Set up freeradius+mysql of radius server
platform fc7
1. install mysql
devel + client rpm package
Start mysql service
service mysqld start
Change mysql as root user (Note:mysql as root user)
mysql -uroot -p
Create radius database
creat database radius;
use mysql;
update user set password=password('your password') where user='root';
Admin remote server login mysql database
update user set host='%' where user='root';
Quit and restart mysql
quit
service mysqld restart
3. Install freeradius
Download freeraidus package from www.freeradius.org
Compile and install
tar xvfz freeradius.tar.gz
cd xvfz freeradius-0.8.1
./configure
make
make install
Create raius table for mysql database
cd src/modules/rlm_sql/drivers/rlm_sql_mysql
mysql -uroot -pyour_password radius < db_mysql.sql
Change freeradius configuration
cd /usr/local/etc/raddb
Change radiusd.conf,let's support sql (See below)
authorize {
preprocess
chap
mschap
suffix
sql
}
accouting {
….
sql
…
}
Change sql.conf
server="localhost"
login="root"
password="mysql的root的密码"
radius_db="radius"
Add test accout into mysql database
Add group
mysql -uroot -pyour_password radius
insert into radgroupreply (groupname,attribute,op,value) values ('user','Auth-Type',':=','Local');
insert into radgroupreply (groupname,attribute,op,value) values ('user','Service-Type',':=','Framed-User');
insert into radgroupreply (groupname,attribute,op,value) values ('user','Framed-IP-Address',':=','255.255.255.254');
insert into radgroupreply (groupname,attribute,op,values) values ('user','Framed-IP-Netmask',':=','255.255.255.0');
insert into radgroupcheck(groupname,attribute,op,value) values ('user','Auth-Type',':=','Local');
insert into radgroupcheck(groupname,attribute,op,value) values ('user','Service-Type',':=','Framed-User');
insert into radgroupcheck (groupname,attribute,op,value) values ('user','Framed-IP-Address',':=','255.255.255.254');
insert into radgroupcheck (groupname,attribute,op,values) values ('user','Framed-IP-Netmask',':=','255.255.255.0');
Add test accout
insert into radcheck (username,attribute,op,value) values ('test','User-Password',':=','test')
Add test accout into group table
insert into usergroup (username,groupname) values ('test','user');
4. Start radius service、test accout
Start with debug model
radiusd -X
Test accout
radtest test teset localhost 0 testing123
If you saw radius's replay,server works well。
Following was listed below which liked you saw.
Sending Access-Request of id 93 to 127.0.0.1 port 1812
User-Name = "test"
User-Password = "test"
NAS-IP-Address = 255.255.255.255
NAS-Port = 0
rad_recv: Access-Accept packet from host 127.0.0.1:1812, id=93, length=38
Service-Type = Framed-User
Framed-IP-Address = 255.255.255.255
Framed-IP-Netmask = 255.255.255.0
Set up freeradius+mysql of radius server
platform fc7
1. install mysql
devel + client rpm package
Start mysql service
service mysqld start
Change mysql as root user (Note:mysql as root user)
mysql -uroot -p
Create radius database
creat database radius;
use mysql;
update user set password=password('your password') where user='root';
Admin remote server login mysql database
update user set host='%' where user='root';
Quit and restart mysql
quit
service mysqld restart
3. Install freeradius
Download freeraidus package from www.freeradius.org
Compile and install
tar xvfz freeradius.tar.gz
cd xvfz freeradius-0.8.1
./configure
make
make install
Create raius table for mysql database
cd src/modules/rlm_sql/drivers/rlm_sql_mysql
mysql -uroot -pyour_password radius < db_mysql.sql
Change freeradius configuration
cd /usr/local/etc/raddb
Change radiusd.conf,let's support sql (See below)
authorize {
preprocess
chap
mschap
suffix
sql
}
accouting {
….
sql
…
}
Change sql.conf
server="localhost"
login="root"
password="mysql的root的密码"
radius_db="radius"
Add test accout into mysql database
Add group
mysql -uroot -pyour_password radius
insert into radgroupreply (groupname,attribute,op,value) values ('user','Auth-Type',':=','Local');
insert into radgroupreply (groupname,attribute,op,value) values ('user','Service-Type',':=','Framed-User');
insert into radgroupreply (groupname,attribute,op,value) values ('user','Framed-IP-Address',':=','255.255.255.254');
insert into radgroupreply (groupname,attribute,op,values) values ('user','Framed-IP-Netmask',':=','255.255.255.0');
insert into radgroupcheck(groupname,attribute,op,value) values ('user','Auth-Type',':=','Local');
insert into radgroupcheck(groupname,attribute,op,value) values ('user','Service-Type',':=','Framed-User');
insert into radgroupcheck (groupname,attribute,op,value) values ('user','Framed-IP-Address',':=','255.255.255.254');
insert into radgroupcheck (groupname,attribute,op,values) values ('user','Framed-IP-Netmask',':=','255.255.255.0');
Add test accout
insert into radcheck (username,attribute,op,value) values ('test','User-Password',':=','test')
Add test accout into group table
insert into usergroup (username,groupname) values ('test','user');
4. Start radius service、test accout
Start with debug model
radiusd -X
Test accout
radtest test teset localhost 0 testing123
If you saw radius's replay,server works well。
Following was listed below which liked you saw.
Sending Access-Request of id 93 to 127.0.0.1 port 1812
User-Name = "test"
User-Password = "test"
NAS-IP-Address = 255.255.255.255
NAS-Port = 0
rad_recv: Access-Accept packet from host 127.0.0.1:1812, id=93, length=38
Service-Type = Framed-User
Framed-IP-Address = 255.255.255.255
Framed-IP-Netmask = 255.255.255.0