cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
285
Views
0
Helpful
1
Replies

AAA route download not in routing table

e.vanderburg
Level 1
Level 1

Hi,

When using a cisco 10k8 router with a PRE1 engine running IOS 12.2.(15)BZ we notice that, when using AAA to import a static route, the imported static routes do not appear in any routing table.

We've tried to add it to the "normal" routing table and to a VRF routing table, neither works.

While debugging the Radius events we do see the routing string arive at the router:

May 2 14:01:35.083 MET: RADIUS: Pick NAS IP for uid=0 tableid=0 cfg_addr=194.151.57.48

May 2 14:01:35.083 MET: RADIUS: Pick NAS IP for uid=0 tableid=0 cfg_addr=194.151.57.48

May 2 14:01:35.083 MET: RADIUS(00000000): sending

May 2 14:01:35.083 MET: RADIUS(00000000): Send Access-Request to 194.151.9.18:1812 id 70, len 120

May 2 14:01:35.083 MET: RADIUS: authenticator 2B 76 F0 FD 45 7A E0 24 - 49 AA 68 C3 30 1E 9E 09

May 2 14:01:35.083 MET: RADIUS: User-Name [1] 29 "nl-gv-testnet-ar10-1-1"

May 2 14:01:35.083 MET: RADIUS: User-Password [2] 18 *

May 2 14:01:35.083 MET: RADIUS: Service-Type [6] 6 Outbound [5]

May 2 14:01:35.083 MET: RADIUS: NAS-IP-Address [4] 6 194.151.57.48

May 2 14:01:35.083 MET: RADIUS: Nas-Identifier [32] 41 "nl-gv-testnet-ar10-1 "

May 2 14:01:35.103 MET: RADIUS: Received from id 21654/70 194.151.9.18:1812, Access-Accept, len 238

May 2 14:01:35.103 MET: RADIUS: authenticator DD 57 63 BD 37 80 07 A3 - C3 0B D5 FA 6B F6 BE 54

May 2 14:01:35.103 MET: RADIUS: Vendor, Cisco [26] 77

May 2 14:01:35.103 MET: RADIUS: Cisco AVpair [1] 71 "ip:route=vrf vpn-01 194.151.52.36 255.255.255.252 null 0 0.0.0.0 210 "

nl-gv-testnet-ar10-1#

May 2 14:01:35.103 MET: RADIUS: Vendor, Cisco [26] 76

May 2 14:01:35.103 MET: RADIUS: Cisco AVpair [1] 70 "ip:route=vrf vpn-01 10.151.52.36 255.255.255.252 null 0 0.0.0.0 210 "

May 2 14:01:35.103 MET: RADIUS: Vendor, Cisco [26] 65

May 2 14:01:35.103 MET: RADIUS: Cisco AVpair [1] 59 "ip:route=20.151.52.36 255.255.255.252 null 0 0.0.0.0 210 "

May 2 14:01:35.103 MET: RADIUS(00000000): Received from id 21654/70

Anybody who's got an idea orther than that it's not supported?

Cheers,

Erik van der Burg

1 Reply 1

nikhil_m
Level 1
Level 1

Looks like the IOS version is not compatible....not sure....

-Nikhil

Review Cisco Networking for a $25 gift card