заметил какую-то интересную загогулину в акселе из транка. логином служит мак-адрес, но случаются mac change:
Code: Select all
Feb 7 13:43:44 firewall accel-pppd: ipoe613:30:b5:c2:xx:xx:67: recv [DHCPv4 Discover xid=65c89e80 chaddr=70:4f:57:xx:xx:d5 <Message-Type Discover> <Max-Message-Size 1024> <Client-ID 01704f57ae25d5> <Host-Name TL-WR840N> <Vendor-Class 4d53465420352e30> <Request-List Subnet,Router,DNS,Domain-Name,Vendor-Specific,44,46,47,Route,Classless-Route,249> <Relay-Agent {Agent-Circuit-ID _000400220101} {Agent-Remote-ID _00067072cf0c1e70}>]
Feb 7 13:43:44 firewall accel-pppd: ipoe613:30:b5:c2:xx:xx:67: mac change detected
Feb 7 13:43:44 firewall accel-pppd: ipoe613:30:b5:c2:xx:xx:67: terminate
Feb 7 13:43:44 firewall accel-pppd: vlan34:: recv [DHCPv4 Discover xid=65c89e80 chaddr=70:4f:57:xx:xx:d5 <Message-Type Discover> <Max-Message-Size 1024> <Client-ID 01704f57ae25d5> <Host-Name TL-WR840N> <Vendor-Class 4d53465420352e30> <Request-List Subnet,Router,DNS,Domain-Name,Vendor-Specific,44,46,47,Route,Classless-Route,249> <Relay-Agent {Agent-Circuit-ID _000400220101} {Agent-Remote-ID _00067072cf0c1e70}>]
Feb 7 13:43:44 firewall accel-pppd: ipoe392:: create interface ipoe392 parent vlan34
Feb 7 13:43:44 firewall accel-pppd: ipoe392:70:4f:57:xx:xx:d5: 70:4f:57:xx:xx:d5: authentication failed
Feb 7 13:43:44 firewall accel-pppd: ipoe392:70:4f:57:xx:xx:d5: 70:4f:57:xx:xx:d5: start temporary session (l4-redirect)
Feb 7 13:43:44 firewall accel-pppd: ipoe392:70:4f:57:xx:xx:d5: send [DHCPv4 Offer xid=65c89e80 yiaddr=172.16.192.210 chaddr=70:4f:57:xx:xx:d5 <Message-Type Offer> <Server-ID 172.16.192.1> <Lease-Time 180> <T1 90> <Router 172.16.192.1> <Subnet 255.255.240.0> <DNS 193.151.12.8,1.1.1.1>]
Feb 7 13:43:44 firewall accel-pppd: ipoe613:30:b5:c2:xx:xx:67: pppd_compat: ip-down started (pid 5098)
Feb 7 13:43:44 firewall accel-pppd: ipoe613:30:b5:c2:xx:xx:67: pppd_compat: ip-down finished (1)
Feb 7 13:43:44 firewall accel-pppd: ipoe613:30:b5:c2:xx:xx:67: ipoe: session finished
Feb 7 13:43:44 firewall accel-pppd: libnetlink: RTNETLINK answers: Cannot assign requested address
Code: Select all
13:43:40.087899 70:4f:57:xx:xx:d5 > 90:e2:ba:xx:xx:37, ethertype IPv4 (0x0800), length 353: (tos 0x0, ttl 64, id 3206, offset 0, flags [DF], proto UDP (17), length 339)
172.16.192.207.68 > 172.16.192.1.67: BOOTP/DHCP, Request from 70:4f:57:xx:xx:d5, length 311, xid 0x51615952, Flags [none]
Client-IP 172.16.192.207
Client-Ethernet-Address 70:4f:57:xx:xx:d5
Vendor-rfc1048 Extensions
Magic Cookie 0x63825363
DHCP-Message Option 53, length 1: Request
MSZ Option 57, length 2: 1024
Client-ID Option 61, length 7: ether 70:4f:57:xx:xx:d5
Hostname Option 12, length 9: "TL-WR840N"
Vendor-Class Option 60, length 8: "MSFT 5.0"
Parameter-Request Option 55, length 11:
Subnet-Mask, Default-Gateway, Domain-Name-Server, Domain-Name
Vendor-Option, Netbios-Name-Server, Netbios-Node, Netbios-Scope
Static-Route, Classless-Static-Route, Classless-Static-Route-Microsoft
Agent-Information Option 82, length 18:
Circuit-ID SubOption 1, length 6: ^@^D^@"^A^A
Remote-ID SubOption 2, length 8: ^@^FprM-O^L^^p
13:43:40.088088 90:e2:ba:xx:xx:37 > 70:4f:57:xx:xx:d5, ethertype IPv4 (0x0800), length 286: (tos 0x10, ttl 128, id 0, offset 0, flags [none], proto UDP (17), length 272)
0.0.0.0.67 > 255.255.255.255.68: BOOTP/DHCP, Reply, length 244, xid 0x51615952, Flags [none]
Client-Ethernet-Address 70:4f:57:xx:xx:d5
Vendor-rfc1048 Extensions
Magic Cookie 0x63825363
DHCP-Message Option 53, length 1: NACK
13:43:44.087683 70:4f:57:xx:xx:d5 > ff:ff:ff:ff:ff:ff, ethertype IPv4 (0x0800), length 353: (tos 0x0, ttl 64, id 62417, offset 0, flags [none], proto UDP (17), length 339)
0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 70:4f:57:xx:xx:d5, length 311, xid 0x809ec865, Flags [none]
Client-Ethernet-Address 70:4f:57:xx:xx:d5
Vendor-rfc1048 Extensions
Magic Cookie 0x63825363
DHCP-Message Option 53, length 1: Discover
MSZ Option 57, length 2: 1024
Client-ID Option 61, length 7: ether 70:4f:57:xx:xx:d5
Hostname Option 12, length 9: "TL-WR840N"
Vendor-Class Option 60, length 8: "MSFT 5.0"
Parameter-Request Option 55, length 11:
Subnet-Mask, Default-Gateway, Domain-Name-Server, Domain-Name
Vendor-Option, Netbios-Name-Server, Netbios-Node, Netbios-Scope
Static-Route, Classless-Static-Route, Classless-Static-Route-Microsoft
Agent-Information Option 82, length 18:
Circuit-ID SubOption 1, length 6: ^@^D^@"^A^A
Remote-ID SubOption 2, length 8: ^@^FprM-O^L^^p
13:43:44.088411 90:e2:ba:xx:xx:37 > 70:4f:57:xx:xx:d5, ethertype IPv4 (0x0800), length 326: (tos 0x10, ttl 128, id 0, offset 0, flags [none], proto UDP (17), length 312)
172.16.192.1.67 > 172.16.192.210.68: BOOTP/DHCP, Reply, length 284, xid 0x809ec865, Flags [none]
Your-IP 172.16.192.210
Client-Ethernet-Address 70:4f:57:xx:xx:d5
Vendor-rfc1048 Extensions
Magic Cookie 0x63825363
DHCP-Message Option 53, length 1: Offer
Server-ID Option 54, length 4: 172.16.192.1
Lease-Time Option 51, length 4: 180
RN Option 58, length 4: 90
Default-Gateway Option 3, length 4: 172.16.192.1
Subnet-Mask Option 1, length 4: 255.255.240.0
Domain-Name-Server Option 6, length 8: 193.151.12.8,1.1.1.1
13:43:45.087518 70:4f:57:xx:xx:d5 > ff:ff:ff:ff:ff:ff, ethertype IPv4 (0x0800), length 365: (tos 0x0, ttl 64, id 64126, offset 0, flags [none], proto UDP (17), length 351)
0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 70:4f:57:xx:xx:d5, length 323, xid 0x809ec865, Flags [none]
Client-Ethernet-Address 70:4f:57:xx:xx:d5
Vendor-rfc1048 Extensions
Magic Cookie 0x63825363
DHCP-Message Option 53, length 1: Request
MSZ Option 57, length 2: 1024
Client-ID Option 61, length 7: ether 70:4f:57:xx:xx:d5
Hostname Option 12, length 9: "TL-WR840N"
Vendor-Class Option 60, length 8: "MSFT 5.0"
Requested-IP Option 50, length 4: 172.16.192.210
Server-ID Option 54, length 4: 172.16.192.1
Parameter-Request Option 55, length 11:
Subnet-Mask, Default-Gateway, Domain-Name-Server, Domain-Name
Vendor-Option, Netbios-Name-Server, Netbios-Node, Netbios-Scope
Static-Route, Classless-Static-Route, Classless-Static-Route-Microsoft
Agent-Information Option 82, length 18:
Circuit-ID SubOption 1, length 6: ^@^D^@"^A^A
Remote-ID SubOption 2, length 8: ^@^FprM-O^L^^p
13:43:45.090428 90:e2:ba:xx:xx:37 > 70:4f:57:xx:xx:d5, ethertype IPv4 (0x0800), length 326: (tos 0x10, ttl 128, id 0, offset 0, flags [none], proto UDP (17), length 312)
172.16.192.1.67 > 172.16.192.210.68: BOOTP/DHCP, Reply, length 284, xid 0x809ec865, Flags [none]
Your-IP 172.16.192.210
Client-Ethernet-Address 70:4f:57:xx:xx:d5
Vendor-rfc1048 Extensions
Magic Cookie 0x63825363
DHCP-Message Option 53, length 1: ACK
Server-ID Option 54, length 4: 172.16.192.1
Lease-Time Option 51, length 4: 180
RN Option 58, length 4: 90
Default-Gateway Option 3, length 4: 172.16.192.1
Subnet-Mask Option 1, length 4: 255.255.240.0
Domain-Name-Server Option 6, length 8: 193.151.12.8,1.1.1.1
Code: Select all
[ipoe]
verbose=1
username=lua:mac
Code: Select all
--Make login from abonent MAC
function mac(pkt)
return pkt:hdr('chaddr')
end
1. каким образом случается mac change
2. почему нет радиус-запроса при этом
кто-то сталкивался с подобным?