Ready to process requests (432) Received Access-Request Id 255 from 45.239.180.22:1812 to 159.203.99.39:1812 length 330 (432) User-Name = "2054.raquel.diniz" (432) CHAP-Password = 0x01565b020df9c2fdba9457b0672626634a (432) CHAP-Challenge = 0xc90ea9fb648dd0667462431e6b3b38f4 (432) NAS-Port = 2106452 (432) NAS-IP-Address = 45.239.180.22 (432) Service-Type = Framed-User (432) Framed-Protocol = PPP (432) Calling-Station-Id = "24:fd:0d:df:47:86" (432) NAS-Identifier = "FOXMIR-BRAS" (432) NAS-Port-Type = Ethernet (432) NAS-Port-Id = "slot=0;subslot=2;port=2;vlanid=1108;" (432) Acct-Session-Id = "97AAABWo" (432) Connect-Info = "1000000000" (432) Huawei-Startup-Stamp = 1660232473 (432) Huawei-IPHost-Addr = "255.255.255.255 24:fd:0d:df:47:86" (432) Huawei-Connect-ID = 5248 (432) Huawei-Version = "Huawei NetEngine 8000" (432) Huawei-Product-ID = "NetEngine 8000" (432) Huawei-Domain-Name = "isp-domain-01" (432) Huawei-User-Mac = "24:fd:0d:df:47:86" (432) Huawei-Voip-Service-Type = 1 (432) # Executing section authorize from file /etc/freeradius/3.0/sites-enabled/default (432) authorize { (432) if ("%{Cisco-AVPair[*]}" =~ /client-mac-address=(.*)/) { (432) EXPAND %{Cisco-AVPair[*]} (432) --> (432) if ("%{Cisco-AVPair[*]}" =~ /client-mac-address=(.*)/) -> FALSE (432) elsif (ERX-Dhcp-Mac-Addr =~ /^([a-f0-9][a-f0-9])([a-f0-9][a-f0-9]).([a-f0-9][a-f0-9])([a-f0-9][a-f0-9]).([a-f0-9][a-f0-9])([a-f0-9][a-f0-9])$/) { (432) ERROR: Failed retrieving values required to evaluate condition (432) else { (432) update request { (432) EXPAND %{toupper:%{Calling-Station-Id}} (432) --> 24:FD:0D:DF:47:86 (432) Calling-Station-Id := 24:FD:0D:DF:47:86 (432) } # update request = noop (432) } # else = noop (432) if (!control:Cleartext-Password){ (432) if (!control:Cleartext-Password) -> TRUE (432) if (!control:Cleartext-Password) { (432) update control { (432) Cleartext-Password := "no_user_found_radiusnet" (432) } # update control = noop (432) } # if (!control:Cleartext-Password) = noop (432) [preprocess] = ok (432) chap: &control:Auth-Type := CHAP (432) [chap] = ok (432) [mschap] = noop (432) eap: No EAP-Message, not doing EAP (432) [eap] = noop (432) sql: EXPAND %{User-Name} (432) sql: --> 2054.raquel.diniz (432) sql: SQL-User-Name set to '2054.raquel.diniz' rlm_sql (sql): Reserved connection (4) (432) sql: EXPAND SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id (432) sql: --> SELECT id, username, attribute, value, op FROM radcheck WHERE username = '2054.raquel.diniz' ORDER BY id (432) sql: Executing select query: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '2054.raquel.diniz' ORDER BY id (432) sql: User found in radcheck table (432) sql: Conditional check items matched, merging assignment check items (432) sql: Cleartext-Password := "vn2grruu" (432) sql: EXPAND SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id (432) sql: --> SELECT id, username, attribute, value, op FROM radreply WHERE username = '2054.raquel.diniz' ORDER BY id (432) sql: Executing select query: SELECT id, username, attribute, value, op FROM radreply WHERE username = '2054.raquel.diniz' ORDER BY id (432) sql: EXPAND SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority (432) sql: --> SELECT groupname FROM radusergroup WHERE username = '2054.raquel.diniz' ORDER BY priority (432) sql: Executing select query: SELECT groupname FROM radusergroup WHERE username = '2054.raquel.diniz' ORDER BY priority (432) sql: User found in the group table (432) sql: EXPAND SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = '%{SQL-Group}' ORDER BY id (432) sql: --> SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = '121' ORDER BY id (432) sql: Executing select query: SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = '121' ORDER BY id (432) sql: Group "121": Conditional check items matched (432) sql: Group "121": Merging assignment check items (432) sql: Simultaneous-Use := 1 (432) sql: EXPAND SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = '%{SQL-Group}' ORDER BY id (432) sql: --> SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = '121' ORDER BY id (432) sql: Executing select query: SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = '121' ORDER BY id (432) sql: Group "121": Merging reply items (432) sql: Mikrotik-Rate-Limit = "70000k/70000k 0k/0k 0k/0k 0/0 1" (432) sql: WISPr-Bandwidth-Max-Down = 70000000 (432) sql: WISPr-Bandwidth-Max-Up = 70000000 (432) sql: Huawei-Output-Average-Rate = 70000000 (432) sql: Huawei-Input-Average-Rate = 70000000 rlm_sql (sql): Released connection (4) (432) [sql] = ok (432) pap: WARNING: Auth-Type already set. Not setting to PAP (432) [pap] = noop (432) } # authorize = ok (432) Found Auth-Type = CHAP (432) # Executing group from file /etc/freeradius/3.0/sites-enabled/default (432) Auth-Type CHAP { (432) chap: Comparing with "known good" Cleartext-Password (432) chap: CHAP user "2054.raquel.diniz" authenticated successfully (432) [chap] = ok (432) if (request:Service-Type == Login-User && !request:NAS-Port-Type && !reply:Mikrotik-Group){ (432) if (request:Service-Type == Login-User && !request:NAS-Port-Type && !reply:Mikrotik-Group) -> FALSE (432) if (request:Service-Type == Login-User && request:NAS-Port-Type && reply:Mikrotik-Group){ (432) if (request:Service-Type == Login-User && request:NAS-Port-Type && reply:Mikrotik-Group) -> FALSE (432) if (request:Service-Type == Framed-User && reply:Mikrotik-Group){ (432) if (request:Service-Type == Framed-User && reply:Mikrotik-Group) -> FALSE (432) if (reject && Framed-Protocol == PPP) { (432) if (reject && Framed-Protocol == PPP) -> FALSE (432) if (invalid && Framed-Protocol == PPP) { (432) if (invalid && Framed-Protocol == PPP) -> FALSE (432) } # Auth-Type CHAP = ok (432) # Executing section session from file /etc/freeradius/3.0/sites-enabled/default (432) session { (432) sql: EXPAND %{User-Name} (432) sql: --> 2054.raquel.diniz (432) sql: SQL-User-Name set to '2054.raquel.diniz' (432) sql: EXPAND SELECT COUNT(*) FROM radacct WHERE username = '%{SQL-User-Name}' AND acctstoptime IS NULL (432) sql: --> SELECT COUNT(*) FROM radacct WHERE username = '2054.raquel.diniz' AND acctstoptime IS NULL rlm_sql (sql): Reserved connection (9) (432) sql: Executing select query: SELECT COUNT(*) FROM radacct WHERE username = '2054.raquel.diniz' AND acctstoptime IS NULL rlm_sql (sql): Released connection (9) (432) [sql] = ok (432) } # session = ok (432) # Executing section post-auth from file /etc/freeradius/3.0/sites-enabled/default (432) post-auth { (432) if ("%{Cisco-AVPair[*]}" =~ /client-mac-address=(.*)/) { (432) EXPAND %{Cisco-AVPair[*]} (432) --> (432) if ("%{Cisco-AVPair[*]}" =~ /client-mac-address=(.*)/) -> FALSE (432) elsif (ERX-Dhcp-Mac-Addr =~ /^([a-f0-9][a-f0-9])([a-f0-9][a-f0-9]).([a-f0-9][a-f0-9])([a-f0-9][a-f0-9]).([a-f0-9][a-f0-9])([a-f0-9][a-f0-9])$/) { (432) ERROR: Failed retrieving values required to evaluate condition (432) else { (432) update request { (432) EXPAND %{toupper:%{Calling-Station-Id}} (432) --> 24:FD:0D:DF:47:86 (432) Calling-Station-Id := 24:FD:0D:DF:47:86 (432) } # update request = noop (432) } # else = noop (432) sqlippool_v4: No Pool-Name defined (432) sqlippool_v4: EXPAND No Pool-Name defined (did %{Called-Station-Id} cli %{Calling-Station-Id} port %{NAS-Port} user %{User-Name}) (432) sqlippool_v4: --> No Pool-Name defined (did cli 24:FD:0D:DF:47:86 port 2106452 user 2054.raquel.diniz) (432) [sqlippool_v4] = noop (432) sqlippool_v6: No Pool-Name defined (432) sqlippool_v6: EXPAND No Pool-Name defined (did %{Called-Station-Id} cli %{Calling-Station-Id} port %{NAS-Port} user %{User-Name}) (432) sqlippool_v6: --> No Pool-Name defined (did cli 24:FD:0D:DF:47:86 port 2106452 user 2054.raquel.diniz) (432) [sqlippool_v6] = noop (432) update { (432) No attributes updated (432) } # update = noop (432) sql: EXPAND .query (432) sql: --> .query (432) sql: Using query template 'query' rlm_sql (sql): Reserved connection (6) (432) sql: EXPAND %{User-Name} (432) sql: --> 2054.raquel.diniz (432) sql: SQL-User-Name set to '2054.raquel.diniz' (432) sql: EXPAND INSERT INTO radpostauth (username, pass, reply, authdate, nasipaddress, callingstationid) VALUES ( '%{SQL-User-Name}', '%{%{User-Password}:-%{Chap-Password}}', '%{reply:Packet-Type}', UTC_TIMESTAMP(), '%{NAS-IP-Address}', '%{Calling-Station-Id}') (432) sql: --> INSERT INTO radpostauth (username, pass, reply, authdate, nasipaddress, callingstationid) VALUES ( '2054.raquel.diniz', '0x01565b020df9c2fdba9457b0672626634a', 'Access-Accept', UTC_TIMESTAMP(), '45.239.180.22', '24:FD:0D:DF:47:86') (432) sql: Executing query: INSERT INTO radpostauth (username, pass, reply, authdate, nasipaddress, callingstationid) VALUES ( '2054.raquel.diniz', '0x01565b020df9c2fdba9457b0672626634a', 'Access-Accept', UTC_TIMESTAMP(), '45.239.180.22', '24:FD:0D:DF:47:86') (432) sql: SQL query returned: success (432) sql: 1 record(s) updated rlm_sql (sql): Released connection (6) (432) [sql] = ok (432) [exec] = noop (432) policy remove_reply_message_if_eap { (432) if (&reply:EAP-Message && &reply:Reply-Message) { (432) if (&reply:EAP-Message && &reply:Reply-Message) -> FALSE (432) else { (432) [noop] = noop (432) } # else = noop (432) } # policy remove_reply_message_if_eap = noop (432) } # post-auth = ok (432) Sent Access-Accept Id 255 from 159.203.99.39:1812 to 45.239.180.22:1812 length 0 (432) Mikrotik-Rate-Limit = "70000k/70000k 0k/0k 0k/0k 0/0 1" (432) WISPr-Bandwidth-Max-Down = 70000000 (432) WISPr-Bandwidth-Max-Up = 70000000 (432) Huawei-Output-Average-Rate = 70000000 (432) Huawei-Input-Average-Rate = 70000000 (432) Finished request (433) Received Accounting-Request Id 157 from 45.239.180.22:1813 to 159.203.99.39:1813 length 465 (433) User-Name = "1856.carlos.almir" (433) NAS-Port = 2105591 (433) NAS-IP-Address = 45.239.180.22