问

radius 认证 NAS 计费问题

iMC UAM

2020-03-26提问

0关注
1收藏，1509浏览

Luo@China

Luo@China 零段

粉丝：0人关注：1人

问题描述：

radius 认证 NAS 计费问题

NAS客户端发过来的报文，iMC未能处理，抓 IMC 日志在几个提示，请大牛们帮忙看看

%% 2020-03-26 11:10:39.551 ; [LDBG] ; [25408] ; radDispatcher ; prsRawPkt: chk-sum 1976016. %% 2020-03-26 11:10:39.551 ; [LDBG] ; [25408] ; LAN ; prsMixedUsr: in [host/pf0bzjhh], out [host/pf0bzjhh]. %% 2020-03-26 11:10:39.551 ; [LDBG] ; [25408] ; radEnt ; setPxyType: Needn't proxy. domainname=, Code=4. %% 2020-03-26 11:10:39.551 ; [LDBG] ; [24816] ; LAN ; lanAcctMsgProc.exec: begin. %% 2020-03-26 11:10:39.551 ; [LDBG] ; [24816] ; LAN ; lanAuthInput.uniUsrName: host/pf0bzjhh %% 2020-03-26 11:10:39.551 ; [LDBG] ; [24816] ; LAN ; lanAcctUpd.exec: Begin. %% 2020-03-26 11:10:39.551 ; [LDBG] ; [24816] ; UsrOnlineMgr ; qryOnlineByAcctSessId: no matched item with acct-sess-id [34-DE-1A-90-AB-64_1585191159]. %% 2020-03-26 11:10:39.551 ; [WARN] ; [24816] ; LAN ; lanAcctUpd.getUpdInfoByOnline: online record does not exist, ipv4:169049602, ipv6:, session:34-DE-1A-90-AB-64_1585191159. %% 2020-03-26 11:10:39.551 ; [WARN] ; [24816] ; LAN ; lanAcctUpd.exec: fail to query the online record, errCode: 63010. %% 2020-03-26 11:10:39.551 ; [LDBG] ; [24816] ; LAN ; lanAcctUpd.exec: End OK. %% 2020-03-26 11:10:39.551 ; [LDBG] ; [24816] ; getDirectConectNasIP: Campus does not enable, or auth device(10.19.126.2) is not leaf device(role: 3). %% 2020-03-26 11:10:39.551 ; [LDBG] ; [24816] ; accSvc ; matchSvcStragy: matching default rule(7) under srvc-templ 9. %% 2020-03-26 11:10:39.551 ; [LDBG] ; [24816] ; LAN ; Begin replyPrivateAttr, auth step is 3, AttrPolicyId is -1, DeviceTypeId is 1000 %% 2020-03-26 11:10:39.551 ; [LDBG] ; [24816] ; LAN ; pf0bzjhh$ ; 5 ; d40e2cbe478c42c19c6f4dba3bd87042 ; ; Send message attribute list: Code = 5 ID = 145: Session-Timeout(27) = 0

最佳答案

一只炸毛

一只炸毛九段

粉丝：29人关注：2人

计费和认证报文隔了多久啊，看起来是查不到在线表了

60秒

Luo@China 发表时间：2020-03-26

回复Luo@China:

根据code 1的online-id，搜一下什么时候被清掉的。

一只炸毛发表时间：2020-03-26

%% 2020-03-26 11:10:57.879 ; [LDBG] ; [25408] ; LAN ; host/PF0BZJHH ; 1 ; 0bb6b70376034957bfa7737139fe0f72 ; 8c552df2Y..[.^V6 ; Received message from 10.19.126.2: CODE = 1 ID = 159. User-Name(1) = host/PF0BZJHH NAS-Port(5) = 0. Called-Station-Id(30) = A8-0C-CA-84-B5-4A:luotest Calling-Station-Id(31) = 34-DE-1A-90-AB-64 Acct-Session-Id(44) = 34-DE-1A-90-AB-64_1585192256 Framed-MTU(12) = 1400. NAS-Port-Type(61) = 19. Connect-Info(77) = CONNECT 0Mbps 802.11b EAP-Message(79) = 0244002e190017030300230000000000000004a890705fbec241d1045074b09c4bcb2869a12c24e4886bae384a73 State(24) = 8c552df2Y..[.^V6 Message-Authenticator(80) = da80bfca16b96b4478cea8f82135f8d5 NAS-Identifier(32) = SZGT_SF_Wac NAS-IP-Address(4) = 169049602. Service-Type(6) = 2. %% 2020-03-26 11:10:57.879 ; [LDBG] ; [25408] ; radDispatcher ; prsRawPkt: chk-sum 2443762. %% 2020-03-26 11:10:57.879 ; [LDBG] ; [25408] ; LAN ; prsMixedUsr: in [host/PF0BZJHH], out [host/PF0BZJHH]. %% 2020-03-26 11:10:57.879 ; [LDBG] ; [25408] ; radEnt ; setPxyType: Needn't proxy. domainname=, Code=1. %% 2020-03-26 11:10:57.879 ; [LDBG] ; [23720] ; EAP ; EapProc.attr: begin. %% 2020-03-26 11:10:57.879 ; [LDBG] ; [23720] ; EAP ; EapProc.attr: end. %% 2020-03-26 11:10:57.879 ; [LDBG] ; [23720] ; EAP ; EapProc.handlr: begin. %% 2020-03-26 11:10:57.879 ; [LDBG] ; [23720] ; EAP ; EapProc.validate: begin. %% 2020-03-26 11:10:57.879 ; [LDBG] ; [23720] ; EAP ; EapProc.validate: end. %% 2020-03-26 11:10:57.879 ; [LDBG] ; [23720] ; EAP ; EapProc.listFind: begin. %% 2020-03-26 11:10:57.879 ; [LDBG] ; [23720] ; EAP ; EapProc.listFind: 1 item is taken out of [56]8c552df2Y忨[穅V6. %% 2020-03-26 11:10:57.879 ; [LDBG] ; [23720] ; EAP ; EapProc.listFind: end. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [23720] ; EAP ; EapProc.handlr: eap-type 25, vendor-id 0, login-name host/PF0BZJHH %% 2020-03-26 11:10:57.880 ; [LDBG] ; [23720] ; EAP ; EapProc.buildds: begin. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [23720] ; EAP ; EapProc.buildds: end. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [23720] ; EAP ; EapProc.handlr: end. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [23720] ; EAP ; EapProc.typeSelect: Begin. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [23720] ; EAP ; EapProc.typeCall: Begin, the nStage is 1. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [23720] ; EAP ; EapTlsAuth.vrfyEapTls: The flags of received EAP-TLS message [0x0]. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [23720] ; EAP ; EapTlsAuth.vrfyEapTls: non-fragment message (without TlsLen) received. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [23720] ; EAP ; EapTlsAuth.procEapTls: begin - vrifyEapTls returned 11. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [23720] ; EAP ; EapTlsAuth.extractRespPkt: received message - status:11, code:2, id:68, len1:46, type:25, len2:41. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [23720] ; EAP ; EapTlsAuth.procEapTls: 0 bytes data already in stDirtyIn, received new 40 bytes data. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [23720] ; EAP ; EapTlsAuth.plusRcord: adding 40 bytes to data. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [23720] ; EAP ; EapTlsAuth.procEapTls: end with OK - Received tunneled data after successful handshake. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [23720] ; EAP ; PeapAuth.auth: procEapTls returned 11. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [23720] ; EAP ; EapTlsAuth.minusRcord: After getting 40, pRec stores 0 bytes data. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [23720] ; EAP ; tlsMsg: Other Record [ContentType:256, WriteFlag:0]. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [23720] ; EAP ; tlsSessInfo: <<< Unknown TLS version [length 0005] ExInfo:ver-no:0x0 ctnt-type:[0] %% 2020-03-26 11:10:57.880 ; [LDBG] ; [23720] ; EAP ; EapTlsAuth.composePkt: code=9, len=0, dataLen=0, flag=0. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [23720] ; EAP ; EapTlsAuth.genEapKeyName: adding attribute eap-key-name success. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [23720] ; EAP ; EapTlsAuth.geneMppeKeys: using TLS 1.2 %% 2020-03-26 11:10:57.880 ; [LDBG] ; [23720] ; EAP ; EapProc.typeCall: end OK. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [23720] ; EAP ; EapProc.typeSelect: End OK with rtnVal 0 for type 25. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [23720] ; EAP ; EapProc.compose: set eap user name pri-attr host/PF0BZJHH %% 2020-03-26 11:10:57.880 ; [LDBG] ; [23720] ; EAP ; eapCmn.getAttrFromPkt: no ipv4 from any attrs. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [23720] ; EAP ; EapProc.compose: entering postHdlSvcs for auth-succ. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [23720] ; LAN ; blst.proBlacklist: doing chkBlacklist OK. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [24932] ; LAN ; getLanAuthAtrFromItem: no attribute of Framed-IP-Address. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [24932] ; LAN ; lanAuthMsgProc.Init: auth-type 6, state , pxy , sequence w1EhHHIM. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [24932] ; LAN ; parseVer: invalid ver . %% 2020-03-26 11:10:57.880 ; [LDBG] ; [24932] ; LAN ; lanAuthMsgProc.exec: begin... %% 2020-03-26 11:10:57.880 ; [LDBG] ; [24932] ; MacRegMgr ; ifInvaldStatus: mac portal status for MAC 34:DE:1A:90:AB:64 is: 3. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [24932] ; LAN ; lanAuth.exec: Begin... %% 2020-03-26 11:10:57.880 ; [LDBG] ; [24932] ; LAN ; lanAuthInput.uniUsrName: host/PF0BZJHH %% 2020-03-26 11:10:57.880 ; [LDBG] ; [24932] ; LAN ; c.getUsrSrvcInfo: [SrvcName:pf0bzjhh$; MAC:34:de:1a:90:ab:64; UserIp:{0-}; NasIP:{a137e02-}; Ssid:luotest; AP:SZGT_SF_Wac; Phone:; Imsi:; OS:; Type:; Vendor:]. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [24932] ; accSvc ; matchSvcStragy: matching default rule(7) under srvc-templ 9. %% 2020-03-26 11:10:57.880 ; [LDBG] ; [24932] ; LAN ; c.getUsrSrvcInfo: end OK. %% 2020-03-26 11:10:57.881 ; [LDBG] ; [24932] ; LAN ; lanAuth.exec: before dealstate with evntSeq w1EhHHIM. %% 2020-03-26 11:10:57.881 ; [LDBG] ; [24932] ; LAN ; blst.proBlacklist: doing chkBlacklist OK. %% 2020-03-26 11:10:57.881 ; [LDBG] ; [24932] ; LAN ; Not found OnLine User by account-session-id 34-DE-1A-90-AB-64_1585192256. %% 2020-03-26 11:10:57.881 ; [LDBG] ; [24932] ; UsrOnlineMgr ; qryOnlineByIpMac: not matched after all. %% 2020-03-26 11:10:57.881 ; [LDBG] ; [24932] ; LAN ; stopOrphans: qryOnlinesBySrvcId with NAS[169049602:],term[0:],mac[34:DE:1A:90:AB:64],usrId[3271],svcId[2501],login[host/***.***] returned 1 sessions to drop. %% 2020-03-26 11:10:57.881 ; [LDBG] ; [24932] ; LAN ; Addr:48d7320, online-id:54994, mac:34:DE:1A:90:AB:64 %% 2020-03-26 11:10:57.881 ; [LDBG] ; [24932] ; lan ; recSessDetail: Begin. %% 2020-03-26 11:10:57.881 ; [LDBG] ; [24932] ; lan ; recSessDetail: End. %% 2020-03-26 11:10:57.881 ; [LDBG] ; [24932] ; LAN ; stopOneUsrAtLocal: delete the online record(online-id 54994,user pf0bzjhh$). %% 2020-03-26 11:10:57.881 ; [LDBG] ; [24932] ; UsrOnlineMgr ; delOnlineUsr: a db-del pushed. %% 2020-03-26 11:10:57.881 ; [LDBG] ; [24932] ; UsrOnlineMgr ; delOnlineUsrInMem: 54994 has been deleted. %% 2020-03-26 11:10:57.881 ; [LDBG] ; [24932] ; LAN ; stopOrphans: the online record had been deleted, user: pf0bzjhh$. %% 2020-03-26 11:10:57.881 ; [LDBG] ; [24932] ; lic ; onlineLicChk: UAM LicChk OK[277 700]. %% 2020-03-26 11:10:57.881 ; [LDBG] ; [24932] ; MacRegMgr ; ifInvaldStatus: mac portal status for MAC 34:DE:1A:90:AB:64 is: 3.

Luo@China 发表时间：2020-03-26