forum.opennet.ru

Составление сообщения

Исходное сообщение

"Перенос конфига для 881"
Отправлено borr741, 26-Янв-17 08:33

вычитал, что с включенным ааа(aaa new-model - aaa мне нужно для подключения к циске по ssh вроде как без aaa new-model и aaa session-id common) стандартные конфиги на vpn не работают, в циску не зайти сеанс открывает, но приглашения логина нет (поправте, может, я не прав)
добавил:

aaa attribute list delo
attribute type addr-pool "vpn" service ppp protocol ip
username delo aaa attribute list delo
авторизация стала проходить, но при включении пк в сеть получаю ошибку 742 вот log

Router#term mon
Router#debug ppp authen
PPP authentication debugging is on
Router#debug ppp nego
PPP protocol negotiation debugging is on
*Jan 25 19:37:53.468: PPP: Alloc Context [E0AA654]
*Jan 25 19:37:53.468: ppp51 PPP: Phase is ESTABLISHING
*Jan 25 19:37:53.468: ppp51 PPP: Using vpn set call direction
*Jan 25 19:37:53.468: ppp51 PPP: Treating connection as a callin
*Jan 25 19:37:53.468: ppp51 PPP: Session handle[EA000033] Session id[51]
*Jan 25 19:37:53.468: ppp51 LCP: Event[OPEN] State[Initial to Starting]
*Jan 25 19:37:53.468: ppp51 PPP LCP: Enter passive mode, state[Stopped]
*Jan 25 19:37:53.516: ppp51 LCP: I CONFREQ [Stopped] id 0 len 21
*Jan 25 19:37:53.516: ppp51 LCP:    MRU 1400 (0x01040578)
*Jan 25 19:37:53.516: ppp51 LCP:    MagicNumber 0x0E5D7798 (0x05060E5D7798)
*Jan 25 19:37:53.516: ppp51 LCP:    PFC (0x0702)
*Jan 25 19:37:53.516: ppp51 LCP:    ACFC (0x0802)
*Jan 25 19:37:53.516: ppp51 LCP:    Callback 6 (0x0D0306)
*Jan 25 19:37:53.516: ppp51 LCP: O CONFREQ [Stopped] id 1 len 14
*Jan 25 19:37:53.516: ppp51 LCP:    AuthProto PAP (0x0304C023)
*Jan 25 19:37:53.516: ppp51 LCP:    MagicNumber 0x2AD081F8 (0x05062AD081F8)
*Jan 25 19:37:53.520: ppp51 LCP: O CONFREJ [Stopped] id 0 len 7
*Jan 25 19:37:53.520: ppp51 LCP:    Callback 6 (0x0D0306)
*Jan 25 19:37:53.520: ppp51 LCP: Event[Receive ConfReq-] State[Stopped to REQsent]
*Jan 25 19:37:53.564: ppp51 LCP: I CONFNAK [REQsent] id 1 len 9
*Jan 25 19:37:53.564: ppp51 LCP:    AuthProto MS-CHAP-V2 (0x0305C22381)
*Jan 25 19:37:53.564: ppp51 LCP: O CONFREQ [REQsent] id 2 len 15
*Jan 25 19:37:53.564: ppp51 LCP:    AuthProto MS-CHAP-V2 (0x0305C22381)
*Jan 25 19:37:53.564: ppp51 LCP:    MagicNumber 0x2AD081F8 (0x05062AD081F8)
*Jan 25 19:37:53.564: ppp51 LCP: Event[Receive ConfNak/Rej] State[REQsent to REQsent]
*Jan 25 19:37:53.568: ppp51 LCP: I CONFREQ [REQsent] id 1 len 18
*Jan 25 19:37:53.568: ppp51 LCP:    MRU 1400 (0x01040578)
*Jan 25 19:37:53.568: ppp51 LCP:    MagicNumber 0x0E5D7798 (0x05060E5D7798)
*Jan 25 19:37:53.568: ppp51 LCP:    PFC (0x0702)
*Jan 25 19:37:53.568: ppp51 LCP:    ACFC (0x0802)
*Jan 25 19:37:53.568: ppp51 LCP: O CONFNAK [REQsent] id 1 len 8
*Jan 25 19:37:53.568: ppp51 LCP:    MRU 1500 (0x010405DC)
*Jan 25 19:37:53.568: ppp51 LCP: Event[Receive ConfReq-] State[REQsent to REQsent]
*Jan 25 19:37:53.608: ppp51 LCP: I CONFACK [REQsent] id 2 len 15
*Jan 25 19:37:53.608: ppp51 LCP:    AuthProto MS-CHAP-V2 (0x0305C22381)
*Jan 25 19:37:53.608: ppp51 LCP:    MagicNumber 0x2AD081F8 (0x05062AD081F8)
*Jan 25 19:37:53.608: ppp51 LCP: Event[Receive ConfAck] State[REQsent to ACKrcvd]
*Jan 25 19:37:53.612: ppp51 LCP: I CONFREQ [ACKrcvd] id 2 len 18
*Jan 25 19:37:53.612: ppp51 LCP:    MRU 1400 (0x01040578)
*Jan 25 19:37:53.612: ppp51 LCP:    MagicNumber 0x0E5D7798 (0x05060E5D7798)
*Jan 25 19:37:53.612: ppp51 LCP:    PFC (0x0702)
*Jan 25 19:37:53.612: ppp51 LCP:    ACFC (0x0802)
*Jan 25 19:37:53.612: ppp51 LCP: O CONFNAK [ACKrcvd] id 2 len 8
*Jan 25 19:37:53.612: ppp51 LCP:    MRU 1500 (0x010405DC)
*Jan 25 19:37:53.612: ppp51 LCP: Event[Receive ConfReq-] State[ACKrcvd to ACKrcvd]
*Jan 25 19:37:55.528: ppp51 LCP: I CONFREQ [ACKrcvd] id 3 len 18
*Jan 25 19:37:55.528: ppp51 LCP:    MRU 1400 (0x01040578)
*Jan 25 19:37:55.528: ppp51 LCP:    MagicNumber 0x0E5D7798 (0x05060E5D7798)
*Jan 25 19:37:55.528: ppp51 LCP:    PFC (0x0702)
*Jan 25 19:37:55.528: ppp51 LCP:    ACFC (0x0802)
*Jan 25 19:37:55.528: ppp51 LCP: O CONFNAK [ACKrcvd] id 3 len 8
*Jan 25 19:37:55.528: ppp51 LCP:    MRU 1500 (0x010405DC)
*Jan 25 19:37:55.528: ppp51 LCP: Event[Receive ConfReq-] State[ACKrcvd to ACKrcvd]
*Jan 25 19:37:55.556: ppp51 LCP: O CONFREQ [ACKrcvd] id 3 len 15
*Jan 25 19:37:55.556: ppp51 LCP:    AuthProto MS-CHAP-V2 (0x0305C22381)
*Jan 25 19:37:55.556: ppp51 LCP:    MagicNumber 0x2AD081F8 (0x05062AD081F8)
*Jan 25 19:37:55.556: ppp51 LCP: Event[Timeout+] State[ACKrcvd to REQsent]
*Jan 25 19:37:55.576: ppp51 LCP: I CONFREQ [REQsent] id 4 len 18
*Jan 25 19:37:55.576: ppp51 LCP:    MRU 1500 (0x010405DC)
*Jan 25 19:37:55.576: ppp51 LCP:    MagicNumber 0x0E5D7798 (0x05060E5D7798)
*Jan 25 19:37:55.576: ppp51 LCP:    PFC (0x0702)
*Jan 25 19:37:55.576: ppp51 LCP:    ACFC (0x0802)
*Jan 25 19:37:55.576: ppp51 LCP: O CONFACK [REQsent] id 4 len 18
*Jan 25 19:37:55.576: ppp51 LCP:    MRU 1500 (0x010405DC)
*Jan 25 19:37:55.576: ppp51 LCP:    MagicNumber 0x0E5D7798 (0x05060E5D7798)
*Jan 25 19:37:55.576: ppp51 LCP:    PFC (0x0702)
*Jan 25 19:37:55.576: ppp51 LCP:    ACFC (0x0802)
*Jan 25 19:37:55.576: ppp51 LCP: Event[Receive ConfReq+] State[REQsent to ACKsent]
*Jan 25 19:37:55.600: ppp51 LCP: I CONFACK [ACKsent] id 3 len 15
*Jan 25 19:37:55.600: ppp51 LCP:    AuthProto MS-CHAP-V2 (0x0305C22381)
*Jan 25 19:37:55.600: ppp51 LCP:    MagicNumber 0x2AD081F8 (0x05062AD081F8)
*Jan 25 19:37:55.600: ppp51 LCP: Event[Receive ConfAck] State[ACKsent to Open]
*Jan 25 19:37:55.612: ppp51 PPP: Phase is AUTHENTICATING, by this end
*Jan 25 19:37:55.612: ppp51 MS-CHAP-V2: O CHALLENGE id 1 len 27 from "Router"
*Jan 25 19:37:55.612: ppp51 LCP: State is Open
*Jan 25 19:37:55.628: ppp51 LCP: I IDENTIFY [Open] id 5 len 18 magic 0x0E5D7798MSRASV5.20
*Jan 25 19:37:55.632: ppp51 LCP: I IDENTIFY [Open] id 6 len 23 magic 0x0E5D7798MSRAS-0-BORISPC
*Jan 25 19:37:55.640: ppp51 LCP: I IDENTIFY [Open] id 7 len 24 magic 0x0E5D7798K!O\qvLII8Jd.fAm
*Jan 25 19:37:55.660: ppp51 MS-CHAP-V2: I RESPONSE id 1 len 58 from "delo"
*Jan 25 19:37:55.660: ppp51 PPP: Phase is FORWARDING, Attempting Forward
*Jan 25 19:37:55.660: ppp51 PPP: Phase is AUTHENTICATING, Unauthenticated User
*Jan 25 19:37:55.660: ppp51 PPP: Sent MSCHAP_V2 LOGIN Request
*Jan 25 19:37:55.664: ppp51 PPP: Received LOGIN Response PASS
*Jan 25 19:37:55.664: ppp51 PPP: Phase is FORWARDING, Attempting Forward
*Jan 25 19:37:55.668: Vi4.1 PPP: Phase is AUTHENTICATING, Authenticated User
*Jan 25 19:37:55.668: Vi4.1: No MS_CHAP_V2 msg data
*Jan 25 19:37:55.668: Vi4.1 MS-CHAP-V2: O SUCCESS id 1 len 46 msg is "S=31CDD4317C27DB781E98CF4CA12BEB1602C93BBD"
*Jan 25 19:37:55.668: Vi4.1 PPP: No AAA accounting method list
*Jan 25 19:37:55.668: Vi4.1 PPP: Phase is UP
*Jan 25 19:37:55.668: Vi4.1 IPCP: Protocol configured, start CP. state[Initial]
*Jan 25 19:37:55.668: Vi4.1 IPCP: Event[OPEN] State[Initial to Starting]
*Jan 25 19:37:55.668: Vi4.1 IPCP: O CONFREQ [Starting] id 1 len 10
*Jan 25 19:37:55.668: Vi4.1 IPCP:    Address 192.168.137.1 (0x0306C0A88901)
*Jan 25 19:37:55.668: Vi4.1 IPCP: Event[UP] State[Starting to REQsent]
*Jan 25 19:37:55.720: Vi4.1 IPV6CP: I CONFREQ [UNKNOWN] id 8 len 14
*Jan 25 19:37:55.720: Vi4.1 IPV6CP:    Interface-Id F889:7EF3:6414:E01D (0x010AF8897EF36414E01D)
*Jan 25 19:37:55.720: Vi4.1 LCP: O PROTREJ [Open] id 4 len 20 protocol IPV6CP (0x0108000E010AF8897EF36414E01D)
*Jan 25 19:37:55.720: Vi4.1 CCP: I CONFREQ [UNKNOWN] id 9 len 10
*Jan 25 19:37:55.720: Vi4.1 CCP:    MS-PPC supported bits 0x01000040 (0x120601000040)
*Jan 25 19:37:55.720: Vi4.1 LCP: O PROTREJ [Open] id 5 len 16 protocol CCP (0x0109000A120601000040)
*Jan 25 19:37:55.728: Vi4.1 IPCP: I CONFREQ [REQsent] id 10 len 34
*Jan 25 19:37:55.728: Vi4.1 IPCP:    Address 0.0.0.0 (0x030600000000)
*Jan 25 19:37:55.728: Vi4.1 IPCP:    PrimaryDNS 0.0.0.0 (0x810600000000)
*Jan 25 19:37:55.728: Vi4.1 IPCP:    PrimaryWINS 0.0.0.0 (0x820600000000)
*Jan 25 19:37:55.728: Vi4.1 IPCP:    SecondaryDNS 0.0.0.0 (0x830600000000)
*Jan 25 19:37:55.728: Vi4.1 IPCP:    SecondaryWINS 0.0.0.0 (0x840600000000)
*Jan 25 19:37:55.728: Vi4.1 IPCP AUTHOR: Done. Her address 0.0.0.0, we want 0.0.0.0
*Jan 25 19:37:55.728: Vi4.1 IPCP: Cannot satisfy pool request
*Jan 25 19:37:55.728: Vi4.1 IPCP: Neither side knows remote address
*Jan 25 19:37:55.728: Vi4.1 IPCP: O CONFREJ [REQsent] id 10 len 34
*Jan 25 19:37:55.728: Vi4.1 IPCP:    Address 0.0.0.0 (0x030600000000)
*Jan 25 19:37:55.728: Vi4.1 IPCP:    PrimaryDNS 0.0.0.0 (0x810600000000)
*Jan 25 19:37:55.728: Vi4.1 IPCP:    PrimaryWINS 0.0.0.0 (0x820600000000)
*Jan 25 19:37:55.728: Vi4.1 IPCP:    SecondaryDNS 0.0.0.0 (0x830600000000)
*Jan 25 19:37:55.728: Vi4.1 IPCP:    SecondaryWINS 0.0.0.0 (0x840600000000)
*Jan 25 19:37:55.728: Vi4.1 IPCP: Event[Receive ConfReq-] State[REQsent to REQsent]
*Jan 25 19:37:55.728: Vi4.1 PPP: Control packet rate limit 10 reached
*Jan 25 19:37:55.728: Vi4.1 PPP: Entering block state for 30 seconds
*Jan 25 19:37:55.728: Vi4.1 PPP: Packet throttled, Dropping packet
*Jan 25 19:37:55.776: Vi4.1 PPP: Packet throttled, Dropping packet
*Jan 25 19:37:56.784: Vi4.1 PPP: Block vaccess from being freed [0x10]
*Jan 25 19:37:56.784: Vi4.1 PPP DISC: Lower Layer disconnected
*Jan 25 19:37:56.788: Vi4.1 PPP: Sending Acct Event[Down] id[48]
*Jan 25 19:37:56.788: PPP: NET STOP send to AAA.
*Jan 25 19:37:56.788: Vi4.1 IPCP: Event[DOWN] State[REQsent to Starting]
*Jan 25 19:37:56.788: Vi4.1 IPCP: Event[CLOSE] State[Starting to Initial]
*Jan 25 19:37:56.788: Vi4.1 LCP: O TERMREQ [Open] id 6 len 4
*Jan 25 19:37:56.788: Vi4.1 LCP: Event[CLOSE] State[Open to Closing]
*Jan 25 19:37:56.788: Vi4.1 PPP: Phase is TERMINATING
*Jan 25 19:37:56.788: Vi4.1 LCP: Event[DOWN] State[Closing to Initial]
*Jan 25 19:37:56.788: Vi4.1 PPP: Unlocked by [0x10] Still Locked by [0x0]
*Jan 25 19:37:56.788: Vi4.1 PPP: Free previously blocked vaccess
*Jan 25 19:37:56.788: Vi4.1 PPP: Phase is DOWN

Исходное сообщение
"Перенос конфига для 881" Отправлено borr741, 26-Янв-17 08:33
вычитал, что с включенным ааа(aaa new-model - aaa мне нужно для подключения к циске по ssh вроде как без aaa new-model и aaa session-id common) стандартные конфиги на vpn не работают, в циску не зайти сеанс открывает, но приглашения логина нет (поправте, может, я не прав) добавил: aaa attribute list delo attribute type addr-pool "vpn" service ppp protocol ip username delo aaa attribute list delo авторизация стала проходить, но при включении пк в сеть получаю ошибку 742 вот log Router#term mon Router#debug ppp authen PPP authentication debugging is on Router#debug ppp nego PPP protocol negotiation debugging is on Jan 25 19:37:53.468: PPP: Alloc Context [E0AA654] Jan 25 19:37:53.468: ppp51 PPP: Phase is ESTABLISHING Jan 25 19:37:53.468: ppp51 PPP: Using vpn set call direction Jan 25 19:37:53.468: ppp51 PPP: Treating connection as a callin Jan 25 19:37:53.468: ppp51 PPP: Session handle[EA000033] Session id[51] Jan 25 19:37:53.468: ppp51 LCP: Event[OPEN] State[Initial to Starting] Jan 25 19:37:53.468: ppp51 PPP LCP: Enter passive mode, state[Stopped] Jan 25 19:37:53.516: ppp51 LCP: I CONFREQ [Stopped] id 0 len 21 Jan 25 19:37:53.516: ppp51 LCP: MRU 1400 (0x01040578) Jan 25 19:37:53.516: ppp51 LCP: MagicNumber 0x0E5D7798 (0x05060E5D7798) Jan 25 19:37:53.516: ppp51 LCP: PFC (0x0702) Jan 25 19:37:53.516: ppp51 LCP: ACFC (0x0802) Jan 25 19:37:53.516: ppp51 LCP: Callback 6 (0x0D0306) Jan 25 19:37:53.516: ppp51 LCP: O CONFREQ [Stopped] id 1 len 14 Jan 25 19:37:53.516: ppp51 LCP: AuthProto PAP (0x0304C023) Jan 25 19:37:53.516: ppp51 LCP: MagicNumber 0x2AD081F8 (0x05062AD081F8) Jan 25 19:37:53.520: ppp51 LCP: O CONFREJ [Stopped] id 0 len 7 Jan 25 19:37:53.520: ppp51 LCP: Callback 6 (0x0D0306) Jan 25 19:37:53.520: ppp51 LCP: Event[Receive ConfReq-] State[Stopped to REQsent] Jan 25 19:37:53.564: ppp51 LCP: I CONFNAK [REQsent] id 1 len 9 Jan 25 19:37:53.564: ppp51 LCP: AuthProto MS-CHAP-V2 (0x0305C22381) Jan 25 19:37:53.564: ppp51 LCP: O CONFREQ [REQsent] id 2 len 15 Jan 25 19:37:53.564: ppp51 LCP: AuthProto MS-CHAP-V2 (0x0305C22381) Jan 25 19:37:53.564: ppp51 LCP: MagicNumber 0x2AD081F8 (0x05062AD081F8) Jan 25 19:37:53.564: ppp51 LCP: Event[Receive ConfNak/Rej] State[REQsent to REQsent] Jan 25 19:37:53.568: ppp51 LCP: I CONFREQ [REQsent] id 1 len 18 Jan 25 19:37:53.568: ppp51 LCP: MRU 1400 (0x01040578) Jan 25 19:37:53.568: ppp51 LCP: MagicNumber 0x0E5D7798 (0x05060E5D7798) Jan 25 19:37:53.568: ppp51 LCP: PFC (0x0702) Jan 25 19:37:53.568: ppp51 LCP: ACFC (0x0802) Jan 25 19:37:53.568: ppp51 LCP: O CONFNAK [REQsent] id 1 len 8 Jan 25 19:37:53.568: ppp51 LCP: MRU 1500 (0x010405DC) Jan 25 19:37:53.568: ppp51 LCP: Event[Receive ConfReq-] State[REQsent to REQsent] Jan 25 19:37:53.608: ppp51 LCP: I CONFACK [REQsent] id 2 len 15 Jan 25 19:37:53.608: ppp51 LCP: AuthProto MS-CHAP-V2 (0x0305C22381) Jan 25 19:37:53.608: ppp51 LCP: MagicNumber 0x2AD081F8 (0x05062AD081F8) Jan 25 19:37:53.608: ppp51 LCP: Event[Receive ConfAck] State[REQsent to ACKrcvd] Jan 25 19:37:53.612: ppp51 LCP: I CONFREQ [ACKrcvd] id 2 len 18 Jan 25 19:37:53.612: ppp51 LCP: MRU 1400 (0x01040578) Jan 25 19:37:53.612: ppp51 LCP: MagicNumber 0x0E5D7798 (0x05060E5D7798) Jan 25 19:37:53.612: ppp51 LCP: PFC (0x0702) Jan 25 19:37:53.612: ppp51 LCP: ACFC (0x0802) Jan 25 19:37:53.612: ppp51 LCP: O CONFNAK [ACKrcvd] id 2 len 8 Jan 25 19:37:53.612: ppp51 LCP: MRU 1500 (0x010405DC) Jan 25 19:37:53.612: ppp51 LCP: Event[Receive ConfReq-] State[ACKrcvd to ACKrcvd] Jan 25 19:37:55.528: ppp51 LCP: I CONFREQ [ACKrcvd] id 3 len 18 Jan 25 19:37:55.528: ppp51 LCP: MRU 1400 (0x01040578) Jan 25 19:37:55.528: ppp51 LCP: MagicNumber 0x0E5D7798 (0x05060E5D7798) Jan 25 19:37:55.528: ppp51 LCP: PFC (0x0702) Jan 25 19:37:55.528: ppp51 LCP: ACFC (0x0802) Jan 25 19:37:55.528: ppp51 LCP: O CONFNAK [ACKrcvd] id 3 len 8 Jan 25 19:37:55.528: ppp51 LCP: MRU 1500 (0x010405DC) Jan 25 19:37:55.528: ppp51 LCP: Event[Receive ConfReq-] State[ACKrcvd to ACKrcvd] Jan 25 19:37:55.556: ppp51 LCP: O CONFREQ [ACKrcvd] id 3 len 15 Jan 25 19:37:55.556: ppp51 LCP: AuthProto MS-CHAP-V2 (0x0305C22381) Jan 25 19:37:55.556: ppp51 LCP: MagicNumber 0x2AD081F8 (0x05062AD081F8) Jan 25 19:37:55.556: ppp51 LCP: Event[Timeout+] State[ACKrcvd to REQsent] Jan 25 19:37:55.576: ppp51 LCP: I CONFREQ [REQsent] id 4 len 18 Jan 25 19:37:55.576: ppp51 LCP: MRU 1500 (0x010405DC) Jan 25 19:37:55.576: ppp51 LCP: MagicNumber 0x0E5D7798 (0x05060E5D7798) Jan 25 19:37:55.576: ppp51 LCP: PFC (0x0702) Jan 25 19:37:55.576: ppp51 LCP: ACFC (0x0802) Jan 25 19:37:55.576: ppp51 LCP: O CONFACK [REQsent] id 4 len 18 Jan 25 19:37:55.576: ppp51 LCP: MRU 1500 (0x010405DC) Jan 25 19:37:55.576: ppp51 LCP: MagicNumber 0x0E5D7798 (0x05060E5D7798) Jan 25 19:37:55.576: ppp51 LCP: PFC (0x0702) Jan 25 19:37:55.576: ppp51 LCP: ACFC (0x0802) Jan 25 19:37:55.576: ppp51 LCP: Event[Receive ConfReq+] State[REQsent to ACKsent] Jan 25 19:37:55.600: ppp51 LCP: I CONFACK [ACKsent] id 3 len 15 Jan 25 19:37:55.600: ppp51 LCP: AuthProto MS-CHAP-V2 (0x0305C22381) Jan 25 19:37:55.600: ppp51 LCP: MagicNumber 0x2AD081F8 (0x05062AD081F8) Jan 25 19:37:55.600: ppp51 LCP: Event[Receive ConfAck] State[ACKsent to Open] Jan 25 19:37:55.612: ppp51 PPP: Phase is AUTHENTICATING, by this end Jan 25 19:37:55.612: ppp51 MS-CHAP-V2: O CHALLENGE id 1 len 27 from "Router" Jan 25 19:37:55.612: ppp51 LCP: State is Open Jan 25 19:37:55.628: ppp51 LCP: I IDENTIFY [Open] id 5 len 18 magic 0x0E5D7798MSRASV5.20 Jan 25 19:37:55.632: ppp51 LCP: I IDENTIFY [Open] id 6 len 23 magic 0x0E5D7798MSRAS-0-BORISPC Jan 25 19:37:55.640: ppp51 LCP: I IDENTIFY [Open] id 7 len 24 magic 0x0E5D7798K!O\qvLII8Jd.fAm Jan 25 19:37:55.660: ppp51 MS-CHAP-V2: I RESPONSE id 1 len 58 from "delo" Jan 25 19:37:55.660: ppp51 PPP: Phase is FORWARDING, Attempting Forward Jan 25 19:37:55.660: ppp51 PPP: Phase is AUTHENTICATING, Unauthenticated User Jan 25 19:37:55.660: ppp51 PPP: Sent MSCHAP_V2 LOGIN Request Jan 25 19:37:55.664: ppp51 PPP: Received LOGIN Response PASS Jan 25 19:37:55.664: ppp51 PPP: Phase is FORWARDING, Attempting Forward Jan 25 19:37:55.668: Vi4.1 PPP: Phase is AUTHENTICATING, Authenticated User Jan 25 19:37:55.668: Vi4.1: No MS_CHAP_V2 msg data Jan 25 19:37:55.668: Vi4.1 MS-CHAP-V2: O SUCCESS id 1 len 46 msg is "S=31CDD4317C27DB781E98CF4CA12BEB1602C93BBD" Jan 25 19:37:55.668: Vi4.1 PPP: No AAA accounting method list Jan 25 19:37:55.668: Vi4.1 PPP: Phase is UP Jan 25 19:37:55.668: Vi4.1 IPCP: Protocol configured, start CP. state[Initial] Jan 25 19:37:55.668: Vi4.1 IPCP: Event[OPEN] State[Initial to Starting] Jan 25 19:37:55.668: Vi4.1 IPCP: O CONFREQ [Starting] id 1 len 10 Jan 25 19:37:55.668: Vi4.1 IPCP: Address 192.168.137.1 (0x0306C0A88901) Jan 25 19:37:55.668: Vi4.1 IPCP: Event[UP] State[Starting to REQsent] Jan 25 19:37:55.720: Vi4.1 IPV6CP: I CONFREQ [UNKNOWN] id 8 len 14 Jan 25 19:37:55.720: Vi4.1 IPV6CP: Interface-Id F889:7EF3:6414:E01D (0x010AF8897EF36414E01D) Jan 25 19:37:55.720: Vi4.1 LCP: O PROTREJ [Open] id 4 len 20 protocol IPV6CP (0x0108000E010AF8897EF36414E01D) Jan 25 19:37:55.720: Vi4.1 CCP: I CONFREQ [UNKNOWN] id 9 len 10 Jan 25 19:37:55.720: Vi4.1 CCP: MS-PPC supported bits 0x01000040 (0x120601000040) Jan 25 19:37:55.720: Vi4.1 LCP: O PROTREJ [Open] id 5 len 16 protocol CCP (0x0109000A120601000040) Jan 25 19:37:55.728: Vi4.1 IPCP: I CONFREQ [REQsent] id 10 len 34 Jan 25 19:37:55.728: Vi4.1 IPCP: Address 0.0.0.0 (0x030600000000) Jan 25 19:37:55.728: Vi4.1 IPCP: PrimaryDNS 0.0.0.0 (0x810600000000) Jan 25 19:37:55.728: Vi4.1 IPCP: PrimaryWINS 0.0.0.0 (0x820600000000) Jan 25 19:37:55.728: Vi4.1 IPCP: SecondaryDNS 0.0.0.0 (0x830600000000) Jan 25 19:37:55.728: Vi4.1 IPCP: SecondaryWINS 0.0.0.0 (0x840600000000) Jan 25 19:37:55.728: Vi4.1 IPCP AUTHOR: Done. Her address 0.0.0.0, we want 0.0.0.0 Jan 25 19:37:55.728: Vi4.1 IPCP: Cannot satisfy pool request Jan 25 19:37:55.728: Vi4.1 IPCP: Neither side knows remote address Jan 25 19:37:55.728: Vi4.1 IPCP: O CONFREJ [REQsent] id 10 len 34 Jan 25 19:37:55.728: Vi4.1 IPCP: Address 0.0.0.0 (0x030600000000) Jan 25 19:37:55.728: Vi4.1 IPCP: PrimaryDNS 0.0.0.0 (0x810600000000) Jan 25 19:37:55.728: Vi4.1 IPCP: PrimaryWINS 0.0.0.0 (0x820600000000) Jan 25 19:37:55.728: Vi4.1 IPCP: SecondaryDNS 0.0.0.0 (0x830600000000) Jan 25 19:37:55.728: Vi4.1 IPCP: SecondaryWINS 0.0.0.0 (0x840600000000) Jan 25 19:37:55.728: Vi4.1 IPCP: Event[Receive ConfReq-] State[REQsent to REQsent] Jan 25 19:37:55.728: Vi4.1 PPP: Control packet rate limit 10 reached Jan 25 19:37:55.728: Vi4.1 PPP: Entering block state for 30 seconds Jan 25 19:37:55.728: Vi4.1 PPP: Packet throttled, Dropping packet Jan 25 19:37:55.776: Vi4.1 PPP: Packet throttled, Dropping packet Jan 25 19:37:56.784: Vi4.1 PPP: Block vaccess from being freed [0x10] Jan 25 19:37:56.784: Vi4.1 PPP DISC: Lower Layer disconnected Jan 25 19:37:56.788: Vi4.1 PPP: Sending Acct Event[Down] id[48] Jan 25 19:37:56.788: PPP: NET STOP send to AAA. Jan 25 19:37:56.788: Vi4.1 IPCP: Event[DOWN] State[REQsent to Starting] Jan 25 19:37:56.788: Vi4.1 IPCP: Event[CLOSE] State[Starting to Initial] Jan 25 19:37:56.788: Vi4.1 LCP: O TERMREQ [Open] id 6 len 4 Jan 25 19:37:56.788: Vi4.1 LCP: Event[CLOSE] State[Open to Closing] Jan 25 19:37:56.788: Vi4.1 PPP: Phase is TERMINATING Jan 25 19:37:56.788: Vi4.1 LCP: Event[DOWN] State[Closing to Initial] Jan 25 19:37:56.788: Vi4.1 PPP: Unlocked by [0x10] Still Locked by [0x0] Jan 25 19:37:56.788: Vi4.1 PPP: Free previously blocked vaccess *Jan 25 19:37:56.788: Vi4.1 PPP: Phase is DOWN

Ваше сообщение

Имя*:

EMail:

Для отправки новых сообщений в текущей нити на email укажите знак ! перед адресом, например, !user@host.ru (!! - не показывать email).
Более тонкая настройка отправки ответов производится в профиле зарегистрированного участника форума.

Заголовок*:

Сообщение*:

> вычитал, что с включенным ааа(aaa new-model - aaa мне нужно для подключения 
> к циске по ssh вроде как без aaa new-model и aaa 
> session-id common) стандартные конфиги на vpn не работают, в циску не 
> зайти сеанс открывает, но приглашения логина нет (поправте, может, я не 
> прав) 
> добавил:

> [code] 
> aaa attribute list delo 
>  attribute type addr-pool "vpn" service ppp protocol ip

>  username delo aaa attribute list delo 
> [/code]

> авторизация стала проходить, но при включении пк в сеть получаю ошибку 742 
> вот log

> [code] 
> Router#term mon 
> Router#debug ppp authen 
> PPP authentication debugging is on 
> Router#debug ppp nego 
> PPP protocol negotiation debugging is on 
> *Jan 25 19:37:53.468: PPP: Alloc Context [E0AA654] 
> *Jan 25 19:37:53.468: ppp51 PPP: Phase is ESTABLISHING 
> *Jan 25 19:37:53.468: ppp51 PPP: Using vpn set call direction 
> *Jan 25 19:37:53.468: ppp51 PPP: Treating connection as a callin 
> *Jan 25 19:37:53.468: ppp51 PPP: Session handle[EA000033] Session id[51] 
> *Jan 25 19:37:53.468: ppp51 LCP: Event[OPEN] State[Initial to Starting] 
> *Jan 25 19:37:53.468: ppp51 PPP LCP: Enter passive mode, state[Stopped] 
> *Jan 25 19:37:53.516: ppp51 LCP: I CONFREQ [Stopped] id 0 len 21 
 
> *Jan 25 19:37:53.516: ppp51 LCP:    MRU 1400 (0x01040578) 
> *Jan 25 19:37:53.516: ppp51 LCP:    MagicNumber 0x0E5D7798 (0x05060E5D7798) 
> *Jan 25 19:37:53.516: ppp51 LCP:    PFC (0x0702) 
> *Jan 25 19:37:53.516: ppp51 LCP:    ACFC (0x0802) 
> *Jan 25 19:37:53.516: ppp51 LCP:    Callback 6 (0x0D0306) 
> *Jan 25 19:37:53.516: ppp51 LCP: O CONFREQ [Stopped] id 1 len 14 
 
> *Jan 25 19:37:53.516: ppp51 LCP:    AuthProto PAP (0x0304C023) 
> *Jan 25 19:37:53.516: ppp51 LCP:    MagicNumber 0x2AD081F8 (0x05062AD081F8) 
> *Jan 25 19:37:53.520: ppp51 LCP: O CONFREJ [Stopped] id 0 len 7 
 
> *Jan 25 19:37:53.520: ppp51 LCP:    Callback 6 (0x0D0306) 
> *Jan 25 19:37:53.520: ppp51 LCP: Event[Receive ConfReq-] State[Stopped to REQsent] 
> *Jan 25 19:37:53.564: ppp51 LCP: I CONFNAK [REQsent] id 1 len 9 
 
> *Jan 25 19:37:53.564: ppp51 LCP:    AuthProto MS-CHAP-V2 (0x0305C22381) 
> *Jan 25 19:37:53.564: ppp51 LCP: O CONFREQ [REQsent] id 2 len 15 
 
> *Jan 25 19:37:53.564: ppp51 LCP:    AuthProto MS-CHAP-V2 (0x0305C22381) 
> *Jan 25 19:37:53.564: ppp51 LCP:    MagicNumber 0x2AD081F8 (0x05062AD081F8) 
> *Jan 25 19:37:53.564: ppp51 LCP: Event[Receive ConfNak/Rej] State[REQsent to REQsent] 
 
> *Jan 25 19:37:53.568: ppp51 LCP: I CONFREQ [REQsent] id 1 len 18 
 
> *Jan 25 19:37:53.568: ppp51 LCP:    MRU 1400 (0x01040578) 
> *Jan 25 19:37:53.568: ppp51 LCP:    MagicNumber 0x0E5D7798 (0x05060E5D7798) 
> *Jan 25 19:37:53.568: ppp51 LCP:    PFC (0x0702) 
> *Jan 25 19:37:53.568: ppp51 LCP:    ACFC (0x0802) 
> *Jan 25 19:37:53.568: ppp51 LCP: O CONFNAK [REQsent] id 1 len 8 
 
> *Jan 25 19:37:53.568: ppp51 LCP:    MRU 1500 (0x010405DC) 
> *Jan 25 19:37:53.568: ppp51 LCP: Event[Receive ConfReq-] State[REQsent to REQsent] 
> *Jan 25 19:37:53.608: ppp51 LCP: I CONFACK [REQsent] id 2 len 15 
 
> *Jan 25 19:37:53.608: ppp51 LCP:    AuthProto MS-CHAP-V2 (0x0305C22381) 
> *Jan 25 19:37:53.608: ppp51 LCP:    MagicNumber 0x2AD081F8 (0x05062AD081F8) 
> *Jan 25 19:37:53.608: ppp51 LCP: Event[Receive ConfAck] State[REQsent to ACKrcvd] 
> *Jan 25 19:37:53.612: ppp51 LCP: I CONFREQ [ACKrcvd] id 2 len 18 
 
> *Jan 25 19:37:53.612: ppp51 LCP:    MRU 1400 (0x01040578) 
> *Jan 25 19:37:53.612: ppp51 LCP:    MagicNumber 0x0E5D7798 (0x05060E5D7798) 
> *Jan 25 19:37:53.612: ppp51 LCP:    PFC (0x0702) 
> *Jan 25 19:37:53.612: ppp51 LCP:    ACFC (0x0802) 
> *Jan 25 19:37:53.612: ppp51 LCP: O CONFNAK [ACKrcvd] id 2 len 8 
 
> *Jan 25 19:37:53.612: ppp51 LCP:    MRU 1500 (0x010405DC) 
> *Jan 25 19:37:53.612: ppp51 LCP: Event[Receive ConfReq-] State[ACKrcvd to ACKrcvd] 
> *Jan 25 19:37:55.528: ppp51 LCP: I CONFREQ [ACKrcvd] id 3 len 18 
 
> *Jan 25 19:37:55.528: ppp51 LCP:    MRU 1400 (0x01040578) 
> *Jan 25 19:37:55.528: ppp51 LCP:    MagicNumber 0x0E5D7798 (0x05060E5D7798) 
> *Jan 25 19:37:55.528: ppp51 LCP:    PFC (0x0702) 
> *Jan 25 19:37:55.528: ppp51 LCP:    ACFC (0x0802) 
> *Jan 25 19:37:55.528: ppp51 LCP: O CONFNAK [ACKrcvd] id 3 len 8 
 
> *Jan 25 19:37:55.528: ppp51 LCP:    MRU 1500 (0x010405DC) 
> *Jan 25 19:37:55.528: ppp51 LCP: Event[Receive ConfReq-] State[ACKrcvd to ACKrcvd] 
> *Jan 25 19:37:55.556: ppp51 LCP: O CONFREQ [ACKrcvd] id 3 len 15 
 
> *Jan 25 19:37:55.556: ppp51 LCP:    AuthProto MS-CHAP-V2 (0x0305C22381) 
> *Jan 25 19:37:55.556: ppp51 LCP:    MagicNumber 0x2AD081F8 (0x05062AD081F8) 
> *Jan 25 19:37:55.556: ppp51 LCP: Event[Timeout+] State[ACKrcvd to REQsent] 
> *Jan 25 19:37:55.576: ppp51 LCP: I CONFREQ [REQsent] id 4 len 18 
 
> *Jan 25 19:37:55.576: ppp51 LCP:    MRU 1500 (0x010405DC) 
> *Jan 25 19:37:55.576: ppp51 LCP:    MagicNumber 0x0E5D7798 (0x05060E5D7798) 
> *Jan 25 19:37:55.576: ppp51 LCP:    PFC (0x0702) 
> *Jan 25 19:37:55.576: ppp51 LCP:    ACFC (0x0802) 
> *Jan 25 19:37:55.576: ppp51 LCP: O CONFACK [REQsent] id 4 len 18 
 
> *Jan 25 19:37:55.576: ppp51 LCP:    MRU 1500 (0x010405DC) 
> *Jan 25 19:37:55.576: ppp51 LCP:    MagicNumber 0x0E5D7798 (0x05060E5D7798) 
> *Jan 25 19:37:55.576: ppp51 LCP:    PFC (0x0702) 
> *Jan 25 19:37:55.576: ppp51 LCP:    ACFC (0x0802) 
> *Jan 25 19:37:55.576: ppp51 LCP: Event[Receive ConfReq+] State[REQsent to ACKsent] 
> *Jan 25 19:37:55.600: ppp51 LCP: I CONFACK [ACKsent] id 3 len 15 
 
> *Jan 25 19:37:55.600: ppp51 LCP:    AuthProto MS-CHAP-V2 (0x0305C22381) 
> *Jan 25 19:37:55.600: ppp51 LCP:    MagicNumber 0x2AD081F8 (0x05062AD081F8) 
> *Jan 25 19:37:55.600: ppp51 LCP: Event[Receive ConfAck] State[ACKsent to Open] 
> *Jan 25 19:37:55.612: ppp51 PPP: Phase is AUTHENTICATING, by this end 
> *Jan 25 19:37:55.612: ppp51 MS-CHAP-V2: O CHALLENGE id 1 len 27 from 
> "Router" 
> *Jan 25 19:37:55.612: ppp51 LCP: State is Open 
> *Jan 25 19:37:55.628: ppp51 LCP: I IDENTIFY [Open] id 5 len 18 
> magic 0x0E5D7798MSRASV5.20 
> *Jan 25 19:37:55.632: ppp51 LCP: I IDENTIFY [Open] id 6 len 23 
> magic 0x0E5D7798MSRAS-0-BORISPC 
> *Jan 25 19:37:55.640: ppp51 LCP: I IDENTIFY [Open] id 7 len 24 
> magic 0x0E5D7798K!O\qvLII8Jd.fAm 
> *Jan 25 19:37:55.660: ppp51 MS-CHAP-V2: I RESPONSE id 1 len 58 from 
> "delo" 
> *Jan 25 19:37:55.660: ppp51 PPP: Phase is FORWARDING, Attempting Forward 
> *Jan 25 19:37:55.660: ppp51 PPP: Phase is AUTHENTICATING, Unauthenticated User 
> *Jan 25 19:37:55.660: ppp51 PPP: Sent MSCHAP_V2 LOGIN Request 
> *Jan 25 19:37:55.664: ppp51 PPP: Received LOGIN Response PASS 
> *Jan 25 19:37:55.664: ppp51 PPP: Phase is FORWARDING, Attempting Forward 
> *Jan 25 19:37:55.668: Vi4.1 PPP: Phase is AUTHENTICATING, Authenticated User 
> *Jan 25 19:37:55.668: Vi4.1: No MS_CHAP_V2 msg data 
> *Jan 25 19:37:55.668: Vi4.1 MS-CHAP-V2: O SUCCESS id 1 len 46 msg 
> is "S=31CDD4317C27DB781E98CF4CA12BEB1602C93BBD" 
> *Jan 25 19:37:55.668: Vi4.1 PPP: No AAA accounting method list 
> *Jan 25 19:37:55.668: Vi4.1 PPP: Phase is UP 
> *Jan 25 19:37:55.668: Vi4.1 IPCP: Protocol configured, start CP. state[Initial] 
> *Jan 25 19:37:55.668: Vi4.1 IPCP: Event[OPEN] State[Initial to Starting] 
> *Jan 25 19:37:55.668: Vi4.1 IPCP: O CONFREQ [Starting] id 1 len 10 
 
> *Jan 25 19:37:55.668: Vi4.1 IPCP:    Address 192.168.137.1 (0x0306C0A88901) 
> *Jan 25 19:37:55.668: Vi4.1 IPCP: Event[UP] State[Starting to REQsent] 
> *Jan 25 19:37:55.720: Vi4.1 IPV6CP: I CONFREQ [UNKNOWN] id 8 len 14 
 
> *Jan 25 19:37:55.720: Vi4.1 IPV6CP:    Interface-Id F889:7EF3:6414:E01D (0x010AF8897EF36414E01D) 
 
> *Jan 25 19:37:55.720: Vi4.1 LCP: O PROTREJ [Open] id 4 len 20 
> protocol IPV6CP (0x0108000E010AF8897EF36414E01D) 
> *Jan 25 19:37:55.720: Vi4.1 CCP: I CONFREQ [UNKNOWN] id 9 len 10 
 
> *Jan 25 19:37:55.720: Vi4.1 CCP:    MS-PPC supported bits 0x01000040 
> (0x120601000040) 
> *Jan 25 19:37:55.720: Vi4.1 LCP: O PROTREJ [Open] id 5 len 16 
> protocol CCP (0x0109000A120601000040) 
> *Jan 25 19:37:55.728: Vi4.1 IPCP: I CONFREQ [REQsent] id 10 len 34 
 
> *Jan 25 19:37:55.728: Vi4.1 IPCP:    Address 0.0.0.0 (0x030600000000) 
> *Jan 25 19:37:55.728: Vi4.1 IPCP:    PrimaryDNS 0.0.0.0 (0x810600000000) 
> *Jan 25 19:37:55.728: Vi4.1 IPCP:    PrimaryWINS 0.0.0.0 (0x820600000000) 
> *Jan 25 19:37:55.728: Vi4.1 IPCP:    SecondaryDNS 0.0.0.0 (0x830600000000) 
> *Jan 25 19:37:55.728: Vi4.1 IPCP:    SecondaryWINS 0.0.0.0 (0x840600000000) 
> *Jan 25 19:37:55.728: Vi4.1 IPCP AUTHOR: Done. Her address 0.0.0.0, we want 
> 0.0.0.0 
> *Jan 25 19:37:55.728: Vi4.1 IPCP: Cannot satisfy pool request 
> *Jan 25 19:37:55.728: Vi4.1 IPCP: Neither side knows remote address 
> *Jan 25 19:37:55.728: Vi4.1 IPCP: O CONFREJ [REQsent] id 10 len 34 
 
> *Jan 25 19:37:55.728: Vi4.1 IPCP:    Address 0.0.0.0 (0x030600000000) 
> *Jan 25 19:37:55.728: Vi4.1 IPCP:    PrimaryDNS 0.0.0.0 (0x810600000000) 
> *Jan 25 19:37:55.728: Vi4.1 IPCP:    PrimaryWINS 0.0.0.0 (0x820600000000) 
> *Jan 25 19:37:55.728: Vi4.1 IPCP:    SecondaryDNS 0.0.0.0 (0x830600000000) 
> *Jan 25 19:37:55.728: Vi4.1 IPCP:    SecondaryWINS 0.0.0.0 (0x840600000000) 
> *Jan 25 19:37:55.728: Vi4.1 IPCP: Event[Receive ConfReq-] State[REQsent to REQsent] 
> *Jan 25 19:37:55.728: Vi4.1 PPP: Control packet rate limit 10 reached 
> *Jan 25 19:37:55.728: Vi4.1 PPP: Entering block state for 30 seconds 
> *Jan 25 19:37:55.728: Vi4.1 PPP: Packet throttled, Dropping packet 
> *Jan 25 19:37:55.776: Vi4.1 PPP: Packet throttled, Dropping packet 
> *Jan 25 19:37:56.784: Vi4.1 PPP: Block vaccess from being freed [0x10] 
> *Jan 25 19:37:56.784: Vi4.1 PPP DISC: Lower Layer disconnected 
> *Jan 25 19:37:56.788: Vi4.1 PPP: Sending Acct Event[Down] id[48] 
> *Jan 25 19:37:56.788: PPP: NET STOP send to AAA.
> *Jan 25 19:37:56.788: Vi4.1 IPCP: Event[DOWN] State[REQsent to Starting] 
> *Jan 25 19:37:56.788: Vi4.1 IPCP: Event[CLOSE] State[Starting to Initial] 
> *Jan 25 19:37:56.788: Vi4.1 LCP: O TERMREQ [Open] id 6 len 4 
 
> *Jan 25 19:37:56.788: Vi4.1 LCP: Event[CLOSE] State[Open to Closing] 
> *Jan 25 19:37:56.788: Vi4.1 PPP: Phase is TERMINATING 
> *Jan 25 19:37:56.788: Vi4.1 LCP: Event[DOWN] State[Closing to Initial] 
> *Jan 25 19:37:56.788: Vi4.1 PPP: Unlocked by [0x10] Still Locked by [0x0] 
 
> *Jan 25 19:37:56.788: Vi4.1 PPP: Free previously blocked vaccess 
> *Jan 25 19:37:56.788: Vi4.1 PPP: Phase is DOWN 
> [/code]

При общении не допускается: неуважительное отношение к собеседнику, хамство, унизительное обращение, ненормативная лексика, переход на личности, агрессивное поведение, обесценивание собеседника, провоцирование флейма голословными и заведомо ложными заявлениями. Не отвечайте на сообщения, явно нарушающие правила - удаляются не только сами нарушения, но и все ответы на них. Лог модерирования.

Партнёры:

Хостинг:

Закладки на сайте
Проследить за страницей

Created 1996-2024 by Maxim Chirkov
Добавить, Поддержать, Вебмастеру