AAA - Accounting problem with Pix 515 (ver 6.3.1) and freeradius
When we activate the accounting on the pix, the radius server (freeradius) indicates in the log file this message:
Wed Mar 3 15:58:52 2004 : Error: Accounting: logout: entry for NAS fwhst-0833-segi3.gw port 308 has wrong ID
It would seem the pix has a problem reporting NAS-port numbers to radius. I found this information in the freeradius FAQ (http://www.freeradius.org/faq/). See the 4.6 point heading '3Com/USR HiPerArc doesn't work.'
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...