Ola a todos!!!
Estou com dificuldade em levantar o PPPoE, simplesmente rejeita usuario/senha. Ja conferir e reconferir toda a configuracao. rodando o freeradius em debub aparece as seguintes informacoes:
Listening on authentication address * port 1812
Listening on accounting address * port 1813
Ready to process requests.
rad_recv: Access-Request packet from host 172.31.255.1 port 32770, id=203, length=146
Service-Type = Framed-User
Framed-Protocol = PPP
NAS-Port = 212
NAS-Port-Type = Ethernet
User-Name = "andre.luiz"
Calling-Station-Id = "00:1C:BF:64:B4:E5"
Called-Station-Id = "Ola"
NAS-Port-Id = "02-Clientes"
CHAP-Challenge = 0x4793f6f7a7aaf4073cbc9eccde6bc8d3
CHAP-Password = 0x010031fe3aa848af2083e3ccb940f9bfb1
NAS-Identifier = "MikroTik"
NAS-IP-Address = 172.31.255.1
+- entering group authorize
++[preprocess] returns ok
rlm_chap: Setting 'Auth-Type := CHAP'
++[chap] returns ok
++[mschap] returns noop
rlm_realm: No '@' in User-Name = "andre.luiz", looking up realm NULL
rlm_realm: No such realm "NULL"
++[suffix] returns noop
rlm_eap: No EAP-Message, not doing EAP
++[eap] returns noop
++[unix] returns notfound
users: Matched entry DEFAULT at line 175
++[files] returns ok
expand: %{User-Name} -> andre.luiz
rlm_sql (sql): sql_set_user escaped user --> 'andre.luiz'
rlm_sql (sql): Reserving sql socket id: 3
expand: SELECT id, username, attribute, value, op FROM radcheck WHERE ativo ='s' AND ativo2 ='s' AND username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE ativo ='s' AND ativo2 ='s' AND username = 'andre.luiz' ORDER BY id
WARNING: Found User-Password == "...".
WARNING: Are you sure you don't mean Cleartext-Password?
WARNING: See "man rlm_pap" for more information.
expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'andre.luiz' ORDER BY priority
expand: SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = '%{Sql-Group}' ORDER BY id -> SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = 'Comercial' ORDER BY id
rlm_sql (sql): User found in group Comercial
expand: SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = '%{Sql-Group}' ORDER BY id -> SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = 'Comercial' ORDER BY id
rlm_sql (sql): Released sql socket id: 3
++[sql] returns ok
++[expiration] returns noop
++[logintime] returns noop
rlm_pap: WARNING! No "known good" password found for the user. Authentication may fail because of this.
++[pap] returns noop
rad_check_password: Found Auth-Type CHAP
auth: type "CHAP"
+- entering group CHAP
rlm_chap: login attempt by "andre.luiz" with CHAP password
rlm_chap: Cleartext-Password is required for authentication
++[chap] returns invalid
auth: Failed to validate the user.
Login incorrect (rlm_chap: Clear text password not available): [andre.luiz/<CHAP-Password>] (from client mikrotik port 212 cli 00:1C:BF:64:B4:E5)
Found Post-Auth-Type Reject
+- entering group REJECT
expand: %{User-Name} -> andre.luiz
attr_filter: Matched entry DEFAULT at line 14
++[attr_filter.access_reject] returns updated
Delaying reject of request 0 for 1 seconds
Going to the next request
Waking up in 0.9 seconds.
rad_recv: Access-Request packet from host 172.31.255.1 port 32770, id=203, length=146
Waiting to send Access-Reject to client mikrotik port 32770 - ID: 203
Waking up in 0.6 seconds.
rad_recv: Access-Request packet from host 172.31.255.1 port 32770, id=203, length=146
Waiting to send Access-Reject to client mikrotik port 32770 - ID: 203
Waking up in 0.3 seconds.
Sending delayed reject for request 0
Sending Access-Reject of id 203 to 172.31.255.1 port 32770
Waking up in 4.9 seconds.
Cleaning up request 0 ID 203 with timestamp +90
Ready to process requests.
Alguem tem alguma ideia de como posso resolver??
Grato.
Respostas
Andre Luiz disse:
Tira a criptografia do servidor pppe no mikrotik.
Vc pode explicar onde fica este paramentro amigo??
vc usar burst?
Eu nao uso, Burst.
André
Andre Luiz disse:
A Encriptação já ta marcada como "NO".
André