Подскажите что я упускаю в моей конфигурации. Поднимаю bras accel-ppp-ipoe на нем же стоит freeradius и подключается к удаленной базе, вроде бы все настроил, но через accel-ppp Access-Reject, хотя radtest Access-Accept.
Code: Select all
# cat /etc/accel-ppp.conf
[modules]
log_file
ipoe
radius
shaper
[core]
log-error=/var/log/accel-ppp/core.log
thread-count=2
[common]
single-session=replace
[ipoe]
verbose=1
username=lua:username
lua-file=/etc/accel-ppp.lua
shared=1
ifcfg=1
mode=L2
ip-unnumbered=1
start=dhcpv4
interface=vlan200
attr-dhcp-client-ip=Framed-IP-Address
gw-ip-address=10.194.0.1/20
[dns]
dns1=172.30.0.1
dns2=172.30.1.1
[radius]
dictionary=/usr/local/share/accel-ppp/radius/dictionary
nas-identifier=accel-ppp-ipoe
nas-ip-address=172.20.0.2
server=172.20.0.2,dEoSGodupaHOelCI,auth-port=1812,acct-port=1813,req-limit=0,fail-timeout=0,max-fail=0,weight=1
dae-server=172.20.0.2:3799,dEoSGodupaHOelCI
acct-interim-interval=60
verbose=1
interim-verbose=1
[log]
log-file=/var/log/accel-ppp/accel-ppp.log
log-emerg=/var/log/accel-ppp/emerg.log
log-fail-file=/var/log/accel-ppp/auth-fail.log
copy=1
level=5
[shaper]
attr=Filter-Id
up-limiter=police
down-limiter=tbf
verbose=1
Code: Select all
~# radtest 74:e5:43:8f:c1:17 '' 172.20.0.2 0 dEoSGodupaHOelCI
Sending Access-Request of id 150 to 172.20.0.2 port 1812
User-Name = "74:e5:43:8f:c1:17"
User-Password = ""
NAS-IP-Address = 127.0.1.1
NAS-Port = 0
Message-Authenticator = 0x00000000000000000000000000000000
rad_recv: Access-Accept packet from host 172.20.0.2 port 1812, id=150, length=32
Framed-IP-Address = 10.194.114.207
Session-Timeout = 600
Code: Select all
~# cat /var/log/accel-ppp/auth-fail.log
[2016-12-05 09:45:16]: info: ipoe0: create interface ipoe0 parent vlan200
[2016-12-05 09:45:16]: info: ipoe0: send [RADIUS(1) Access-Request id=1 <User-Name "74:e5:43:8f:c1:17"> <NAS-Identifier "accel-ppp-ipoe"> <NAS-IP-Address 172.20.0.2> <NAS-Port 83> <NAS-Port-Id "ipoe0"> <NAS-Port-Type Ethernet> <Calling-Station-Id "74:e5:43:8f:c1:17"> <Called-Station-Id "vlan200"> <User-Password >]
[2016-12-05 09:45:17]: info: ipoe0: recv [RADIUS(1) Access-Reject id=1 <Framed-IP-Address 10.194.5.216> <Session-Timeout 600>]
[2016-12-05 09:45:17]: debug: ipoe0: terminate
[2016-12-05 09:45:17]: info: ipoe0: ipoe: session finished