forum.bitel.ru :: Просмотр темы

Digest-Method=REGISTER
Digest-URI=sip:2904196@tel.itax

А там что, только эти два атрибута?

Цитата:

Digest-Method=REGISTER
Digest-URI=sip:2904196@tel.itax

2.2. RADIUS Server Behavior
If the RADIUS server receives an Access-Request packet with a
Digest-Method and a Digest-URI Attribute but without a Digest-Nonce
Attribute, it chooses a nonce. It puts the nonce into a Digest-Nonce
Attribute and sends it in an Access-Challenge packet to the RADIUS
client. The RADIUS server MUST add Digest-Realm, Message-
Authenticator (see [RFC3579]), SHOULD add Digest-Algorithm and one or
more Digest-Qop, and MAY add Digest-Domain or Digest-Opaque
attributes to the Access-Challenge packet.

Вроде бы поддерживается, когда сразу приходит Digest-Response.

поставим вопрос другим ребром - возможна ли доработка радиуса для поддержки http://tools.ietf.org/html/rfc5090

03-14/13:12:25 DEBUG [radiusListener-p-3-t-2] VoiceIpRadiusProcessor - Process outgoing auth Packet type: Access-Request
Identifier: 80
Authenticator: {1F 35 05 57 BC E5 E0 E0 EA 58 72 8E 68 7C 66 81}
Attributes:
User-Name=888
Digest-Response=bb16baf0d4bd5dcfbf5dac03613cb628
NAS-IP-Address=192.168.50.14
NAS-Port=62096
Service-Type=1
Framed-Protocol=2
Digest-Qop=auth
Digest-Algorithm=MD5
Digest-Method=REGISTER
Digest-URI=sip:192.168.50.14:5060
Digest-Realm=192.168.50.14
Digest-Nonce=5b90ed885ed5931d9256cb826c97e1f9
Digest-Username=888
Message-Authenticator={03 A4 7E 9C 5B 35 75 A8 39 54 95 76 BC 2E 98 14}
Digest-Nonce-Count=00000001
Digest-CNonce=f66196da025f04941779f51558c1c20e
SIP-AOR=sip:888@192.168.50.14
NAS-Port-Type=0

03-14/13:12:25 DEBUG [radiusListener-p-3-t-2] AbstractRadiusProcessor - Finding login..
03-14/13:12:25 DEBUG [radiusListener-p-3-t-2] VoiceIpRadiusProcessor - Found login type 2
03-14/13:12:25 DEBUG [radiusListener-p-3-t-2] AbstractRadiusProcessor - Login found: 1137
03-14/13:12:25 DEBUG [radiusListener-p-3-t-2] AbstractRadiusProcessor - Checking access allow...
03-14/13:12:25 DEBUG [radiusListener-p-3-t-2] AbstractRadiusProcessor - Checking password...
03-14/13:12:25 DEBUG [radiusListener-p-3-t-2] RadiusUtils - try checkDigestMD5Password
03-14/13:12:25 DEBUG [radiusListener-p-3-t-2] RadiusUtils - digestAttributes=null
03-14/13:12:25 DEBUG [radiusListener-p-3-t-2] RadiusUtils - digestResponse=null
03-14/13:12:25 DEBUG [radiusListener-p-3-t-2] RadiusUtils - user =null realm =null nonce = null method = null uri = null
03-14/13:12:25 DEBUG [radiusListener-p-3-t-2] RadiusUtils - try all in one string
03-14/13:12:25 DEBUG [radiusListener-p-3-t-2] RadiusUtils - digestAttribute=null
03-14/13:12:25 DEBUG [radiusListener-p-3-t-2] AbstractRadiusProcessor - Login password error
03-14/13:12:25 INFO [radiusListener-p-3-t-2] RadiusListenerWorker - RESPONSE:
Packet type: Access-Reject
Identifier: 80
Authenticator: {B0 4C 43 2C 87 BC 9E 8D FB 6C 1E 49 1C 0B B7 AD}
Attributes:
Reply-Message=2
Message-Authenticator={00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00}
h323-return-code=2

03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] RadiusProcessor - Create new radius session.
03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] VoiceIpRadiusProcessor - Process outgoing auth Packet type: Access-Request
Identifier: 78
Authenticator: {BB 08 59 13 CD C6 C4 E0 4C 24 B9 FA E3 3A C4 34}
Attributes:
User-Name=888
Digest-Response=7feee567aec030a90215b47eb2abde47
NAS-IP-Address=192.168.50.14
NAS-Port=52776
Service-Type=1
Framed-Protocol=2
Digest-Qop=auth
Digest-Algorithm=MD5
Digest-Method=REGISTER
Digest-URI=sip:192.168.50.14:5060
Digest-Realm=192.168.50.14
Digest-Nonce=c0d41ee113649c90a96eacaea3f07a4c
Digest-Username=888
Message-Authenticator={B9 E5 56 DB 39 6C 3C 85 E9 03 48 46 1A CA E4 20}
Digest-Nonce-Count=00000001
Digest-CNonce=43490e8fab3f38499c5ff88cf1d3aa02
SIP-AOR=sip:888@192.168.50.14
NAS-Port-Type=0

03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Finding login..
03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] VoiceIpRadiusProcessor - Found login type 2
03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Login found: 1137
03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Checking access allow...
03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Checking password...
03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] RadiusUtils - try checkDigestMD5Password
03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] RadiusUtils - digestAttributes=null
03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] RadiusUtils - digestResponse=null
03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] RadiusUtils - user =null realm =null nonce = null method = null uri = null
03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] RadiusUtils - try all in one string
03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] RadiusUtils - digestAttribute=null
03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Login password error
03-15/14:33:44 INFO [radiusListener-p-3-t-16] RadiusListenerWorker - RESPONSE:
Packet type: Access-Reject
Identifier: 78
Authenticator: {D9 6C 7D 4B FD CA E4 57 28 E0 B2 D9 C4 DB D3 F9}
Attributes:
Reply-Message=2
Message-Authenticator={00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00}
h323-return-code=2

Process time auth: 34

HA1=8314936349bcdf4429bf05299473598b
HA2=a70b9cf5a8762980db46482b776dfd0c
RESP1=0cd8e5bd682cf54d18fc07a236628118
RESP2=7feee567aec030a90215b47eb2abde47

12-27/11:09:49 DEBUG [radiusListener-p-3-t-2] RadiusUtils - try checkDigestMD5Password
12-27/11:09:49 DEBUG [radiusListener-p-3-t-2] RadiusUtils - digestAttributes=null
12-27/11:09:49 DEBUG [radiusListener-p-3-t-2] RadiusUtils - digestResponse=null
12-27/11:09:49 DEBUG [radiusListener-p-3-t-2] RadiusUtils - user =null realm =null nonce = null method = null uri = null
12-27/11:09:49 DEBUG [radiusListener-p-3-t-2] RadiusUtils - try all in one string
12-27/11:09:49 DEBUG [radiusListener-p-3-t-2] RadiusUtils - digestAttribute=null

03-15/16:37:43 INFO [radiusListener-p-3-t-2] RadiusListenerWorker - REQUEST:
Packet type: Access-Request
Identifier: 220
Authenticator: {2C 00 06 3D 5E A5 F5 1F 64 EF DA B8 2C 75 6C 6E}
Attributes:
User-Name=888
NAS-IP-Address=192.168.50.14
Message-Authenticator={25 D7 B6 1C A7 AA 7D 48 2D 4C A7 43 AE 98 75 AC}
NAS-Port=56328
Service-Type=1
Framed-Protocol=2
Digest-Method=INVITE
Digest-URI=sip:888@192.168.50.14
Calling-Station-Id=888
NAS-Port-Type=0
Called-Station-Id=580000
h323-gw-id=192.168.50.14
h323-conf-id=110001c1|4f61c692

03-15/16:37:43 DEBUG [radiusListener-p-3-t-2] RadiusProcessor - Create new radius session.
03-15/16:37:43 INFO [radiusListener-p-3-t-2] RadiusListenerWorker - RESPONSE:
Packet type: Access-Challenge
Identifier: 220
Authenticator: {1F 7C 79 48 2E 9C EB 85 50 90 27 A1 83 5D 9B F3}
Attributes:
Message-Authenticator={00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00}
Digest-Qop=auth
Digest-Algorithm=MD5
Digest-Realm=bgbilling.ru
Digest-Nonce=1e85ce6981bc68da

03-15/16:37:43 INFO [radiusListener-p-3-t-3] RadiusListenerWorker - REQUEST:
Packet type: Access-Request
Identifier: 221
Authenticator: {56 DD 30 A7 3D CA 73 8C 79 20 C8 47 B6 8D FB C2}
Attributes:
User-Name=888
Digest-Response=dfff713625d7a097da7c926800e40b51
NAS-IP-Address=192.168.50.14
NAS-Port=56328
Service-Type=1
Framed-Protocol=2
Digest-Qop=auth
Digest-Algorithm=MD5
Digest-Method=INVITE
Digest-URI=sip:580000@192.168.50.14:5060
Digest-Realm=bgbilling.ru
Digest-Nonce=1e85ce6981bc68da
Digest-Username=888
Message-Authenticator={CE 43 57 8A 7B E3 78 B7 9B 32 FF DF 86 79 9B 28}
Digest-Nonce-Count=00000001
Digest-CNonce=0d9eb779906caa7688aa443c2aed7efa
SIP-AOR=sip:888@192.168.50.14
NAS-Port-Type=0
Calling-Station-Id=888
Called-Station-Id=580000
h323-gw-id=192.168.50.14
h323-conf-id=110001c2|4f61c693

03-15/16:37:43 DEBUG [radiusListener-p-3-t-3] RadiusProcessor - Create new radius session.
03-15/16:37:43 DEBUG [radiusListener-p-3-t-3] VoiceIpRadiusProcessor - Process outgoing auth Packet type: Access-Request
Identifier: 221
Authenticator: {56 DD 30 A7 3D CA 73 8C 79 20 C8 47 B6 8D FB C2}
Attributes:
User-Name=888
Digest-Response=dfff713625d7a097da7c926800e40b51
NAS-IP-Address=192.168.50.14
NAS-Port=56328
Service-Type=1
Framed-Protocol=2
Digest-Qop=auth
Digest-Algorithm=MD5
Digest-Method=INVITE
Digest-URI=sip:580000@192.168.50.14:5060
Digest-Realm=bgbilling.ru
Digest-Nonce=1e85ce6981bc68da
Digest-Username=888
Message-Authenticator={CE 43 57 8A 7B E3 78 B7 9B 32 FF DF 86 79 9B 28}
Digest-Nonce-Count=00000001
Digest-CNonce=0d9eb779906caa7688aa443c2aed7efa
SIP-AOR=sip:888@192.168.50.14
NAS-Port-Type=0
Calling-Station-Id=888
Called-Station-Id=580000
h323-gw-id=192.168.50.14
h323-conf-id=110001c2|4f61c693

Packet type: Access-Accept
Identifier: 221
Authenticator: {A0 4C 31 AD 1A DA EB 06 43 95 3F 05 B9 7A 22 20}
Attributes:
Message-Authenticator={00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00}
Digest-Response-Auth=��[Y��
�~�\
h323-credit-time=7200
cisco-avpair=schema=1
h323-return-code=0
h323-credit-amount=-3597.55

Process time auth: 50

03-15/16:37:43 INFO [radiusListener-p-3-t-4] RadiusListenerWorker - REQUEST:
Packet type: Access-Request
Identifier: 15
Authenticator: {7A B1 17 BF 65 26 DD 33 E8 BF AA 4B A7 1B 24 F6}
Attributes:
User-Name=888
User-Password=�],{�<�ũ�X��m
NAS-IP-Address=192.168.50.14
NAS-Port=285213122
Acct-Session-Id=110001c2|4f61c693
NAS-Port-Type=0
Calling-Station-Id=888
cisco-avpair=xpgk-request-type=number
cisco-avpair=xpgk-src-number-in=888
cisco-avpair=h323-gw-address=192.168.50.14
h323-gw-id=192.168.50.14
h323-conf-id=110001c2|4f61c693

03-15/16:37:43 DEBUG [radiusListener-p-3-t-4] RadiusProcessor - Create new radius session.
03-15/16:37:43 DEBUG [radiusListener-p-3-t-4] VoiceIpRadiusProcessor - Process outgoing auth Packet type: Access-Request
Identifier: 15
Authenticator: {7A B1 17 BF 65 26 DD 33 E8 BF AA 4B A7 1B 24 F6}
Attributes:
User-Name=888
User-Password=�],{�<�ũ�X��m
NAS-IP-Address=192.168.50.14
NAS-Port=285213122
Acct-Session-Id=110001c2|4f61c693
NAS-Port-Type=0
Calling-Station-Id=888
cisco-avpair=xpgk-request-type=number
cisco-avpair=xpgk-src-number-in=888
cisco-avpair=h323-gw-address=192.168.50.14
h323-gw-id=192.168.50.14
h323-conf-id=110001c2|4f61c693

Packet type: Access-Reject
Identifier: 15
Authenticator: {54 01 15 E5 0A 6E 75 A0 E5 31 9B AF 76 59 83 FF}
Attributes:
Reply-Message=2
h323-return-code=2

Process time auth: 24

03-16/09:06:49 DEBUG [radiusListener-p-4-t-36] VoiceIpRadiusProcessor - Saved connection not found
03-16/09:06:49 DEBUG [radiusListener-p-4-t-36] VoiceIpRadiusProcessor - Found login type 1
03-16/09:06:49 DEBUG [radiusListener-p-4-t-36] VoiceIpRadiusProcessor - Login found.
03-16/09:06:52 INFO [radiusListener-p-3-t-13] RadiusListenerWorker - REQUEST:
Packet type: Access-Request
Identifier: 3
Authenticator: {31 A0 C6 46 C1 45 6F 70 58 7C 12 F9 9C 27 55 2B}
Attributes:
User-Name=888
NAS-IP-Address=192.168.50.14
Message-Authenticator={AB 4D 1B D0 B1 77 F3 A8 B0 0C 0C ED 30 B0 A2 07}
NAS-Port=57790
Service-Type=1
Framed-Protocol=2
Digest-Method=INVITE
Digest-URI=sip:888@192.168.50.14
Calling-Station-Id=888
NAS-Port-Type=0
Called-Station-Id=580000
h323-gw-id=192.168.50.14
h323-conf-id=110001df|4f62ae6a

03-16/09:06:52 DEBUG [radiusListener-p-3-t-13] RadiusProcessor - Create new radius session.
03-16/09:06:52 INFO [radiusListener-p-3-t-13] RadiusListenerWorker - RESPONSE:
Packet type: Access-Challenge
Identifier: 3
Authenticator: {0E C9 4E A3 C4 DE F1 BB F2 4C 2E 88 82 5E 96 0C}
Attributes:
Message-Authenticator={00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00}
Digest-Qop=auth
Digest-Algorithm=MD5
Digest-Realm=bgbilling.ru
Digest-Nonce=ad7fbcd2b6e5a626

03-16/09:06:52 INFO [radiusListener-p-3-t-14] RadiusListenerWorker - REQUEST:
Packet type: Access-Request
Identifier: 4
Authenticator: {CC CB 46 84 84 4C DD E6 9B 54 6C 42 F5 32 B5 86}
Attributes:
User-Name=888
Digest-Response=b90f6d9b77ad0467335b4c1a94ec5da0
NAS-IP-Address=192.168.50.14
NAS-Port=57790
Service-Type=1
Framed-Protocol=2
Digest-Qop=auth
Digest-Algorithm=MD5
Digest-Method=INVITE
Digest-URI=sip:580000@192.168.50.14:5060
Digest-Realm=bgbilling.ru
Digest-Nonce=ad7fbcd2b6e5a626
Digest-Username=888
Message-Authenticator={2D 12 F5 20 43 AF 0A F5 F1 49 A0 0B 64 78 E4 71}
Digest-Nonce-Count=00000001
Digest-CNonce=3f9309676852c1d24599334162042354
SIP-AOR=sip:888@192.168.50.14
NAS-Port-Type=0
Calling-Station-Id=888
Called-Station-Id=580000
h323-gw-id=192.168.50.14
h323-conf-id=110001e0|4f62ae6a

03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] RadiusProcessor - Create new radius session.
03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] VoiceIpRadiusProcessor - Process outgoing auth Packet type: Access-Request
Identifier: 4
Authenticator: {CC CB 46 84 84 4C DD E6 9B 54 6C 42 F5 32 B5 86}
Attributes:
User-Name=888
Digest-Response=b90f6d9b77ad0467335b4c1a94ec5da0
NAS-IP-Address=192.168.50.14
NAS-Port=57790
Service-Type=1
Framed-Protocol=2
Digest-Qop=auth
Digest-Algorithm=MD5
Digest-Method=INVITE
Digest-URI=sip:580000@192.168.50.14:5060
Digest-Realm=bgbilling.ru
Digest-Nonce=ad7fbcd2b6e5a626
Digest-Username=888
Message-Authenticator={2D 12 F5 20 43 AF 0A F5 F1 49 A0 0B 64 78 E4 71}
Digest-Nonce-Count=00000001
Digest-CNonce=3f9309676852c1d24599334162042354
SIP-AOR=sip:888@192.168.50.14
NAS-Port-Type=0
Calling-Station-Id=888
Called-Station-Id=580000
h323-gw-id=192.168.50.14
h323-conf-id=110001e0|4f62ae6a

03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] AbstractRadiusProcessor - Finding login..
03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] VoiceIpRadiusProcessor - Found login type 2
03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] AbstractRadiusProcessor - Login found: 1137
03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] AbstractRadiusProcessor - Checking access allow...
03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] AbstractRadiusProcessor - Checking password...
03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] RadiusUtils - try checkDigestMD5Password
03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] RadiusUtils - digestAttributes=null
03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] RadiusUtils - digestResponse=null
03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] RadiusUtils - user =null realm =null nonce = null method = null uri = null
03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] RadiusUtils - try all in one string
03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] RadiusUtils - digestAttribute=null
03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] AbstractRadiusProcessor - Checking contract status
03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] AbstractRadiusProcessor - Checking balance...
03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] VoiceIpRadiusProcessor - Checking tariff...
03-16/09:06:52 INFO [radiusListener-p-3-t-14] RadiusListenerWorker - RESPONSE:
Packet type: Access-Accept
Identifier: 4
Authenticator: {CF 04 A5 56 E8 60 8E 14 93 D6 30 DE C4 BB 85 99}
Attributes:
Message-Authenticator={00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00}
Digest-Response-Auth=3b43cd346161927ca73b7b5c7c1cab45
h323-credit-time=7200
cisco-avpair=schema=1
h323-return-code=0
h323-credit-amount=-3597.55

Process time auth: 74

03-16/09:06:52 INFO [radiusListener-p-3-t-15] RadiusListenerWorker - REQUEST:
Packet type: Access-Request
Identifier: 33
Authenticator: {EB 99 19 3A F7 05 96 FD 62 F2 C8 CC 20 7A C2 3E}
Attributes:
User-Name=888
User-Password=�c
NAS-IP-Address=192.168.50.14
NAS-Port=285213152
Acct-Session-Id=110001e0|4f62ae6a
NAS-Port-Type=0
Calling-Station-Id=888
cisco-avpair=xpgk-request-type=number
cisco-avpair=xpgk-src-number-in=888
cisco-avpair=h323-gw-address=192.168.50.14
h323-gw-id=192.168.50.14
h323-conf-id=110001e0|4f62ae6a

03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] RadiusProcessor - Create new radius session.
03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] VoiceIpRadiusProcessor - Process outgoing auth Packet type: Access-Request
Identifier: 33
Authenticator: {EB 99 19 3A F7 05 96 FD 62 F2 C8 CC 20 7A C2 3E}
Attributes:
User-Name=888
User-Password=�c
NAS-IP-Address=192.168.50.14
NAS-Port=285213152
Acct-Session-Id=110001e0|4f62ae6a
NAS-Port-Type=0
Calling-Station-Id=888
cisco-avpair=xpgk-request-type=number
cisco-avpair=xpgk-src-number-in=888
cisco-avpair=h323-gw-address=192.168.50.14
h323-gw-id=192.168.50.14
h323-conf-id=110001e0|4f62ae6a

03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] AbstractRadiusProcessor - Finding login..
03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] VoiceIpRadiusProcessor - Found login type 2
03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] AbstractRadiusProcessor - Login found: 1137
03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] AbstractRadiusProcessor - Checking access allow...
03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] AbstractRadiusProcessor - Checking password...
03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] RadiusUtils - try checkDigestMD5Password
03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] RadiusUtils - digestAttributes=null
03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] RadiusUtils - digestResponse=null
03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] RadiusUtils - user =null realm =null nonce = null method = null uri = null
03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] RadiusUtils - try all in one string
03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] RadiusUtils - digestAttribute=null
03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] AbstractRadiusProcessor - Login password error
03-16/09:06:52 INFO [radiusListener-p-3-t-16] RadiusListenerWorker - REQUEST:
Packet type: Access-Request
Identifier: 34
Authenticator: {CB D6 B3 90 D8 7C 74 3C E5 CB A4 0C FA 1E 0A 1F}
Attributes:
User-Name=888
User-Password=^\^DMVU�^N^]A�+?I��
NAS-IP-Address=192.168.50.14
NAS-Port=285213152
Acct-Session-Id=110001e0|4f62ae6a
NAS-Port-Type=0
Calling-Station-Id=888
Called-Station-Id=580000
cisco-avpair=xpgk-request-type=number
cisco-avpair=xpgk-src-number-in=888
cisco-avpair=xpgk-dst-number-in=580000
cisco-avpair=h323-gw-address=192.168.50.14
h323-gw-id=192.168.50.14
h323-conf-id=110001e0|4f62ae6a

03-16/09:06:52 INFO [radiusListener-p-3-t-15] RadiusListenerWorker - RESPONSE:
Packet type: Access-Reject
Identifier: 33
Authenticator: {A9 E0 0C 8D C2 B1 43 A4 4B 67 4A 3A CE E9 68 EC}
Attributes:
Reply-Message=2
h323-return-code=2

Process time auth: 32

03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] RadiusProcessor - Create new radius session.
03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] VoiceIpRadiusProcessor - Process outgoing auth Packet type: Access-Request
Identifier: 34
Authenticator: {CB D6 B3 90 D8 7C 74 3C E5 CB A4 0C FA 1E 0A 1F}
Attributes:
User-Name=888
User-Password=^\^DMVU�^N^]A�+?I��
NAS-IP-Address=192.168.50.14
NAS-Port=285213152
Acct-Session-Id=110001e0|4f62ae6a
NAS-Port-Type=0
Calling-Station-Id=888
Called-Station-Id=580000
cisco-avpair=xpgk-request-type=number
cisco-avpair=xpgk-src-number-in=888
cisco-avpair=xpgk-dst-number-in=580000
cisco-avpair=h323-gw-address=192.168.50.14
h323-gw-id=192.168.50.14
h323-conf-id=110001e0|4f62ae6a

03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Finding login..
03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] VoiceIpRadiusProcessor - Found login type 2
03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Login found: 1137
03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Checking access allow...
03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Checking password...
03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] RadiusUtils - try checkDigestMD5Password
03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] RadiusUtils - digestAttributes=null
03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] RadiusUtils - digestResponse=null
03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] RadiusUtils - user =null realm =null nonce = null method = null uri = null
03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] RadiusUtils - try all in one string
03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] RadiusUtils - digestAttribute=null
03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Login password error
03-16/09:06:52 INFO [radiusListener-p-3-t-16] RadiusListenerWorker - RESPONSE:
Packet type: Access-Reject
Identifier: 34
Authenticator: {AD 11 62 A7 99 81 A5 24 73 AF 04 F7 14 0C F6 7F}
Attributes:
Reply-Message=2
h323-return-code=2

Process time auth: 32

03-19/14:22:13 INFO [radiusListener-p-3-t-14] RadiusListenerWorker - REQUEST:
Packet type: Access-Request
Identifier: 15
Authenticator: {89 86 91 95 9D D5 F4 7E FF FA E5 44 D9 E2 04 A7}
Attributes:
User-Name=888
NAS-IP-Address=192.168.50.14
Message-Authenticator={88 A7 55 57 A3 E9 F3 F1 C5 97 80 E6 CF 65 4C 84}
NAS-Port=58555
Service-Type=1
Framed-Protocol=2
Digest-Method=INVITE
Digest-URI=sip:888@192.168.50.14
Calling-Station-Id=888
NAS-Port-Type=0
Called-Station-Id=580000
h323-gw-id=192.168.50.14
h323-conf-id=110001e9|4f66ecbc

03-19/14:22:13 DEBUG [radiusListener-p-3-t-14] RadiusProcessor - Create new radius session.
03-19/14:22:13 INFO [radiusListener-p-3-t-14] RadiusListenerWorker - RESPONSE:
Packet type: Access-Challenge
Identifier: 15
Authenticator: {C8 F1 AF 45 2B 98 80 D2 C5 A5 DE 14 DD 73 3B C7}
Attributes:
Message-Authenticator={00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00}
Digest-Qop=auth
Digest-Algorithm=MD5
Digest-Realm=bgbilling.ru
Digest-Nonce=3953bdf3a82a3a81

03-19/14:22:13 INFO [radiusListener-p-3-t-15] RadiusListenerWorker - REQUEST:
Packet type: Access-Request
Identifier: 16
Authenticator: {DC FA 2C 66 72 CF 47 6D 14 5F 51 F4 58 8D F3 16}
Attributes:
User-Name=888
Digest-Response=cbef78503d38fd342ddcf64d5c2c41a4
NAS-IP-Address=192.168.50.14
NAS-Port=58555
Service-Type=1
Framed-Protocol=2
Digest-Qop=auth
Digest-Algorithm=MD5
Digest-Method=INVITE
Digest-URI=sip:580000@192.168.50.14:5060
Digest-Realm=bgbilling.ru
Digest-Nonce=3953bdf3a82a3a81
Digest-Username=888
Message-Authenticator={55 F9 72 3E 45 DC 05 EC DE D6 63 C4 9F 19 99 5F}
Digest-Nonce-Count=00000001
Digest-CNonce=c5d3bca659e54133f1fd4c0a479ef7dd
SIP-AOR=sip:888@192.168.50.14
NAS-Port-Type=0
Calling-Station-Id=888
Called-Station-Id=580000
h323-gw-id=192.168.50.14
h323-conf-id=110001ea|4f66ecbc

03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] RadiusProcessor - Create new radius session.
03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] VoiceIpRadiusProcessor - Process outgoing auth Packet type: Access-Request
Identifier: 16
Authenticator: {DC FA 2C 66 72 CF 47 6D 14 5F 51 F4 58 8D F3 16}
Attributes:
User-Name=888
Digest-Response=cbef78503d38fd342ddcf64d5c2c41a4
NAS-IP-Address=192.168.50.14
NAS-Port=58555
Service-Type=1
Framed-Protocol=2
Digest-Qop=auth
Digest-Algorithm=MD5
Digest-Method=INVITE
Digest-URI=sip:580000@192.168.50.14:5060
Digest-Realm=bgbilling.ru
Digest-Nonce=3953bdf3a82a3a81
Digest-Username=888
Message-Authenticator={55 F9 72 3E 45 DC 05 EC DE D6 63 C4 9F 19 99 5F}
Digest-Nonce-Count=00000001
Digest-CNonce=c5d3bca659e54133f1fd4c0a479ef7dd
SIP-AOR=sip:888@192.168.50.14
NAS-Port-Type=0
Calling-Station-Id=888
Called-Station-Id=580000
h323-gw-id=192.168.50.14
h323-conf-id=110001ea|4f66ecbc

03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] AbstractRadiusProcessor - Finding login..
03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] VoiceIpRadiusProcessor - Found login type 2
03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] AbstractRadiusProcessor - Login found: 1137
03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] AbstractRadiusProcessor - Checking access allow...
03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] AbstractRadiusProcessor - Checking password...
03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] RadiusUtils - try checkDigestMD5Password
03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] RadiusUtils - digestAttributes=null
03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] RadiusUtils - digestResponse=null
03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] RadiusUtils - user =null realm =null nonce = null method = null uri = null
03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] RadiusUtils - try all in one string
03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] RadiusUtils - digestAttribute=null
03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] AbstractRadiusProcessor - Checking contract status
03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] AbstractRadiusProcessor - Checking balance...
03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] VoiceIpRadiusProcessor - Checking tariff...
03-19/14:22:13 INFO [radiusListener-p-3-t-15] RadiusListenerWorker - RESPONSE:
Packet type: Access-Accept
Identifier: 16
Authenticator: {17 1F 96 00 7F 5F F0 DC 28 37 86 6D 19 10 81 6E}
Attributes:
Message-Authenticator={00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00}
Digest-Response-Auth=1da9f261cb3f7e6f41783ca4c3547622
h323-credit-time=7200
cisco-avpair=schema=1
h323-return-code=0
h323-credit-amount=-3597.55

Process time auth: 50

03-19/14:22:13 INFO [radiusListener-p-3-t-16] RadiusListenerWorker - REQUEST:
Packet type: Access-Request
Identifier: 41
Authenticator: {40 2F 36 E8 52 D5 24 9D C1 FD 3D 0A 92 A3 61 F3}
Attributes:
User-Name=888
User-Password=G!HZu��'ņ��ۻ
NAS-IP-Address=192.168.50.14
NAS-Port=285213162
Acct-Session-Id=110001ea|4f66ecbc
NAS-Port-Type=0
Calling-Station-Id=888
cisco-avpair=xpgk-request-type=number
cisco-avpair=xpgk-src-number-in=888
cisco-avpair=h323-gw-address=192.168.50.14
h323-gw-id=192.168.50.14
h323-conf-id=110001ea|4f66ecbc

03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] RadiusProcessor - Create new radius session.
03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] VoiceIpRadiusProcessor - Process outgoing auth Packet type: Access-Request
Identifier: 41
Authenticator: {40 2F 36 E8 52 D5 24 9D C1 FD 3D 0A 92 A3 61 F3}
Attributes:
User-Name=888
User-Password=G!HZu��'ņ��ۻ
NAS-IP-Address=192.168.50.14
NAS-Port=285213162
Acct-Session-Id=110001ea|4f66ecbc
NAS-Port-Type=0
Calling-Station-Id=888
cisco-avpair=xpgk-request-type=number
cisco-avpair=xpgk-src-number-in=888
cisco-avpair=h323-gw-address=192.168.50.14
h323-gw-id=192.168.50.14
h323-conf-id=110001ea|4f66ecbc

03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Finding login..
03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] VoiceIpRadiusProcessor - Found login type 2
03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Login found: 1137
03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Checking access allow...
03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Checking password...
03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] RadiusUtils - try checkDigestMD5Password
03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] RadiusUtils - digestAttributes=null
03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] RadiusUtils - digestResponse=null
03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] RadiusUtils - user =null realm =null nonce = null method = null uri = null
03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] RadiusUtils - try all in one string
03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] RadiusUtils - digestAttribute=null
03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Login password error
03-19/14:22:13 INFO [radiusListener-p-3-t-17] RadiusListenerWorker - REQUEST:
Packet type: Access-Request
Identifier: 42
Authenticator: {30 AB 74 D5 FA BD 0E B6 0B FE 38 E2 49 D4 B5 90}
Attributes:
User-Name=888
User-Password=k�!r��
AS-IP-Address=192.168.50.14
NAS-Port=285213162
Acct-Session-Id=110001ea|4f66ecbc
NAS-Port-Type=0
Calling-Station-Id=888
Called-Station-Id=580000
cisco-avpair=xpgk-request-type=number
cisco-avpair=xpgk-src-number-in=888
cisco-avpair=xpgk-dst-number-in=580000
cisco-avpair=h323-gw-address=192.168.50.14
h323-gw-id=192.168.50.14
h323-conf-id=110001ea|4f66ecbc

03-19/14:22:13 INFO [radiusListener-p-3-t-16] RadiusListenerWorker - RESPONSE:
Packet type: Access-Reject
Identifier: 41
Authenticator: {08 4E A9 5B B2 C0 C6 FC 1D 79 27 FF 4A 7F 3A A7}
Attributes:
Reply-Message=2
h323-return-code=2

Process time auth: 23

03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] RadiusProcessor - Create new radius session.
03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] VoiceIpRadiusProcessor - Process outgoing auth Packet type: Access-Request
Identifier: 42
Authenticator: {30 AB 74 D5 FA BD 0E B6 0B FE 38 E2 49 D4 B5 90}
Attributes:
User-Name=888
User-Password=k�!r��
AS-IP-Address=192.168.50.14
NAS-Port=285213162
Acct-Session-Id=110001ea|4f66ecbc
NAS-Port-Type=0
Calling-Station-Id=888
Called-Station-Id=580000
cisco-avpair=xpgk-request-type=number
cisco-avpair=xpgk-src-number-in=888
cisco-avpair=xpgk-dst-number-in=580000
cisco-avpair=h323-gw-address=192.168.50.14
h323-gw-id=192.168.50.14
h323-conf-id=110001ea|4f66ecbc

03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] AbstractRadiusProcessor - Finding login..
03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] VoiceIpRadiusProcessor - Found login type 2
03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] AbstractRadiusProcessor - Login found: 1137
03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] AbstractRadiusProcessor - Checking access allow...
03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] AbstractRadiusProcessor - Checking password...
03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] RadiusUtils - try checkDigestMD5Password
03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] RadiusUtils - digestAttributes=null
03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] RadiusUtils - digestResponse=null
03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] RadiusUtils - user =null realm =null nonce = null method = null uri = null
03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] RadiusUtils - try all in one string
03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] RadiusUtils - digestAttribute=null
03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] AbstractRadiusProcessor - Login password error
03-19/14:22:13 INFO [radiusListener-p-3-t-17] RadiusListenerWorker - RESPONSE:
Packet type: Access-Reject
Identifier: 42
Authenticator: {7E 7B 8C 24 6F E5 0A 64 3F DB 07 F2 15 16 25 64}
Attributes:
Reply-Message=2
h323-return-code=2

Process time auth: 23

Автор:	Феанор [ 12 июл 2011, 17:21 ]
Заголовок сообщения:	BGRadiusVoip и rfc 5090
Собственно поддерживается ли сабж? прилетает вот такой запрос Код: 07-12/18:05:23 INFO [radiusListener-p-3-t-4] RadiusListenerWorker - REQUEST: Packet type: Access-Request Identifier: 124 Authenticator: {32 4B 50 53 CD 97 D4 B9 EB 82 B1 42 53 EB 07 50} Attributes: User-Name=2904196 NAS-IP-Address=10.255.0.245 Message-Authenticator={AE CF 5E FC C4 5C 94 A9 9C B7 F7 AA 37 B7 C2 FE} NAS-Port=59994 Service-Type=1 Framed-Protocol=2 Digest-Method=REGISTER Digest-URI=sip:2904196@tel.itax NAS-Port-Type=0 Согласно http://tools.ietf.org/html/rfc5090#section-6 (да и не только примеру, а тому как должен вести себя сервер) далее должен быть ответ с акссесс-челендж, но вместо этого Код: 7-12/18:05:23 DEBUG [radiusListener-p-3-t-4] AbstractRadiusProcessor - Finding login.. 07-12/18:05:23 DEBUG [radiusListener-p-3-t-4] VoiceIpRadiusProcessor - Found login type 1 07-12/18:05:23 DEBUG [radiusListener-p-3-t-4] AbstractRadiusProcessor - Login found: 1 07-12/18:05:23 DEBUG [radiusListener-p-3-t-4] AbstractRadiusProcessor - Checking access allow... 07-12/18:05:23 DEBUG [radiusListener-p-3-t-4] AbstractRadiusProcessor - Checking password... 07-12/18:05:23 DEBUG [radiusListener-p-3-t-4] RadiusUtils - try checkDigestMD5Password 07-12/18:05:23 DEBUG [radiusListener-p-3-t-4] RadiusUtils - digestAttributes=null 07-12/18:05:23 DEBUG [radiusListener-p-3-t-4] RadiusUtils - digestResponse(test)=null 07-12/18:05:23 DEBUG [radiusListener-p-3-t-4] RadiusUtils - user =null realm =null nonce = null method = null uri = null 07-12/18:05:23 DEBUG [radiusListener-p-3-t-4] RadiusUtils - try all in one string 07-12/18:05:23 DEBUG [radiusListener-p-3-t-4] RadiusUtils - digestAttribute=null 07-12/18:05:23 DEBUG [radiusListener-p-3-t-4] AbstractRadiusProcessor - Login password error 07-12/18:05:23 INFO [radiusListener-p-3-t-4] RadiusListenerWorker - RESPONSE: Packet type: Access-Reject Identifier: 124 Authenticator: {5C DE 7A 38 EB E9 2F A0 A0 CC 56 CB 63 59 26 9F} Attributes: Reply-Message=2 Message-Authenticator={00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00} h323-return-code=2 Вроде на форуме кто-то писал что digest авторизация работает, но работает ли такая авторизация - по rfc5090? Или может как то можно победить, допустим скриптом предобработки?

Автор:	Amir [ 12 июл 2011, 17:29 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
А там что, только эти два атрибута? Цитата: Digest-Method=REGISTER Digest-URI=sip:2904196@tel.itax Вроде бы поддерживается, когда сразу приходит Digest-Response.

Автор:	Феанор [ 12 июл 2011, 17:36 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
Amir писал(а): А там что, только эти два атрибута? Цитата: Digest-Method=REGISTER Digest-URI=sip:2904196@tel.itax Да Цитата: 2.2. RADIUS Server Behavior If the RADIUS server receives an Access-Request packet with a Digest-Method and a Digest-URI Attribute but without a Digest-Nonce Attribute, it chooses a nonce. It puts the nonce into a Digest-Nonce Attribute and sends it in an Access-Challenge packet to the RADIUS client. The RADIUS server MUST add Digest-Realm, Message- Authenticator (see [RFC3579]), SHOULD add Digest-Algorithm and one or more Digest-Qop, and MAY add Digest-Domain or Digest-Opaque attributes to the Access-Challenge packet. если прилетели только метод и юри, то генерируй нонс, добавляй реалм, аутентификатор и отправляй аксесс-челендж запрос: получили запрос с методом и юри отправили запрос получили digest-nonce отправили ответ

Автор:	Феанор [ 12 июл 2011, 17:57 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
Amir писал(а): Вроде бы поддерживается, когда сразу приходит Digest-Response. респонс же вычисляется на основании нонса полученного от радиуса в digest-nonce или digest-nextnonce

Автор:	Феанор [ 14 июл 2011, 13:41 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
поставим вопрос другим ребром - возможна ли доработка радиуса для поддержки http://tools.ietf.org/html/rfc5090

forum.bitel.ru http://forum.bitel.ru/

BGRadiusVoip и rfc 5090 http://forum.bitel.ru/viewtopic.php?f=6&t=5694	Страница 1 из 2

Автор:	Феанор [ 19 июл 2011, 09:51 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
Феанор писал(а): поставим вопрос другим ребром - возможна ли доработка радиуса для поддержки http://tools.ietf.org/html/rfc5090 ап

Автор:	Phricker [ 19 июл 2011, 11:16 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
Ответ админов Доработки обсуждаются через HelpDesk

Автор:	mikos [ 13 дек 2011, 18:08 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
Упс, тот же вопрос RFC 5090 поддерживается или все таки нет? viewtopic.php?f=6&t=6218

Автор:	mikos [ 15 дек 2011, 11:51 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
up Что-то сдвинулось с лета? Какие прогнозы? Хотелось бы услышать комментарии разработчиков. На данный момент нет возможности использовать нормальные железки с вашим радиусом. Обидно. А еще обидней, что все молчат как рыбы.

Автор:	Amir [ 15 дек 2011, 13:37 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
Попробуйте последний билд радиуса 5.1. Не забудьте сделать бекап старой voiceip.jar В конфигурации: Код: radius.digest5090.qop= radius.digest5090.realm=

Автор:	mikos [ 22 дек 2011, 18:46 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
Что в этих параметрах указывать?

Автор:	Amir [ 22 дек 2011, 20:45 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
То, что будет в ответе насу.

Автор:	mikos [ 27 дек 2011, 14:17 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
Диалог вроде проходит, но пароль все равно не узнает В предобработке ничего нет. x.x.x.x - ip адрес железки Код: 12-27/11:09:49 INFO [radiusListener-p-3-t-1] RadiusListenerWorker - REQUEST: Packet type: Access-Request Identifier: 228 Authenticator: {B5 CD 5A A8 D2 FA A2 A1 CC 3F 03 AE 34 08 1B AF} Attributes: User-Name=999 NAS-IP-Address=x.x.x.x Message-Authenticator={A7 95 77 1A D5 01 60 CF 4C 1F 31 2C 6C 9C AE 6A} NAS-Port=49167 Service-Type=1 Framed-Protocol=2 Digest-Method=REGISTER Digest-URI=sip:999@x.x.x.x NAS-Port-Type=0 12-27/11:09:49 DEBUG [radiusListener-p-3-t-1] RadiusProcessor - Create new radius session. 12-27/11:09:49 INFO [radiusListener-p-3-t-1] RadiusListenerWorker - RESPONSE: Packet type: Access-Challenge Identifier: 228 Authenticator: {73 FC B6 68 1E 78 E1 95 E6 07 13 85 CA 3E 3C 02} Attributes: Message-Authenticator={00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00} Digest-Qop=auth Digest-Algorithm=MD5 Digest-Realm=x.x.x.x Digest-Nonce=9503bd1c969ce115 12-27/11:09:49 INFO [radiusListener-p-3-t-2] RadiusListenerWorker - REQUEST: Packet type: Access-Request Identifier: 229 Authenticator: {39 5A 5C B1 AE 74 2C 9E 92 12 5D 8E A3 B8 B7 C1} Attributes: User-Name=999 Digest-Response=f8c40082d118a38a54a14b3feef02316 NAS-IP-Address=x.x.x.x NAS-Port=49167 Service-Type=1 Framed-Protocol=2 Digest-Qop=auth Digest-Algorithm=MD5 Digest-Method=REGISTER Digest-URI=sip:x.x.x.x Digest-Realm=x.x.x.x Digest-Nonce=9503bd1c969ce115 Digest-Username=999 Message-Authenticator={EC 5B 22 B7 A8 10 96 1E 88 44 4E 00 3E E0 01 0F} Digest-Nonce-Count=00000001 Digest-CNonce=rVto.MD2pD1Um6Qo1UnUW1yT1hqLKS2t SIP-AOR=sip:999@x.x.x.x NAS-Port-Type=0 12-27/11:09:49 DEBUG [radiusListener-p-3-t-2] RadiusProcessor - Create new radius session. 12-27/11:09:49 DEBUG [radiusListener-p-3-t-2] VoiceIpRadiusProcessor - Process outgoing auth Packet type: Access-Request Identifier: 229 Authenticator: {39 5A 5C B1 AE 74 2C 9E 92 12 5D 8E A3 B8 B7 C1} Attributes: User-Name=999 Digest-Response=f8c40082d118a38a54a14b3feef02316 NAS-IP-Address=x.x.x.x NAS-Port=49167 Service-Type=1 Framed-Protocol=2 Digest-Qop=auth Digest-Algorithm=MD5 Digest-Method=REGISTER Digest-URI=sip:x.x.x.x Digest-Realm=x.x.x.x Digest-Nonce=9503bd1c969ce115 Digest-Username=999 Message-Authenticator={EC 5B 22 B7 A8 10 96 1E 88 44 4E 00 3E E0 01 0F} Digest-Nonce-Count=00000001 Digest-CNonce=rVto.MD2pD1Um6Qo1UnUW1yT1hqLKS2t SIP-AOR=sip:999@x.x.x.x NAS-Port-Type=0 12-27/11:09:49 DEBUG [radiusListener-p-3-t-2] AbstractRadiusProcessor - Finding login.. 12-27/11:09:49 DEBUG [radiusListener-p-3-t-2] VoiceIpRadiusProcessor - Found login type 3 12-27/11:09:49 DEBUG [radiusListener-p-3-t-2] AbstractRadiusProcessor - Login found: 7 12-27/11:09:49 DEBUG [radiusListener-p-3-t-2] AbstractRadiusProcessor - Checking access allow... 12-27/11:09:49 DEBUG [radiusListener-p-3-t-2] AbstractRadiusProcessor - Checking password... 12-27/11:09:49 DEBUG [radiusListener-p-3-t-2] RadiusUtils - try checkDigestMD5Password 12-27/11:09:49 DEBUG [radiusListener-p-3-t-2] RadiusUtils - digestAttributes=null 12-27/11:09:49 DEBUG [radiusListener-p-3-t-2] RadiusUtils - digestResponse=null 12-27/11:09:49 DEBUG [radiusListener-p-3-t-2] RadiusUtils - user =null realm =null nonce = null method = null uri = null 12-27/11:09:49 DEBUG [radiusListener-p-3-t-2] RadiusUtils - try all in one string 12-27/11:09:49 DEBUG [radiusListener-p-3-t-2] RadiusUtils - digestAttribute=null 12-27/11:09:49 DEBUG [radiusListener-p-3-t-2] AbstractRadiusProcessor - Login password error 12-27/11:09:49 INFO [radiusListener-p-3-t-2] RadiusListenerWorker - RESPONSE: Packet type: Access-Reject Identifier: 229 Authenticator: {C6 2D 0F BE A2 1C AF 91 CD AF AB F4 4C 8E 3A D0} Attributes: Reply-Message=2 Message-Authenticator={00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00} h323-return-code=2 Process time auth: 53

Автор:	mikos [ 08 фев 2012, 21:09 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
Предобработка нужна для Digest аутентификации RFC 5090?

Автор:	Amir [ 16 мар 2012, 13:53 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
Выложили 184 билд, попробуйте. Вроде бы должно быть нормально. Какая-то путаница была с Digest авторизацией, а протестить полностью не на чем

Автор:	Amir [ 19 мар 2012, 22:35 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
До первого Accept все вроде бы правильно, Digest-Response-Auth совпадает с rfc. А почему NAS сразу начинает слать еще один запрос, где пароль передается в поле User-Password - не понятно. По следующим запросам RADIUS шлет Reject, т.к. считает что пароль неверный - либо действительно пароль неверный, либо RADIUS секрет не совпадает с тем что в биллинге.

Автор:	Магнитка.RU [ 20 мар 2012, 11:21 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
Оказывается наша станция пыталась еще по RFC 2895 отрабатывать по некому событию "конец набора номера". Нашел в настройках эту опцию и отключил. Сейчас все работает (билд 185). Спасибо за оперативную помощь.

Страница 1 из 2	Часовой пояс: UTC + 5 часов [ Летнее время ]
Powered by phpBB® Forum Software © phpBB Group http://www.phpbb.com/

Автор:	Магнитка.RU [ 14 мар 2012, 13:22 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
Та же самая проблема... Цитата: 03-14/13:12:25 DEBUG [radiusListener-p-3-t-2] VoiceIpRadiusProcessor - Process outgoing auth Packet type: Access-Request Identifier: 80 Authenticator: {1F 35 05 57 BC E5 E0 E0 EA 58 72 8E 68 7C 66 81} Attributes: User-Name=888 Digest-Response=bb16baf0d4bd5dcfbf5dac03613cb628 NAS-IP-Address=192.168.50.14 NAS-Port=62096 Service-Type=1 Framed-Protocol=2 Digest-Qop=auth Digest-Algorithm=MD5 Digest-Method=REGISTER Digest-URI=sip:192.168.50.14:5060 Digest-Realm=192.168.50.14 Digest-Nonce=5b90ed885ed5931d9256cb826c97e1f9 Digest-Username=888 Message-Authenticator={03 A4 7E 9C 5B 35 75 A8 39 54 95 76 BC 2E 98 14} Digest-Nonce-Count=00000001 Digest-CNonce=f66196da025f04941779f51558c1c20e SIP-AOR=sip:888@192.168.50.14 NAS-Port-Type=0 03-14/13:12:25 DEBUG [radiusListener-p-3-t-2] AbstractRadiusProcessor - Finding login.. 03-14/13:12:25 DEBUG [radiusListener-p-3-t-2] VoiceIpRadiusProcessor - Found login type 2 03-14/13:12:25 DEBUG [radiusListener-p-3-t-2] AbstractRadiusProcessor - Login found: 1137 03-14/13:12:25 DEBUG [radiusListener-p-3-t-2] AbstractRadiusProcessor - Checking access allow... 03-14/13:12:25 DEBUG [radiusListener-p-3-t-2] AbstractRadiusProcessor - Checking password... 03-14/13:12:25 DEBUG [radiusListener-p-3-t-2] RadiusUtils - try checkDigestMD5Password 03-14/13:12:25 DEBUG [radiusListener-p-3-t-2] RadiusUtils - digestAttributes=null 03-14/13:12:25 DEBUG [radiusListener-p-3-t-2] RadiusUtils - digestResponse=null 03-14/13:12:25 DEBUG [radiusListener-p-3-t-2] RadiusUtils - user =null realm =null nonce = null method = null uri = null 03-14/13:12:25 DEBUG [radiusListener-p-3-t-2] RadiusUtils - try all in one string 03-14/13:12:25 DEBUG [radiusListener-p-3-t-2] RadiusUtils - digestAttribute=null 03-14/13:12:25 DEBUG [radiusListener-p-3-t-2] AbstractRadiusProcessor - Login password error 03-14/13:12:25 INFO [radiusListener-p-3-t-2] RadiusListenerWorker - RESPONSE: Packet type: Access-Reject Identifier: 80 Authenticator: {B0 4C 43 2C 87 BC 9E 8D FB 6C 1E 49 1C 0B B7 AD} Attributes: Reply-Message=2 Message-Authenticator={00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00} h323-return-code=2 В скрипте предобработки пробовали пересчитывать Digest-Response в соответствии с вариантами http://en.wikipedia.org/wiki/Digest_acc ... entication биллинг реагирует совершенно одинаково!!!

Автор:	Amir [ 14 мар 2012, 15:23 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
5.1? Выложили обновление радиуса voiceip, попробуйте. Не забудьте сделать бекап старой voiceip.jar.

Автор:	Магнитка.RU [ 15 мар 2012, 13:20 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
Ничего не изменилось.

Автор:	Amir [ 15 мар 2012, 13:41 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
Можете выложить полный radius лог авторизации и какой пароль используется при этой авторизации?

Автор:	Магнитка.RU [ 15 мар 2012, 14:51 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
Что значит "полный лог"? В файле radius.log (при включенном в log4j-radius.xml режиме DEBUG) появляется только вот это: Цитата: 03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] RadiusProcessor - Create new radius session. 03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] VoiceIpRadiusProcessor - Process outgoing auth Packet type: Access-Request Identifier: 78 Authenticator: {BB 08 59 13 CD C6 C4 E0 4C 24 B9 FA E3 3A C4 34} Attributes: User-Name=888 Digest-Response=7feee567aec030a90215b47eb2abde47 NAS-IP-Address=192.168.50.14 NAS-Port=52776 Service-Type=1 Framed-Protocol=2 Digest-Qop=auth Digest-Algorithm=MD5 Digest-Method=REGISTER Digest-URI=sip:192.168.50.14:5060 Digest-Realm=192.168.50.14 Digest-Nonce=c0d41ee113649c90a96eacaea3f07a4c Digest-Username=888 Message-Authenticator={B9 E5 56 DB 39 6C 3C 85 E9 03 48 46 1A CA E4 20} Digest-Nonce-Count=00000001 Digest-CNonce=43490e8fab3f38499c5ff88cf1d3aa02 SIP-AOR=sip:888@192.168.50.14 NAS-Port-Type=0 03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Finding login.. 03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] VoiceIpRadiusProcessor - Found login type 2 03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Login found: 1137 03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Checking access allow... 03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Checking password... 03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] RadiusUtils - try checkDigestMD5Password 03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] RadiusUtils - digestAttributes=null 03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] RadiusUtils - digestResponse=null 03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] RadiusUtils - user =null realm =null nonce = null method = null uri = null 03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] RadiusUtils - try all in one string 03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] RadiusUtils - digestAttribute=null 03-15/14:33:44 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Login password error 03-15/14:33:44 INFO [radiusListener-p-3-t-16] RadiusListenerWorker - RESPONSE: Packet type: Access-Reject Identifier: 78 Authenticator: {D9 6C 7D 4B FD CA E4 57 28 E0 B2 D9 C4 DB D3 F9} Attributes: Reply-Message=2 Message-Authenticator={00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00} h323-return-code=2 Process time auth: 34 Пароль для логина 888: a9564ebc3289b7a24552baf8ad5ec60a В пакете содержится "Digest-Qop=auth", согласно RFC-2617 (вот тут wiki со сводной инфой по разным RFC) расчет "Digest-Response" необходимо вести следующим образом: HA1=MD5(username:realm:password) HA2=MD5(method:digestURI) responce=MD5(HA1:nonce:nonceCount:clientNonce:qop:HA2) Наша станция присылает правильно. Вот простенький скрипт для проверки вышеуказанного пакета: Код: #!/bin/sh v_username='888' v_realm='192.168.50.14' v_password='a9564ebc3289b7a24552baf8ad5ec60a' v_method='REGISTER' v_digest_uri='sip:192.168.50.14:5060' v_nonce='c0d41ee113649c90a96eacaea3f07a4c' v_nonce_cnt='00000001' v_client_nonce='43490e8fab3f38499c5ff88cf1d3aa02' ha1=`echo -n "$v_username:$v_realm:$v_password" \| md5sum \| cut -d ' ' -f 1` echo "HA1=$ha1" ha2=`echo -n "$v_method:$v_digest_uri" \| md5sum \| cut -d ' ' -f 1` echo "HA2=$ha2" resp1=`echo -n "$ha1:$v_nonce:$ha2" \| md5sum \| cut -d ' ' -f 1` echo "RESP1=$resp1" resp2=`echo -n "$ha1:$v_nonce:$v_nonce_cnt:$v_client_nonce:auth:$ha2" \| md5sum \| cut -d ' ' -f 1` echo "RESP2=$resp2" Результат работы скрипта: Цитата: HA1=8314936349bcdf4429bf05299473598b HA2=a70b9cf5a8762980db46482b776dfd0c RESP1=0cd8e5bd682cf54d18fc07a236628118 RESP2=7feee567aec030a90215b47eb2abde47 Нас интересует RESP2 и он совпадает с переданным "Digest-Response". RESP1 расчитано для пакета по RFC-2069 (при отсутсвии "Digest-Qop=auth"). В скрипте предобработки радиус-пакета пробовали заменить "Digest-Response" значением, рассчитанным как RESP1. Биллинг одинаково реагирует на все ситуации...

Автор:	Amir [ 15 мар 2012, 15:49 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
Выложили обновление, попробуйте. На это не обращайте внимания, это логи другого типа аутентификации http://tools.ietf.org/html/draft-sterman-aaa-sip-01: Цитата: 12-27/11:09:49 DEBUG [radiusListener-p-3-t-2] RadiusUtils - try checkDigestMD5Password 12-27/11:09:49 DEBUG [radiusListener-p-3-t-2] RadiusUtils - digestAttributes=null 12-27/11:09:49 DEBUG [radiusListener-p-3-t-2] RadiusUtils - digestResponse=null 12-27/11:09:49 DEBUG [radiusListener-p-3-t-2] RadiusUtils - user =null realm =null nonce = null method = null uri = null 12-27/11:09:49 DEBUG [radiusListener-p-3-t-2] RadiusUtils - try all in one string 12-27/11:09:49 DEBUG [radiusListener-p-3-t-2] RadiusUtils - digestAttribute=null

Автор:	Магнитка.RU [ 15 мар 2012, 17:13 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
Авторизация прошла упешно! Но станция посылает на авторизацию пакет INVITE и вот тут снова проблемы. Станция считает что попытка звонка Radius-ом не авторизована. В логах вот что: Цитата: 03-15/16:37:43 INFO [radiusListener-p-3-t-2] RadiusListenerWorker - REQUEST: Packet type: Access-Request Identifier: 220 Authenticator: {2C 00 06 3D 5E A5 F5 1F 64 EF DA B8 2C 75 6C 6E} Attributes: User-Name=888 NAS-IP-Address=192.168.50.14 Message-Authenticator={25 D7 B6 1C A7 AA 7D 48 2D 4C A7 43 AE 98 75 AC} NAS-Port=56328 Service-Type=1 Framed-Protocol=2 Digest-Method=INVITE Digest-URI=sip:888@192.168.50.14 Calling-Station-Id=888 NAS-Port-Type=0 Called-Station-Id=580000 h323-gw-id=192.168.50.14 h323-conf-id=110001c1\|4f61c692 03-15/16:37:43 DEBUG [radiusListener-p-3-t-2] RadiusProcessor - Create new radius session. 03-15/16:37:43 INFO [radiusListener-p-3-t-2] RadiusListenerWorker - RESPONSE: Packet type: Access-Challenge Identifier: 220 Authenticator: {1F 7C 79 48 2E 9C EB 85 50 90 27 A1 83 5D 9B F3} Attributes: Message-Authenticator={00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00} Digest-Qop=auth Digest-Algorithm=MD5 Digest-Realm=bgbilling.ru Digest-Nonce=1e85ce6981bc68da 03-15/16:37:43 INFO [radiusListener-p-3-t-3] RadiusListenerWorker - REQUEST: Packet type: Access-Request Identifier: 221 Authenticator: {56 DD 30 A7 3D CA 73 8C 79 20 C8 47 B6 8D FB C2} Attributes: User-Name=888 Digest-Response=dfff713625d7a097da7c926800e40b51 NAS-IP-Address=192.168.50.14 NAS-Port=56328 Service-Type=1 Framed-Protocol=2 Digest-Qop=auth Digest-Algorithm=MD5 Digest-Method=INVITE Digest-URI=sip:580000@192.168.50.14:5060 Digest-Realm=bgbilling.ru Digest-Nonce=1e85ce6981bc68da Digest-Username=888 Message-Authenticator={CE 43 57 8A 7B E3 78 B7 9B 32 FF DF 86 79 9B 28} Digest-Nonce-Count=00000001 Digest-CNonce=0d9eb779906caa7688aa443c2aed7efa SIP-AOR=sip:888@192.168.50.14 NAS-Port-Type=0 Calling-Station-Id=888 Called-Station-Id=580000 h323-gw-id=192.168.50.14 h323-conf-id=110001c2\|4f61c693 03-15/16:37:43 DEBUG [radiusListener-p-3-t-3] RadiusProcessor - Create new radius session. 03-15/16:37:43 DEBUG [radiusListener-p-3-t-3] VoiceIpRadiusProcessor - Process outgoing auth Packet type: Access-Request Identifier: 221 Authenticator: {56 DD 30 A7 3D CA 73 8C 79 20 C8 47 B6 8D FB C2} Attributes: User-Name=888 Digest-Response=dfff713625d7a097da7c926800e40b51 NAS-IP-Address=192.168.50.14 NAS-Port=56328 Service-Type=1 Framed-Protocol=2 Digest-Qop=auth Digest-Algorithm=MD5 Digest-Method=INVITE Digest-URI=sip:580000@192.168.50.14:5060 Digest-Realm=bgbilling.ru Digest-Nonce=1e85ce6981bc68da Digest-Username=888 Message-Authenticator={CE 43 57 8A 7B E3 78 B7 9B 32 FF DF 86 79 9B 28} Digest-Nonce-Count=00000001 Digest-CNonce=0d9eb779906caa7688aa443c2aed7efa SIP-AOR=sip:888@192.168.50.14 NAS-Port-Type=0 Calling-Station-Id=888 Called-Station-Id=580000 h323-gw-id=192.168.50.14 h323-conf-id=110001c2\|4f61c693 Packet type: Access-Accept Identifier: 221 Authenticator: {A0 4C 31 AD 1A DA EB 06 43 95 3F 05 B9 7A 22 20} Attributes: Message-Authenticator={00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00} Digest-Response-Auth=��[Y�� �~�\ h323-credit-time=7200 cisco-avpair=schema=1 h323-return-code=0 h323-credit-amount=-3597.55 Process time auth: 50 03-15/16:37:43 INFO [radiusListener-p-3-t-4] RadiusListenerWorker - REQUEST: Packet type: Access-Request Identifier: 15 Authenticator: {7A B1 17 BF 65 26 DD 33 E8 BF AA 4B A7 1B 24 F6} Attributes: User-Name=888 User-Password=�],{�<�ũ�X��m NAS-IP-Address=192.168.50.14 NAS-Port=285213122 Acct-Session-Id=110001c2\|4f61c693 NAS-Port-Type=0 Calling-Station-Id=888 cisco-avpair=xpgk-request-type=number cisco-avpair=xpgk-src-number-in=888 cisco-avpair=h323-gw-address=192.168.50.14 h323-gw-id=192.168.50.14 h323-conf-id=110001c2\|4f61c693 03-15/16:37:43 DEBUG [radiusListener-p-3-t-4] RadiusProcessor - Create new radius session. 03-15/16:37:43 DEBUG [radiusListener-p-3-t-4] VoiceIpRadiusProcessor - Process outgoing auth Packet type: Access-Request Identifier: 15 Authenticator: {7A B1 17 BF 65 26 DD 33 E8 BF AA 4B A7 1B 24 F6} Attributes: User-Name=888 User-Password=�],{�<�ũ�X��m NAS-IP-Address=192.168.50.14 NAS-Port=285213122 Acct-Session-Id=110001c2\|4f61c693 NAS-Port-Type=0 Calling-Station-Id=888 cisco-avpair=xpgk-request-type=number cisco-avpair=xpgk-src-number-in=888 cisco-avpair=h323-gw-address=192.168.50.14 h323-gw-id=192.168.50.14 h323-conf-id=110001c2\|4f61c693 Packet type: Access-Reject Identifier: 15 Authenticator: {54 01 15 E5 0A 6E 75 A0 E5 31 9B AF 76 59 83 FF} Attributes: Reply-Message=2 h323-return-code=2 Process time auth: 24 Там явно виден Accept, но станцию что-то не устраивает в этом пакете... Следом приходит пакет без digest и получем Reject ("Неверный пароль логина"). Я отправил дамп тех. поддержке по АТС. По результатам отпишусь.

Автор:	Amir [ 15 мар 2012, 17:25 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
Выложили 181 билд. Digest-Response-Auth=��[Y�� ~�\ не правильный похоже возвращался.

Автор:	Магнитка.RU [ 16 мар 2012, 09:14 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
Похоже не получилось исправить... Станция не принимает Accept по каким-то причинам. Цитата: 03-16/09:06:49 DEBUG [radiusListener-p-4-t-36] VoiceIpRadiusProcessor - Saved connection not found 03-16/09:06:49 DEBUG [radiusListener-p-4-t-36] VoiceIpRadiusProcessor - Found login type 1 03-16/09:06:49 DEBUG [radiusListener-p-4-t-36] VoiceIpRadiusProcessor - Login found. 03-16/09:06:52 INFO [radiusListener-p-3-t-13] RadiusListenerWorker - REQUEST: Packet type: Access-Request Identifier: 3 Authenticator: {31 A0 C6 46 C1 45 6F 70 58 7C 12 F9 9C 27 55 2B} Attributes: User-Name=888 NAS-IP-Address=192.168.50.14 Message-Authenticator={AB 4D 1B D0 B1 77 F3 A8 B0 0C 0C ED 30 B0 A2 07} NAS-Port=57790 Service-Type=1 Framed-Protocol=2 Digest-Method=INVITE Digest-URI=sip:888@192.168.50.14 Calling-Station-Id=888 NAS-Port-Type=0 Called-Station-Id=580000 h323-gw-id=192.168.50.14 h323-conf-id=110001df\|4f62ae6a 03-16/09:06:52 DEBUG [radiusListener-p-3-t-13] RadiusProcessor - Create new radius session. 03-16/09:06:52 INFO [radiusListener-p-3-t-13] RadiusListenerWorker - RESPONSE: Packet type: Access-Challenge Identifier: 3 Authenticator: {0E C9 4E A3 C4 DE F1 BB F2 4C 2E 88 82 5E 96 0C} Attributes: Message-Authenticator={00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00} Digest-Qop=auth Digest-Algorithm=MD5 Digest-Realm=bgbilling.ru Digest-Nonce=ad7fbcd2b6e5a626 03-16/09:06:52 INFO [radiusListener-p-3-t-14] RadiusListenerWorker - REQUEST: Packet type: Access-Request Identifier: 4 Authenticator: {CC CB 46 84 84 4C DD E6 9B 54 6C 42 F5 32 B5 86} Attributes: User-Name=888 Digest-Response=b90f6d9b77ad0467335b4c1a94ec5da0 NAS-IP-Address=192.168.50.14 NAS-Port=57790 Service-Type=1 Framed-Protocol=2 Digest-Qop=auth Digest-Algorithm=MD5 Digest-Method=INVITE Digest-URI=sip:580000@192.168.50.14:5060 Digest-Realm=bgbilling.ru Digest-Nonce=ad7fbcd2b6e5a626 Digest-Username=888 Message-Authenticator={2D 12 F5 20 43 AF 0A F5 F1 49 A0 0B 64 78 E4 71} Digest-Nonce-Count=00000001 Digest-CNonce=3f9309676852c1d24599334162042354 SIP-AOR=sip:888@192.168.50.14 NAS-Port-Type=0 Calling-Station-Id=888 Called-Station-Id=580000 h323-gw-id=192.168.50.14 h323-conf-id=110001e0\|4f62ae6a 03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] RadiusProcessor - Create new radius session. 03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] VoiceIpRadiusProcessor - Process outgoing auth Packet type: Access-Request Identifier: 4 Authenticator: {CC CB 46 84 84 4C DD E6 9B 54 6C 42 F5 32 B5 86} Attributes: User-Name=888 Digest-Response=b90f6d9b77ad0467335b4c1a94ec5da0 NAS-IP-Address=192.168.50.14 NAS-Port=57790 Service-Type=1 Framed-Protocol=2 Digest-Qop=auth Digest-Algorithm=MD5 Digest-Method=INVITE Digest-URI=sip:580000@192.168.50.14:5060 Digest-Realm=bgbilling.ru Digest-Nonce=ad7fbcd2b6e5a626 Digest-Username=888 Message-Authenticator={2D 12 F5 20 43 AF 0A F5 F1 49 A0 0B 64 78 E4 71} Digest-Nonce-Count=00000001 Digest-CNonce=3f9309676852c1d24599334162042354 SIP-AOR=sip:888@192.168.50.14 NAS-Port-Type=0 Calling-Station-Id=888 Called-Station-Id=580000 h323-gw-id=192.168.50.14 h323-conf-id=110001e0\|4f62ae6a 03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] AbstractRadiusProcessor - Finding login.. 03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] VoiceIpRadiusProcessor - Found login type 2 03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] AbstractRadiusProcessor - Login found: 1137 03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] AbstractRadiusProcessor - Checking access allow... 03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] AbstractRadiusProcessor - Checking password... 03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] RadiusUtils - try checkDigestMD5Password 03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] RadiusUtils - digestAttributes=null 03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] RadiusUtils - digestResponse=null 03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] RadiusUtils - user =null realm =null nonce = null method = null uri = null 03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] RadiusUtils - try all in one string 03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] RadiusUtils - digestAttribute=null 03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] AbstractRadiusProcessor - Checking contract status 03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] AbstractRadiusProcessor - Checking balance... 03-16/09:06:52 DEBUG [radiusListener-p-3-t-14] VoiceIpRadiusProcessor - Checking tariff... 03-16/09:06:52 INFO [radiusListener-p-3-t-14] RadiusListenerWorker - RESPONSE: Packet type: Access-Accept Identifier: 4 Authenticator: {CF 04 A5 56 E8 60 8E 14 93 D6 30 DE C4 BB 85 99} Attributes: Message-Authenticator={00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00} Digest-Response-Auth=3b43cd346161927ca73b7b5c7c1cab45 h323-credit-time=7200 cisco-avpair=schema=1 h323-return-code=0 h323-credit-amount=-3597.55 Process time auth: 74 03-16/09:06:52 INFO [radiusListener-p-3-t-15] RadiusListenerWorker - REQUEST: Packet type: Access-Request Identifier: 33 Authenticator: {EB 99 19 3A F7 05 96 FD 62 F2 C8 CC 20 7A C2 3E} Attributes: User-Name=888 User-Password=�c NAS-IP-Address=192.168.50.14 NAS-Port=285213152 Acct-Session-Id=110001e0\|4f62ae6a NAS-Port-Type=0 Calling-Station-Id=888 cisco-avpair=xpgk-request-type=number cisco-avpair=xpgk-src-number-in=888 cisco-avpair=h323-gw-address=192.168.50.14 h323-gw-id=192.168.50.14 h323-conf-id=110001e0\|4f62ae6a 03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] RadiusProcessor - Create new radius session. 03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] VoiceIpRadiusProcessor - Process outgoing auth Packet type: Access-Request Identifier: 33 Authenticator: {EB 99 19 3A F7 05 96 FD 62 F2 C8 CC 20 7A C2 3E} Attributes: User-Name=888 User-Password=�c NAS-IP-Address=192.168.50.14 NAS-Port=285213152 Acct-Session-Id=110001e0\|4f62ae6a NAS-Port-Type=0 Calling-Station-Id=888 cisco-avpair=xpgk-request-type=number cisco-avpair=xpgk-src-number-in=888 cisco-avpair=h323-gw-address=192.168.50.14 h323-gw-id=192.168.50.14 h323-conf-id=110001e0\|4f62ae6a 03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] AbstractRadiusProcessor - Finding login.. 03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] VoiceIpRadiusProcessor - Found login type 2 03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] AbstractRadiusProcessor - Login found: 1137 03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] AbstractRadiusProcessor - Checking access allow... 03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] AbstractRadiusProcessor - Checking password... 03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] RadiusUtils - try checkDigestMD5Password 03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] RadiusUtils - digestAttributes=null 03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] RadiusUtils - digestResponse=null 03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] RadiusUtils - user =null realm =null nonce = null method = null uri = null 03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] RadiusUtils - try all in one string 03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] RadiusUtils - digestAttribute=null 03-16/09:06:52 DEBUG [radiusListener-p-3-t-15] AbstractRadiusProcessor - Login password error 03-16/09:06:52 INFO [radiusListener-p-3-t-16] RadiusListenerWorker - REQUEST: Packet type: Access-Request Identifier: 34 Authenticator: {CB D6 B3 90 D8 7C 74 3C E5 CB A4 0C FA 1E 0A 1F} Attributes: User-Name=888 User-Password=^\^DMVU�^N^]A�+?I�� NAS-IP-Address=192.168.50.14 NAS-Port=285213152 Acct-Session-Id=110001e0\|4f62ae6a NAS-Port-Type=0 Calling-Station-Id=888 Called-Station-Id=580000 cisco-avpair=xpgk-request-type=number cisco-avpair=xpgk-src-number-in=888 cisco-avpair=xpgk-dst-number-in=580000 cisco-avpair=h323-gw-address=192.168.50.14 h323-gw-id=192.168.50.14 h323-conf-id=110001e0\|4f62ae6a 03-16/09:06:52 INFO [radiusListener-p-3-t-15] RadiusListenerWorker - RESPONSE: Packet type: Access-Reject Identifier: 33 Authenticator: {A9 E0 0C 8D C2 B1 43 A4 4B 67 4A 3A CE E9 68 EC} Attributes: Reply-Message=2 h323-return-code=2 Process time auth: 32 03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] RadiusProcessor - Create new radius session. 03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] VoiceIpRadiusProcessor - Process outgoing auth Packet type: Access-Request Identifier: 34 Authenticator: {CB D6 B3 90 D8 7C 74 3C E5 CB A4 0C FA 1E 0A 1F} Attributes: User-Name=888 User-Password=^\^DMVU�^N^]A�+?I�� NAS-IP-Address=192.168.50.14 NAS-Port=285213152 Acct-Session-Id=110001e0\|4f62ae6a NAS-Port-Type=0 Calling-Station-Id=888 Called-Station-Id=580000 cisco-avpair=xpgk-request-type=number cisco-avpair=xpgk-src-number-in=888 cisco-avpair=xpgk-dst-number-in=580000 cisco-avpair=h323-gw-address=192.168.50.14 h323-gw-id=192.168.50.14 h323-conf-id=110001e0\|4f62ae6a 03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Finding login.. 03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] VoiceIpRadiusProcessor - Found login type 2 03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Login found: 1137 03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Checking access allow... 03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Checking password... 03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] RadiusUtils - try checkDigestMD5Password 03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] RadiusUtils - digestAttributes=null 03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] RadiusUtils - digestResponse=null 03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] RadiusUtils - user =null realm =null nonce = null method = null uri = null 03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] RadiusUtils - try all in one string 03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] RadiusUtils - digestAttribute=null 03-16/09:06:52 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Login password error 03-16/09:06:52 INFO [radiusListener-p-3-t-16] RadiusListenerWorker - RESPONSE: Packet type: Access-Reject Identifier: 34 Authenticator: {AD 11 62 A7 99 81 A5 24 73 AF 04 F7 14 0C F6 7F} Attributes: Reply-Message=2 h323-return-code=2 Process time auth: 32

Автор:	Магнитка.RU [ 19 мар 2012, 09:02 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
Установили на текущий момент 185 билд. Без изменений.

Автор:	Магнитка.RU [ 19 мар 2012, 09:03 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
Чем-то можем помочь в отладке?

Автор:	Amir [ 19 мар 2012, 12:08 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
Выложите пока снова лог radius-пакетов, как сейчас выглядит.

Автор:	Магнитка.RU [ 19 мар 2012, 14:28 ]
Заголовок сообщения:	Re: BGRadiusVoip и rfc 5090
Цитата: 03-19/14:22:13 INFO [radiusListener-p-3-t-14] RadiusListenerWorker - REQUEST: Packet type: Access-Request Identifier: 15 Authenticator: {89 86 91 95 9D D5 F4 7E FF FA E5 44 D9 E2 04 A7} Attributes: User-Name=888 NAS-IP-Address=192.168.50.14 Message-Authenticator={88 A7 55 57 A3 E9 F3 F1 C5 97 80 E6 CF 65 4C 84} NAS-Port=58555 Service-Type=1 Framed-Protocol=2 Digest-Method=INVITE Digest-URI=sip:888@192.168.50.14 Calling-Station-Id=888 NAS-Port-Type=0 Called-Station-Id=580000 h323-gw-id=192.168.50.14 h323-conf-id=110001e9\|4f66ecbc 03-19/14:22:13 DEBUG [radiusListener-p-3-t-14] RadiusProcessor - Create new radius session. 03-19/14:22:13 INFO [radiusListener-p-3-t-14] RadiusListenerWorker - RESPONSE: Packet type: Access-Challenge Identifier: 15 Authenticator: {C8 F1 AF 45 2B 98 80 D2 C5 A5 DE 14 DD 73 3B C7} Attributes: Message-Authenticator={00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00} Digest-Qop=auth Digest-Algorithm=MD5 Digest-Realm=bgbilling.ru Digest-Nonce=3953bdf3a82a3a81 03-19/14:22:13 INFO [radiusListener-p-3-t-15] RadiusListenerWorker - REQUEST: Packet type: Access-Request Identifier: 16 Authenticator: {DC FA 2C 66 72 CF 47 6D 14 5F 51 F4 58 8D F3 16} Attributes: User-Name=888 Digest-Response=cbef78503d38fd342ddcf64d5c2c41a4 NAS-IP-Address=192.168.50.14 NAS-Port=58555 Service-Type=1 Framed-Protocol=2 Digest-Qop=auth Digest-Algorithm=MD5 Digest-Method=INVITE Digest-URI=sip:580000@192.168.50.14:5060 Digest-Realm=bgbilling.ru Digest-Nonce=3953bdf3a82a3a81 Digest-Username=888 Message-Authenticator={55 F9 72 3E 45 DC 05 EC DE D6 63 C4 9F 19 99 5F} Digest-Nonce-Count=00000001 Digest-CNonce=c5d3bca659e54133f1fd4c0a479ef7dd SIP-AOR=sip:888@192.168.50.14 NAS-Port-Type=0 Calling-Station-Id=888 Called-Station-Id=580000 h323-gw-id=192.168.50.14 h323-conf-id=110001ea\|4f66ecbc 03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] RadiusProcessor - Create new radius session. 03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] VoiceIpRadiusProcessor - Process outgoing auth Packet type: Access-Request Identifier: 16 Authenticator: {DC FA 2C 66 72 CF 47 6D 14 5F 51 F4 58 8D F3 16} Attributes: User-Name=888 Digest-Response=cbef78503d38fd342ddcf64d5c2c41a4 NAS-IP-Address=192.168.50.14 NAS-Port=58555 Service-Type=1 Framed-Protocol=2 Digest-Qop=auth Digest-Algorithm=MD5 Digest-Method=INVITE Digest-URI=sip:580000@192.168.50.14:5060 Digest-Realm=bgbilling.ru Digest-Nonce=3953bdf3a82a3a81 Digest-Username=888 Message-Authenticator={55 F9 72 3E 45 DC 05 EC DE D6 63 C4 9F 19 99 5F} Digest-Nonce-Count=00000001 Digest-CNonce=c5d3bca659e54133f1fd4c0a479ef7dd SIP-AOR=sip:888@192.168.50.14 NAS-Port-Type=0 Calling-Station-Id=888 Called-Station-Id=580000 h323-gw-id=192.168.50.14 h323-conf-id=110001ea\|4f66ecbc 03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] AbstractRadiusProcessor - Finding login.. 03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] VoiceIpRadiusProcessor - Found login type 2 03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] AbstractRadiusProcessor - Login found: 1137 03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] AbstractRadiusProcessor - Checking access allow... 03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] AbstractRadiusProcessor - Checking password... 03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] RadiusUtils - try checkDigestMD5Password 03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] RadiusUtils - digestAttributes=null 03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] RadiusUtils - digestResponse=null 03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] RadiusUtils - user =null realm =null nonce = null method = null uri = null 03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] RadiusUtils - try all in one string 03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] RadiusUtils - digestAttribute=null 03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] AbstractRadiusProcessor - Checking contract status 03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] AbstractRadiusProcessor - Checking balance... 03-19/14:22:13 DEBUG [radiusListener-p-3-t-15] VoiceIpRadiusProcessor - Checking tariff... 03-19/14:22:13 INFO [radiusListener-p-3-t-15] RadiusListenerWorker - RESPONSE: Packet type: Access-Accept Identifier: 16 Authenticator: {17 1F 96 00 7F 5F F0 DC 28 37 86 6D 19 10 81 6E} Attributes: Message-Authenticator={00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00} Digest-Response-Auth=1da9f261cb3f7e6f41783ca4c3547622 h323-credit-time=7200 cisco-avpair=schema=1 h323-return-code=0 h323-credit-amount=-3597.55 Process time auth: 50 03-19/14:22:13 INFO [radiusListener-p-3-t-16] RadiusListenerWorker - REQUEST: Packet type: Access-Request Identifier: 41 Authenticator: {40 2F 36 E8 52 D5 24 9D C1 FD 3D 0A 92 A3 61 F3} Attributes: User-Name=888 User-Password=G!HZu��'ņ��ۻ NAS-IP-Address=192.168.50.14 NAS-Port=285213162 Acct-Session-Id=110001ea\|4f66ecbc NAS-Port-Type=0 Calling-Station-Id=888 cisco-avpair=xpgk-request-type=number cisco-avpair=xpgk-src-number-in=888 cisco-avpair=h323-gw-address=192.168.50.14 h323-gw-id=192.168.50.14 h323-conf-id=110001ea\|4f66ecbc 03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] RadiusProcessor - Create new radius session. 03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] VoiceIpRadiusProcessor - Process outgoing auth Packet type: Access-Request Identifier: 41 Authenticator: {40 2F 36 E8 52 D5 24 9D C1 FD 3D 0A 92 A3 61 F3} Attributes: User-Name=888 User-Password=G!HZu��'ņ��ۻ NAS-IP-Address=192.168.50.14 NAS-Port=285213162 Acct-Session-Id=110001ea\|4f66ecbc NAS-Port-Type=0 Calling-Station-Id=888 cisco-avpair=xpgk-request-type=number cisco-avpair=xpgk-src-number-in=888 cisco-avpair=h323-gw-address=192.168.50.14 h323-gw-id=192.168.50.14 h323-conf-id=110001ea\|4f66ecbc 03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Finding login.. 03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] VoiceIpRadiusProcessor - Found login type 2 03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Login found: 1137 03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Checking access allow... 03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Checking password... 03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] RadiusUtils - try checkDigestMD5Password 03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] RadiusUtils - digestAttributes=null 03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] RadiusUtils - digestResponse=null 03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] RadiusUtils - user =null realm =null nonce = null method = null uri = null 03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] RadiusUtils - try all in one string 03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] RadiusUtils - digestAttribute=null 03-19/14:22:13 DEBUG [radiusListener-p-3-t-16] AbstractRadiusProcessor - Login password error 03-19/14:22:13 INFO [radiusListener-p-3-t-17] RadiusListenerWorker - REQUEST: Packet type: Access-Request Identifier: 42 Authenticator: {30 AB 74 D5 FA BD 0E B6 0B FE 38 E2 49 D4 B5 90} Attributes: User-Name=888 User-Password=k�!r�� AS-IP-Address=192.168.50.14 NAS-Port=285213162 Acct-Session-Id=110001ea\|4f66ecbc NAS-Port-Type=0 Calling-Station-Id=888 Called-Station-Id=580000 cisco-avpair=xpgk-request-type=number cisco-avpair=xpgk-src-number-in=888 cisco-avpair=xpgk-dst-number-in=580000 cisco-avpair=h323-gw-address=192.168.50.14 h323-gw-id=192.168.50.14 h323-conf-id=110001ea\|4f66ecbc 03-19/14:22:13 INFO [radiusListener-p-3-t-16] RadiusListenerWorker - RESPONSE: Packet type: Access-Reject Identifier: 41 Authenticator: {08 4E A9 5B B2 C0 C6 FC 1D 79 27 FF 4A 7F 3A A7} Attributes: Reply-Message=2 h323-return-code=2 Process time auth: 23 03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] RadiusProcessor - Create new radius session. 03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] VoiceIpRadiusProcessor - Process outgoing auth Packet type: Access-Request Identifier: 42 Authenticator: {30 AB 74 D5 FA BD 0E B6 0B FE 38 E2 49 D4 B5 90} Attributes: User-Name=888 User-Password=k�!r�� AS-IP-Address=192.168.50.14 NAS-Port=285213162 Acct-Session-Id=110001ea\|4f66ecbc NAS-Port-Type=0 Calling-Station-Id=888 Called-Station-Id=580000 cisco-avpair=xpgk-request-type=number cisco-avpair=xpgk-src-number-in=888 cisco-avpair=xpgk-dst-number-in=580000 cisco-avpair=h323-gw-address=192.168.50.14 h323-gw-id=192.168.50.14 h323-conf-id=110001ea\|4f66ecbc 03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] AbstractRadiusProcessor - Finding login.. 03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] VoiceIpRadiusProcessor - Found login type 2 03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] AbstractRadiusProcessor - Login found: 1137 03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] AbstractRadiusProcessor - Checking access allow... 03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] AbstractRadiusProcessor - Checking password... 03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] RadiusUtils - try checkDigestMD5Password 03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] RadiusUtils - digestAttributes=null 03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] RadiusUtils - digestResponse=null 03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] RadiusUtils - user =null realm =null nonce = null method = null uri = null 03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] RadiusUtils - try all in one string 03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] RadiusUtils - digestAttribute=null 03-19/14:22:13 DEBUG [radiusListener-p-3-t-17] AbstractRadiusProcessor - Login password error 03-19/14:22:13 INFO [radiusListener-p-3-t-17] RadiusListenerWorker - RESPONSE: Packet type: Access-Reject Identifier: 42 Authenticator: {7E 7B 8C 24 6F E5 0A 64 3F DB 07 F2 15 16 25 64} Attributes: Reply-Message=2 h323-return-code=2 Process time auth: 23 Пароль у логина 888: a9564ebc3289b7a24552baf8ad5ec60a