我通过 apt-get 在 Ubuntu 10 中安装了 freeradius。
使服务器运行后。本地测试有效:
yozloy@SNDA-192-168-21-78:/usr/bin$ echo "User-Name=testuser,Password=123456" | radclient 127.0.0.1:1812 auth testing123 -x
Sending Access-Request of id 245 to 127.0.0.1 port 1812
User-Name = "testuser"
Password = "0054444944"
rad_recv: Access-Accept packet from host 127.0.0.1 port 1812, id=245, length=20
但是在远程机器上,radius服务器机器好像没有响应:
root@SNDA-192-168-14-131:/home/yozloy# echo "User-Name=testuser,Password=123456" | radclient 58.215.164.98:1812 auth testing123 -x
Sending Access-Request of id 36 to 58.215.164.98 port 1812
User-Name = "testuser"
Password = "0054444944"
Sending Access-Request of id 36 to 58.215.164.98 port 1812
User-Name = "testuser"
Password = "0054444944"
Sending Access-Request of id 36 to 58.215.164.98 port 1812
User-Name = "testuser"
Password = "0054444944"
radclient: no response from server for ID 36 socket 3
这是我的配置文件:
clients.conf
client 58.215.164.98 {
ipaddr = 58.215.164.98
secret = testing123
require_message_authenticator = no
}
用户
testuser CLeartext-Password := "0054444944"
更新配置文件(我实际上并没有改变任何东西) radiusd.conf
proxy_requests = yes
$INCLUDE proxy.conf
$INCLUDE clients.conf
thread pool {
start_servers = 5
max_servers = 32
min_spare_servers = 3
max_spare_servers = 10
max_requests_per_server = 0
}
modules {
$INCLUDE ${confdir}/modules/
$INCLUDE eap.conf
}
instantiate {
exec
expr
expiration
logintime
}
$INCLUDE policy.conf
$INCLUDE sites-enabled/
yozloy@SNDA-192-168-18-234:/etc/freeradius$ netstat -an
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN
tcp 0 0 192.168.18.234:22 123.5.13.20:3274 ESTABLISHED
tcp6 0 0 :::22 :::* LISTEN
udp 0 0 0.0.0.0:1812 0.0.0.0:*
udp 0 0 0.0.0.0:1813 0.0.0.0:*
udp 0 0 0.0.0.0:1814 0.0.0.0:*
Active UNIX domain sockets (servers and established)
Proto RefCnt Flags Type State I-Node Path
unix 4 [ ] DGRAM 2838 /dev/log
unix 2 [ ACC ] STREAM LISTENING 2166 @/com/ubuntu/upstart
unix 2 [ ] DGRAM 2272 @/org/kernel/udev/udevd
unix 3 [ ] STREAM CONNECTED 3351
unix 3 [ ] STREAM CONNECTED 3350
unix 2 [ ] DGRAM 3173
unix 2 [ ] DGRAM 2893
unix 3 [ ] DGRAM 2304
unix 3 [ ] DGRAM 2303
unix 3 [ ] STREAM CONNECTED 2256 @/com/ubuntu/upstart
unix 3 [ ] STREAM CONNECTED 2255
如果我错了请纠正我,但是,针对您的 RADIUS 服务器 (SNDA-192-168-21-78) 的 SNDA-192-168-14-131 的 IP 地址不是 58.215.164.98,是吗? 如果不是,那就是你的答案。您的 RADIUS 服务器将仅适用于在 clients.conf 中配置的具有正确机密的 NAS。
尝试将 192.168.14.131(如果它是该主机的 IP 地址)添加到 clients.conf 然后再试。
我有类似的问题,请参阅下面的结果 radsniff
[root@pgw-radius raddb]# radsniff -i ens192 2023-03-17 20:35:10.488047 (1) 访问请求 ID 78 ens192:10.0.34.13:48796 -> 10.0.33.108:1812 +0.000 2023-03-17 20:35:11.493349 (1) ** rtx ** 访问请求 ID 78 ens192:10.0.34.13:48796 -> 10.0.33.108:1812 +1.005 2023-03-17 20:35:12.495804 (1) ** rtx ** 访问请求 ID 78 ens192:10.0.34.13:48796 -> 10.0.33.108:1812 +2.007 2023-03-17 20:35:17.695804 (1) ** norsp ** 访问请求 ID 78 ens192:10.0.34.13:48796 -> 10.0.33.108:1812 2023-03-17 20:35:24.131674 (4) 访问请求 ID 79 ens192:10.0.34.13:48796 -> 10.0.33.108:1812 +13.643 2023-03-17 20:35:25.135911 (4) ** rtx ** 访问请求 ID 79 ens192:10.0.34.13:48796 -> 10.0.33.108:1812 +14.647 2023-03-17 20:35:26.139788 (4) ** rtx ** 访问请求 ID 79 ens192:10.0.34.13:48796 -> 10.0.33.108:1812 +15.651 2023-03-17 20:35:31.339788 (4) ** norsp ** 访问请求 ID 79 ens192:10.0.34.13:48796 -> 10.0.33.108:1812 2023-03-17 20:35:37.775036 (7) 访问请求 ID 80 ens192:10.0.34.13:48796 -> 10.0.33.108:1812 +27.286 2023-03-17 20:35:38.779478 (7) ** rtx ** 访问请求 ID 80 ens192:10.0.34.13:48796 -> 10.0.33.108:1812 +28.291 2023-03-17 20:35:39.769882 (7) ** rtx ** 访问请求 ID 80 ens192:10.0.34.13:48796 -> 10.0.33.108:1812 +29.281 2023-03-17 20:35:44.969882 (7) ** norsp ** 访问请求 ID 80 ens192:10.0.34.13:48796 -> 10.0.33.108:1812