[GTER] Framed-Route B-RAS Juniper

Diogo Maia diogomaiadesouza at gmail.com
Thu Oct 30 15:45:18 -02 2014 

Boa Tarde. Alguém ai tem experiência com Juniper como B-RAS? estou tentando
utilizar do framed-route atributo do radius para adcionar rotas de
determinados prefixos para clientes. Porém apesar do radius enviar o
atributo, o juniper não o instala na tabela.

Debug do juniper

Oct 30 17:31:59.283661 Radius result is CLIENT_REQ_STATUS_SUCCESS
Oct 30 17:31:59.378952 Parsing RADIUS message for session-id:17
Oct 30 17:31:59.379071 radius-access-accept: Framed-Protocol received: 1
Oct 30 17:31:59.379128 radius-access-accept: Framed-MTU received: 1480
Oct 30 17:31:59.379168 RADIUS Attribute: Parse Error: "Unsupported
attribute type" Radius Standard Attr-Type: 13
Oct 30 17:31:59.379220 radius-access-accept: Session-Timeout received: 85500
Oct 30 17:31:59.379275 radius-access-accept: Framed-IP-Address received:
192.168.50.1
Oct 30 17:31:59.379320 processRadiusAttrib22: wholeString: [192.168.100.0/29
192.168.50.1 2 1]
Oct 30 17:31:59.379401 processRadiusAttrib22: Received FR Attributes
Oct 30 17:31:59.379456 radius-access-accept: Framed-Route received:
192.168.100.0/29 192.168.50.1 2 1
Oct 30 17:31:59.379545 radius-access-accept: Service-Type received: 2
Oct 30 17:31:59.379604 radius-access-accept: Egress-Policy-Name
(Juniper-ERX-VSA) received: out-1M
Oct 30 17:31:59.379660 radius-access-accept: Ingress-Policy-Name
(Juniper-ERX-VSA) received: in-1M
Oct 30 17:31:59.379717 radius-access-accept: Primary-DNS (Juniper-ERX-VSA)
received: 8.8.8.8



Oct 30 17:31:59.731497 radius-acct-start: User-Name added: teste5
Oct 30 17:31:59.731537 radius-acct-start: Acct-Status-Type added: 1
Oct 30 17:31:59.731578 radius-acct-start: Acct-Session-Id added: 17
Oct 30 17:31:59.731640 radius-acct-start: Service-Type added: 2
Oct 30 17:31:59.731690 radius-acct-start: Framed-Protocol added: 1
Oct 30 17:31:59.731736 radius-acct-start: Framed-Route added:
192.168.100.0/29 192.168.50.1  2
Oct 30 17:31:59.731843 radius-acct-start: Filter-Id added:
IPV4-ingress:in-1M-pp0.1073741832-in
Oct 30 17:31:59.731895 radius-acct-start: Filter-Id added:
IPV4-egress:out-1M-pp0.1073741832-out
Oct 30 17:31:59.732381 radius-acct-start: Cos-Shaping-Rate
(Juniper-ERX-VSA) added: Port Speed: 1000000k
Oct 30 17:31:59.732491 radius-acct-start: Acct-Authentic added: 1
Oct 30 17:31:59.732541 radius-acct-start: Acct-Delay-Time added: 0
Oct 30 17:31:59.732597 radius-acct-start: DHCP-MAC-Address
(Juniper-ERX-VSA) added: 000c.42b2.a559
Oct 30 17:31:59.732642 radius-acct-start: Egress-Policy-Name
(Juniper-ERX-VSA) added: out-1M
Oct 30 17:31:59.732700 radius-acct-start: Event-Timestamp added: 2014-10-30
17:31:59
Oct 30 17:31:59.732749 radius-acct-start: Framed-IP-Address added:
192.168.50.1
Oct 30 17:31:59.732817 radius-acct-start: Ingress-Policy-Name
(Juniper-ERX-VSA) added: in-1M
Oct 30 17:31:59.732868 radius-acct-start: NAS-Identifier added:
RIOS-PPPoE-junOS
Oct 30 17:31:59.732916 radius-acct-start: NAS-Port added: 0c 00 00 00
Oct 30 17:31:59.732958 radius-acct-start: NAS-Port-Id added:
ge-1/1/0.2025:2025
Oct 30 17:31:59.733005 radius-acct-start: NAS-Port-Type added: 15

Route table

show route

inet.0: 7 destinations, 7 routes (6 active, 0 holddown, 1 hidden)
+ = Active Route, - = Last Active, * = Both

0.0.0.0/0          *[OSPF/150] 05:29:40, metric 2, tag 0
                    > to 131.0.30.1 via ge-1/1/2.0
10.100.100.1/32    *[Direct/0] 05:31:32
                    > via lo0.0
131.0.30.0/30      *[Direct/0] 05:29:48
                    > via ge-1/1/2.0
131.0.30.2/32      *[Local/0] 05:29:58
                      Local via ge-1/1/2.0
192.168.50.1/32    *[Access-internal/12] 00:06:33
                    > via pp0.1073741832
224.0.0.5/32       *[OSPF/10] 05:31:32, metric 1
                      MultiRecv


show subscribers detail
Type: PPPoE
User Name: teste5
IP Address: 192.168.50.1
Primary DNS Address: 8.8.8.8
Logical System: default
Routing Instance: default
Interface: pp0.1073741832
Interface type: Dynamic
Underlying Interface: ge-1/1/0.2025
Dynamic Profile Name: PPPoE_Profile01
MAC Address: 00:0c:42:b2:a5:59
Session Timeout (seconds): 85500
State: Active
Radius Accounting ID: 17
Session ID: 17
VLAN Id: 2025
Login Time: 2014-10-30 17:31:58 UTC

Alguém tem alguma ideia?


-- 
 Diogo Maia de S. Cabral.

More information about the gter mailing list