[prev in list] [next in list] [prev in thread] [next in thread] 

List:       freeradius-users
Subject:    Re:
From:       Peter Nixon <listuser () peternixon ! net>
Date:       2007-07-31 9:13:33
Message-ID: 200707311213.34087.listuser () peternixon ! net
[Download RAW message or body]

On Tue 31 Jul 2007, Kennie Lionheart wrote:
> Hi,
>
>
> I have a question about Freeradius' log.
>
> My costomer has used Remote Access VPN with Freeradius and Cisco VPN 3000,
> and 2 months ago, they added Cisco ASA on their system in order to expanse
> their VPN system. Now their users can use both VPN 3000 and ASA. VPN
> 3000's IP address is xx.xxx.xxx.9 and ASA's IP address is xxx.xxx.xxx.10.
> Both are global addresses.
>
> When their users use VPN through VPN 3000, ahthentication log can be seen
> on /var/log/radius/radacct/xxx.xxx.xxx.9, however when their users use VPN
> though ASA, no log can be seen in /var/log/radius/radacct/. I think
> xxx.xxx.xxx.10 should be seen there for the newly added ASA. Of course
> their users can connect to servers since they are ahtenticated and
> authorized, but no log are made on radius server. Does nyone have any idea
> about this? any solutions? any more configurations?

Yep. Configure the ASA to send RADIUS accounting. FreeRADIUS only logs what 
it receives...

-- 

Peter Nixon
http://peternixon.net/
- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
[prev in list] [next in list] [prev in thread] [next in thread]