freeradius + rlm_perl + mysql

[AdmSasha]

Имеется freeradius, cisco2950, WinXP_SP3, желание сделать авторизации по 802.1x по "md5 задача"

Подскажите пример EAP авторизации через rlm_perl. Какие данные отдавать, чтобы порт включить.

 

$RAD_REPLY{'Session-Timeout'} = "1412650";
$RAD_REPLY{'Tunnel-Type'} = "VLAN";
$RAD_REPLY{'Tunnel-Medium-Type'} = "IEEE-802";
$RAD_REPLY{'Tunnel-Private-Group-Id'} = "77";
$RAD_CHECK{'Auth-Type'} = 'Accept';
$RAD_REPLY{'Auth-Type'} = 'Accept';

 

Ничего не дают.

 

 

authenticate {

Auth-Type EAP {

perl

}

}

 

 

Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair NAS-Port-Type = Ethernet

Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair Service-Type = Framed-User

Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair Calling-Station-Id = 00-0A-E4-EC-40-25

Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair Called-Station-Id = 00-15-62-68-32-C1

Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair Cisco-NAS-Port = FastEthernet0/1

Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair Message-Authenticator = 0xe3d0528f21ac5aca673685da2a1d0aab

Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair User-Name = test

Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair EAP-Message = 0x02000009016d617274

Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair EAP-Type = Identity

Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair NAS-IP-Address = 192.168.1.94

Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair NAS-Port = 50001

Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair Framed-MTU = 1500

Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair Session-Timeout = 1412650

Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair EAP-Message = 0x03030004

Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair Auth-Type = Accept

Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair Tunnel-Medium-Type = IEEE-802

Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair Tunnel-Type = VLAN

Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair Message-Authenticator = 0x00000000000000000000000000000000

Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair Tunnel-Private-Group-Id = 77

Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair Auth-Type = EAP

Mon May 25 15:19:10 2009 : Info: ++[perl] returns ok

Mon May 25 15:19:10 2009 : Auth: Login OK: [test/<via Auth-Type = EAP>] (from client cisco2950 port 50001 cli 00-0A-E4-EC-40-25)

Mon May 25 15:19:10 2009 : Info: +- entering group post-auth {...}

Sending Access-Accept of id 7 to 192.168.1.94 port 1812

Session-Timeout = 1412650

EAP-Message = 0x03030004

Tunnel-Medium-Type:0 = IEEE-802

Tunnel-Type:0 = VLAN

Message-Authenticator = 0x00000000000000000000000000000000

Tunnel-Private-Group-Id:0 = "77"

Mon May 25 15:19:10 2009 : Info: Finished request 0.

Mon May 25 15:19:10 2009 : Debug: Going to the next request

Mon May 25 15:19:10 2009 : Debug: Waking up in 4.9 seconds.

Mon May 25 15:19:15 2009 : Info: Cleaning up request 0 ID 7 with timestamp +31

Mon May 25 15:19:15 2009 : Debug: Ready to process requests