Hi,
Our downstream ISP is adamant that they are sending subscriber authentication packets to our LNS but are getting no response from the RADIUS. Given the configuration is the same as our functioning LNS I do not think the packets are hitting the new LNS as per the following troubleshooting steps. My question is, have I missed any relevant troubleshooting steps with maybe traceoptions:
run monitor traffic interface xe-1/1/0 no-resolve size 1500 - No traffic other than IS-IS hello's
run monitor traffic interface si-1/1/0 no-resolve size 1500 - No traffic
set system processes general-authentication-service traceoptions file radiustrace
set system processes general-authentication-service traceoptions file size 100m
set system processes general-authentication-service traceoptions flag all
No traffic
set protocols ppp-service traceoptions file tracecliveppp
set protocols ppp-service traceoptions file size 100m
set protocols ppp-service traceoptions flag all
No traffic
RADIUS:
No traffic
I believe I should see authentication traffic hit the LNS as it is the LNS that forwards this traffic to the RADIUS.
Am I missing anything here from a troubleshooting perspective? I cannot, as an add on, place any wireshark in front of the LNS to prove if the packets are actually hitting the LNS.
I have asked the ISP to provide the following:
traceroute
packet capture trace - as I believe a response will be seen from the LNS if it is being hit correctly.