I have a remote router, connecting via ADSL that hits a proxy radius in carrier world, which forwards the request to my radius server. When the remote tries to authenticate it appears to successfully authenticate in the radius, as it comes up in the radius logs.
However on the remote I get a failure as per the below output from "deb ppp nego"
Dec 6 07:08:54.675: Vi2 LCP: State is Open
Dec 6 07:08:54.675: Vi2 PPP: Phase is AUTHENTICATING, by the peer
Dec 6 07:08:54.675: Vi2 CHAP: I CHALLENGE id 32 len 34 from "carrier-dslam"
Dec 6 07:08:54.675: Vi2 CHAP: Using hostname from interface CHAP
Dec 6 07:08:54.675: Vi2 CHAP: Using password from interface CHAP
This is a one off service that does not work with this configuration, the carrier tells me that this service does not appear to have any issues, but this is a tried and tested configuration and has not been an issue up until now.
If anyone can shed any light on this I would be very happy...as there is not much hair left to tear out on this one.
This message pretty clearly indicates that the router thinks that the peer it is attempting to authenticate with is returning an authentication error:
Dec 6 07:09:03.011: Vi2 CHAP: I FAILURE id 32 len 4
Perhaps you could help us understand better what your router is connecting to and how authentication is supposed to work. The part of the config that you posted is just straight ppp chap. If it is getting to a Radius server I assume that someone somewhere has configured aaa authentication for ppp through Radius. If your Radius server is seeing the request and is logging a successful authentication but your remote router is receiving a failure, then I would take a look at the relaying Radius server and see if there are logs there that might be helpful.
We are pleased to announce availability of Beta software for 16.6.3.
16.6.3 will be the second rebuild on the 16.6 release train targeted
towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are
looking for early feedback from customers befor...
Introduction Featured Speakers Luis Espejel is the Telecommunications
Manager of IENova, an Oil & Gas company. Currently he works with Cisco
IOS® and Cisco IOS XE platforms, and NX to some extent. He has also
worked as a Senior Engineer with the Routing P...
In this session you can learn more about Layer 3 multicast and the best
practices to identify possible threats and take security measures. It
provides an overview of basic multicast, the best security practices for
use of this technology, and recommendati...