ok, I think the server is reading files on the path: /usr/local/etc/
so, I modified the file /usr/local/etc/raddb/clients.conf by adding:
client ipipgw {
ipaddr = 192.168.6.201
secret = testing123
shortname = c3725
nastype = cisco
Hi,
User-Password = -*\333\003D\215\345\\\302\036\251\320:\373ȇ
note the mess
..then note this warning:
WARNING: Unprintable characters in the password. Double-check the
shared secret on the server and the NAS!
not sure how much more help the server can give you. you have
Hi, I don't know why the user-password id encrypted, how can I make a
cleartext secret...;((
thank in advance
On 11 May 2010 14:23, Alan Buxey a.l.m.bu...@lboro.ac.uk wrote:
Hi,
User-Password = -*\333\003D\215\345\\\302\036\251\320:\373ȇ
note the mess
..then note this warning:
Le 11/05/2010 10:09, htt thanh a écrit :
Hi, I don't know why the user-password id encrypted, how can I make a
cleartext secret...;((
The pb is with your client shared secret: the secret you set in
/etc/raddb/clients.conf and in your NAS configuration.
It seems that you haven't set the same
hafthanhf wrote:
hi Alan, I have the same problem with Martin, plz help me.. I added
something in the raddb/clients.conf file as follow:
So... run the server in debugging mode as suggested everywhere.
READ the debug output. Is the client listed?
READ the debug output. When it receives
thank for repy Alan,
for clear, here is my topology
PC
|
SW---Router (c3725)
|
Radius server
when I telnet to the router fromg my PC, the radius server list the clients
as unknow clients.as soon as I entered the password.
the debug output is as follow:
ignoring request to authentication
htt thanh wrote:
thank for repy Alan,
for clear, here is my topology
I didn't ask for that.
when I telnet to the router fromg my PC, the radius server list the
clients as unknow clients.as soon as I entered the password.
You already said that.
the debug output is as follow:
hi Alan, thank you to get me out of the wrong way, I've checked the whole
of server's output,in debug mode , and I found out that the radius included
its configuration file with this path, all of them are:
/usr/local/etc/raddb/xxx
e.g:
including configuration file
htt thanh wrote:
hi Alan, thank you to get me out of the wrong way, I've checked the
whole of server's output,in debug mode , and I found out that the radius
included its configuration file with this path, all of them are:
/usr/local/etc/raddb/xxx
e.g:
including configuration file
nastype = cisco
login = user
password= userpass
}
--
View this message in context:
http://old.nabble.com/The-client-does-not-connect-_*_*_*_-tp19672841p28468884.html
Sent from the FreeRadius - User mailing list archive at Nabble.com.
-
List info
Again, what's the debug output? Does the client manage to send a RADIUS
packet that actually arrives at the server?
//anders
2008/10/1 Martin Silvero [EMAIL PROTECTED]
sorry
what they say is ...
The access point has an IP 10.0.31.x and is included within
raddb/client.conf, forget
the problem is...
when I want to connect from the notebook to the network radius, asking me to
configure the profile to the type of authentication, and so on.
what set everything is ready and when I try to connect but does not connect
to the server and are not recorded requests.
on the server
Get Wireshark and start looking at what happens to radius packets.
Staring at it is not going to make it work. You will find out that you
do have a firewall after all. Or your AP is sending packets to the wrong
address. Or your routing is messed up.
Ivan Kalik
Kalik Informatika ISP
Dana
ok tnt, I try that with the application, testing and do you notice. Thank
you very much!
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Well, monitoring and testing in the log have this:
Going to the next request
Waking up in 2.9 seconds.
rad_recv: Access-Request packet from host 10.0.31.40 port 1645, id=68,
length=144
User-Name = msilvero
Framed-MTU = 1400
Called-Station-Id = 0019.2fdb.9e00
rlm_eap_tls: TLS 1.0 Handshake [length 0384], Certificate
-- verify error:num=20:unable to get local issuer certificate
rlm_eap_tls: TLS 1.0 Alert [length 0002], fatal unknown_ca
TLS Alert write:fatal:unknown CA
TLS_accept:error in SSLv3 read client certificate B
rlm_eap: SSL error
yes, I imported client.p12 and ca.der to the notebook, the checked again
and are fine
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
* Martin Silvero [EMAIL PROTECTED] [2008-10-03 21:02]:
yes, I imported client.p12 and ca.der to the notebook, the checked
again and are fine
Can you please learn to quote and reply properly. Thanks.
--
Vegard Svanberg [EMAIL PROTECTED] [EMAIL PROTECTED] (EFnet)]
-
List
I apologize to you for not knowing English well, I live in Argentina and my
native language is spanish (I doubt you know Spanish), if you are unable to
interpret what I am trying to say is your problem with your gray matter ,
but please if I express ticket that I am not wrong understanding and can
Hi,
Well, when I want to connect from the notebook to the network radius, asking
me to configure the profile to the type of authentication, and so on.
what set everything is ready and when I try to connect but does not connect
to the server and are not recorded requests.
What could be the
I do not understand what I want to say
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
sorry
what they say is ...
The access point has an IP 10.0.31.x and is included within
raddb/client.conf, forget the IP 10.0.42.250 because I connect to that
network to another topic.
The server is in the 10.30.1.x , we do not need to be on the same network
because they are VLAN
hello!!
Well, as was the theme for the month so again clarify the principle also
returned thread.
The server is installed and tested it with the test and walk in perfect
condition.
I configured the radius in the client (access point) and a local user
testing,
the user is in a notebook in which
The access point has an IP 10.0.31.x and is included within
raddb/client.conf, forget the IP 10.0.42.250 because I connect to that
network to another topic.
The server is in the 10.30.1.x , we do not need to be on the same network
because they are VLAN ruteables. Pinging responds well.
What could
Que? No Habla Espanol. Habla Ingles??
That, and how to order a beer is roughly the extent of my Spanish.
//anders
On 26/09/2008 15:53, Martin Silvero [EMAIL PROTECTED] wrote:
el access point tiena la IP 10.0.31.40 http://10.0.31.40 y esta incluida
dentro de raddb/client.conf, olvidemos la
You say 10.0.32.x is on a different network than 10.0.42.x?
What's your netmasks and your routing table like? What network is your
client on and what network is your server on? Can you ping the server (or
access it in any way) from the client?
This is really more a basic networking question than
el access point tiena la IP 10.0.31.40 y esta incluida dentro de
raddb/client.conf, olvidemos la IP 10.0.42.250 porque me conecte a esa red
para otro tema.
El servidor esta en la 10.30.1.x y no hace falta que esté en la misma red
porque son VLAN ruteables. Haciendo ping responde bien.
¿cual
Good morning!
I am with a new problem, I feel like I'm close.
My problem now is that set in a notebook the connection to authenticate with
tls but not connecting, I am not showing any error, just does not connect,
you run into the radius with -x and is waiting for requests.
Why is this wrong?
any firewall ?
try with ntradping ( free tool to test radius )
2008/9/25 Martin Silvero [EMAIL PROTECTED]:
Good morning!
I am with a new problem, I feel like I'm close.
My problem now is that set in a notebook the connection to authenticate with
tls but not connecting, I am not showing any
The firewall is disabled, and probe with the tool NTRadPing and the result
in the radius is as follows:
Thu Sep 25 12:49:16 2008 : Debug: Ignoring request to authentication address
* port 1812 from unknown client 10.0.42.250 port 1083
Thu Sep 25 12:49:16 2008 : Debug: Ready to process
Martin Silvero wrote:
Thu Sep 25 12:49:16 2008 : Debug: Ignoring request to authentication
address * port 1812 from unknown client 10.0.42.250
Well... did you add that IP as a client in raddb/clients.conf?
Alan DeKok.
-
List info/subscribe/unsubscribe? See
in fact this IP (10.0.42.250) is another network which is connected to the
notebook, which I have done now is to disconnect from the network and try to
connect to the radius of the outcome this time is that in the radius server
does not There is movement and the tool NTRadPing I get: no response
Can you ping the radius server from the access point. This is a
networking issue - nothing to do with radius.
Ivan Kalik
Kalik Informatika ISP
Dana 25/9/2008, Martin Silvero [EMAIL PROTECTED] piše:
in fact this IP (10.0.42.250) is another network which is connected to the
notebook, which I
Yes, tried to ping and responds quickly and without losses. Also I did from
the server and also responds.
What could be the problem?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
maybe its a hotspot issue , i had one with some Mikrotik Hotspot and
had to do an IP - Hotspot - IP Binding.
theorically its a NAT issue
2008/9/25 [EMAIL PROTECTED]:
Can you ping the radius server from the access point. This is a
networking issue - nothing to do with radius.
Ivan Kalik
Then try to telnet (port 1812) from access point to server. If you can't
- problem is firewall. If you can - you haven't configured radius on AP
properly.
Ivan Kalik
Kalik Informatika ISP
Dana 25/9/2008, Martin Silvero [EMAIL PROTECTED] piše:
Yes, tried to ping and responds quickly and without
Hi All,
Please don't forget that radius is UDP, and telnet TCP - firewall
might be protocol specific and the fact that you can't telnet to port
1812 doesn't mean you can't use radius.
kind regards
Pshem
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
37 matches
Mail list logo