Geek Answers Handbook

Radius only checks success on the local machine, but cannot through the remote machine

I install freeradius on Ubuntu 10 via apt-get.

after starting the server. local test is valid:

yozloy@SNDA-192-168-21-78 :/usr/bin$ echo "User-Name=testuser,Password=123456" | radclient 127.0.0.1:1812 auth testing123 -x Sending Access-Request of id 245 to 127.0.0.1 port 1812 User-Name = "testuser" Password = "0054444944" rad_recv: Access-Accept packet from host 127.0.0.1 port 1812, id=245, length=20

But on the remote machine, it seems that there is no response from the radius server server:

 root@SNDA-192-168-14-131 :/home/yozloy# echo "User-Name=testuser,Password=123456" | radclient 58.215.164.98:1812 auth testing123 -x Sending Access-Request of id 36 to 58.215.164.98 port 1812 User-Name = "testuser" Password = "0054444944" Sending Access-Request of id 36 to 58.215.164.98 port 1812 User-Name = "testuser" Password = "0054444944" Sending Access-Request of id 36 to 58.215.164.98 port 1812 User-Name = "testuser" Password = "0054444944" radclient: no response from server for ID 36 socket 3

Here is my configuration file:

clients.conf

 client 58.215.164.98 { ipaddr = 58.215.164.98 secret = testing123 require_message_authenticator = no }

of users

 testuser CLeartext-Password := "0054444944"

update the configuration file (I don't really change anything) radiusd.conf

 proxy_requests = yes $INCLUDE proxy.conf $INCLUDE clients.conf thread pool { start_servers = 5 max_servers = 32 min_spare_servers = 3 max_spare_servers = 10 max_requests_per_server = 0 } modules { $INCLUDE ${confdir}/modules/ $INCLUDE eap.conf } instantiate { exec expr expiration logintime } $INCLUDE policy.conf $INCLUDE sites-enabled/ yozloy@SNDA-192-168-18-234 :/etc/freeradius$ netstat -an Active Internet connections (servers and established) Proto Recv-Q Send-Q Local Address Foreign Address State tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN tcp 0 0 192.168.18.234:22 123.5.13.20:3274 ESTABLISHED tcp6 0 0 :::22 :::* LISTEN udp 0 0 0.0.0.0:1812 0.0.0.0:* udp 0 0 0.0.0.0:1813 0.0.0.0:* udp 0 0 0.0.0.0:1814 0.0.0.0:* Active UNIX domain sockets (servers and established) Proto RefCnt Flags Type State I-Node Path unix 4 [ ] DGRAM 2838 /dev/log unix 2 [ ACC ] STREAM LISTENING 2166 @/com/ubuntu/upstart unix 2 [ ] DGRAM 2272 @/org/kernel/udev/udevd unix 3 [ ] STREAM CONNECTED 3351 unix 3 [ ] STREAM CONNECTED 3350 unix 2 [ ] DGRAM 3173 unix 2 [ ] DGRAM 2893 unix 3 [ ] DGRAM 2304 unix 3 [ ] DGRAM 2303 unix 3 [ ] STREAM CONNECTED 2256 @/com/ubuntu/upstart unix 3 [ ] STREAM CONNECTED 2255
+7
source share
1 answer

Correct me if I am wrong, but the IP address of SNDA-192-168-14-131 against your RADIUS server (SNDA-192-168-21-78) is not 58.215.164.98, is it? If not, this is your answer. The RADIUS server will only work with the NAS configured in clients.conf with the correct secrets.

Try adding 192.168.14.131 (if that is the host IP address) to client.conf and try.

+1
source

More articles:


All Articles