While analysing radius packet traces in wireshark - I noticed error i.e. "Not enough room in packet for AVP"
Besides - 1. this packet is visible only in wireshark. If I search such packets in application logs I don't find them at all. 2. there are certain other packets also which look genuine in wireshark - but they too are not visible in application logs at all.
We are using RHEL 7 with kernel 3.10.0-229.1.2.el7.x86_64. It is VM instance & not physical server.
I tried searching Internet but didnt find much hints (other than dictionary defination which is not the case here). Has anyone observed such issue pertaining to radius/UDP message not visible in application debug logs ? Is it something to do with linux kernel ?
Any guidance would be really appreciated.
Thanks in advance !
This means that an AVP in the packet has a length that implies that the AVP goes past the end of the packet.
This presumably means either that 1) the packet required multiple TCP segments but was not reassembled for some reason or 2) the packet really is malformed. We'd have to see the packet (preferably in the form of a capture file, NOT a screenshot!) in order to figure out which of those is the case.
answered 26 Feb, 01:46
Guy Harris ♦♦