portal debugging 报文的意思
- 0关注
- 0收藏,982浏览
问题描述:
*Oct 18 16:31:58:759 2023 SZ-CX-AC-42.MAN.AC2 PORTAL/7/RULE: [Inbound] execute full rule match, { MatchRes = [Rule3-Redirect] } IfName = WLAN-BSS1/0/20258, PortName = WLAN-BSS1/0/20258, Vlan = 3612, SrcMAC = ec60-7336-fb53, SrcIP = 10.123.76.188, DstIP = 1.192.137.11 L4Protocol = 6, SrcPort = 49430, DstPort = 80, VrfIndex = 0
这段debugging 出来的意思
组网及组网描述:
- 2023-10-18提问
- 举报
-
(0)
最佳答案
Portal -- Portal调试命令 -- debugging portal
debugging portal { all | error | event | fsm }
undo debugging portal { all | error | event | fsm }
all:表示所有Portal调试信息开关。
error:表示错误调试信息开关。
event:表示事件调试信息开关。
fsm:表示状态机调试信息开关。
debugging portal命令用来打开Portal调试信息开关。undo debugging portal命令用来关闭Portal调试信息开关。
缺省情况下,Portal调试信息开关处于关闭状态。
表1-1 debugging portal error命令输出信息描述表
Failed to create the detection timer for portal server server-name. | 创建Portal服务器探测定时器失败,Portal服务器名称为server-name |
User (IP:user-ip) will log off because of no IP address assigned by the DHCP server. | 由于未能成功被DHCP服务器分配IP地址,用户将被强制下线,用户IP地址为user-ip |
Portal服务器在指定时间内没有确认更新的用户IP地址,该用户将被强制下线 | |
开启等待更新IP地址定时器失败 | |
开启确认新IP地址定时器失败 | |
开启等待ACK_NTF_LOGOUT报文定时器失败 | |
向所有板发送Mesh消息失败 | |
向接口板发送Mesh消息失败 | |
向主控板发送Mesh消息失败 | |
Packet validity check failed because packet length and version did not match. | |
authenticator字段非法,报文合法性检查失败 | |
Packet validity check failed due to failure of getting user access interface by user IP. | 无法通过用户IP地址找到用户接入的接口,报文合法性检查失败 |
无法收到ICMP报文 | |
无法打开ICMP的套接字 | |
发送ICMPv6的报文失败 | |
获取ARP更新时间失败 | |
发送ARP请求失败 | |
获取ND更新时间失败 | |
Failed to find user while receiving accounting-update response. | |
Failed to create user because the user count reached the upper limit. | |
ACL acl-number不存在,或ACL的类型不支持 | |
根据MAC地址没有找到用户 | |
内存不足导致创建DHCP租约表项失败 | |
创建DHCP租约表项失败 | |
因为内存不足,创建DHCPv6表项失败 | |
创建DHCPv6表项失败 | |
Failed to create the pre-auth user: The user already existed. | |
用户MAC地址为全0,创建认证前用户失败 | |
表1-2 debugging portal event 命令输出信息描述表
表1-3 debugging portal fsm 命令输出信息描述表
认证状态机(用户IP地址为ip-addr)进入状态state,包括以下取值: · Authenticating:正在认证 · Authenticated:认证成功 · Continue:认证持续 · AssigningNewIP:等待分配IP地址 · AssignedNewIP:分配到IP地址 · Online:在线 · Waiting:强制下线状态,等待NTF_LOGOUT响应 · Offline:下线处理状态 | |
用户探测状态机(用户IP地址为ip-addr)进入状态state,包括以下取值: · Detected:已探测状态 · Wait_Detect:等待探测状态 · Detecting:正在探测状态 · DetectFail:探测失败状态 | |
User-SM [ip-addr]: State changed from old-state to new-state. | 用户状态机状态发生变化(旧状态old-state -> 新状态new-state),状态包括以下取值: · Authenticating:正在认证 · Waiting_Author:等待授权结果 · Waiting_Rule_OK:等待规则下发结果 · Online:在线 · Offline_Waiting_Traffic:下线等待各板流量 · Offline_Waiting_Acctoff:等待停止计费回应 · Done:用户下线完成 |
# 在一台配置了Portal的设备上打开Portal状态机调试信息开关,当有Portal用户上线时,将输出以下调试信息。
*Jan 7 00:06:44:214 2011 Sysname PORTAL/7/FSM:
User-SM[197.197.197.1]: Begin to run.
// 用户状态机开始运转,用户IP地址为197.197.197.1
*Jan 7 00:06:44:214 2011 Sysname PORTAL/7/FSM:
User-SM[197.197.197.1]: State changed from Initial to Authenticating.
// 用户状态机从Initial切换为Authenticating状态
*Jan 7 00:06:44:219 2011 Sysname PORTAL/7/FSM:
Auth-SM: Started to run.
// 认证状态机开始运转
*Jan 7 00:06:44:220 2011 Sysname PORTAL/7/FSM:
Auth_SM[197.197.197.1]: Entered state Authenticating.
// 认证状态机进入Authenticating状态
User-SM[197.197.197.1]: Begin to run.
*Jan 7 00:06:44:645 2011 Sysname PORTAL/7/FSM
// 用户状态机不变
Auth-SM: Started to run.
*Jan 7 00:06:44:645 2011 Sysname PORTAL/7/FSM:
Auth_SM[197.197.197.1]: Entered state Authenticated.
// 用户状态机进入Authenticated状态
*Jan 7 00:06:44:646 2011 Sysname PORTAL/7/FSM:
User-SM[197.197.197.1]: Begin to run.
*Jan 7 00:06:44:646 2011 Sysname PORTAL/7/FSM:
User-SM[197.197.197.1]: State changed from Authenticating to Waiting_Author.
*Jan 7 00:06:44:657 2011 Sysname PORTAL/7/FSM:
User-SM[197.197.197.1]: State changed from Waiting_Author to Waiting_Rule_OK.
// 用户状态机首先切换为Waiting_Author,然后切换为Waiting_Rule_OK
*Jan 7 00:06:44:667 2011 Sysname PORTAL/7/FSM:
Auth-SM: Started to run.
*Jan 7 00:06:44:668 2011 Sysname PORTAL/7/FSM:
Auth_SM[197.197.197.1]: Entered state Online.
// 认证状态机进入Online状态
*Jan 7 00:06:44:670 2011 Sysname PORTAL/7/FSM:
User-SM[197.197.197.1]: Begin to run.
*Jan 7 00:06:44:671 2011 Sysname PORTAL/7/FSM:
User-SM[197.197.197.1]: State changed from Waiting_Rule_OK to Online.
// 用户状态机切换为Online
*Jan 7 00:21:31:710 2011 Sysname PORTAL/7/FSM:
User-Detect-SM[197.197.197.1]: Entered state Initial.
// 用户状态机进入Iintial状态
User-Detect-SM[197.197.197.1]: Entered state Detected.
*Jan 7 00:21:32:469 2011 Sysname PORTAL/7/FSM:
// 用户探测状态机进入Detected状态
*Jan 7 00:35:16:169 2011 Sysname PORTAL/7/FSM:
Auth-SM: Started to run.
*Jan 7 00:35:16:170 2011 Sysname PORTAL/7/FSM:
Auth_SM[197.197.197.1]: Entered state Offline.
// 认证状态机进入Offline状态
*Jan 7 00:35:16:171 2011 Sysname PORTAL/7/FSM:
User-SM[197.197.197.1]: Begin to run.
*Jan 7 00:35:16:172 2011 Sysname PORTAL/7/FSM:
User-SM[197.197.197.1]: State changed from Online to Offline_Waiting_Traffic.
// 用户状态机切换为Offline_Waiting_Traffic状态
*Jan 7 00:35:16:180 2011 Sysname PORTAL/7/FSM:
User-SM[197.197.197.1]: Begin to run.
*Jan 7 00:35:16:181 2011 Sysname PORTAL/7/FSM:
User-SM[197.197.197.1]: State changed from Offline_Waiting_Traffic to Offline_Waiting_Acctoff.
// 用户状态机切换为Offline_Waiting_Accoff状态
*Jan 7 00:35:16:758 2011 Sysname PORTAL/7/FSM:
User-SM[197.197.197.1]: Begin to run.
*Jan 7 00:35:16:759 2011 Sysname PORTAL/7/FSM:
User-SM[197.197.197.1]: State changed from Offline_Waiting_Acctoff to Done.
// 用户状态机切换为Done状态
*Jan 7 00:35:16:759 2011 Sysname PORTAL/7/FSM:
User-SM[197.197.197.1]: User deleted.
// 用户被删除
# 在一台配置了Portal的设备上打开Portal事件调试信息开关,当有Portal用户上线时,将输出以下调试信息。
*Jan 7 00:38:37:954 2011 Sysname PORTAL/7/EVENT:
Auth-SM[197.197.197.1]: Started the auth_sm timer, timeout=15 sec.
// 开启认证状态机定时器,时长为15秒
*Jan 7 00:38:37:955 2011 Sysname PORTAL/7/EVENT:
User-SM[197.197.197.1]: Notified Auth-SM to process the REQ_CHALLENGE packet.
// 通知协议状态机处理REQ_CHALLENGE报文
*Jan 7 00:38:37:963 2011 Sysname PORTAL/7/EVENT:
User-SM[197.197.197.1]: Notified Auth-SM to process the REQ_AUTH packet.
// 通知协议状态机处理REQ_AUTH报文
*Jan 7 00:38:37:965 2011 Sysname PORTAL/7/EVENT:
User-SM[197.197.197.1]: AAA processed authentication request and returned processing.
// AAA处理认证请求,并返回结果为正在处理
*Jan 7 00:38:38:425 2011 Sysname PORTAL/7/EVENT:
User-SM[197.197.197.1]: Received authentication response, RespCode=0.
// 收到AAA的认证回应消息,响应码为0
*Jan 7 00:38:38:436 2011 Sysname PORTAL/7/EVENT:
User-SM[197.197.197.1]: AAA processed authorization request and returned success.
// AAA处理授权请求,返回结果为成功
*Jan 7 00:38:38:448 2011 Sysname PORTAL/7/EVENT:
User-SM[197.197.197.1]: Started User-SM timer, timeout=600 sec.
// 开启用户状态机定时器,时长为600秒
*Jan 7 00:38:38:451 2011 Sysname PORTAL/7/EVENT:
User-SM[197.197.197.1]: Received rule result success.
// 收到规则下发成功的消息
*Jan 7 00:38:38:452 2011 Sysname PORTAL/7/EVENT:
User-SM[197.197.197.1]: Stopped User-SM timer.
// 关闭用户状态机定时器
*Jan 7 00:38:38:453 2011 Sysname PORTAL/7/EVENT:
User-SM[197.197.197.1]: AAA processed accounting-start request and returned proc
essing.
// AAA处理开始计费请求,并返回结果为正在处理
*Jan 7 00:38:38:455 2011 Sysname PORTAL/7/EVENT:
User-SM[197.197.197.1]: Started session-timeout timer, timeout=900902 sec.
// 开启会话超时定时器,时长为900902秒
*Jan 7 00:38:38:456 2011 Sysname PORTAL/7/EVENT:
User-SM[197.197.197.1]: Started idle-cut timer, timeout=600 sec.
// 开启Idle-cut定时器,时长为600秒
*Jan 7 00:38:38:457 2011 Sysname PORTAL/7/EVENT:
User-SM[197.197.197.1]: Notify User-Detect-SM detecting started.
*Jan 7 00:38:38:458 2011 Sysname PORTAL/7/EVENT:
User-Detect-SM[197.197.197.1]: Start detect function.
// 通知用户探测状态机开启探测
*Jan 7 00:38:38:458 2011 Sysname PORTAL/7/EVENT:
User-Detect-SM[197.197.197.1]: Started detect idle timer, length=60(sec).
// 开启探测闲置定时器,时长为60秒
*Jan 7 00:38:38:546 2011 Sysname PORTAL/7/EVENT:
User-SM[197.197.197.1]: Received accounting-start response.
// 收到开始计费回应消息
*Jan 7 00:38:38:549 2011 Sysname PORTAL/7/EVENT:
User-SM[197.197.197.1]: Started accounting-update timer, timeout=720 sec.
// 开启实时计费定时器,时长为720秒
*Jan 7 00:39:38:686 2011 Sysname PORTAL/7/EVENT:
User-Detect-SM[197.197.197.1]: Stopped detect timer.
// 关闭探测定时器
*Jan 7 00:39:39:687 2011 Sysname PORTAL/7/EVENT:
User-Detect-SM[197.197.197.1]: Sent ICMP request successfully.
// 发送ICMP请求报文成功
*Jan 7 00:58:49:689 2011 Sysname PORTAL/7/EVENT:
User-Detect-SM[197.197.197.1]: Started detect waiting-response timer, timeout=3 sec.
// 开启等待探测回应定时器,时长为3秒
*Jan 7 00:58:52:687 2011 Sysname PORTAL/7/EVENT:
User-Detect-SM[197.197.197.1]: ARP entry refreshed.
// 用户ARP表项刷新
User-Detect-SM[197.197.197.1]: Stopped detect timer.
*Jan 7 00:58:52:689 2011 Sysname PORTAL/7/EVENT:
// 关闭探测定时器
*Jan 7 01:00:36:547 2011 Sysname PORTAL/7/EVENT:
User-SM[197.197.197.1]: Notified Auth-SM to process the REQ_LOGOUT packet.
// 通知认证状态机处理REQ_LOGOUT报文
*Jan 7 01:00:36:549 2011 Sysname PORTAL/7/EVENT:
User-SM[197.197.197.1]: Auth-SM logged out the user and notified User-SM to proce.
// 认证状态机处理完成,通知用户状态机处理
*Jan 7 01:00:36:556 2011 Sysname PORTAL/7/EVENT:
User-SM[197.197.197.1]: Started User-SM timer, timeout=60 sec.
// 开启用户状态机定时器,时长为60秒
*Jan 7 01:00:36:562 2011 Sysname PORTAL/7/EVENT:
User-SM[197.197.197.1]: Receiving last traffic when offline.
// 获取用户的流量信息
*Jan 7 01:00:36:562 2011 Sysname PORTAL/7/EVENT:
User-SM[197.197.197.1]: Stopped User-SM timer.
// 关闭用户状态机定时器
*Jan 7 01:00:36:563 2011 Sysname PORTAL/7/EVENT:
User-SM[197.197.197.1]: AAA processed accounting-stop request and returned processing.
// AAA处理停止计费请求,并返回结果为正在处理
*Jan 7 01:00:36:563 2011 Sysname PORTAL/7/EVENT:
User-SM[197.197.197.1]: Started User-SM timer, timeout=60 sec.
// 开启用户状态机定时器,时长为60秒
*Jan 7 01:00:37:169 2011 Sysname PORTAL/7/EVENT:
User-SM[197.197.197.1]: Received accounting-stop response.
// 收到计费停止响应报文
*Jan 7 01:00:37:170 2011 Sysname PORTAL/7/EVENT:
User-SM[197.197.197.1]: Stopped User-SM timer.
// 关闭用户状态机定时器
*Jan 7 01:00:37:172 2011 Sysname PORTAL/7/EVENT:
User-SM[197.197.197.1]: Stopped session-timeout timer.
// 关闭会话超时定时器
*Jan 7 01:00:37:172 2011 Sysname PORTAL/7/EVENT:
User-SM[197.197.197.1]: Stopped idle-cut timer.
// 关闭Idle-cut定时器
*Jan 7 01:00:37:173 2011 Sysname PORTAL/7/EVENT:
User-SM[197.197.197.1]: Notify User-Detect-SM detecting stopped.
// 通知用户探测状态机关闭探测功能
*Jan 7 01:00:37:174 2011 Sysname PORTAL/7/EVENT:
User-Detect-SM[197.197.197.1]: Stopped detect timer.
// 关闭探测定时器
# 在一台指定了Portal认证前域的设备上打开Portal事件调试信息开关,当有用户申请地址时,因为指定的Portal认证前域不存在,将输出以下调试信息。
*Sep 24 06:29:31:923 2014 Sysname PORTAL/7/EVENT: -MDC=1;
Received DHCP event: operation=Add, IP=0x12120001, MAC=1cbd-b9e3-b0ed, interface=GigabitEthernet1/0/3.
*Sep 24 06:29:31:923 2014 Sysname PORTAL/7/EVENT: -MDC=1;
USER: Received a message for adding DHCP client (MAC=1cbd-b9e3-b0ed, IP=18.18.0.1, Interface=GigabitEthernet1/0/3, VPN instance=).
// 收到DHCP上报的租约创建事件
*Sep 24 06:29:31:923 2014 Sysname PORTAL/7/ERROR: -MDC=1;
Failed to find user by MAC (1cbd-b9e3-b0ed).
// 根据上报租约的MAC地址找不到用户
*Sep 24 06:29:31:933 2014 Sysname PORTAL/7/ERROR: -MDC=1;
Failed to get author info for pre-auth user.
// 获取认证前域授权信息失败,创建认证前用户失败
# 在一台配置了Portal认证前域的设备上打开Portal事件调试信息开关,当有用户申请地址时,将输出以下调试信息。
*Sep 24 06:29:31:923 2014 Sysname PORTAL/7/EVENT: -MDC=1;
Received DHCP event: operation=Add, IP=0x12120001, MAC=1cbd-b9e3-b0ed, interface=GigabitEthernet1/0/3.
// 收到DHCP上报的租约创建事件
*Sep 24 06:29:31:923 2014 Sysname PORTAL/7/EVENT: -MDC=1;
USER: Received a message for adding DHCP client (MAC=1cbd-b9e3-b0ed, IP=18.18.0.1, Interface=GigabitEthernet1/0/3, VPN instance=).
// 收到DHCP上报的租约创建事件
*Sep 24 06:29:31:923 2014 Sysname PORTAL/7/ERROR: -MDC=1;
Failed to find user by MAC (1cbd-b9e3-b0ed).
// 根据租约找不到对应用户
*Sep 24 06:29:31:923 2014 Sysname PORTAL/7/EVENT: -MDC=1;
User-SM[18.18.0.1]: Added ARP rule.
// 添加ARP规则
*Sep 24 06:29:31:924 2014 Sysname PORTAL/7/EVENT: -MDC=1;
User-SM[18.18.0.1]: Added user rule.
// 添加认证前用户规则
*Sep 24 06:29:31:933 2014 Sysname PORTAL/7/EVENT: -MDC=1;
User-SM[18.18.0.1]: Started User-SM timer (600 sec).
// 开启规则等待定时器
*Sep 24 06:29:31:944 2014 Sysname PORTAL/7/EVENT: -MDC=1;
User-SM[18.18.0.1]: Received deployment results of all rules.
// 收到规则下发结果
*Sep 24 06:29:31:945 2014 Sysname PORTAL/7/EVENT: -MDC=1;
User-SM[18.18.0.1]: Stopped User-SM timer.
// 停止规则等待定时器
*Sep 24 06:29:31:945 2014 Sysname PORTAL/7/EVENT: -MDC=1;
User-SM[18.18.0.1]: Entered state vsrp_master.
// 进入授权下发状态
*Sep 24 06:29:31:946 2014 Sysname PORTAL/7/EVENT: -MDC=1;
User-SM[18.18.0.1]: Entered state vsrp_master_ok.
// 授权下发完成
- 2023-10-18回答
- 评论(0)
- 举报
-
(0)
亲~登录后才可以操作哦!
确定你的邮箱还未认证,请认证邮箱或绑定手机后进行当前操作
举报
×
侵犯我的权益
×
侵犯了我企业的权益
×
- 1. 您举报的内容是什么?(请在邮件中列出您举报的内容和链接地址)
- 2. 您是谁?(身份证明材料,可以是身份证或护照等证件)
- 3. 是哪家企业?(营业执照,单位登记证明等证件)
- 4. 您与该企业的关系是?(您是企业法人或被授权人,需提供企业委托授权书)
抄袭了我的内容
×
原文链接或出处
诽谤我
×
- 1. 您举报的内容以及侵犯了您什么权益?(请在邮件中列出您举报的内容、链接地址,并给出简短的说明)
- 2. 您是谁?(身份证明材料,可以是身份证或护照等证件)
对根叔社区有害的内容
×
不规范转载
×
举报说明
暂无评论