Использую abills 40b / pptpd / pppd / chap / короче говоря обычный vpn без наворотов, без шифрования в том числе. Строю на убунте 8.10, freeradius 2.1.0
главная проблема сейчас - /var/run/radattr.pppx - путой, искал и на данном форуме, и на гугле, много испробовал, словари вроде все дополнены, но тем не менее:
syslog:
Код: Выделить всё
RADATTR plugin wrote 0 line(s) to file /var/run/radattr.ppp1.Код: Выделить всё
Starting - reading configuration files ...
including configuration file /etc/freeradius/radiusd.conf
including configuration file /etc/freeradius/clients.conf
group = freerad
user = freerad
including dictionary file /etc/freeradius/dictionary
main {
prefix = "/usr"
localstatedir = "/var"
logdir = "/var/log/freeradius"
libdir = "/usr/lib/freeradius"
radacctdir = "/var/log/freeradius/radacct"
hostname_lookups = no
max_request_time = 30
cleanup_delay = 5
max_requests = 1024
allow_core_dumps = no
pidfile = "/var/run/freeradius/freeradius.pid"
checkrad = "/usr/sbin/checkrad"
debug_level = 0
proxy_requests = no
log {
stripped_names = no
auth = no
auth_badpass = no
auth_goodpass = no
}
security {
max_attributes = 200
reject_delay = 1
status_server = no
}
}
client 172.25.138.146 {
require_message_authenticator = no
secret = "radsecret"
shortname = "shortname"
}
client 127.0.0.1 {
require_message_authenticator = no
secret = "radsecret"
shortname = "shortname"
}
radiusd: #### Loading Realms and Home Servers ####
radiusd: #### Instantiating modules ####
instantiate {
Module: Linked to module rlm_exec
Module: Instantiating exec
exec {
wait = yes
input_pairs = "request"
shell_escape = yes
}
Module: Linked to module rlm_expr
Module: Instantiating expr
}
radiusd: #### Loading Virtual Servers ####
modules {
Module: Checking authenticate {...} for more modules to load
Module: Linked to module rlm_pap
Module: Instantiating pap
pap {
encryption_scheme = "auto"
auto_header = yes
}
Module: Linked to module rlm_chap
Module: Instantiating chap
Module: Checking authorize {...} for more modules to load
Module: Linked to module rlm_preprocess
Module: Instantiating preprocess
preprocess {
huntgroups = "/etc/freeradius/huntgroups"
hints = "/etc/freeradius/hints"
with_ascend_hack = no
ascend_channels_per_line = 23
with_ntdomain_hack = no
with_specialix_jetstream_hack = no
with_cisco_vsa_hack = no
with_alvarion_vsa_hack = no
}
Module: Linked to module rlm_files
Module: Instantiating files
files {
usersfile = "/etc/freeradius/users"
acctusersfile = "/etc/freeradius/acct_users"
compat = "no"
}
Module: Checking preacct {...} for more modules to load
Module: Linked to module rlm_acct_unique
Module: Instantiating acct_unique
acct_unique {
key = "User-Name, Acct-Session-Id, NAS-IP-Address, Client-IP-Address, NAS-Port"
}
Module: Checking accounting {...} for more modules to load
Module: Linked to module rlm_detail
Module: Instantiating detail
detail {
detailfile = "/var/log/freeradius/radacct/%{Client-IP-Address}/detail-%Y%m%d"
header = "%t"
detailperm = 384
dirperm = 493
locking = no
log_packet_header = no
}
}
radiusd: #### Opening IP addresses and Ports ####
bind_address = *
WARNING: The directive 'bind_adress' is deprecated, and will be removed in future versions of FreeRADIUS. Please edit the configuration files to use the directive 'listen'.
Listening on authentication address * port 1812
Listening on accounting address * port 1813
Ready to process requests.
rad_recv: Access-Request packet from host 127.0.0.1 port 57836, id=255, length=91
Service-Type = Framed-User
Framed-Protocol = PPP
User-Name = "abaddon"
CHAP-Challenge = 0x231b11be6782e2ba28f038f3c5885b1424
CHAP-Password = 0x76c8e476262df800fd99c3ff7802bd8a86
NAS-IP-Address = 127.0.1.1
NAS-Port = 1
+- entering group authorize {...}
++[preprocess] returns ok
[files] users: Matched entry DEFAULT at line 1
++[files] returns ok
Found Auth-Type = Accept
Auth-Type = Accept, accepting the user
Sending Access-Accept of id 255 to 127.0.0.1 port 57836
Finished request 0.
Going to the next request
Waking up in 4.9 seconds.
rad_recv: Accounting-Request packet from host 127.0.0.1 port 51521, id=0, length=99
Acct-Session-Id = "4953F1D52FB600"
User-Name = "abaddon"
Acct-Status-Type = Start
Service-Type = Framed-User
Framed-Protocol = PPP
Acct-Authentic = RADIUS
NAS-Port-Type = Async
Framed-IP-Address = 192.168.1.1
NAS-IP-Address = 127.0.1.1
NAS-Port = 1
Acct-Delay-Time = 0
+- entering group preacct {...}
++[preprocess] returns ok
[acct_unique] Hashing 'NAS-Port = 1,Client-IP-Address = 127.0.0.1,NAS-IP-Address = 127.0.1.1,Acct-Session-Id = "4953F1D52FB600",User-Name = "abaddon"'
[acct_unique] Acct-Unique-Session-ID = "0db4f6d309bddf8c".
++[acct_unique] returns ok
[files] acct_users: Matched entry DEFAULT at line 1
++[files] returns ok
+- entering group accounting {...}
expand: /var/log/freeradius/radacct/%{Client-IP-Address}/detail-%Y%m%d -> /var/log/freeradius/radacct/127.0.0.1/detail-20081225
[detail] /var/log/freeradius/radacct/%{Client-IP-Address}/detail-%Y%m%d expands to /var/log/freeradius/radacct/127.0.0.1/detail-20081225
expand: %t -> Thu Dec 25 22:49:25 2008
++[detail] returns ok
Sending Accounting-Response of id 0 to 127.0.0.1 port 51521
Finished request 1.
Cleaning up request 1 ID 0 with timestamp +8
Going to the next request
Waking up in 4.9 seconds.
Cleaning up request 0 ID 255 with timestamp +8
Ready to process requests.
/var/log/freeradius/radacct/127.0.0.1/detail-xxxxxxxx:
Код: Выделить всё
Thu Dec 25 22:35:42 2008
Acct-Session-Id = "4953EE9B2CE200"
User-Name = "abaddon"
Acct-Status-Type = Stop
Service-Type = Framed-User
Framed-Protocol = PPP
Acct-Authentic = RADIUS
Acct-Session-Time = 3
Acct-Output-Octets = 33
Acct-Input-Octets = 1651
Acct-Output-Packets = 2
Acct-Input-Packets = 15
NAS-Port-Type = Async
Acct-Terminate-Cause = User-Request
Framed-IP-Address = 192.168.1.1
NAS-IP-Address = 127.0.1.1
NAS-Port = 1
Acct-Delay-Time = 0
Acct-Unique-Session-Id = "a442b776ab963176"
Timestamp = 1230237342
Request-Authenticator = Verified
Thu Dec 25 22:49:25 2008
Acct-Session-Id = "4953F1D52FB600"
User-Name = "abaddon"
Acct-Status-Type = Start
Service-Type = Framed-User
Framed-Protocol = PPP
Acct-Authentic = RADIUS
NAS-Port-Type = Async
Framed-IP-Address = 192.168.1.1
NAS-IP-Address = 127.0.1.1
NAS-Port = 1
Acct-Delay-Time = 0
Acct-Unique-Session-Id = "0db4f6d309bddf8c"
Timestamp = 1230238165
Request-Authenticator = Verified