Radius test only success in the local machine, but can't through remote machine

mko picture mko · Apr 20, 2012 · Viewed 18.5k times · Source

I install the freeradius in Ubuntu 10 through apt-get.

after make the server running. the local test is valid:

yozloy@SNDA-192-168-21-78:/usr/bin$ echo "User-Name=testuser,Password=123456" | radclient 127.0.0.1:1812 auth testing123 -x
Sending Access-Request of id 245 to 127.0.0.1 port 1812
    User-Name = "testuser"
    Password = "0054444944"
rad_recv: Access-Accept packet from host 127.0.0.1 port 1812, id=245, length=20

But in the remote machine, it seems that there's no response from the radius server machine:

root@SNDA-192-168-14-131:/home/yozloy# echo "User-Name=testuser,Password=123456" | radclient 58.215.164.98:1812 auth testing123 -x
Sending Access-Request of id 36 to 58.215.164.98 port 1812
    User-Name = "testuser"
    Password = "0054444944"
Sending Access-Request of id 36 to 58.215.164.98 port 1812
    User-Name = "testuser"
    Password = "0054444944"
Sending Access-Request of id 36 to 58.215.164.98 port 1812
    User-Name = "testuser"
    Password = "0054444944"
radclient: no response from server for ID 36 socket 3

Here's my configure file:

clients.conf

client 58.215.164.98 {
        ipaddr = 58.215.164.98
        secret = testing123

        require_message_authenticator = no
}

users

testuser CLeartext-Password := "0054444944"

update the configure file(I'm not actually change anything) radiusd.conf

proxy_requests  = yes
$INCLUDE proxy.conf
$INCLUDE clients.conf
thread pool {
        start_servers = 5
        max_servers = 32
        min_spare_servers = 3
        max_spare_servers = 10
        max_requests_per_server = 0
}
modules {
        $INCLUDE ${confdir}/modules/
        $INCLUDE eap.conf
}
instantiate {
        exec
        expr
        expiration
        logintime
}
$INCLUDE policy.conf
$INCLUDE sites-enabled/

yozloy@SNDA-192-168-18-234:/etc/freeradius$ netstat -an
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address           Foreign Address         State      
tcp        0      0 0.0.0.0:22              0.0.0.0:*               LISTEN     
tcp        0      0 192.168.18.234:22       123.5.13.20:3274        ESTABLISHED
tcp6       0      0 :::22                   :::*                    LISTEN     
udp        0      0 0.0.0.0:1812            0.0.0.0:*                          
udp        0      0 0.0.0.0:1813            0.0.0.0:*                          
udp        0      0 0.0.0.0:1814            0.0.0.0:*                          
Active UNIX domain sockets (servers and established)
Proto RefCnt Flags       Type       State         I-Node   Path
unix  4      [ ]         DGRAM                    2838     /dev/log
unix  2      [ ACC ]     STREAM     LISTENING     2166     @/com/ubuntu/upstart
unix  2      [ ]         DGRAM                    2272     @/org/kernel/udev/udevd
unix  3      [ ]         STREAM     CONNECTED     3351     
unix  3      [ ]         STREAM     CONNECTED     3350     
unix  2      [ ]         DGRAM                    3173     
unix  2      [ ]         DGRAM                    2893     
unix  3      [ ]         DGRAM                    2304     
unix  3      [ ]         DGRAM                    2303     
unix  3      [ ]         STREAM     CONNECTED     2256     @/com/ubuntu/upstart
unix  3      [ ]         STREAM     CONNECTED     2255  

Answer

castor picture castor · Apr 23, 2012

Correct me if I am wrong but, IP address of SNDA-192-168-14-131 against your RADIUS server (SNDA-192-168-21-78) is not 58.215.164.98, is it ? If it is not, that is your answer. You RADIUS server will only work against NAS configured in clients.conf with correct secrets.

Try adding 192.168.14.131 (if it is that host's IP address) to clients.conf and try then.