Re: i install freeradius successfully, but i can't telnet the port
thanks, i finally got it... 2010/6/8 Alan Buxey > Hi, > > > Ignoring request to authentication address * port 1812 from unknown > client 123.116.121.228 port 56627 > > ^^^ > > what should i write in client.conf > > I think, from the above. its fairly obvious? > > but I worry - because you havent got a simple test working > > > radtest test test localhost 1812 19861230 > > err, is 19861230 the secret for 127.0.0.1 (localhost?) I dont think it is > unles > you made it so...check clients.conf, it'll be testing123 > > alan > - > List info/subscribe/unsubscribe? See > http://www.freeradius.org/list/users.html > -- Spacelee - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: i install freeradius successfully, but i can't telnet the port
Hi, > Ignoring request to authentication address * port 1812 from unknown client > 123.116.121.228 port 56627 ^^^ > what should i write in client.conf I think, from the above. its fairly obvious? but I worry - because you havent got a simple test working > radtest test test localhost 1812 19861230 err, is 19861230 the secret for 127.0.0.1 (localhost?) I dont think it is unles you made it so...check clients.conf, it'll be testing123 alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: i install freeradius successfully, but i can't telnet the port
Am 08.06.2010 um 09:59 schrieb Spacelee:
i use radius -X to see the log, it looks like:
Ignoring request to authentication address * port 1812 from unknown
client 123.116.121.228 port 56627
Ready to process requests.
Ignoring request to authentication address * port 1812 from unknown
client 123.116.121.228 port 56627
Ready to process requests.
As far as I understand, such an error message means that the "unknown
client" is not defined in client.conf and therefore freeradius
discards the request (for security reasons).
Have a nice day!
2010/6/8 Spacelee
what should i write in client.conf
mine is like this:
client fremont.iqwer.com {
ipaddr = 173.233.234.52
shortname = fremont
secret = 19861230
nastype = other
}
2010/6/8 Spacelee
on the radius server, i type the two command , and get those
results, the iptables has been shutdown
radtest test test localhost 1812 19861230
Sending Access-Request of id 124 to 127.0.0.1 port 1812
User-Name = "test"
User-Password = "test"
NAS-IP-Address = 127.0.0.1
NAS-Port = 1812
rad_recv: Access-Reject packet from host 127.0.0.1 port 1812,
id=124, length=20
radtest test test 173.224.212.50 1812 19861230
Sending Access-Request of id 236 to 173.234.232.50 port 1812
User-Name = "test"
User-Password = "test"
NAS-IP-Address = 127.0.0.1
NAS-Port = 1812
Sending Access-Request of id 236 to 173.224.212.50 port 1812
User-Name = "test"
User-Password = "test"
NAS-IP-Address = 127.0.0.1
NAS-Port = 1812
Sending Access-Request of id 236 to 173.224.212.50 port 1812
User-Name = "test"
User-Password = "test"
NAS-IP-Address = 127.0.0.1
NAS-Port = 1812
radclient: no response from server for ID 236 socket 3
2010/6/8 Spacelee
this is the file users' content
test Auth-Type:=MS-CHAP, User-Password:="test", Simultaneous-Use:=100
Service-Type = Framed-User,
Framed-Protocol = PPP,
Framed-IP-Address = 255.255.255.254,
Framed-IP-Netmask = 255.255.255.0
2010/6/8 Spacelee
i use netstat and found there is radius listen on 1812, 1813 and
1814 using udp
i shut down all the iptables both on the server of pptp and the
server radius
but the pptp can't be authenticated , the log is
RADIUS plugin initialized.
Jun 8 15:26:29 mountainview pppd[4604]: Plugin /usr/lib64/pppd/
2.4.4/radattr.so loaded.
Jun 8 15:26:29 mountainview pppd[4604]: RADATTR plugin initialized.
Jun 8 15:26:29 mountainview pppd[4604]: Plugin /usr/lib64/pptpd/
pptpd-logwtmp.so loaded.
Jun 8 15:26:29 mountainview pppd[4604]: pptpd-logwtmp: $Version$
Jun 8 15:26:29 mountainview pppd[4604]: pppd 2.4.4 started by root,
uid 0
Jun 8 15:26:29 mountainview pppd[4604]: Using interface ppp0
Jun 8 15:26:29 mountainview pppd[4604]: Connect: ppp0 <--> /dev/pts/1
Jun 8 15:27:03 mountainview pppd[4604]: rc_send_server: no reply
from RADIUS server puppet:1812
Jun 8 15:27:03 mountainview pppd[4604]: Peer test failed CHAP
authentication
Jun 8 15:27:03 mountainview pppd[4604]: Connection terminated.
Jun 8 15:27:03 mountainview pppd[4604]: Exit.
it says there is not reply
2010/6/8 Alan Buxey
Hi,
> i can start freeradius ok, but my pptp can't remote access radius
server, I telnet 1812 or 1813 , but both are connection refused, i
don't know what to do with this situation
firewall eg iptables , on the server you put freeradius on?
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
--
Spacelee
--
Spacelee
--
Spacelee
--
Spacelee
--
Spacelee
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Nicolas Goutte
extragroup GmbH - Karlsruhe
Waldstr. 49
76133 Karlsruhe
Germany
Geschäftsführer: Lars Busch
Registergericht: Amtsgericht Münster / HRB: 5624
Steuer Nr.: 337/5903/0421 / UstID: DE 204607841
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: i install freeradius successfully, but i can't telnet the port
Am 08.06.2010 um 09:38 schrieb Spacelee: this is the file users' content test Auth-Type:=MS-CHAP, User-Password:="test", Simultaneous-Use:=100 Try using Cleartext-Password:="Test" instead of User-Password:="Test" Service-Type = Framed-User, Framed-Protocol = PPP, Framed-IP-Address = 255.255.255.254, Framed-IP-Netmask = 255.255.255.0 [...] Nicolas Goutte extragroup GmbH - Karlsruhe Waldstr. 49 76133 Karlsruhe Germany Geschäftsführer: Lars Busch Registergericht: Amtsgericht Münster / HRB: 5624 Steuer Nr.: 337/5903/0421 / UstID: DE 204607841 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: i install freeradius successfully, but i can't telnet the port
i use radius -X to see the log, it looks like:
Ignoring request to authentication address * port 1812 from unknown client
123.116.121.228 port 56627
Ready to process requests.
Ignoring request to authentication address * port 1812 from unknown client
123.116.121.228 port 56627
Ready to process requests.
2010/6/8 Spacelee
> what should i write in client.conf
>
> mine is like this:
> client fremont.iqwer.com {
> ipaddr = 173.233.234.52
> shortname = fremont
> secret = 19861230
> nastype = other
> }
>
> 2010/6/8 Spacelee
>
>> on the radius server, i type the two command , and get those results, the
>> iptables has been shutdown
>>
>>
>> radtest test test localhost 1812 19861230
>> Sending Access-Request of id 124 to 127.0.0.1 port 1812
>> User-Name = "test"
>> User-Password = "test"
>> NAS-IP-Address = 127.0.0.1
>> NAS-Port = 1812
>> rad_recv: Access-Reject packet from host 127.0.0.1 port 1812, id=124,
>> length=20
>>
>>
>> radtest test test 173.224.212.50 1812 19861230
>> Sending Access-Request of id 236 to 173.234.232.50 port 1812
>> User-Name = "test"
>> User-Password = "test"
>> NAS-IP-Address = 127.0.0.1
>> NAS-Port = 1812
>> Sending Access-Request of id 236 to 173.224.212.50 port 1812
>> User-Name = "test"
>> User-Password = "test"
>> NAS-IP-Address = 127.0.0.1
>> NAS-Port = 1812
>> Sending Access-Request of id 236 to 173.224.212.50 port 1812
>> User-Name = "test"
>> User-Password = "test"
>> NAS-IP-Address = 127.0.0.1
>> NAS-Port = 1812
>> radclient: no response from server for ID 236 socket 3
>>
>>
>> 2010/6/8 Spacelee
>>
>>> this is the file users' content
>>> test Auth-Type:=MS-CHAP, User-Password:="test", Simultaneous-Use:=100
>>> Service-Type = Framed-User,
>>> Framed-Protocol = PPP,
>>> Framed-IP-Address = 255.255.255.254,
>>> Framed-IP-Netmask = 255.255.255.0
>>>
>>>
>>>
>>> 2010/6/8 Spacelee
>>>
>>> i use netstat and found there is radius listen on 1812, 1813 and 1814
using udp
i shut down all the iptables both on the server of pptp and the server
radius
but the pptp can't be authenticated , the log is
RADIUS plugin initialized.
Jun 8 15:26:29 mountainview pppd[4604]: Plugin
/usr/lib64/pppd/2.4.4/radattr.so loaded.
Jun 8 15:26:29 mountainview pppd[4604]: RADATTR plugin initialized.
Jun 8 15:26:29 mountainview pppd[4604]: Plugin
/usr/lib64/pptpd/pptpd-logwtmp.so loaded.
Jun 8 15:26:29 mountainview pppd[4604]: pptpd-logwtmp: $Version$
Jun 8 15:26:29 mountainview pppd[4604]: pppd 2.4.4 started by root, uid
0
Jun 8 15:26:29 mountainview pppd[4604]: Using interface ppp0
Jun 8 15:26:29 mountainview pppd[4604]: Connect: ppp0 <--> /dev/pts/1
Jun 8 15:27:03 mountainview pppd[4604]: rc_send_server: no reply from
RADIUS server puppet:1812
Jun 8 15:27:03 mountainview pppd[4604]: Peer test failed CHAP
authentication
Jun 8 15:27:03 mountainview pppd[4604]: Connection terminated.
Jun 8 15:27:03 mountainview pppd[4604]: Exit.
it says there is not reply
2010/6/8 Alan Buxey
Hi,
> > i can start freeradius ok, but my pptp can't remote access radius
> server, I telnet 1812 or 1813 , but both are connection refused, i don't
> know what to do with this situation
>
> firewall eg iptables , on the server you put freeradius on?
>
> alan
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
--
Spacelee
>>>
>>>
>>>
>>> --
>>> Spacelee
>>>
>>
>>
>>
>> --
>> Spacelee
>>
>
>
>
> --
> Spacelee
>
--
Spacelee
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: i install freeradius successfully, but i can't telnet the port
what should i write in client.conf
mine is like this:
client fremont.iqwer.com {
ipaddr = 173.233.234.52
shortname = fremont
secret = 19861230
nastype = other
}
2010/6/8 Spacelee
> on the radius server, i type the two command , and get those results, the
> iptables has been shutdown
>
>
> radtest test test localhost 1812 19861230
> Sending Access-Request of id 124 to 127.0.0.1 port 1812
> User-Name = "test"
> User-Password = "test"
> NAS-IP-Address = 127.0.0.1
> NAS-Port = 1812
> rad_recv: Access-Reject packet from host 127.0.0.1 port 1812, id=124,
> length=20
>
>
> radtest test test 173.224.212.50 1812 19861230
> Sending Access-Request of id 236 to 173.234.232.50 port 1812
> User-Name = "test"
> User-Password = "test"
> NAS-IP-Address = 127.0.0.1
> NAS-Port = 1812
> Sending Access-Request of id 236 to 173.224.212.50 port 1812
> User-Name = "test"
> User-Password = "test"
> NAS-IP-Address = 127.0.0.1
> NAS-Port = 1812
> Sending Access-Request of id 236 to 173.224.212.50 port 1812
> User-Name = "test"
> User-Password = "test"
> NAS-IP-Address = 127.0.0.1
> NAS-Port = 1812
> radclient: no response from server for ID 236 socket 3
>
>
> 2010/6/8 Spacelee
>
>> this is the file users' content
>> test Auth-Type:=MS-CHAP, User-Password:="test", Simultaneous-Use:=100
>> Service-Type = Framed-User,
>> Framed-Protocol = PPP,
>> Framed-IP-Address = 255.255.255.254,
>> Framed-IP-Netmask = 255.255.255.0
>>
>>
>>
>> 2010/6/8 Spacelee
>>
>> i use netstat and found there is radius listen on 1812, 1813 and 1814
>>> using udp
>>> i shut down all the iptables both on the server of pptp and the server
>>> radius
>>>
>>> but the pptp can't be authenticated , the log is
>>>
>>> RADIUS plugin initialized.
>>> Jun 8 15:26:29 mountainview pppd[4604]: Plugin
>>> /usr/lib64/pppd/2.4.4/radattr.so loaded.
>>> Jun 8 15:26:29 mountainview pppd[4604]: RADATTR plugin initialized.
>>> Jun 8 15:26:29 mountainview pppd[4604]: Plugin
>>> /usr/lib64/pptpd/pptpd-logwtmp.so loaded.
>>> Jun 8 15:26:29 mountainview pppd[4604]: pptpd-logwtmp: $Version$
>>> Jun 8 15:26:29 mountainview pppd[4604]: pppd 2.4.4 started by root, uid
>>> 0
>>> Jun 8 15:26:29 mountainview pppd[4604]: Using interface ppp0
>>> Jun 8 15:26:29 mountainview pppd[4604]: Connect: ppp0 <--> /dev/pts/1
>>> Jun 8 15:27:03 mountainview pppd[4604]: rc_send_server: no reply from
>>> RADIUS server puppet:1812
>>> Jun 8 15:27:03 mountainview pppd[4604]: Peer test failed CHAP
>>> authentication
>>> Jun 8 15:27:03 mountainview pppd[4604]: Connection terminated.
>>> Jun 8 15:27:03 mountainview pppd[4604]: Exit.
>>>
>>>
>>> it says there is not reply
>>>
>>> 2010/6/8 Alan Buxey
>>>
>>> Hi,
> i can start freeradius ok, but my pptp can't remote access radius
server, I telnet 1812 or 1813 , but both are connection refused, i don't
know what to do with this situation
firewall eg iptables , on the server you put freeradius on?
alan
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
>>>
>>>
>>>
>>> --
>>> Spacelee
>>>
>>
>>
>>
>> --
>> Spacelee
>>
>
>
>
> --
> Spacelee
>
--
Spacelee
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: i install freeradius successfully, but i can't telnet the port
on the radius server, i type the two command , and get those results, the iptables has been shutdown radtest test test localhost 1812 19861230 Sending Access-Request of id 124 to 127.0.0.1 port 1812 User-Name = "test" User-Password = "test" NAS-IP-Address = 127.0.0.1 NAS-Port = 1812 rad_recv: Access-Reject packet from host 127.0.0.1 port 1812, id=124, length=20 radtest test test 173.224.212.50 1812 19861230 Sending Access-Request of id 236 to 173.234.232.50 port 1812 User-Name = "test" User-Password = "test" NAS-IP-Address = 127.0.0.1 NAS-Port = 1812 Sending Access-Request of id 236 to 173.224.212.50 port 1812 User-Name = "test" User-Password = "test" NAS-IP-Address = 127.0.0.1 NAS-Port = 1812 Sending Access-Request of id 236 to 173.224.212.50 port 1812 User-Name = "test" User-Password = "test" NAS-IP-Address = 127.0.0.1 NAS-Port = 1812 radclient: no response from server for ID 236 socket 3 2010/6/8 Spacelee > this is the file users' content > test Auth-Type:=MS-CHAP, User-Password:="test", Simultaneous-Use:=100 > Service-Type = Framed-User, > Framed-Protocol = PPP, > Framed-IP-Address = 255.255.255.254, > Framed-IP-Netmask = 255.255.255.0 > > > > 2010/6/8 Spacelee > > i use netstat and found there is radius listen on 1812, 1813 and 1814 using >> udp >> i shut down all the iptables both on the server of pptp and the server >> radius >> >> but the pptp can't be authenticated , the log is >> >> RADIUS plugin initialized. >> Jun 8 15:26:29 mountainview pppd[4604]: Plugin >> /usr/lib64/pppd/2.4.4/radattr.so loaded. >> Jun 8 15:26:29 mountainview pppd[4604]: RADATTR plugin initialized. >> Jun 8 15:26:29 mountainview pppd[4604]: Plugin >> /usr/lib64/pptpd/pptpd-logwtmp.so loaded. >> Jun 8 15:26:29 mountainview pppd[4604]: pptpd-logwtmp: $Version$ >> Jun 8 15:26:29 mountainview pppd[4604]: pppd 2.4.4 started by root, uid 0 >> Jun 8 15:26:29 mountainview pppd[4604]: Using interface ppp0 >> Jun 8 15:26:29 mountainview pppd[4604]: Connect: ppp0 <--> /dev/pts/1 >> Jun 8 15:27:03 mountainview pppd[4604]: rc_send_server: no reply from >> RADIUS server puppet:1812 >> Jun 8 15:27:03 mountainview pppd[4604]: Peer test failed CHAP >> authentication >> Jun 8 15:27:03 mountainview pppd[4604]: Connection terminated. >> Jun 8 15:27:03 mountainview pppd[4604]: Exit. >> >> >> it says there is not reply >> >> 2010/6/8 Alan Buxey >> >> Hi, >>> > i can start freeradius ok, but my pptp can't remote access radius >>> server, I telnet 1812 or 1813 , but both are connection refused, i don't >>> know what to do with this situation >>> >>> firewall eg iptables , on the server you put freeradius on? >>> >>> alan >>> - >>> List info/subscribe/unsubscribe? See >>> http://www.freeradius.org/list/users.html >>> >> >> >> >> -- >> Spacelee >> > > > > -- > Spacelee > -- Spacelee - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: i install freeradius successfully, but i can't telnet the port
this is the file users' content test Auth-Type:=MS-CHAP, User-Password:="test", Simultaneous-Use:=100 Service-Type = Framed-User, Framed-Protocol = PPP, Framed-IP-Address = 255.255.255.254, Framed-IP-Netmask = 255.255.255.0 2010/6/8 Spacelee > i use netstat and found there is radius listen on 1812, 1813 and 1814 using > udp > i shut down all the iptables both on the server of pptp and the server > radius > > but the pptp can't be authenticated , the log is > > RADIUS plugin initialized. > Jun 8 15:26:29 mountainview pppd[4604]: Plugin > /usr/lib64/pppd/2.4.4/radattr.so loaded. > Jun 8 15:26:29 mountainview pppd[4604]: RADATTR plugin initialized. > Jun 8 15:26:29 mountainview pppd[4604]: Plugin > /usr/lib64/pptpd/pptpd-logwtmp.so loaded. > Jun 8 15:26:29 mountainview pppd[4604]: pptpd-logwtmp: $Version$ > Jun 8 15:26:29 mountainview pppd[4604]: pppd 2.4.4 started by root, uid 0 > Jun 8 15:26:29 mountainview pppd[4604]: Using interface ppp0 > Jun 8 15:26:29 mountainview pppd[4604]: Connect: ppp0 <--> /dev/pts/1 > Jun 8 15:27:03 mountainview pppd[4604]: rc_send_server: no reply from > RADIUS server puppet:1812 > Jun 8 15:27:03 mountainview pppd[4604]: Peer test failed CHAP > authentication > Jun 8 15:27:03 mountainview pppd[4604]: Connection terminated. > Jun 8 15:27:03 mountainview pppd[4604]: Exit. > > > it says there is not reply > > 2010/6/8 Alan Buxey > > Hi, >> > i can start freeradius ok, but my pptp can't remote access radius >> server, I telnet 1812 or 1813 , but both are connection refused, i don't >> know what to do with this situation >> >> firewall eg iptables , on the server you put freeradius on? >> >> alan >> - >> List info/subscribe/unsubscribe? See >> http://www.freeradius.org/list/users.html >> > > > > -- > Spacelee > -- Spacelee - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: i install freeradius successfully, but i can't telnet the port
i use netstat and found there is radius listen on 1812, 1813 and 1814 using udp i shut down all the iptables both on the server of pptp and the server radius but the pptp can't be authenticated , the log is RADIUS plugin initialized. Jun 8 15:26:29 mountainview pppd[4604]: Plugin /usr/lib64/pppd/2.4.4/radattr.so loaded. Jun 8 15:26:29 mountainview pppd[4604]: RADATTR plugin initialized. Jun 8 15:26:29 mountainview pppd[4604]: Plugin /usr/lib64/pptpd/pptpd-logwtmp.so loaded. Jun 8 15:26:29 mountainview pppd[4604]: pptpd-logwtmp: $Version$ Jun 8 15:26:29 mountainview pppd[4604]: pppd 2.4.4 started by root, uid 0 Jun 8 15:26:29 mountainview pppd[4604]: Using interface ppp0 Jun 8 15:26:29 mountainview pppd[4604]: Connect: ppp0 <--> /dev/pts/1 Jun 8 15:27:03 mountainview pppd[4604]: rc_send_server: no reply from RADIUS server puppet:1812 Jun 8 15:27:03 mountainview pppd[4604]: Peer test failed CHAP authentication Jun 8 15:27:03 mountainview pppd[4604]: Connection terminated. Jun 8 15:27:03 mountainview pppd[4604]: Exit. it says there is not reply 2010/6/8 Alan Buxey > Hi, > > i can start freeradius ok, but my pptp can't remote access radius server, > I telnet 1812 or 1813 , but both are connection refused, i don't know what > to do with this situation > > firewall eg iptables , on the server you put freeradius on? > > alan > - > List info/subscribe/unsubscribe? See > http://www.freeradius.org/list/users.html > -- Spacelee - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: i install freeradius successfully, but i can't telnet the port
Alan Buxey wrote: > Hi, >> i can start freeradius ok, but my pptp can't remote access radius server, I >> telnet 1812 or 1813 , but both are connection refused, i don't know what to >> do with this situation > > firewall eg iptables , on the server you put freeradius on? Err... "telnet" uses TCP, not UDP. You need to use "radtest" to test the server. See the FAQ for an example. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: i install freeradius successfully, but i can't telnet the port
Hi, > i can start freeradius ok, but my pptp can't remote access radius server, I > telnet 1812 or 1813 , but both are connection refused, i don't know what to > do with this situation firewall eg iptables , on the server you put freeradius on? alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
i install freeradius successfully, but i can't telnet the port
i can start freeradius ok, but my pptp can't remote access radius server, I telnet 1812 or 1813 , but both are connection refused, i don't know what to do with this situation -- Spacelee - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
