PPPoE-Server COA Radius Timeout

General questions
1

Hi, i have 3 Vyos Installed, version 1.2 1.4 and 1.3rc

In the 3 i have testing pppoe server, everything work ok with radius but the COA request is not working

root@portal:~# echo “User-Name=instalador01” | radclient 172.16.101.100:3799 coa test
Sent CoA-Request Id 242 from 0.0.0.0:53431 to 172.16.101.100:3799 length 34
Sent CoA-Request Id 242 from 0.0.0.0:53431 to 172.16.101.100:3799 length 34
Sent CoA-Request Id 242 from 0.0.0.0:53431 to 172.16.101.100:3799 length 34
(0) No reply from server for ID 242 socket 3

I have do these test for check ports listening but not working at all

vyos@vyos:~$ sudo netstat -lan | grep 3799
vyos@vyos:~$ sudo netstat -lan | grep 22
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN
tcp 0 0 172.16.101.100:22 172.16.100.2:40253 ESTABLISHED
tcp 0 0 172.16.101.100:22 192.168.255.1:56852 ESTABLISHED
tcp 0 0 172.16.101.100:22 172.16.100.2:48187 ESTABLISHED
tcp6 0 0 :::22 :::* LISTEN
unix 2 [ ACC ] STREAM LISTENING 27221 /run/user/1003/gnupg/S.gpg-agent
unix 3 [ ] STREAM CONNECTED 12290
unix 2 [ ] DGRAM 225542
unix 2 [ ] DGRAM 222767
unix 2 [ ] STREAM CONNECTED 220846
unix 2 [ ] DGRAM 22431
vyos@vyos:~$ nmap -p 3799 -sU 172.16.0.64
You requested a scan type which requires root privileges.
QUITTING!
vyos@vyos:~$ sudo nmap -p 3799 -sU 172.16.0.64
Starting Nmap 7.70 ( https://nmap.org ) at 2021-05-08 18:36 UTC
mass_dns: warning: Unable to determine any DNS servers. Reverse DNS is disabled. Try using --system-dns or specify valid servers with --dns-servers
Nmap scan report for 172.16.0.64
Host is up (0.00053s latency).

PORT STATE SERVICE
3799/udp open|filtered radius-dynauth

Nmap done: 1 IP address (1 host up) scanned in 0.61 seconds

if i send the coa request to my mikrotik is succesfull but with vyos i dont have the same sucess

thanks.

2

Hello @AlvinTLC , did you configure CoA on VyOS side?

set service pppoe-server authentication radius dynamic-author server 172.16.101.100
set service pppoe-server authentication radius dynamic-author key SomeKey
set service pppoe-server authentication radius dynamic-author port 3799
1 Like
3

Hi look my config

pppoe-server {
access-concentrator ACN
authentication {
mode radius
radius {
dynamic-author {
key ****************
port 3799
server 172.16.0.64
}
nas-identifier 172.16.101.100
nas-ip-address 172.16.101.100
rate-limit {
attribute Velocidad
vendor /usr/share/accel-ppp/radius
}
server 172.16.0.64 {
key ****************
}
source-address 172.16.101.100
}
}
gateway-address 10.100.100.1
interface eth4 {
}
interface eth7.100 {
}
}
ssh {

4

Why server is 172.16.0.64. Do you have configured this IP on some interface on this router?

5

I see you example and i put

and now works, thanks.

6

What you can tell me about this issue

(18) perl: ERROR: Failed to create pair - Invalid vendor name in attribute name “OUTBYTE”
(18) perl: ERROR: &request:OUTBYTE = $RAD_REQUEST{‘OUTBYTE’} → ‘0’
(18) perl: ERROR: Failed to create pair - Invalid vendor name in attribute name “INBYTE2”
(18) perl: ERROR: &request:INBYTE2 = $RAD_REQUEST{‘INBYTE2’} → ‘0’

7

It looks like your radius server does not know some Vendor/Attribute

8

Ok i will try to fix it. thanks Dmitry.

9

This topic was automatically closed 2 days after the last reply. New replies are no longer allowed.