A user failed 802.1X authentication.Reason:Received dissociation packet with reason code 8 in Userauth state.
环境是加域的NPS服务器,用于无线接入认证。code 8 是要怎么解决呢?
(0)
最佳答案
您好,这个要具体debug或者抓包来看,怀疑是服务器下发的属性有异常。
(0)
%Mar 26 13:57:55:064 2024 AC-1 DOT1X/5/DOT1X_WLAN_LOGIN_FAILURE: -Username=host/test.domain.local-UserMAC=e8d0-fcf2-fbb3-BSSID=bcd0-eb08-9de0-SSID=wlan1-APName=AP03-RadioID=2-VLANID=22; A user failed 802.1X authentication.Reason:Received dissociation packet with reason code 8 in Userauth state. 抓包如下: *Mar 26 13:57:52:606 2024 AC-1 RADIUS/7/EVENT: PAM_RADIUS: Processing RADIUS authentication. *Mar 26 13:57:52:606 2024 AC-1 RADIUS/7/EVENT: PAM_RADIUS: Sent authentication request successfully. *Mar 26 13:57:52:606 2024 AC-1 RADIUS/7/EVENT: Processing AAA request data. *Mar 26 13:57:52:606 2024 AC-1 RADIUS/7/EVENT: Got request data successfully, primitive: authentication. *Mar 26 13:57:52:606 2024 AC-1 RADIUS/7/EVENT: Getting RADIUS server info. *Mar 26 13:57:52:606 2024 AC-1 RADIUS/7/EVENT: Got RADIUS server info successfully. *Mar 26 13:57:52:606 2024 AC-1 RADIUS/7/EVENT: Created request context successfully. *Mar 26 13:57:52:606 2024 AC-1 RADIUS/7/EVENT: Created request packet successfully, dstIP: 192.168.1.3, dstPort: 1812, VPN instance: --(public), socketFd: 333, pktID: 230. *Mar 26 13:57:52:606 2024 AC-1 RADIUS/7/EVENT: Added packet socketfd to epoll successfully, socketFd: 333. *Mar 26 13:57:52:606 2024 AC-1 RADIUS/7/EVENT: Mapped PAM item to RADIUS attribute successfully. *Mar 26 13:57:52:606 2024 AC-1 RADIUS/7/EVENT: Got RADIUS username format successfully, format: 0. *Mar 26 13:57:52:606 2024 AC-1 RADIUS/7/EVENT: Added attribute user-name successfully, user-name: host/test.domain.local. *Mar 26 13:57:52:606 2024 AC-1 RADIUS/7/EVENT: Filled RADIUS attributes in packet successfully. *Mar 26 13:57:52:606 2024 AC-1 RADIUS/7/EVENT: Composed request packet successfully. *Mar 26 13:57:52:606 2024 AC-1 RADIUS/7/EVENT: Created response timeout timer successfully. *Mar 26 13:57:52:607 2024 AC-1 RADIUS/7/PACKET: User-Name="host/test.domain.local" NAS-Identifier="AC-1" NAS-Port-Type=Wireless-802.11 NAS-Port=16777395 NAS-Port- H3c-User-Vlan-Id=179 EAP-Message=0x0202002201686f73742f5351535a2d4c343037332e70616963646f6d2e6c6f63616c Message-Authenticator=0x00000000000000000000000000000000 Framed-MTU=1450 Called-Station- Acct-Session- H3c-Ip-Host-Addr="0.0.0.0 e8:d0:fc:f2:fb:b3" Calling-Station- Framed-Protocol=PPP Service-Type=Framed-User NAS-IP-Address=192.168.2.1 H3c-Product- H3c-Nas-Startup-Timestamp=1677656999 *Mar 26 13:57:52:607 2024 AC-1 RADIUS/7/EVENT: Sent request packet successfully, dst-IP: 192.168.1.3, code: 1, length: 326. *Mar 26 13:57:52:607 2024 AC-1 RADIUS/7/PACKET: 01 e6 01 46 c8 eb 23 fc 59 0e c5 0b d9 8c df 86 15 56 23 27 01 1f 68 6f 73 74 2f 53 51 53 5a 2d 4c 34 30 37 33 2e 70 61 69 63 64 6f 6d 2e 6c 6f 63 61 6c 20 06 41 43 2d 31 3d 06 00 00 00 13 05 06 01 00 00 b3 57 12 30 31 30 30 30 30 30 30 30 30 30 30 30 31 37 39 1a 0c 00 00 63 a2 85 06 00 00 00 b3 4f 24 02 02 00 22 01 68 6f 73 74 2f 53 51 53 5a 2d 4c 34 30 37 33 2e 70 61 69 63 64 6f 6d 2e 6c 6f 63 61 6c 50 12 50 ef 87 9b 46 12 fd e7 3d 66 30 85 96 fa 60 5a 0c 06 00 00 05 aa 1e 1b 42 43 2d 44 30 2d 45 42 2d 30 38 2d 39 44 2d 44 30 3a 50 41 5f 57 4c 41 4e 2c 27 30 30 30 30 30 30 30 34 30 33 32 36 30 35 35 37 35 32 30 30 30 36 38 33 33 66 30 38 30 30 30 30 30 31 32 35 39 1a 21 00 00 63 a2 3c 1b 30 2e 30 2e 30 2e 30 *Mar 26 13:57:52:607 2024 AC-1 RADIUS/7/PACKET: 20 65 38 3a 64 30 3a 66 63 3a 66 32 3a 66 62 3a 62 33 1f 13 45 38 2d 44 30 2d 46 43 2d 46 32 2d 46 42 2d 42 33 07 06 00 00 00 01 06 06 00 00 00 02 04 06 0a f3 4f fd 1a 13 00 00 63 a2 ff 0d 48 33 43 20 57 58 33 35 34 30 58 1a 0c 00 00 63 a2 3b 06 63 ff 03 a7 *Mar 26 13:57:52:607 2024 AC-1 RADIUS/7/EVENT: Sent request packet and create request context successfully. *Mar 26 13:57:52:607 2024 AC-1 RADIUS/7/EVENT: Added request context to global table successfully. *Mar 26 13:57:52:620 2024 AC-1 RADIUS/7/EVENT: Reply SocketFd recieved EPOLLIN event. *Mar 26 13:57:52:620 2024 AC-1 RADIUS/7/EVENT: Received reply packet successfully, src-IP: 192.168.1.3, code: 11, length: 90. *Mar 26 13:57:52:620 2024 AC-1 RADIUS/7/EVENT: Found request context, dstIP: 192.168.1.3, dstPort: 1812, VPN instance: --(public), socketFd: 333, pktID: 230. *Mar 26 13:57:52:620 2024 AC-1 RADIUS/7/EVENT: The reply packet is valid. *Mar 26 13:57:52:620 2024 AC-1 RADIUS/7/EVENT: Decoded reply packet successfully. *Mar 26 13:57:52:620 2024 AC-1 RADIUS/7/PACKET: Session-Timeout=30 EAP-Message=0x010300061920 State=0x6266070c0000013700011700fe80000000000000f704fbb62fbe131700000004662b8b5a Message-Authenticator=0x307e88b933d923f0e1733f73d1d0161f *Mar 26 13:57:52:620 2024 AC-1 RADIUS/7/PACKET: 0b e6 00 5a 76 f6 02 c5 6e 17 bd 3b ee 38 1d e8 f1 d3 06 2d 1b 06 00 00 00 1e 4f 08 01 03 00 06 19 20 18 26 62 66 07 0c 00 00 01 37 00 01 17 00 fe 80 00 00 00 00 00 00 f7 04 fb b6 2f be 13 17 00 00 00 04 66 2b 8b 5a 50 12 30 7e 88 b9 33 d9 23 f0 e1 73 3f 73 d1 d0 16 1f *Mar 26 13:57:52:620 2024 AC-1 RADIUS/7/EVENT: Sent reply message successfully. *Mar 26 13:57:52:620 2024 AC-1 RADIUS/7/EVENT: PAM_RADIUS: Processing RADIUS authentication. *Mar 26 13:57:52:620 2024 AC-1 RADIUS/7/EVENT: PAM_RADIUS: Fetched authentication reply-data successfully, resultCode: 2 *Mar 26 13:57:52:623 2024 AC-1 RADIUS/7/EVENT: PAM_RADIUS: Processing RADIUS authentication. *Mar 26 13:57:52:623 2024 AC-1 RADIUS/7/EVENT: PAM_RADIUS: Sent authentication request successfully. *Mar 26 13:57:52:623 2024 AC-1 RADIUS/7/EVENT: Processing AAA request data. *Mar 26 13:57:52:623 2024 AC-1 RADIUS/7/EVENT: Got request data successfully, primitive: authentication. *Mar 26 13:57:52:623 2024 AC-1 RADIUS/7/EVENT: Getting RADIUS server info. *Mar 26 13:57:52:623 2024 AC-1 RADIUS/7/EVENT: Got RADIUS server info successfully. *Mar 26 13:57:52:623 2024 AC-1 RADIUS/7/EVENT: Created request context successfully. *Mar 26 13:57:52:623 2024 AC-1 RADIUS/7/EVENT: Created request packet successfully, dstIP: 192.168.1.3, dstPort: 1812, VPN instance: --(public), socketFd: 333, pktID: 231. *Mar 26 13:57:52:624 2024 AC-1 RADIUS/7/EVENT: Added packet socketfd to epoll successfully, socketFd: 333. *Mar 26 13:57:52:624 2024 AC-1 RADIUS/7/EVENT: Mapped PAM item to RADIUS attribute successfully. *Mar 26 13:57:52:624 2024 AC-1 RADIUS/7/EVENT: Got RADIUS username format successfully, format: 0. *Mar 26 13:57:52:624 2024 AC-1 RADIUS/7/EVENT: Added attribute user-name successfully, user-name: host/test.domain.local. *Mar 26 13:57:52:624 2024 AC-1 RADIUS/7/EVENT: Filled RADIUS attributes in packet successfully. *Mar 26 13:57:52:624 2024 AC-1 RADIUS/7/EVENT: Composed request packet successfully. *Mar 26 13:57:52:624 2024 AC-1 RADIUS/7/EVENT: Created response timeout timer successfully. *Mar 26 13:57:52:624 2024 AC-1 RADIUS/7/PACKET: User-Name="host/test.domain.local" NAS-Identifier="AC-1" NAS-IP-Address=192.168.2.1 NAS-Port-Type=Wireless-802.11 NAS-Port=16777395 NAS-Port- H3c-User-Vlan-Id=179 EAP-Message=0x020300c31980000000b916030300b4010000b00303660263e056e16303d0f72c2ac5c2997ab8748ffdc1de8d4f3b9788821149398320f3210000d3a49919a80099ad33fa885db9b7cfa9763521614ec4f4bac8204ce6002ac02cc02bc030c02f009f009ec024c023c028c027c00ac009c014c013009d009c003d003c0035002f000a0100003d000a00080006001d00170018000b00020100000d001a00180804080508060401050102010403050302030202060106030023000000170000ff01000100 Message-Authenticator=0x00000000000000000000000000000000 Framed-MTU=1450 Called-Station- *Mar 26 13:57:52:624 2024 AC-1 RADIUS/7/PACKET: Acct-Session- H3c-Ip-Host-Addr="0.0.0.0 e8:d0:fc:f2:fb:b3" Calling-Station- Framed-Protocol=PPP Service-Type=Framed-User State=0x6266070c0000013700011700fe80000000000000f704fbb62fbe131700000004662b8b5a H3c-Product- H3c-Nas-Startup-Timestamp=1677656999 *Mar 26 13:57:52:624 2024 AC-1 RADIUS/7/EVENT: Sent request packet successfully, dst-IP: 192.168.1.3, code: 1, length: 525. *Mar 26 13:57:52:624 2024 AC-1 RADIUS/7/PACKET: 01 e7 02 0d 06 57 58 6e 56 8c 44 35 2b ea 94 01 48 f4 8c e6 01 1f 68 6f 73 74 2f 53 51 53 5a 2d 4c 34 30 37 33 2e 70 61 69 63 64 6f 6d 2e 6c 6f 63 61 6c 20 06 41 43 2d 31 04 06 0a f3 4f fd 3d 06 00 00 00 13 05 06 01 00 00 b3 57 12 30 31 30 30 30 30 30 30 30 30 30 30 30 31 37 39 1a 0c 00 00 63 a2 85 06 00 00 00 b3 4f c5 02 03 00 c3 19 80 00 00 00 b9 16 03 03 00 b4 01 00 00 b0 03 03 66 02 63 e0 56 e1 63 03 d0 f7 2c 2a c5 c2 99 7a b8 74 8f fd c1 de 8d 4f 3b 97 88 82 11 49 39 83 20 f3 21 00 00 d3 a4 99 19 a8 00 99 ad 33 fa 88 5d b9 b7 cf a9 76 35 21 61 4e c4 f4 ba c8 20 4c e6 00 2a c0 2c c0 2b c0 30 c0 2f 00 9f 00 9e c0 24 c0 23 c0 28 c0 27 c0 0a c0 09 c0 14 c0 13 00 9d 00 9c 00 3d 00 3c 00 35 00 2f 00 0a 01 00 00 *Mar 26 13:57:52:624 2024 AC-1 RADIUS/7/PACKET: 3d 00 0a 00 08 00 06 00 1d 00 17 00 18 00 0b 00 02 01 00 00 0d 00 1a 00 18 08 04 08 05 08 06 04 01 05 01 02 01 04 03 05 03 02 03 02 02 06 01 06 03 00 23 00 00 00 17 00 00 ff 01 00 01 00 50 12 32 fb 77 4c fe 57 04 1c bb 8e 06 f8 32 3b 81 5e 0c 06 00 00 05 aa 1e 1b 42 43 2d 44 30 2d 45 42 2d 30 38 2d 39 44 2d 44 30 3a 50 41 5f 57 4c 41 4e 2c 27 30 30 30 30 30 30 30 34 30 33 32 36 30 35 35 37 35 32 30 30 30 36 38 33 33 66 30 38 30 30 30 30 30 31 32 35 39 1a 21 00 00 63 a2 3c 1b 30 2e 30 2e 30 2e 30 20 65 38 3a 64 30 3a 66 63 3a 66 32 3a 66 62 3a 62 33 1f 13 45 38 2d 44 30 2d 46 43 2d 46 32 2d 46 42 2d 42 33 07 06 00 00 00 01 06 06 00 00 00 02 18 26 62 66 07 0c 00 00 01 37 00 01 17 00 fe 80 00 00 00 00 00 00 f7 04 *Mar 26 13:57:52:624 2024 AC-1 RADIUS/7/PACKET: fb b6 2f be 13 17 00 00 00 04 66 2b 8b 5a 1a 13 00 00 63 a2 ff 0d 48 33 43 20 57 58 33 35 34 30 58 1a 0c 00 00 63 a2 3b 06 63 ff 03 a7 *Mar 26 13:57:52:624 2024 AC-1 RADIUS/7/EVENT: Sent request packet and create request context successfully. *Mar 26 13:57:52:624 2024 AC-1 RADIUS/7/EVENT: Added request context to global table successfully. *Mar 26 13:57:52:629 2024 AC-1 RADIUS/7/EVENT: Reply SocketFd recieved EPOLLIN event. *Mar 26 13:57:52:629 2024 AC-1 RADIUS/7/EVENT: Received reply packet successfully, src-IP: 192.168.1.3, code: 11, length: 235. *Mar 26 13:57:52:629 2024 AC-1 RADIUS/7/EVENT: Found request context, dstIP: 192.168.1.3, dstPort: 1812, VPN instance: --(public), socketFd: 333, pktID: 231. *Mar 26 13:57:52:629 2024 AC-1 RADIUS/7/EVENT: The reply packet is valid. *Mar 26 13:57:52:629 2024 AC-1 RADIUS/7/EVENT: Decoded reply packet successfully. *Mar 26 13:57:52:629 2024 AC-1 RADIUS/7/PACKET: Session-Timeout=30 EAP-Message=0x0104009719800000008d1603030055020000510303660263e0fa29ddd8e991e65cd2fdc456b6571cfa1193081436c58b21e909e07620f3210000d3a49919a80099ad33fa885db9b7cfa9763521614ec4f4bac8204ce6c03000000900170000ff01000100140303000101160303002800000000000000000724aef2d4c508b1204000c34723da07e9b934442b4a6b0ec972832457803cde State=0x6266070c0000013700011700fe80000000000000f704fbb62fbe131700000004662b8b5a Message-Authenticator=0xc3f216fafefa5ac3f11ba9773f29b3d2 *Mar 26 13:57:52:629 2024 AC-1 RADIUS/7/PACKET: 0b e7 00 eb 82 e9 e7 b0 6f 5f 70 3d 86 ab 3f 97 4d 57 ab f4 1b 06 00 00 00 1e 4f 99 01 04 00 97 19 80 00 00 00 8d 16 03 03 00 55 02 00 00 51 03 03 66 02 63 e0 fa 29 dd d8 e9 91 e6 5c d2 fd c4 56 b6 57 1c fa 11 93 08 14 36 c5 8b 21 e9 09 e0 76 20 f3 21 00 00 d3 a4 99 19 a8 00 99 ad 33 fa 88 5d b9 b7 cf a9 76 35 21 61 4e c4 f4 ba c8 20 4c e6 c0 30 00 00 09 00 17 00 00 ff 01 00 01 00 14 03 03 00 01 01 16 03 03 00 28 00 00 00 00 00 00 00 00 07 24 ae f2 d4 c5 08 b1 20 40 00 c3 47 23 da 07 e9 b9 34 44 2b 4a 6b 0e c9 72 83 24 57 80 3c de 18 26 62 66 07 0c 00 00 01 37 00 01 17 00 fe 80 00 00 00 00 00 00 f7 04 fb b6 2f be 13 17 00 00 00 04 66 2b 8b 5a 50 12 c3 f2 16 fa fe fa 5a c3 f1 1b a9 77 3f 29 b3 d2 *Mar 26 13:57:52:629 2024 AC-1 RADIUS/7/EVENT: Sent reply message successfully. *Mar 26 13:57:52:629 2024 AC-1 RADIUS/7/EVENT: PAM_RADIUS: Processing RADIUS authentication. *Mar 26 13:57:52:629 2024 AC-1 RADIUS/7/EVENT: PAM_RADIUS: Fetched authentication reply-data successfully, resultCode: 2 *Mar 26 13:57:52:635 2024 AC-1 RADIUS/7/EVENT: PAM_RADIUS: Processing RADIUS authentication. *Mar 26 13:57:52:635 2024 AC-1 RADIUS/7/EVENT: PAM_RADIUS: Sent authentication request successfully. *Mar 26 13:57:52:635 2024 AC-1 RADIUS/7/EVENT: Processing AAA request data. *Mar 26 13:57:52:635 2024 AC-1 RADIUS/7/EVENT: Got request data successfully, primitive: authentication. *Mar 26 13:57:52:635 2024 AC-1 RADIUS/7/EVENT: Getting RADIUS server info. *Mar 26 13:57:52:635 2024 AC-1 RADIUS/7/EVENT: Got RADIUS server info successfully. *Mar 26 13:57:52:636 2024 AC-1 RADIUS/7/EVENT: Created request context successfully. *Mar 26 13:57:52:636 2024 AC-1 RADIUS/7/EVENT: Created request packet successfully, dstIP: 192.168.1.3, dstPort: 1812, VPN instance: --(public), socketFd: 333, pktID: 232. *Mar 26 13:57:52:636 2024 AC-1 RADIUS/7/EVENT: Added packet socketfd to epoll successfully, socketFd: 333. *Mar 26 13:57:52:636 2024 AC-1 RADIUS/7/EVENT: Mapped PAM item to RADIUS attribute successfully. *Mar 26 13:57:52:636 2024 AC-1 RADIUS/7/EVENT: Got RADIUS username format successfully, format: 0. *Mar 26 13:57:52:636 2024 AC-1 RADIUS/7/EVENT: Added attribute user-name successfully, user-name: host/test.domain.local. *Mar 26 13:57:52:636 2024 AC-1 RADIUS/7/EVENT: Filled RADIUS attributes in packet successfully. *Mar 26 13:57:52:636 2024 AC-1 RADIUS/7/EVENT: Composed request packet successfully. *Mar 26 13:57:52:636 2024 AC-1 RADIUS/7/EVENT: Created response timeout timer successfully. *Mar 26 13:57:52:636 2024 AC-1 RADIUS/7/PACKET: User-Name="host/test.domain.local" NAS-Identifier="AC-1" NAS-IP-Address=192.168.2.1 NAS-Port-Type=Wireless-802.11 NAS-Port=16777395 NAS-Port- H3c-User-Vlan-Id=179 EAP-Message=0x0204003d1980000000331403030001011603030028000000000000000032eeae095175ac3d3760193fc51a3f49c0d583b0475145dd62812538134e35eb Message-Authenticator=0x00000000000000000000000000000000 Framed-MTU=1450 Called-Station- Acct-Session- H3c-Ip-Host-Addr="0.0.0.0 e8:d0:fc:f2:fb:b3" Calling-Station- Framed-Protocol=PPP Service-Type=Framed-User State=0x6266070c0000013700011700fe80000000000000f704fbb62fbe131700000004662b8b5a *Mar 26 13:57:52:636 2024 AC-1 RADIUS/7/PACKET: H3c-Product- H3c-Nas-Startup-Timestamp=1677656999 *Mar 26 13:57:52:636 2024 AC-1 RADIUS/7/EVENT: Sent request packet successfully, dst-IP: 192.168.1.3, code: 1, length: 391. *Mar 26 13:57:52:636 2024 AC-1 RADIUS/7/PACKET: 01 e8 01 87 ea da 16 65 29 2d 64 02 1b f4 2e 76 66 7a 4a 68 01 1f 68 6f 73 74 2f 53 51 53 5a 2d 4c 34 30 37 33 2e 70 61 69 63 64 6f 6d 2e 6c 6f 63 61 6c 20 06 41 43 2d 31 04 06 0a f3 4f fd 3d 06 00 00 00 13 05 06 01 00 00 b3 57 12 30 31 30 30 30 30 30 30 30 30 30 30 30 31 37 39 1a 0c 00 00 63 a2 85 06 00 00 00 b3 4f 3f 02 04 00 3d 19 80 00 00 00 33 14 03 03 00 01 01 16 03 03 00 28 00 00 00 00 00 00 00 00 32 ee ae 09 51 75 ac 3d 37 60 19 3f c5 1a 3f 49 c0 d5 83 b0 47 51 45 dd 62 81 25 38 13 4e 35 eb 50 12 12 2a a0 88 1e f2 0a f7 42 ca 65 d7 6a c1 21 21 0c 06 00 00 05 aa 1e 1b 42 43 2d 44 30 2d 45 42 2d 30 38 2d 39 44 2d 44 30 3a 50 41 5f 57 4c 41 4e 2c 27 30 30 30 30 30 30 30 34 30 33 32 36 30 35 35 37 35 32 30 *Mar 26 13:57:52:636 2024 AC-1 RADIUS/7/PACKET: 30 30 36 38 33 33 66 30 38 30 30 30 30 30 31 32 35 39 1a 21 00 00 63 a2 3c 1b 30 2e 30 2e 30 2e 30 20 65 38 3a 64 30 3a 66 63 3a 66 32 3a 66 62 3a 62 33 1f 13 45 38 2d 44 30 2d 46 43 2d 46 32 2d 46 42 2d 42 33 07 06 00 00 00 01 06 06 00 00 00 02 18 26 62 66 07 0c 00 00 01 37 00 01 17 00 fe 80 00 00 00 00 00 00 f7 04 fb b6 2f be 13 17 00 00 00 04 66 2b 8b 5a 1a 13 00 00 63 a2 ff 0d 48 33 43 20 57 58 33 35 34 30 58 1a 0c 00 00 63 a2 3b 06 63 ff 03 a7 *Mar 26 13:57:52:637 2024 AC-1 RADIUS/7/EVENT: Sent request packet and create request context successfully. *Mar 26 13:57:52:637 2024 AC-1 RADIUS/7/EVENT: Added request context to global table successfully. *Mar 26 13:57:52:641 2024 AC-1 RADIUS/7/EVENT: Reply SocketFd recieved EPOLLIN event. *Mar 26 13:57:52:641 2024 AC-1 RADIUS/7/EVENT: Received reply packet successfully, src-IP: 192.168.1.3, code: 11, length: 120. *Mar 26 13:57:52:641 2024 AC-1 RADIUS/7/EVENT: Found request context, dstIP: 192.168.1.3, dstPort: 1812, VPN instance: --(public), socketFd: 333, pktID: 232. *Mar 26 13:57:52:641 2024 AC-1 RADIUS/7/EVENT: The reply packet is valid. *Mar 26 13:57:52:641 2024 AC-1 RADIUS/7/EVENT: Decoded reply packet successfully. *Mar 26 13:57:52:641 2024 AC-1 RADIUS/7/PACKET: Session-Timeout=30 EAP-Message=0x010600241900170303001900000000000000016c644bfeca67b77bf35d4a9ac0035ebf4b State=0x6266070c0000013700011700fe80000000000000f704fbb62fbe131700000004662b8b5a Message-Authenticator=0xd00ca5a70fd687f350a48ce2033c034a *Mar 26 13:57:52:641 2024 AC-1 RADIUS/7/PACKET: 0b e8 00 78 72 25 18 70 d1 30 a4 bf b8 02 1f e6 22 2f 99 06 1b 06 00 00 00 1e 4f 26 01 06 00 24 19 00 17 03 03 00 19 00 00 00 00 00 00 00 01 6c 64 4b fe ca 67 b7 7b f3 5d 4a 9a c0 03 5e bf 4b 18 26 62 66 07 0c 00 00 01 37 00 01 17 00 fe 80 00 00 00 00 00 00 f7 04 fb b6 2f be 13 17 00 00 00 04 66 2b 8b 5a 50 12 d0 0c a5 a7 0f d6 87 f3 50 a4 8c e2 03 3c 03 4a *Mar 26 13:57:52:641 2024 AC-1 RADIUS/7/EVENT: Sent reply message successfully. *Mar 26 13:57:52:641 2024 AC-1 RADIUS/7/EVENT: PAM_RADIUS: Processing RADIUS authentication. *Mar 26 13:57:52:641 2024 AC-1 RADIUS/7/EVENT: PAM_RADIUS: Fetched authentication reply-data successfully, resultCode: 2 *Mar 26 13:57:52:644 2024 AC-1 RADIUS/7/EVENT: PAM_RADIUS: Processing RADIUS authentication. *Mar 26 13:57:52:644 2024 AC-1 RADIUS/7/EVENT: PAM_RADIUS: Sent authentication request successfully. *Mar 26 13:57:52:644 2024 AC-1 RADIUS/7/EVENT: Processing AAA request data. *Mar 26 13:57:52:644 2024 AC-1 RADIUS/7/EVENT: Got request data successfully, primitive: authentication. *Mar 26 13:57:52:644 2024 AC-1 RADIUS/7/EVENT: Getting RADIUS server info. *Mar 26 13:57:52:644 2024 AC-1 RADIUS/7/EVENT: Got RADIUS server info successfully. *Mar 26 13:57:52:644 2024 AC-1 RADIUS/7/EVENT: Created request context successfully. *Mar 26 13:57:52:644 2024 AC-1 RADIUS/7/EVENT: Created request packet successfully, dstIP: 192.168.1.3, dstPort: 1812, VPN instance: --(public), socketFd: 333, pktID: 233. *Mar 26 13:57:52:644 2024 AC-1 RADIUS/7/EVENT: Added packet socketfd to epoll successfully, socketFd: 333. *Mar 26 13:57:52:645 2024 AC-1 RADIUS/7/EVENT: Mapped PAM item to RADIUS attribute successfully. *Mar 26 13:57:52:645 2024 AC-1 RADIUS/7/EVENT: Got RADIUS username format successfully, format: 0. *Mar 26 13:57:52:645 2024 AC-1 RADIUS/7/EVENT: Added attribute user-name successfully, user-name: host/test.domain.local. *Mar 26 13:57:52:645 2024 AC-1 RADIUS/7/EVENT: Filled RADIUS attributes in packet successfully. *Mar 26 13:57:52:645 2024 AC-1 RADIUS/7/EVENT: Composed request packet successfully. *Mar 26 13:57:52:645 2024 AC-1 RADIUS/7/EVENT: Created response timeout timer successfully. *Mar 26 13:57:52:645 2024 AC-1 RADIUS/7/PACKET: User-Name="host/test.domain.local" NAS-Identifier="AC-1" NAS-IP-Address=192.168.2.1 NAS-Port-Type=Wireless-802.11 NAS-Port=16777395 NAS-Port- H3c-User-Vlan-Id=179 EAP-Message=0x02060041190017030300360000000000000001972b92b01649baaa0939e6ce04b34507766199095d105f44c6bdb0be0f4f062d73853891acd408ae1ede453a432f Message-Authenticator=0x00000000000000000000000000000000 Framed-MTU=1450 Called-Station- Acct-Session- H3c-Ip-Host-Addr="0.0.0.0 e8:d0:fc:f2:fb:b3" Calling-Station- Framed-Protocol=PPP Service-Type=Framed-User *Mar 26 13:57:52:645 2024 AC-1 RADIUS/7/PACKET: State=0x6266070c0000013700011700fe80000000000000f704fbb62fbe131700000004662b8b5a H3c-Product- H3c-Nas-Startup-Timestamp=1677656999 *Mar 26 13:57:52:645 2024 AC-1 RADIUS/7/EVENT: Sent request packet successfully, dst-IP: 192.168.1.3, code: 1, length: 395. *Mar 26 13:57:52:645 2024 AC-1 RADIUS/7/PACKET: 01 e9 01 8b 14 68 cc 7c 4a d8 c7 1d f7 d4 6a 3f 6b 86 b5 d6 01 1f 68 6f 73 74 2f 53 51 53 5a 2d 4c 34 30 37 33 2e 70 61 69 63 64 6f 6d 2e 6c 6f 63 61 6c 20 06 41 43 2d 31 04 06 0a f3 4f fd 3d 06 00 00 00 13 05 06 01 00 00 b3 57 12 30 31 30 30 30 30 30 30 30 30 30 30 30 31 37 39 1a 0c 00 00 63 a2 85 06 00 00 00 b3 4f 43 02 06 00 41 19 00 17 03 03 00 36 00 00 00 00 00 00 00 01 97 2b 92 b0 16 49 ba aa 09 39 e6 ce 04 b3 45 07 76 61 99 09 5d 10 5f 44 c6 bd b0 be 0f 4f 06 2d 73 85 38 91 ac d4 08 ae 1e de 45 3a 43 2f 50 12 56 1f e4 f4 b5 35 d0 b0 ed 4f f6 ab 85 e0 89 a4 0c 06 00 00 05 aa 1e 1b 42 43 2d 44 30 2d 45 42 2d 30 38 2d 39 44 2d 44 30 3a 50 41 5f 57 4c 41 4e 2c 27 30 30 30 30 30 30 30 34 30 33 32 36 30 35 35 *Mar 26 13:57:52:645 2024 AC-1 RADIUS/7/PACKET: 37 35 32 30 30 30 36 38 33 33 66 30 38 30 30 30 30 30 31 32 35 39 1a 21 00 00 63 a2 3c 1b 30 2e 30 2e 30 2e 30 20 65 38 3a 64 30 3a 66 63 3a 66 32 3a 66 62 3a 62 33 1f 13 45 38 2d 44 30 2d 46 43 2d 46 32 2d 46 42 2d 42 33 07 06 00 00 00 01 06 06 00 00 00 02 18 26 62 66 07 0c 00 00 01 37 00 01 17 00 fe 80 00 00 00 00 00 00 f7 04 fb b6 2f be 13 17 00 00 00 04 66 2b 8b 5a 1a 13 00 00 63 a2 ff 0d 48 33 43 20 57 58 33 35 34 30 58 1a 0c 00 00 63 a2 3b 06 63 ff 03 a7
抓包如上
直接nps看下认证日志
(0)
看了没有太多参考性。
"RC-WIFI3ABAK","IAS",03/26/2024,11:47:42,1,"host/test.domain.local","test\test$","BC-D0-EB-08-9D-D0:wlan1","E8-D0-FC-F2-FB-B3",,,"AC-1","192.168.2.1",16777395,0,"192.168.2.1","主AC",,,19,,1,2,5,,0,"311 1 192.168.1.3 03/26/2024 03:29:14 720",,,,,,,,,"0000000403260347400006821908000001259",,,,,,,,,,,,,,,,,,,,,,,,,"安全无线连接",1,,,, "RC-WIFI3ABAK","IAS",03/26/2024,11:47:42,11,,"test\test$",,,,,,,,0,"192.168.2.1","主AC",,,,,,,5,,0,"311 1 192.168.1.3 03/26/2024 03:29:14 720",30,,,,,,,,"0000000403260347400006821908000001259",,,,,,,,,,,,,,,,,,,,,,,,,"安全无线连接",1,,,, "RC-WIFI3ABAK","IAS",03/26/2024,11:47:42,1,"host/test.domain.local","test\test$","BC-D0-EB-08-9D-D0:wlan1","E8-D0-FC-F2-FB-B3",,,"AC-1","192.168.2.1",16777395,0,"192.168.2.1","主AC",,,19,,1,2,5,,0,"311 1 192.168.1.3 03/26/2024 03:29:14 721",,,,,,,,,"0000000403260347400006821908000001259",,,,,,,,,,,,,,,,,,,,,,,,,"安全无线连接",1,,,, "RC-WIFI3ABAK","IAS",03/26/2024,11:47:42,11,,"test\test$",,,,,,,,0,"192.168.2.1","主AC",,,,,,,5,,0,"311 1 192.168.1.3 03/26/2024 03:29:14 721",60,,,,,,,,"0000000403260347400006821908000001259",,,,,,,,,,,,,,,,,,,,,,,,,"安全无线连接",1,,,, "RC-WIFI3ABAK","IAS",03/26/2024,11:47:42,1,"host/test.domain.local","test\test$","BC-D0-EB-08-9D-D0:wlan1","E8-D0-FC-F2-FB-B3",,,"AC-1","192.168.2.1",16777395,0,"192.168.2.1","主AC",,,19,,1,,5,,0,"311 1 192.168.1.3 03/26/2024 03:29:14 722",,,,,,,,,"0000000403260347400006821908000001259",,,,,,,,,,,,,,,,,,,,,,,,,"安全无线连接",1,,,, "RC-WIFI3ABAK","IAS",03/26/2024,11:47:42,11,,"test\test$",,,,,,,,0,"192.168.2.1","主AC",,,,,,,5,,0,"311 1 192.168.1.3 03/26/2024 03:29:14 722",60,,,,,,,,"0000000403260347400006821908000001259",,,,,,,,,,,,,,,,,,,,,,,,,"安全无线连接",1,,,, "RC-WIFI3ABAK","IAS",03/26/2024,11:47:42,1,"host/test.domain.local","test\test$","BC-D0-EB-08-9D-D0:wlan1","E8-D0-FC-F2-FB-B3",,,"AC-1","192.168.2.1",16777395,0,"192.168.2.1","主AC",,,19,,1,2,5,,0,"311 1 192.168.1.3 03/26/2024 03:29:14 723",,,,,,,,,"0000000403260347400006821908000001259",,,,,,,,,,,,,,,,,,,,,,,,,"安全无线连接",1,,,, "RC-WIFI3ABAK","IAS",03/26/2024,11:47:42,11,,"test\test$",,,,,,,,0,"192.168.2.1","主AC",,,,,,,5,,0,"311 1 192.168.1.3 03/26/2024 03:29:14 723",30,,,,,,,,"0000000403260347400006821908000001259",,,,,,,,,,,,,,,,,,,,,,,,,"安全无线连接",1,,,,
看了没有太多参考性。
亲~登录后才可以操作哦!
确定你的邮箱还未认证,请认证邮箱或绑定手机后进行当前操作
举报
×
侵犯我的权益
×
侵犯了我企业的权益
×
抄袭了我的内容
×
原文链接或出处
诽谤我
×
对根叔社区有害的内容
×
不规范转载
×
举报说明
抓包如上