Re: i install freeradius successfully, but i can't telnet the port
thanks, i finally got it... 2010/6/8 Alan Buxey > Hi, > > > Ignoring request to authentication address * port 1812 from unknown > client 123.116.121.228 port 56627 > > ^^^ > > what should i write in client.conf > > I think, from the above. its fairly obvious? > > but I worry - because you havent got a simple test working > > > radtest test test localhost 1812 19861230 > > err, is 19861230 the secret for 127.0.0.1 (localhost?) I dont think it is > unles > you made it so...check clients.conf, it'll be testing123 > > alan > - > List info/subscribe/unsubscribe? See > http://www.freeradius.org/list/users.html > -- Spacelee - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: i install freeradius successfully, but i can't telnet the port
Hi, > Ignoring request to authentication address * port 1812 from unknown client > 123.116.121.228 port 56627 ^^^ > what should i write in client.conf I think, from the above. its fairly obvious? but I worry - because you havent got a simple test working > radtest test test localhost 1812 19861230 err, is 19861230 the secret for 127.0.0.1 (localhost?) I dont think it is unles you made it so...check clients.conf, it'll be testing123 alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: i install freeradius successfully, but i can't telnet the port
Am 08.06.2010 um 09:59 schrieb Spacelee: i use radius -X to see the log, it looks like: Ignoring request to authentication address * port 1812 from unknown client 123.116.121.228 port 56627 Ready to process requests. Ignoring request to authentication address * port 1812 from unknown client 123.116.121.228 port 56627 Ready to process requests. As far as I understand, such an error message means that the "unknown client" is not defined in client.conf and therefore freeradius discards the request (for security reasons). Have a nice day! 2010/6/8 Spacelee what should i write in client.conf mine is like this: client fremont.iqwer.com { ipaddr = 173.233.234.52 shortname = fremont secret = 19861230 nastype = other } 2010/6/8 Spacelee on the radius server, i type the two command , and get those results, the iptables has been shutdown radtest test test localhost 1812 19861230 Sending Access-Request of id 124 to 127.0.0.1 port 1812 User-Name = "test" User-Password = "test" NAS-IP-Address = 127.0.0.1 NAS-Port = 1812 rad_recv: Access-Reject packet from host 127.0.0.1 port 1812, id=124, length=20 radtest test test 173.224.212.50 1812 19861230 Sending Access-Request of id 236 to 173.234.232.50 port 1812 User-Name = "test" User-Password = "test" NAS-IP-Address = 127.0.0.1 NAS-Port = 1812 Sending Access-Request of id 236 to 173.224.212.50 port 1812 User-Name = "test" User-Password = "test" NAS-IP-Address = 127.0.0.1 NAS-Port = 1812 Sending Access-Request of id 236 to 173.224.212.50 port 1812 User-Name = "test" User-Password = "test" NAS-IP-Address = 127.0.0.1 NAS-Port = 1812 radclient: no response from server for ID 236 socket 3 2010/6/8 Spacelee this is the file users' content test Auth-Type:=MS-CHAP, User-Password:="test", Simultaneous-Use:=100 Service-Type = Framed-User, Framed-Protocol = PPP, Framed-IP-Address = 255.255.255.254, Framed-IP-Netmask = 255.255.255.0 2010/6/8 Spacelee i use netstat and found there is radius listen on 1812, 1813 and 1814 using udp i shut down all the iptables both on the server of pptp and the server radius but the pptp can't be authenticated , the log is RADIUS plugin initialized. Jun 8 15:26:29 mountainview pppd[4604]: Plugin /usr/lib64/pppd/ 2.4.4/radattr.so loaded. Jun 8 15:26:29 mountainview pppd[4604]: RADATTR plugin initialized. Jun 8 15:26:29 mountainview pppd[4604]: Plugin /usr/lib64/pptpd/ pptpd-logwtmp.so loaded. Jun 8 15:26:29 mountainview pppd[4604]: pptpd-logwtmp: $Version$ Jun 8 15:26:29 mountainview pppd[4604]: pppd 2.4.4 started by root, uid 0 Jun 8 15:26:29 mountainview pppd[4604]: Using interface ppp0 Jun 8 15:26:29 mountainview pppd[4604]: Connect: ppp0 <--> /dev/pts/1 Jun 8 15:27:03 mountainview pppd[4604]: rc_send_server: no reply from RADIUS server puppet:1812 Jun 8 15:27:03 mountainview pppd[4604]: Peer test failed CHAP authentication Jun 8 15:27:03 mountainview pppd[4604]: Connection terminated. Jun 8 15:27:03 mountainview pppd[4604]: Exit. it says there is not reply 2010/6/8 Alan Buxey Hi, > i can start freeradius ok, but my pptp can't remote access radius server, I telnet 1812 or 1813 , but both are connection refused, i don't know what to do with this situation firewall eg iptables , on the server you put freeradius on? alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- Spacelee -- Spacelee -- Spacelee -- Spacelee -- Spacelee - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html Nicolas Goutte extragroup GmbH - Karlsruhe Waldstr. 49 76133 Karlsruhe Germany Geschäftsführer: Lars Busch Registergericht: Amtsgericht Münster / HRB: 5624 Steuer Nr.: 337/5903/0421 / UstID: DE 204607841 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: i install freeradius successfully, but i can't telnet the port
Am 08.06.2010 um 09:38 schrieb Spacelee: this is the file users' content test Auth-Type:=MS-CHAP, User-Password:="test", Simultaneous-Use:=100 Try using Cleartext-Password:="Test" instead of User-Password:="Test" Service-Type = Framed-User, Framed-Protocol = PPP, Framed-IP-Address = 255.255.255.254, Framed-IP-Netmask = 255.255.255.0 [...] Nicolas Goutte extragroup GmbH - Karlsruhe Waldstr. 49 76133 Karlsruhe Germany Geschäftsführer: Lars Busch Registergericht: Amtsgericht Münster / HRB: 5624 Steuer Nr.: 337/5903/0421 / UstID: DE 204607841 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: i install freeradius successfully, but i can't telnet the port
i use radius -X to see the log, it looks like: Ignoring request to authentication address * port 1812 from unknown client 123.116.121.228 port 56627 Ready to process requests. Ignoring request to authentication address * port 1812 from unknown client 123.116.121.228 port 56627 Ready to process requests. 2010/6/8 Spacelee > what should i write in client.conf > > mine is like this: > client fremont.iqwer.com { > ipaddr = 173.233.234.52 > shortname = fremont > secret = 19861230 > nastype = other > } > > 2010/6/8 Spacelee > >> on the radius server, i type the two command , and get those results, the >> iptables has been shutdown >> >> >> radtest test test localhost 1812 19861230 >> Sending Access-Request of id 124 to 127.0.0.1 port 1812 >> User-Name = "test" >> User-Password = "test" >> NAS-IP-Address = 127.0.0.1 >> NAS-Port = 1812 >> rad_recv: Access-Reject packet from host 127.0.0.1 port 1812, id=124, >> length=20 >> >> >> radtest test test 173.224.212.50 1812 19861230 >> Sending Access-Request of id 236 to 173.234.232.50 port 1812 >> User-Name = "test" >> User-Password = "test" >> NAS-IP-Address = 127.0.0.1 >> NAS-Port = 1812 >> Sending Access-Request of id 236 to 173.224.212.50 port 1812 >> User-Name = "test" >> User-Password = "test" >> NAS-IP-Address = 127.0.0.1 >> NAS-Port = 1812 >> Sending Access-Request of id 236 to 173.224.212.50 port 1812 >> User-Name = "test" >> User-Password = "test" >> NAS-IP-Address = 127.0.0.1 >> NAS-Port = 1812 >> radclient: no response from server for ID 236 socket 3 >> >> >> 2010/6/8 Spacelee >> >>> this is the file users' content >>> test Auth-Type:=MS-CHAP, User-Password:="test", Simultaneous-Use:=100 >>> Service-Type = Framed-User, >>> Framed-Protocol = PPP, >>> Framed-IP-Address = 255.255.255.254, >>> Framed-IP-Netmask = 255.255.255.0 >>> >>> >>> >>> 2010/6/8 Spacelee >>> >>> i use netstat and found there is radius listen on 1812, 1813 and 1814 using udp i shut down all the iptables both on the server of pptp and the server radius but the pptp can't be authenticated , the log is RADIUS plugin initialized. Jun 8 15:26:29 mountainview pppd[4604]: Plugin /usr/lib64/pppd/2.4.4/radattr.so loaded. Jun 8 15:26:29 mountainview pppd[4604]: RADATTR plugin initialized. Jun 8 15:26:29 mountainview pppd[4604]: Plugin /usr/lib64/pptpd/pptpd-logwtmp.so loaded. Jun 8 15:26:29 mountainview pppd[4604]: pptpd-logwtmp: $Version$ Jun 8 15:26:29 mountainview pppd[4604]: pppd 2.4.4 started by root, uid 0 Jun 8 15:26:29 mountainview pppd[4604]: Using interface ppp0 Jun 8 15:26:29 mountainview pppd[4604]: Connect: ppp0 <--> /dev/pts/1 Jun 8 15:27:03 mountainview pppd[4604]: rc_send_server: no reply from RADIUS server puppet:1812 Jun 8 15:27:03 mountainview pppd[4604]: Peer test failed CHAP authentication Jun 8 15:27:03 mountainview pppd[4604]: Connection terminated. Jun 8 15:27:03 mountainview pppd[4604]: Exit. it says there is not reply 2010/6/8 Alan Buxey Hi, > > i can start freeradius ok, but my pptp can't remote access radius > server, I telnet 1812 or 1813 , but both are connection refused, i don't > know what to do with this situation > > firewall eg iptables , on the server you put freeradius on? > > alan > - > List info/subscribe/unsubscribe? See > http://www.freeradius.org/list/users.html > -- Spacelee >>> >>> >>> >>> -- >>> Spacelee >>> >> >> >> >> -- >> Spacelee >> > > > > -- > Spacelee > -- Spacelee - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: i install freeradius successfully, but i can't telnet the port
what should i write in client.conf mine is like this: client fremont.iqwer.com { ipaddr = 173.233.234.52 shortname = fremont secret = 19861230 nastype = other } 2010/6/8 Spacelee > on the radius server, i type the two command , and get those results, the > iptables has been shutdown > > > radtest test test localhost 1812 19861230 > Sending Access-Request of id 124 to 127.0.0.1 port 1812 > User-Name = "test" > User-Password = "test" > NAS-IP-Address = 127.0.0.1 > NAS-Port = 1812 > rad_recv: Access-Reject packet from host 127.0.0.1 port 1812, id=124, > length=20 > > > radtest test test 173.224.212.50 1812 19861230 > Sending Access-Request of id 236 to 173.234.232.50 port 1812 > User-Name = "test" > User-Password = "test" > NAS-IP-Address = 127.0.0.1 > NAS-Port = 1812 > Sending Access-Request of id 236 to 173.224.212.50 port 1812 > User-Name = "test" > User-Password = "test" > NAS-IP-Address = 127.0.0.1 > NAS-Port = 1812 > Sending Access-Request of id 236 to 173.224.212.50 port 1812 > User-Name = "test" > User-Password = "test" > NAS-IP-Address = 127.0.0.1 > NAS-Port = 1812 > radclient: no response from server for ID 236 socket 3 > > > 2010/6/8 Spacelee > >> this is the file users' content >> test Auth-Type:=MS-CHAP, User-Password:="test", Simultaneous-Use:=100 >> Service-Type = Framed-User, >> Framed-Protocol = PPP, >> Framed-IP-Address = 255.255.255.254, >> Framed-IP-Netmask = 255.255.255.0 >> >> >> >> 2010/6/8 Spacelee >> >> i use netstat and found there is radius listen on 1812, 1813 and 1814 >>> using udp >>> i shut down all the iptables both on the server of pptp and the server >>> radius >>> >>> but the pptp can't be authenticated , the log is >>> >>> RADIUS plugin initialized. >>> Jun 8 15:26:29 mountainview pppd[4604]: Plugin >>> /usr/lib64/pppd/2.4.4/radattr.so loaded. >>> Jun 8 15:26:29 mountainview pppd[4604]: RADATTR plugin initialized. >>> Jun 8 15:26:29 mountainview pppd[4604]: Plugin >>> /usr/lib64/pptpd/pptpd-logwtmp.so loaded. >>> Jun 8 15:26:29 mountainview pppd[4604]: pptpd-logwtmp: $Version$ >>> Jun 8 15:26:29 mountainview pppd[4604]: pppd 2.4.4 started by root, uid >>> 0 >>> Jun 8 15:26:29 mountainview pppd[4604]: Using interface ppp0 >>> Jun 8 15:26:29 mountainview pppd[4604]: Connect: ppp0 <--> /dev/pts/1 >>> Jun 8 15:27:03 mountainview pppd[4604]: rc_send_server: no reply from >>> RADIUS server puppet:1812 >>> Jun 8 15:27:03 mountainview pppd[4604]: Peer test failed CHAP >>> authentication >>> Jun 8 15:27:03 mountainview pppd[4604]: Connection terminated. >>> Jun 8 15:27:03 mountainview pppd[4604]: Exit. >>> >>> >>> it says there is not reply >>> >>> 2010/6/8 Alan Buxey >>> >>> Hi, > i can start freeradius ok, but my pptp can't remote access radius server, I telnet 1812 or 1813 , but both are connection refused, i don't know what to do with this situation firewall eg iptables , on the server you put freeradius on? alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html >>> >>> >>> >>> -- >>> Spacelee >>> >> >> >> >> -- >> Spacelee >> > > > > -- > Spacelee > -- Spacelee - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: i install freeradius successfully, but i can't telnet the port
on the radius server, i type the two command , and get those results, the iptables has been shutdown radtest test test localhost 1812 19861230 Sending Access-Request of id 124 to 127.0.0.1 port 1812 User-Name = "test" User-Password = "test" NAS-IP-Address = 127.0.0.1 NAS-Port = 1812 rad_recv: Access-Reject packet from host 127.0.0.1 port 1812, id=124, length=20 radtest test test 173.224.212.50 1812 19861230 Sending Access-Request of id 236 to 173.234.232.50 port 1812 User-Name = "test" User-Password = "test" NAS-IP-Address = 127.0.0.1 NAS-Port = 1812 Sending Access-Request of id 236 to 173.224.212.50 port 1812 User-Name = "test" User-Password = "test" NAS-IP-Address = 127.0.0.1 NAS-Port = 1812 Sending Access-Request of id 236 to 173.224.212.50 port 1812 User-Name = "test" User-Password = "test" NAS-IP-Address = 127.0.0.1 NAS-Port = 1812 radclient: no response from server for ID 236 socket 3 2010/6/8 Spacelee > this is the file users' content > test Auth-Type:=MS-CHAP, User-Password:="test", Simultaneous-Use:=100 > Service-Type = Framed-User, > Framed-Protocol = PPP, > Framed-IP-Address = 255.255.255.254, > Framed-IP-Netmask = 255.255.255.0 > > > > 2010/6/8 Spacelee > > i use netstat and found there is radius listen on 1812, 1813 and 1814 using >> udp >> i shut down all the iptables both on the server of pptp and the server >> radius >> >> but the pptp can't be authenticated , the log is >> >> RADIUS plugin initialized. >> Jun 8 15:26:29 mountainview pppd[4604]: Plugin >> /usr/lib64/pppd/2.4.4/radattr.so loaded. >> Jun 8 15:26:29 mountainview pppd[4604]: RADATTR plugin initialized. >> Jun 8 15:26:29 mountainview pppd[4604]: Plugin >> /usr/lib64/pptpd/pptpd-logwtmp.so loaded. >> Jun 8 15:26:29 mountainview pppd[4604]: pptpd-logwtmp: $Version$ >> Jun 8 15:26:29 mountainview pppd[4604]: pppd 2.4.4 started by root, uid 0 >> Jun 8 15:26:29 mountainview pppd[4604]: Using interface ppp0 >> Jun 8 15:26:29 mountainview pppd[4604]: Connect: ppp0 <--> /dev/pts/1 >> Jun 8 15:27:03 mountainview pppd[4604]: rc_send_server: no reply from >> RADIUS server puppet:1812 >> Jun 8 15:27:03 mountainview pppd[4604]: Peer test failed CHAP >> authentication >> Jun 8 15:27:03 mountainview pppd[4604]: Connection terminated. >> Jun 8 15:27:03 mountainview pppd[4604]: Exit. >> >> >> it says there is not reply >> >> 2010/6/8 Alan Buxey >> >> Hi, >>> > i can start freeradius ok, but my pptp can't remote access radius >>> server, I telnet 1812 or 1813 , but both are connection refused, i don't >>> know what to do with this situation >>> >>> firewall eg iptables , on the server you put freeradius on? >>> >>> alan >>> - >>> List info/subscribe/unsubscribe? See >>> http://www.freeradius.org/list/users.html >>> >> >> >> >> -- >> Spacelee >> > > > > -- > Spacelee > -- Spacelee - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: i install freeradius successfully, but i can't telnet the port
this is the file users' content test Auth-Type:=MS-CHAP, User-Password:="test", Simultaneous-Use:=100 Service-Type = Framed-User, Framed-Protocol = PPP, Framed-IP-Address = 255.255.255.254, Framed-IP-Netmask = 255.255.255.0 2010/6/8 Spacelee > i use netstat and found there is radius listen on 1812, 1813 and 1814 using > udp > i shut down all the iptables both on the server of pptp and the server > radius > > but the pptp can't be authenticated , the log is > > RADIUS plugin initialized. > Jun 8 15:26:29 mountainview pppd[4604]: Plugin > /usr/lib64/pppd/2.4.4/radattr.so loaded. > Jun 8 15:26:29 mountainview pppd[4604]: RADATTR plugin initialized. > Jun 8 15:26:29 mountainview pppd[4604]: Plugin > /usr/lib64/pptpd/pptpd-logwtmp.so loaded. > Jun 8 15:26:29 mountainview pppd[4604]: pptpd-logwtmp: $Version$ > Jun 8 15:26:29 mountainview pppd[4604]: pppd 2.4.4 started by root, uid 0 > Jun 8 15:26:29 mountainview pppd[4604]: Using interface ppp0 > Jun 8 15:26:29 mountainview pppd[4604]: Connect: ppp0 <--> /dev/pts/1 > Jun 8 15:27:03 mountainview pppd[4604]: rc_send_server: no reply from > RADIUS server puppet:1812 > Jun 8 15:27:03 mountainview pppd[4604]: Peer test failed CHAP > authentication > Jun 8 15:27:03 mountainview pppd[4604]: Connection terminated. > Jun 8 15:27:03 mountainview pppd[4604]: Exit. > > > it says there is not reply > > 2010/6/8 Alan Buxey > > Hi, >> > i can start freeradius ok, but my pptp can't remote access radius >> server, I telnet 1812 or 1813 , but both are connection refused, i don't >> know what to do with this situation >> >> firewall eg iptables , on the server you put freeradius on? >> >> alan >> - >> List info/subscribe/unsubscribe? See >> http://www.freeradius.org/list/users.html >> > > > > -- > Spacelee > -- Spacelee - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: i install freeradius successfully, but i can't telnet the port
i use netstat and found there is radius listen on 1812, 1813 and 1814 using udp i shut down all the iptables both on the server of pptp and the server radius but the pptp can't be authenticated , the log is RADIUS plugin initialized. Jun 8 15:26:29 mountainview pppd[4604]: Plugin /usr/lib64/pppd/2.4.4/radattr.so loaded. Jun 8 15:26:29 mountainview pppd[4604]: RADATTR plugin initialized. Jun 8 15:26:29 mountainview pppd[4604]: Plugin /usr/lib64/pptpd/pptpd-logwtmp.so loaded. Jun 8 15:26:29 mountainview pppd[4604]: pptpd-logwtmp: $Version$ Jun 8 15:26:29 mountainview pppd[4604]: pppd 2.4.4 started by root, uid 0 Jun 8 15:26:29 mountainview pppd[4604]: Using interface ppp0 Jun 8 15:26:29 mountainview pppd[4604]: Connect: ppp0 <--> /dev/pts/1 Jun 8 15:27:03 mountainview pppd[4604]: rc_send_server: no reply from RADIUS server puppet:1812 Jun 8 15:27:03 mountainview pppd[4604]: Peer test failed CHAP authentication Jun 8 15:27:03 mountainview pppd[4604]: Connection terminated. Jun 8 15:27:03 mountainview pppd[4604]: Exit. it says there is not reply 2010/6/8 Alan Buxey > Hi, > > i can start freeradius ok, but my pptp can't remote access radius server, > I telnet 1812 or 1813 , but both are connection refused, i don't know what > to do with this situation > > firewall eg iptables , on the server you put freeradius on? > > alan > - > List info/subscribe/unsubscribe? See > http://www.freeradius.org/list/users.html > -- Spacelee - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: i install freeradius successfully, but i can't telnet the port
Alan Buxey wrote: > Hi, >> i can start freeradius ok, but my pptp can't remote access radius server, I >> telnet 1812 or 1813 , but both are connection refused, i don't know what to >> do with this situation > > firewall eg iptables , on the server you put freeradius on? Err... "telnet" uses TCP, not UDP. You need to use "radtest" to test the server. See the FAQ for an example. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: i install freeradius successfully, but i can't telnet the port
Hi, > i can start freeradius ok, but my pptp can't remote access radius server, I > telnet 1812 or 1813 , but both are connection refused, i don't know what to > do with this situation firewall eg iptables , on the server you put freeradius on? alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
i install freeradius successfully, but i can't telnet the port
i can start freeradius ok, but my pptp can't remote access radius server, I telnet 1812 or 1813 , but both are connection refused, i don't know what to do with this situation -- Spacelee - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html