portal在汇聚交换机上配置,笔记本通过无线接入进行认证。错误信息:
CODE_PP_LOGIN_RESPONSE(101) ; 7743 ; 设备拒绝请求(1) <Content> <Head> Packet Type:CODE_PP_LOGIN_RESPONSE(101) SerialNo:7743 Address:10.1.103.198 Port:50200 Version:portal 2.0 Auth Type:CHAP ErrorID:1 UserIP:192.168.9.200 UserPort:0 ReqID:0 Rsvd:0 attriNum:1 </Head> <Attributes> Failure Reason: </Attributes> </Content> <OriginalPacket> 00000000h: 02 65 00 00 1E 3F 00 00 C0 A8 09 C8 00 00 01 01 ;.e...?.......... 00000010h: 8A E5 BE 54 C9 1A DC 97 BC 51 D9 15 E4 AA 4F B5 ;...T.....Q....O. 00000020h: 73 02 ;s. </OriginalPacket> [2021-05-25 15:44:48.329] [ DEBUG ] [http-nio-80-exec-12]-[609][XssHttpServletRequestWrapper::cleanXSS] before clean value is Chinese [2021-05-25 15:44:48.329] [ DEBUG ] [http-nio-80-exec-12]-[609][XssHttpServletRequestWrapper::cleanXSS] after clean value is Chinese [2021-05-25 15:44:48.330] [ ERROR ] [http-nio-80-exec-12]-[609][PortalWeb::fromLoginResponsePkt2PortalLink][ErrorNumber:7]portal-server-response-packet errorCode:1 [2021-05-25 15:44:48.330] [ DEBUG ] [http-nio-80-exec-12]-[609][PortalWebServlet::onLogin(HttpServletRequest)] data is: {"portServErrorCode":"1","portServErrorCodeDesc":"设备拒绝请求","e_c":"portServErrorCode","e_d":"portServErrorCodeDesc","errorNumber":"7"} [2021-05-25 15:44:56.321] [ DEBUG ] [http-nio-80-exec-18]-[615]get request-parameter-i_p_i_e:null [2021-05-25 15:44:56.322] [ DEBUG ] [http-nio-80-exec-18]-[615][XssHttpServletRequestWrapper::cleanXSS] before clean value is rci [2021-05-25 15:44:56.322] [ DEBUG ] [http-nio-80-exec-18]-[615][XssHttpServletRequestWrapper::cleanXSS] after clean value is rci [2021-05-25 15:44:56.323] [ INFO ] [http-nio-80-exec-18]-[615][com.h3c.portal.web.PortalWebServlet.refreshData(HttpServletRequest)] http-request from 10.1.103.198 [2021-05-25 15:44:56.332] [ ERROR ] [http-nio-80-exec-18]-[615]LINK_GUEST_PREREG_IF_VISIBLE:1 [2021-05-25 15:44:56.333] [ INFO ] [http-nio-80-exec-18]-[615][com.h3c.portal.web.PortalWebServlet.refreshData(HttpServletRequest)] result:{"errorNumber":"1"}
(0)
您好,请知:
认证被拒绝,以下是排查要点,请参考:
1、检查设备侧是否正确配置了portal指向到了服务器。
2、检查认证的用户名、密码是否输入正确。
3、检查认证的终端数量是否做了限制。
4、检查认证的用户名是否过期了。
(0)
你这个基本就是NAS与radius无法通信
(0)
domain default enable uesr portal server imc ip 10.1.103.198 key cipher $c$3$t2qU6wFuU4o9GyY7teYyG4RuMqBuZrg0WyU= url http://10.1.103.198:80/portal portal free-rule 0 source ip any destination ip 10.1.11.176 mask 255.255.255.255 portal free-rule 1 source ip any destination ip 202.99.192.66 mask 255.255.255.255 portal free-rule 2 source ip any destination ip 10.1.103.198 mask 255.255.255.255 portal free-rule 6 source ip any destination ip 114.114.114.114 mask 255.255.255.255 # ip vpn-instance bgl-wuxian route-distinguisher 100:124 vpn-target 100:24 export-extcommunity vpn-target 100:14 100:9 100:24 import-extcommunity # # vlan 125 name User # # radius scheme user server-type extended primary authentication 10.1.103.198 primary accounting 10.1.103.198 key authentication cipher $c$3$/O0T1qwVDaJEH5xZ0FLJBqfhbZ3s5B/nuVo= key accounting cipher $c$3$cX8dju0pxockbpn+JRLjxSIk0FK06j+jmfA= nas-ip 10.1.103.243 domain user authentication portal radius-scheme user authorization portal radius-scheme user accounting portal radius-scheme user access-limit disable state active idle-cut disable self-service-url disable # dhcp server ip-pool user network 192.168.9.0 mask 255.255.255.0 gateway-list 192.168.9.254 dns-list 202.99.192.66 114.114.114.114 interface Vlan-interface125 description User ip binding vpn-instance bgl-wuxian ip address 192.168.9.254 255.255.255.0 portal server imc method direct portal domain user portal nas-ip 10.1.103.243
这是汇集交换机的配置,也没有什么问题呀
亲~登录后才可以操作哦!
确定你的邮箱还未认证,请认证邮箱或绑定手机后进行当前操作
举报
×
侵犯我的权益
×
侵犯了我企业的权益
×
抄袭了我的内容
×
原文链接或出处
诽谤我
×
对根叔社区有害的内容
×
不规范转载
×
举报说明