как заставить abills 0.4 работать

lasik · Чт май 08, 2008 11:18 am

собрал сервак на FreeBSD 6.3
NAS сервер Exppp
с abills 0.37 все работает идеально, с abills 0.4 не соединяется, выдает 691 ошибку (неправильный логин/пароль)
кто сталкивался с этим, и как решали

lasik · Чт май 08, 2008 11:26 am

а где вообще можно скачать архив abills 0.4 ?

ran · Сообщение **ran** » Чт май 08, 2008 11:32 am

не соединяется, выдает 691 ошибку (неправильный логин/пароль)

radiusd -X

а где вообще можно скачать архив abills 0.4 ?

cvs -z3 -d:pserver:anonymous@abills.cvs.sourceforge.net:/cvsroot/abills checkout -r rel-0-4 abills
http://abills.net.ua./wiki/doku.php?id= ... d:download

lasik · Чт май 08, 2008 11:34 am

после замены конфига все работает.

конфиг взял из 37 версии.

бред в общем какой то

lasik · Чт май 08, 2008 11:35 am

ran писал(а):
не соединяется, выдает 691 ошибку (неправильный логин/пароль)
radiusd -X
а где вообще можно скачать архив abills 0.4 ?
cvs -z3 -d:pserver:anonymous@abills.cvs.sourceforge.net:/cvsroot/abills checkout -r rel-0-4 abills
http://abills.net.ua./wiki/doku.php?id= ... d:download

Я так и ставил, я хочу пощупать сам абилс под виндой

ran · Сообщение **ran** » Чт май 08, 2008 12:08 pm

radiusd -X

в студию

lasik · Чт май 08, 2008 12:27 pm

Код: Выделить всё


Starting - reading configuration files ...
reread_config:  reading radiusd.conf
Config:   including file: /usr/local/etc/raddb/proxy.conf
Config:   including file: /usr/local/etc/raddb/clients.conf
Config:   including file: /usr/local/etc/raddb/snmp.conf
Config:   including file: /usr/local/etc/raddb/eap.conf
Config:   including file: /usr/local/etc/raddb/sql.conf
 main: prefix = "/usr/local"
 main: localstatedir = "/var"
 main: logdir = "/var/log"
 main: libdir = "/usr/local/lib"
 main: radacctdir = "/var/log/radacct"
 main: hostname_lookups = no
 main: snmp = no
 main: max_request_time = 30
 main: cleanup_delay = 5
 main: max_requests = 1024
 main: delete_blocked_requests = 0
 main: port = 0
 main: allow_core_dumps = no
 main: log_stripped_names = no
 main: log_file = "/var/log/radius.log"
 main: log_auth = no
 main: log_auth_badpass = no
 main: log_auth_goodpass = no
 main: pidfile = "/var/run/radiusd/radiusd.pid"
 main: user = "(null)"
 main: group = "(null)"
 main: usercollide = no
 main: lower_user = "no"
 main: lower_pass = "no"
 main: nospace_user = "no"
 main: nospace_pass = "no"
 main: checkrad = "/usr/local/sbin/checkrad"
 main: proxy_requests = yes
 proxy: retry_delay = 5
 proxy: retry_count = 3
 proxy: synchronous = no
 proxy: default_fallback = yes
 proxy: dead_time = 120
 proxy: post_proxy_authorize = no
 proxy: wake_all_if_all_dead = no
 security: max_attributes = 200
 security: reject_delay = 1
 security: status_server = no
 main: debug_level = 0
read_config_files:  reading dictionary
read_config_files:  reading naslist
Using deprecated naslist file.  Support for this will go away soon.
read_config_files:  reading clients
read_config_files:  reading realms
There appears to be another RADIUS server running on the authentication port 1812

lasik · Чт май 08, 2008 12:30 pm

А это при использование конфига от 37 абиллса

Код: Выделить всё


Starting - reading configuration files ...
reread_config:  reading radiusd.conf
Config:   including file: /usr/local/etc/raddb/proxy.conf
Config:   including file: /usr/local/etc/raddb/clients.conf
Config:   including file: /usr/local/etc/raddb/snmp.conf
Config:   including file: /usr/local/etc/raddb/eap.conf
Config:   including file: /usr/local/etc/raddb/sql.conf
 main: prefix = "/usr/local"
 main: localstatedir = "/var"
 main: logdir = "/var/log"
 main: libdir = "/usr/local/lib"
 main: radacctdir = "/var/log/radacct"
 main: hostname_lookups = no
 main: snmp = no
 main: max_request_time = 30
 main: cleanup_delay = 5
 main: max_requests = 1024
 main: delete_blocked_requests = 0
 main: port = 0
 main: allow_core_dumps = no
 main: log_stripped_names = no
 main: log_file = "/var/log/radius.log"
 main: log_auth = no
 main: log_auth_badpass = no
 main: log_auth_goodpass = no
 main: pidfile = "/var/run/radiusd/radiusd.pid"
 main: user = "(null)"
 main: group = "(null)"
 main: usercollide = no
 main: lower_user = "no"
 main: lower_pass = "no"
 main: nospace_user = "no"
 main: nospace_pass = "no"
 main: checkrad = "/usr/local/sbin/checkrad"
 main: proxy_requests = yes
 proxy: retry_delay = 5
 proxy: retry_count = 3
 proxy: synchronous = no
 proxy: default_fallback = yes
 proxy: dead_time = 120
 proxy: post_proxy_authorize = no
 proxy: wake_all_if_all_dead = no
 security: max_attributes = 200
 security: reject_delay = 1
 security: status_server = no
 main: debug_level = 0
read_config_files:  reading dictionary
read_config_files:  reading naslist
Using deprecated naslist file.  Support for this will go away soon.
read_config_files:  reading clients
read_config_files:  reading realms
There appears to be another RADIUS server running on the authentication port 1812

ran · Сообщение **ran** » Чт май 08, 2008 12:35 pm

ты при коннекте лог покажи нафиг мне при старте... кста а это что за фигня:

There appears to be another RADIUS server running on the authentication port 1812

lasik · Чт май 08, 2008 12:49 pm

он точно такой же.
я же говорю что когда я конфиг от 0,37б взял и влепил вместо 0,40б все стало работать, там или что то в конфиге не так, или же нужно по другому настраевать систему

lasik · Чт май 08, 2008 1:03 pm

и как бы я не умею ловить

ran · Сообщение **ran** » Чт май 08, 2008 1:12 pm

lasik писал(а):он точно такой же.

кто он? лог коннекта покажи... где-то такой:

Код: Выделить всё

rad_recv: Access-Request packet from host 127.0.0.1:36681, id=1, length=131
        Service-Type = Framed-User
        Framed-Protocol = PPP
        User-Name = "ran"
        MS-CHAP-Challenge = 0x253dff34bc9e387f578b57a9fc278849
        MS-CHAP2-Response = 0x2d0080b0dd998a421cd2d96bc4f9e844670500000000000000005e75ae8b5474d65ce22c98cd24094050d9d0a50993787ef5
        NAS-IP-Address = 192.168.1.1
        NAS-Port = 4
  Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 16
  modcall[authorize]: module "preprocess" returns ok for request 16
Exec-Program output: User-Password == "ну типа пароль"
Exec-Program-Wait: value-pairs: User-Password == "hfYbytNfrcjY"
Exec-Program: returned: 0
  modcall[authorize]: module "pre_auth" returns ok for request 16
  rlm_mschap: Found MS-CHAP attributes.  Setting 'Auth-Type  = mschap'
  modcall[authorize]: module "mschap" returns ok for request 16
    rlm_realm: No '@' in User-Name = "ran", looking up realm NULL
    rlm_realm: No such realm "NULL"
  modcall[authorize]: module "suffix" returns noop for request 16
    users: Matched entry DEFAULT at line 1
  modcall[authorize]: module "files" returns ok for request 16
modcall: leaving group authorize (returns ok) for request 16
  rad_check_password:  Found Auth-Type MS-CHAP
auth: type "MS-CHAP"
  Processing the authenticate section of radiusd.conf
modcall: entering group MS-CHAP for request 16
  rlm_mschap: Told to do MS-CHAPv2 for ran with NT-Password
rlm_mschap: adding MS-CHAPv2 MPPE keys
  modcall[authenticate]: module "mschap" returns ok for request 16
modcall: leaving group MS-CHAP (returns ok) for request 16
Exec-Program output: Session-Timeout = 0, MS-MPPE-Encryption-Types = 0x00000006, Session-Octets-Limit = 0, PPPD-Downstream-Speed-Limit = 0, MS-CHAP2-SUCCESS = 0x2d533d39304142333046303143353831454242424638443639383031393741453241424537463032363543, MS-MPPE-Encryption-Policy = 0x00000001, Acct-Interim-Interval = 60, PPPD-Upstream-Speed-Limit = 0, Octets-Direction = 0, Framed-IP-Address = 10.16.0.1, Framed-IP-Netmask = 255.255.255.255, 
Exec-Program-Wait: value-pairs: Session-Timeout = 0, MS-MPPE-Encryption-Types = 0x00000006, Session-Octets-Limit = 0, PPPD-Downstream-Speed-Limit = 0, MS-CHAP2-SUCCESS = 0x2d533d39304142333046303143353831454242424638443639383031393741453241424537463032363543, MS-MPPE-Encryption-Policy = 0x00000001, Acct-Interim-Interval = 60, PPPD-Upstream-Speed-Limit = 0, Octets-Direction = 0, Framed-IP-Address = 10.16.0.1, Framed-IP-Netmask = 255.255.255.255, 
Exec-Program: returned: 0
Sending Access-Accept of id 1 to 127.0.0.1 port 36681
        MS-CHAP2-Success = 0x2d533d39304142333046303143353831454242424638443639383031393741453241424537463032363543
        MS-MPPE-Recv-Key = 0xe56a35f246469d630628110c0e2d4284
        MS-MPPE-Send-Key = 0x7094739988632922938fe95260fb9ad9
        MS-MPPE-Encryption-Policy = 0x00000001
        MS-MPPE-Encryption-Types = 0x00000006
        Session-Timeout = 0
        Session-Octets-Limit = 0
        PPPD-Downstream-Speed-Limit = Send-Auth-None
        Acct-Interim-Interval = 60
        PPPD-Upstream-Speed-Limit = Bridge-No
        Octets-Direction = Route-IP-No
        Framed-IP-Address = 10.16.0.1
        Framed-IP-Netmask = 255.255.255.255
Finished request 16
Going to the next request
--- Walking the entire request list ---
Cleaning up request 15 ID 0 with timestamp 4822f9f1
Cleaning up request 14 ID 255 with timestamp 4822f9f1
Waking up in 6 seconds...
rad_recv: Accounting-Request packet from host 127.0.0.1:36681, id=2, length=95
        Acct-Session-Id = "4822F9F73FD900"
        User-Name = "ran"
        Acct-Status-Type = Start
        Service-Type = Framed-User
        Framed-Protocol = PPP
        Acct-Authentic = RADIUS
        NAS-Port-Type = Virtual
        Framed-IP-Address = 10.16.0.1
        NAS-IP-Address = 192.168.1.1
        NAS-Port = 4
        Acct-Delay-Time = 0
  Processing the preacct section of radiusd.conf
modcall: entering group preacct for request 17
  modcall[preacct]: module "preprocess" returns noop for request 17
rlm_acct_unique: Hashing 'NAS-Port = 4,Client-IP-Address = 127.0.0.1,NAS-IP-Address = 192.168.1.1,Acct-Session-Id = "4822F9F73FD900",User-Name = "ran"'
rlm_acct_unique: Acct-Unique-Session-ID = "51b90ef53148d7f3".
  modcall[preacct]: module "acct_unique" returns ok for request 17
    rlm_realm: No '@' in User-Name = "ran", looking up realm NULL
    rlm_realm: No such realm "NULL"
  modcall[preacct]: module "suffix" returns noop for request 17
    acct_users: Matched entry DEFAULT at line 1
  modcall[preacct]: module "files" returns ok for request 17
modcall: leaving group preacct (returns ok) for request 17
  Processing the accounting section of radiusd.conf
modcall: entering group accounting for request 17
radius_xlat:  '/var/log/radius/radacct/127.0.0.1/detail-20080508'
rlm_detail: /var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d expands to /var/log/radius/radacct/127.0.0.1/detail-20080508
  modcall[accounting]: module "detail" returns ok for request 17
  modcall[accounting]: module "unix" returns ok for request 17
radius_xlat:  '/var/log/radius/radutmp'
radius_xlat:  'ran'
  modcall[accounting]: module "radutmp" returns ok for request 17
modcall: leaving group accounting (returns ok) for request 17
Exec-Program output: 
Exec-Program: returned: 0
Sending Accounting-Response of id 2 to 127.0.0.1 port 36681
Finished request 17

lasik · Чт май 08, 2008 1:40 pm

а как его можно поймать, потому что когда я нажиммаю соединение и набираю
radiusd -X
мне выдает только это

ran · Сообщение **ran** » Чт май 08, 2008 1:59 pm

прибиваешь радиус
запускаешь radiusd -X
коннектишься и смотришь консоль

sopov · Чт май 08, 2008 6:46 pm