-Name prov> <Host-Uniq 1600000028000000> <AC-Cookie a3bea462b04c6e4fd6c2c1b64fab453277fcd3fca374a543>]
[2016-07-14 17:41:43]:  info: eth1: send [PPPoE PADS 00:1b:21:5f:8e:f5 => 00:22:15:41:02:05 sid=0001 <AC-Name accel-ppp> <Service-Name prov> <Host-Uniq 1600000028000000>]
[2016-07-14 17:41:43]: debug: eth1: lcp_layer_init
[2016-07-14 17:41:43]: debug: eth1: auth_layer_init
[2016-07-14 17:41:43]: debug: eth1: ccp_layer_init
[2016-07-14 17:41:43]: debug: eth1: ipcp_layer_init
[2016-07-14 17:41:43]: debug: eth1: ipv6cp_layer_init
[2016-07-14 17:41:43]: debug: eth1: ppp establishing
[2016-07-14 17:41:43]: debug: eth1: lcp_layer_start
[2016-07-14 17:41:43]:  info: eth1: send [LCP ConfReq id=1 <auth CHAP-md5> <mru 1492> <magic 6b8b4567>]
[2016-07-14 17:41:43]:  info: eth1: recv [LCP ConfReq id=0 <mru 1480> <magic 207e50e0> < d 3 6 >]
[2016-07-14 17:41:43]:  info: eth1: send [LCP ConfRej id=0  < d 3 6 >]
[2016-07-14 17:41:43]:  info: eth1: recv [LCP ConfAck id=1 <auth CHAP-md5> <mru 1492> <magic 6b8b4567>]
[2016-07-14 17:41:43]:  info: eth1: recv [LCP ConfReq id=1 <mru 1480> <magic 207e50e0>]
[2016-07-14 17:41:43]:  info: eth1: send [LCP ConfAck id=1 ]
[2016-07-14 17:41:43]: debug: eth1: lcp_layer_started
[2016-07-14 17:41:43]: debug: eth1: auth_layer_start
[2016-07-14 17:41:43]:  info: eth1: send [CHAP Challenge id=1 <e51314b06829ebc7c3edb872812bff65>]
[2016-07-14 17:41:43]:  info: eth1: recv [LCP Ident id=2 <MSRASV5.10>]
[2016-07-14 17:41:43]:  info: eth1: recv [LCP Ident id=3 <MSRAS-0-961636E2B2>]
[2016-07-14 17:41:43]:  info: eth1: recv [CHAP Response id=1 <da669811584c1a6034c910ecf7903a89>, name="test"]
[2016-07-14 17:41:43]:  info: eth1: send [RADIUS(1) Access-Request id=1 <User-Name "test"> <NAS-Identifier "NAS TEST2"> <NAS-IP-Address 10.74.0.9> <NAS-Port-Type Virtual> <Service-Type Framed-User> <Framed-Protocol PPP> <Calling-Station-Id "00:22:15:41:02:05"> <Called-Station-Id "eth1:00:1b:21:5f:8e:f5"> <Acct-Session-Id "aa906960b61ba98f"> <CHAP-Challenge > <CHAP-Password >]
[2016-07-14 17:41:43]:  info: eth1: recv [RADIUS(1) Access-Accept id=1 <Service-Type Framed-User> <Termination-Action RADIUS-Request> <Framed-IP-Address 10.74.88.10><Microsoft MS-Primary-DNS-Server 10.74.0.233><Microsoft MS-Secondary-DNS-Server 10.74.0.234>]
[2016-07-14 17:41:43]:  info: ppp0: connect: ppp0 <--> pppoe(00:22:15:41:02:05)
[2016-07-14 17:41:43]: debug: ppp0: ppp connected
[2016-07-14 17:41:43]:  info: ppp0: send [CHAP Success id=1 "Authentication succeeded"]
[2016-07-14 17:41:43]: debug: ppp0: auth_layer_started
[2016-07-14 17:41:43]: debug: ppp0: ccp_layer_start
[2016-07-14 17:41:43]: debug: ppp0: ipcp_layer_start
[2016-07-14 17:41:43]: debug: ppp0: ipv6cp_layer_start
[2016-07-14 17:41:43]:  info: ppp0: test: authentication succeeded
[2016-07-14 17:41:43]:  info: ppp0: recv [CCP ConfReq id=4 <mppe -H -M -S -L -D +C>]
[2016-07-14 17:41:43]:  info: ppp0: send [CCP ConfReq id=1 <mppe -H -M -S -L -D -C>]
[2016-07-14 17:41:43]:  info: ppp0: send [CCP ConfNak id=4 <mppe -H -M -S -L -D -C>]
[2016-07-14 17:41:43]:  info: ppp0: recv [IPCP ConfReq id=5 <addr 0.0.0.0> <dns1 0.0.0.0> <wins1 0.0.0.0> <dns2 0.0.0.0> <wins2 0.0.0.0>]
[2016-07-14 17:41:43]:  info: ppp0: send [IPCP ConfReq id=1 <addr 10.74.0.9>]
[2016-07-14 17:41:43]:  info: ppp0: send [IPCP ConfNak id=5 <addr 10.74.88.10> <dns1 10.74.0.233> <dns2 10.74.0.234>]
[2016-07-14 17:41:43]:  info: ppp0: recv [CCP ConfAck id=1 <mppe -H -M -S -L -D -C>]
[2016-07-14 17:41:43]:  info: ppp0: recv [CCP ConfReq id=6 <mppe -H -M -S -L -D -C>]
[2016-07-14 17:41:43]:  info: ppp0: send [CCP ConfAck id=6]
[2016-07-14 17:41:43]: debug: ppp0: ccp_layer_started
[2016-07-14 17:41:43]:  info: ppp0: recv [IPCP ConfAck id=1 <addr 10.74.0.9>]
[2016-07-14 17:41:43]:  info: ppp0: recv [IPCP ConfReq id=7 <addr 10.74.88.10> <dns1 10.74.0.233> <wins1 0.0.0.0> <dns2 10.74.0.234> <wins2 0.0.0.0>]
[2016-07-14 17:41:43]:  info: ppp0: send [IPCP ConfAck id=7]
[2016-07-14 17:41:43]: debug: ppp0: ipcp_layer_started
[2016-07-14 17:41:43]:  info: ppp0: send [RADIUS(1) Accounting-Request id=1 <User-Name "test"> <NAS-Identifier "NAS TEST2"> <NAS-IP-Address 10.74.0.9> <NAS-Port 0> <NAS-Port-Id "ppp0"> <NAS-Port-Type Virtual> <Service-Type Framed-User> <Framed-Protocol PPP> <Calling-Station-Id "00:22:15:41:02:05"> <Called-Station-Id "eth1:00:1b:21:5f:8e:f5"> <Acct-Status-Type Start> <Acct-Authentic RADIUS> <Acct-Session-Id "aa906960b61ba98f"> <Acct-Session-Time 0> <Acct-Input-Octets 0> <Acct-Output-Octets 0> <Acct-Input-Packets 0> <Acct-Output-Packets 0> <Acct-Input-Gigawords 0> <Acct-Output-Gigawords 0> <Framed-IP-Address 10.74.88.10>]
[2016-07-14 17:41:43]:  info: ppp0: recv [RADIUS(1) Accounting-Response id=1]
[2016-07-14 17:41:43]: debug: ppp0: pppoe: ppp started
Тестирую все на Windows XP SP3
Dmitry
Администратор
Posts: 954
Joined: 09 Oct 2014, 10:06

Re: Не работает MS DNS

Post by Dmitry »

Code: Select all

[2016-07-14 17:41:43]:  info: ppp0: send [IPCP ConfNak id=5 <addr 10.74.88.10> <dns1 10.74.0.233> <dns2 10.74.0.234>]
[2016-07-14 17:41:43]:  info: ppp0: recv [IPCP ConfReq id=7 <addr 10.74.88.10> <dns1 10.74.0.233> <wins1 0.0.0.0> <dns2 10.74.0.234> <wins2 0.0.0.0>]
[2016-07-14 17:41:43]:  info: ppp0: send [IPCP ConfAck id=7]
всё на месте
vetheslav
Posts: 21
Joined: 14 Jul 2016, 12:45

Re: Не работает MS DNS

Post by vetheslav »

Да, в логах я это также вижу, но по факту ДНС не выставляются.
Точно такая же конфигурация настроена с freebsd с другой системой(mpd5), там все работает нормально... Поэтому и спрашиваю что может быть что-то не так настроено.
dimka88
Posts: 866
Joined: 13 Oct 2014, 05:51
Contact:

Re: Не работает MS DNS

Post by dimka88 »

vetheslav wrote:Да, в логах я это также вижу, но по факту ДНС не выставляются.
Точно такая же конфигурация настроена с freebsd с другой системой(mpd5), там все работает нормально... Поэтому и спрашиваю что может быть что-то не так настроено.
Как вариант снять трафик tcpdump/wireshark на клиенте при подключении к accel-ppp и mpd, и сверить параметры в пакетах.
vetheslav
Posts: 21
Joined: 14 Jul 2016, 12:45

Re: Не работает MS DNS

Post by vetheslav »

Прошу прощения за ложный вызов. Все работает хорошо, тестировал немного не корректно правильность работы.
Post Reply