Доброго дня всем!
Помогите советом. Есть конфиг:
aaa new-model
!
!
aaa group server radius rad1
server 192.168.2.37 auth-port 1812 acct-port 1813
!
aaa authentication login default local
aaa authentication login h323 group rad1
aaa authentication login use-radius group rad1 local
aaa authentication ppp default local
aaa authentication ppp ppp-radius group rad1
aaa authentication ppp no-authentication none
aaa authorization exec default local
aaa authorization exec h323 group rad1
aaa authorization network default local
aaa accounting network default start-stop group rad1
aaa accounting connection h323 start-stop broadcast group rad1
aaa nas port extended
aaa session-id common
!
interface Serial0:15
no ip address
encapsulation ppp
isdn switch-type primary-net5
isdn incoming-voice modem
isdn send-alerting
isdn sending-complete
!
interface Group-Async0
ip unnumbered Ethernet0
ip accounting output-packets
encapsulation ppp
ip tcp header-compression
autodetect encapsulation ppp
async mode dedicated
peer default ip address pool DialIn-Internet
ppp authentication pap ppp-radius
group-range 1 120
!
ip local pool DialIn-Internet 192.168.0.1 192.168.0.120
!
radius-server host 192.168.2.37 auth-port 1812 acct-port 1813 timeout 60 retransmit 0 key 7 13060516001A0E39
radius-server vsa send accounting
radius-server vsa send authentication
!
line 1 120
login authentication use-radius
modem Dialin
modem autoconfigure discovery
autoselect pppВот при таком раскладе при звонке с модема получаю по debug radius следующее:
00:18:32: %ISDN-6-CONNECT: Interface Serial0:0 is now connected to 2222005 N/A
00:18:48: %LINK-3-UPDOWN: Interface Async64, changed state to up
00:18:48: RADIUS/ENCODE(0000007D):Orig. component type = ISDN
00:18:48: RADIUS/ENCODE: Skip encoding 0 length AAA attribute dnis
00:18:48: RADIUS(0000007D): Storing nasport 64 in rad_db
00:18:48: RADIUS(0000007D): Config NAS IP: 0.0.0.0
00:18:48: RADIUS/ENCODE(0000007D): acct_session_id: 125
00:18:48: RADIUS(0000007D): sending
00:18:48: RADIUS/ENCODE: Best Local IP-Address 192.168.2.39 for Radius-Server 192.168.2.37
00:18:48: RADIUS(0000007D): Send Access-Request to 192.168.2.37:1812 id 1645/3, len 109
00:18:48: RADIUS: authenticator 9A 15 DD 3D 21 14 E5 F1 - D2 08 6D 03 4F 18 40 DA
00:18:48: RADIUS: Framed-Protocol [7] 6 PPP [1]
00:18:48: RADIUS: User-Name [1] 7 "aldon"
00:18:48: RADIUS: User-Password [2] 18 *
00:18:48: RADIUS: Calling-Station-Id [31] 9 "2222005"
00:18:48: RADIUS: Vendor, Cisco [26] 25
00:18:48: RADIUS: cisco-nas-port [2] 19 "Async64*Serial0:0"
00:18:48: RADIUS: NAS-Port [5] 6 64
00:18:48: RADIUS: NAS-Port-Type [61] 6 Async [0]
00:18:48: RADIUS: Service-Type [6] 6 Framed [2]
00:18:48: RADIUS: NAS-IP-Address [4] 6 192.168.2.39
00:18:49: RADIUS: Received from id 1645/3 192.168.2.37:1812, Access-Accept, len 26
00:18:49: RADIUS: authenticator 38 D4 AB FF CD 71 3A F1 - EE 16 47 F7 9A 6C EB 20
00:18:49: RADIUS: Session-Timeout [27] 6 43020
00:18:49: RADIUS(0000007D): Received from id 1645/3
00:18:49: %ISDN-6-DISCONNECT: Interface Serial0:0 disconnected from 2222005 , call lasted 17 seconds
00:18:51: %LINK-5-CHANGED: Interface Async64, changed state to reset
00:18:56: %LINK-3-UPDOWN: Interface Async64, changed state to down
на клиенте ошибка: PPP link protokol was terminated 734
Если убираю с interface Group-Async0 строчку ppp authentication pap ppp-radius и логонюсь юзером, прописанным в конфиге, конект проходит нормально.
Куда копать?