[RP-PPPoE] PPPoE Sever PAM Failure and Authenticate-Nak

Daniel Le daniel.le at exfo.com
Mon Jul 16 23:27:19 EDT 2012 

Hello,

 

I apologize if the subject was discussed before. This is my first attempt to run rp-pppoe. The version is 3.10 and the Linux kernel is 2.6.35.7. My pppoe client session keeps being terminated because of PAM failure on the server which results in Authenticate-Nak.

 

The command is "pppoe-server -I eth2 -L <server-IP-addr " on the server side, and "pppoe-setup" and pppoe-start" on the client side. The authentication protocol is PAP, where the user id and password are set identical in the pap-secrets file for both server and client.

 

An extract of /var/log/messages on server side.

 

Jul 16 21:09:10 (none) daemon.notice pppd[22733]: pppd 2.4.5 started by root, uid 0

Jul 16 21:09:10 (none) daemon.info pppd[22733]: Using interface ppp0

Jul 16 21:09:10 (none) daemon.notice pppd[22733]: Connect: ppp0 <--> /dev/pts/0

Jul 16 21:09:11 (none) daemon.warn pppd[22733]: Warning - secret file /etc/ppp/pap-secrets has world and/or group access

Jul 16 21:09:11 (none) daemon.warn pppd[22733]: Warning - secret file /etc/ppp/pap-secrets has world and/or group access

Jul 16 21:09:11 (none) authpriv.err pppd[22733]: PAM _pam_init_handlers: could not open /etc/pam.conf

Jul 16 21:09:11 (none) authpriv.err pppd[22733]: PAM pam_start: failed to initialize handlers

Jul 16 21:09:11 (none) daemon.warn pppd[22733]: PAP peer authentication failed for test_user

Jul 16 21:09:11 (none) user.crit kernel: protocol 6488 is buggy, dev eth2

Jul 16 21:09:11 (none) user.crit kernel: protocol 6488 is buggy, dev eth2

Jul 16 21:09:11 (none) daemon.notice pppd[22733]: Connection terminated.

Jul 16 21:09:11 (none) user.crit kernel: protocol 6488 is buggy, dev eth2

Jul 16 21:09:11 (none) daemon.err pppoe[22739]: read (asyncReadFromPPP): Session 57: Input/output error

Jul 16 21:09:11 (none) daemon.err pppoe-server[14215]: PADT: Generic-Error: r%

Jul 16 21:09:11 (none) daemon.err pppoe-server[14215]: PADT: Generic-Error: RP-PPPoE: System call error: Input/output error

Jul 16 21:09:11 (none) daemon.err pppoe-server[14215]: PADT: Generic-Error: 3�a�ց2��"}.E��7

Jul 16 21:09:11 (none) daemon.info pppoe-server[14215]: Sent PADT

Jul 16 21:09:11 (none) daemon.info pppd[22733]: Terminating on signal 15

Jul 16 21:09:11 (none) daemon.info pppd[22733]: Exit.

Jul 16 21:09:11 (none) daemon.info pppoe-server[14215]: Session 57 closed for client 00:aa:55:26:4a:f1 (10.67.15.57) on eth2

Jul 16 21:09:16 (none) daemon.info pppoe-server[22864]: Session 58 created for client 00:aa:55:26:4a:f1 (10.67.15.58) on eth2 using Service-Name ''

 

And below is the tcpdump output of one pppoe client retry (it does a number of retires then gives up).

 

20:37:59.289076 PPPoE PADI [Service-Name] [Host-Uniq 0xA8130000] [EOL]

20:37:59.288696 PPPoE PADO [AC-Name "b3000-119"] [Service-Name] [AC-Cookie 0x33FAC161BCD68132D73FB2227D2E45B587370000] [Host-Uniq 0xA8130000]

20:37:59.292159 PPPoE PADR [Service-Name] [Host-Uniq 0xA8130000] [AC-Cookie 0x33FAC161BCD68132D73FB2227D2E45B587370000]

20:37:59.291894 PPPoE PADS [ses 0x24] [Service-Name] [Host-Uniq 0xA8130000]

20:38:00.290250 PPPoE  [ses 0x24] LCP, Conf-Request (0x01), id 1, MRU (1) 1492, Magic-Num (5) 0xf9f818f5, length 14

20:38:00.291363 PPPoE  [ses 0x24] LCP, Conf-Request (0x01), id 1, Auth-Prot (3) PAP, Magic-Num (5) 0x58bb7a83, length 14

20:38:00.291369 PPPoE  [ses 0x24] LCP, Conf-Ack (0x02), id 1, MRU (1) 1492, Magic-Num (5) 0xf9f818f5, length 14

20:38:00.294342 PPPoE  [ses 0x24] LCP, Conf-Ack (0x02), id 1, Auth-Prot (3) PAP, Magic-Num (5) 0x58bb7a83, length 14

20:38:00.294362 PPPoE  [ses 0x24] LCP, Echo-Request (0x09), id 0, Magic-Num 0xf9f818f5, length 8

20:38:00.294370 PPPoE  [ses 0x24] Auth-Req(1), Peer test_user, Name test_password

20:38:00.296359 PPPoE  [ses 0x24] LCP, Echo-Request (0x09), id 0, Magic-Num 0x58bb7a83, length 8

20:38:00.296367 PPPoE  [ses 0x24] LCP, Echo-Reply (0x0a), id 0, Magic-Num 0x58bb7a83, length 8

20:38:00.296372 PPPoE  [ses 0x24] Auth-Nak(1), Msg Session started successfully

20:38:00.296375 PPPoE  [ses 0x24] LCP, Term-Request (0x05), id 2, length 25

20:38:00.298267 PPPoE  [ses 0x24] LCP, Echo-Reply (0x0a), id 0, Magic-Num 0xf9f818f5, length 8

20:38:00.298276 PPPoE  [ses 0x24] LCP, Term-Request (0x05), id 2, length 44

20:38:00.298307 PPPoE  [ses 0x24] LCP, Term-Ack (0x06), id 2

20:38:00.299359 PPPoE  [ses 0x24] LCP, Term-Ack (0x06), id 2

20:38:00.305523 PPPoE PADT [ses 0x24] [Host-Uniq 0xA8130000] [Generic-Error "RP-PPPoE: System call error: Input/output error"] [AC-Cookie 0x33FAC161BCD68132D73FB2227D00003100000065]

20:38:00.305601 PPPoE PADT [ses 0x24] [Generic-Error "Received PADT"]

 

Thank you.

Daniel

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.roaringpenguin.com/pipermail/rp-pppoe/attachments/20120716/148af9e5/attachment.html>

More information about the RP-PPPoE mailing list