[tac_plus] Tacacs problem with packets

Jetmir Sulmina Jetmir.Sulmina at albtelecom.al
Fri Dec 26 23:05:11 UTC 2014


And there is no patch update done on the OS. I just use the same Centos version 6.4. After the clean install it works, than after some days the problem appears and remains permanent.

Jetmir SULMINA
Supervisor
Planning & Optimization Unit
Datacom Department
Albtelecom & Eagle Mobile

Autostrada TR-DR Km. 7
Kashar-Tirane, Albania
Mobile: +355672644110
E-Mail: jetmir.sulmina at albtelecom.al
Website: www.albtelecom.al


-----Original Message-----
From: Jetmir Sulmina
Sent: Saturday, December 27, 2014 12:02 AM
To: 'heasley'
Cc: tac_plus at shrubbery.net
Subject: RE: [tac_plus] Tacacs problem with packets

No just rebooting does not resolve it. The same error log appears after reboot. The packet is received from tacacs before the login fields are displayed to enter username and password. That’s why the user field is empty at below logs.

Fri Dec 26 23:58:16 2014 [1590]: Reading config Fri Dec 26 23:58:16 2014 [1590]: Version F4.0.4.26 Initialized 1 Fri Dec 26 23:58:16 2014 [1590]: tac_plus server F4.0.4.26 starting Fri Dec 26 23:58:16 2014 [1591]: Backgrounded Fri Dec 26 23:58:16 2014 [1592]: uid=0 euid=0 gid=0 egid=0 s=0 Fri Dec 26 23:58:50 2014 [1592]: session request from 10.2.18.53 sock=2 Fri Dec 26 23:58:50 2014 [1596]: connect from 10.2.18.53 [10.2.18.53] Fri Dec 26 23:58:50 2014 [1596]: Waiting for packet Fri Dec 26 23:58:50 2014 [1596]: Read AUTHEN/START size=36 Fri Dec 26 23:58:50 2014 [1596]: validation request from 10.2.18.53 Fri Dec 26 23:58:50 2014 [1596]: PACKET: key=3l3ct!0ns Fri Dec 26 23:58:50 2014 [1596]: version 192 (0xc0), type 1, seq no 1, flags 0x1 Fri Dec 26 23:58:50 2014 [1596]: session_id 1704442042 (0x6597b8ba), Data length 24 (0x18) Fri Dec 26 23:58:50 2014 [1596]: End header Fri Dec 26 23:58:50 2014 [1596]: type=AUTHEN/START, priv_lvl = 1 Fri Dec 26 23:58:50 2014 [1596]: action=login Fri Dec 26 23:58:50 2014 [1596]: authen_type=ascii Fri Dec 26 23:58:50 2014 [1596]: service=login Fri Dec 26 23:58:50 2014 [1596]: user_len=0 port_len=4 (0x4), rem_addr_len=12 (0xc) Fri Dec 26 23:58:50 2014 [1596]: data_len=0

Fri Dec 26 23:58:50 2014 [1596]: User:

Fri Dec 26 23:58:50 2014 [1596]: port:
Fri Dec 26 23:58:50 2014 [1596]: tty1
Fri Dec 26 23:58:50 2014 [1596]: rem_addr:
Fri Dec 26 23:58:50 2014 [1596]: 172.27.1.153 Fri Dec 26 23:58:50 2014 [1596]: data:
Fri Dec 26 23:58:50 2014 [1596]: End packet Fri Dec 26 23:58:50 2014 [1596]: Authen Start request Fri Dec 26 23:58:50 2014 [1596]: choose_authen returns 1 Fri Dec 26 23:58:50 2014 [1596]: Writing AUTHEN/GETUSER size=55 Fri Dec 26 23:58:50 2014 [1596]: PACKET: key=3l3ct!0ns Fri Dec 26 23:58:50 2014 [1596]: version 192 (0xc0), type 1, seq no 2, flags 0x1 Fri Dec 26 23:58:50 2014 [1596]: session_id 1704442042 (0x6597b8ba), Data length 43 (0x2b) Fri Dec 26 23:58:50 2014 [1596]: End header Fri Dec 26 23:58:50 2014 [1596]: type=AUTHEN status=4 (AUTHEN/GETUSER) flags=0x0 Fri Dec 26 23:58:50 2014 [1596]: msg_len=37, data_len=0 Fri Dec 26 23:58:50 2014 [1596]: msg:
Fri Dec 26 23:58:50 2014 [1596]:  0xa User Access Verification 0xa Fri Dec 26 23:58:50 2014 [1596]: data:
Fri Dec 26 23:58:50 2014 [1596]: End packet Fri Dec 26 23:58:50 2014 [1596]: Waiting for packet Fri Dec 26 23:58:50 2014 [1596]: 10.2.18.53 tty1: fd 2 eof (connection closed) Fri Dec 26 23:58:50 2014 [1596]: Read -1 bytes from 10.2.18.53 tty1, expecting 12 Fri Dec 26 23:58:50 2014 [1596]: Error 10.2.18.53 tty1: Null reply packet, expecting CONTINUE Fri Dec 26 23:58:50 2014 [1596]: 10.2.18.53: disconnect

BR

Jetmir SULMINA
Supervisor
Planning & Optimization Unit
Datacom Department
Albtelecom & Eagle Mobile

Autostrada TR-DR Km. 7
Kashar-Tirane, Albania
Mobile: +355672644110
E-Mail: jetmir.sulmina at albtelecom.al
Website: www.albtelecom.al

-----Original Message-----
From: heasley [mailto:heas at shrubbery.net]
Sent: Friday, December 26, 2014 11:04 PM
To: Jetmir Sulmina
Cc: heasley; tac_plus at shrubbery.net
Subject: Re: [tac_plus] Tacacs problem with packets

Fri, Dec 26, 2014 at 07:42:22PM +0000, Jetmir Sulmina:
> Hi Heasley,
>
> The configuration file is as in attach. The log file is tac_plus.log is very big to be sent via my mail. The portion of log I sent you was from that file (if you refer to tac_plus.log file). If you need it I'll send tomorrow a part of it since we have finished work for today.
>
> The installation was done from source file:
> ftp://ftp.shrubbery.net/pub/tac_plus/tacacs+-F4.0.4.26.tar.gz
>
> The problem disappears when I re-instal a fresh copy of OS, but after some days happens again.
> If I re-install only the tacacs service the problem remains, does not disappear.

Just rebooting the host does not fix the problem?  Are patches being installed that might affect tacacs?

________________________________

Albtelecom & Eagle Mobile ju ftojnë të mbrojmë së bashku Mjedisin. Lutemi të mos e printoni këtë komunikim elektronik nëse nuk është me të vërtetë i nevojshëm.

Albtelecom & Eagle Mobile invite you to protect together the Environment. Please do not print this e-mail unless really necessary.

________________________________

This e-mail and any files transmitted with it are confidential and intended solely for the use of the addressee/s. If you are not the intended recipient you are hereby notified that any dissemination, forwarding, copying or use of any of the information is strictly prohibited. If you receive this e-mail in error, please notify the sender immediately and delete it! Albtelecom makes no warranty as to the accuracy or completeness of any information contained in this message and hereby excludes any liability of any kind for the information contained therein or for the information transmission, reception, storage or use of such in any way whatsoever. The opinions expressed in this message may belong to sender alone and may not necessarily reflect the opinions of Albtelecom. Albtelecom shall bear no liability for any loss or damage caused by software or e-mail viruses.

Ky mesazh dhe çdo informacion i transmetuar në përmbajtje te këtij mesazhi është konfidencial dhe është i destinuar vetëm për marrësin e destinuar. Nëse nuk jeni marrësi i destinuar, Ju bëjmë me dije se çdo përhapje, transmetim, kopjim apo përdorim i çdo informacioni është i ndaluar. Nëse e merrni këtë mesazh gabimisht, ju lutem kontaktoni urgjentisht nisësin e tij dhe fshijeni atë. Albtelecom nuk jep asnjë garanci për saktësinë apo plotësinë e informacionit në përmbajtje të këtij mesazhi dhe nuk mban asnjë përgjegjësi për informacionin e përmbajtur, transmetimin, marrjen, ruajtjen apo përdorimin e tij në çfarëdolloj mënyre. Mendimet e shprehura në këtë mesazh mund t'i përkasin vetë nisësit dhe nuk mund të reflektojnë domosdoshmërisht qëndrimet e Albtelecom. Albtelecom nuk do të mbaje asnjë përgjegjësi për humbje ose dëme te shkaktuara nga programet apo viruset.


More information about the tac_plus mailing list