全球主机交流论坛

标题: PPTPD+L2TP+RADIUSCLIENT 对接 Radius Manager 3.9 失败 求原因 [打印本页]
作者: Meiam    时间: 2011-12-9 14:42
标题: PPTPD+L2TP+RADIUSCLIENT 对接 Radius Manager 3.9 失败 求原因
PPTPD+L2TP+RADIUSCLIENT 对接 Radius Manager 3.9 失败 求原因

我在Radius Manager 添加好了NAS

别且关闭了 FreeRadius 然后用 Radiusd -X 命令启动查看

我VPN 连接的时候 Radius 有接受到信息

但是一直提示 691 密码错误。这应该是哪里的原因。

求大神帮助

[ 本帖最后由 Meiam 于 2011-12-9 15:28 编辑 ]
作者: cnweb    时间: 2011-12-9 14:42
不懂
作者: 樱桃大丸子    时间: 2011-12-9 14:50
又是一个卖VPN的
作者: wusir    时间: 2011-12-9 14:52
有什麼管理SSH的介紹介紹
作者: Meiam    时间: 2011-12-9 15:27
日志如下

Plugin /usr/lib/pppd/2.4.4/radius.so loaded.
RADIUS plugin initialized.
Plugin /usr/lib/pppd/2.4.4/radattr.so loaded.
RADATTR plugin initialized.
Using interface ppp0
Connect: ppp0 <--> /dev/pts/1
/usr/local/etc/radiusclient/radiusclient.conf: line 83: unrecognized keyword: radius_deadtime
RADIUS: Can't read config file /usr/local/etc/radiusclient/radiusclient.conf
Peer user failed CHAP authentication
Connection terminated.
Plugin /usr/lib/pppd/2.4.4/radius.so loaded.
RADIUS plugin initialized.
Plugin /usr/lib/pppd/2.4.4/radattr.so loaded.
RADATTR plugin initialized.
Using interface ppp0
Connect: ppp0 <--> /dev/pts/1
/usr/local/etc/radiusclient/radiusclient.conf: line 83: unrecognized keyword: radius_deadtime
RADIUS: Can't read config file /usr/local/etc/radiusclient/radiusclient.conf
Peer user failed CHAP authentication
Connection terminated.
Plugin /usr/lib/pppd/2.4.4/radius.so loaded.
RADIUS plugin initialized.
Plugin /usr/lib/pppd/2.4.4/radattr.so loaded.
RADATTR plugin initialized.
Using interface ppp0
Connect: ppp0 <--> /dev/pts/1
/usr/local/etc/radiusclient/radiusclient.conf: line 83: unrecognized keyword: radius_deadtime
RADIUS: Can't read config file /usr/local/etc/radiusclient/radiusclient.conf
Peer user failed CHAP authentication
Connection terminated.
Plugin /usr/lib/pppd/2.4.4/radius.so loaded.
RADIUS plugin initialized.
Plugin /usr/lib/pppd/2.4.4/radattr.so loaded.
RADATTR plugin initialized.
Using interface ppp0
Connect: ppp0 <--> /dev/pts/1
/usr/local/etc/radiusclient/radiusclient.conf: line 83: unrecognized keyword: radius_deadtime
RADIUS: Can't read config file /usr/local/etc/radiusclient/radiusclient.conf
Peer user failed CHAP authentication
Connection terminated.
Plugin /usr/lib/pppd/2.4.4/radius.so loaded.
RADIUS plugin initialized.
Plugin /usr/lib/pppd/2.4.4/radattr.so loaded.
RADATTR plugin initialized.
Using interface ppp0
Connect: ppp0 <--> /dev/pts/1
/usr/local/etc/radiusclient/radiusclient.conf: line 83: unrecognized keyword: radius_deadtime
RADIUS: Can't read config file /usr/local/etc/radiusclient/radiusclient.conf
Peer user failed CHAP authentication
Connection terminated.
Plugin /usr/lib/pppd/2.4.4/radius.so loaded.
RADIUS plugin initialized.
Plugin /usr/lib/pppd/2.4.4/radattr.so loaded.
RADATTR plugin initialized.
Using interface ppp0
Connect: ppp0 <--> /dev/pts/1
/usr/local/etc/radiusclient/radiusclient.conf: line 83: unrecognized keyword: radius_deadtime
RADIUS: Can't read config file /usr/local/etc/radiusclient/radiusclient.conf
Peer user failed CHAP authentication
Connection terminated.
Plugin /usr/lib/pppd/2.4.4/radius.so loaded.
RADIUS plugin initialized.
Plugin /usr/lib/pppd/2.4.4/radattr.so loaded.
RADATTR plugin initialized.
Using interface ppp0
Connect: ppp0 <--> /dev/pts/1
/usr/local/etc/radiusclient/radiusclient.conf: line 83: unrecognized keyword: radius_deadtime
RADIUS: Can't read config file /usr/local/etc/radiusclient/radiusclient.conf
Peer user failed CHAP authentication
Connection terminated.
作者: UCVPS    时间: 2011-12-9 15:31
/usr/local/etc/radiusclient/radiusclient.conf: line 83: unrecognized keyword: radius_deadtime
作者: cxd44    时间: 2011-12-9 15:31
绑顶一下,确实不懂这方面的
作者: Meiam    时间: 2011-12-9 15:42
原帖由 UCVPS 于 2011-12-9 15:31 发表
/usr/local/etc/radiusclient/radiusclient.conf: line 83: unrecognized keyword: radius_deadtime



我知道是这里的问题。但是不知道怎么解决
作者: 店小二    时间: 2011-12-9 15:42
83行内容贴出来
作者: zyzit    时间: 2011-12-9 15:55
不懂,坐看高手出招
作者: Meiam    时间: 2011-12-9 15:57
原帖由 店小二 于 2011-12-9 15:42 发表
83行内容贴出来
  1. # General settings

  3. # specify which authentication comes first respectively which
  4. # authentication is used. possible values are: "radius" and "local".
  5. # if you specify "radius,local" then the RADIUS server is asked
  6. # first then the local one. if only one keyword is specified only
  7. # this server is asked.
  8. auth_order        radius,local

  10. # maximum login tries a user has
  11. login_tries        4

  13. # timeout for all login tries
  14. # if this time is exceeded the user is kicked out
  15. login_timeout        60

  17. # name of the nologin file which when it exists disables logins.
  18. # it may be extended by the ttyname which will result in
  19. # a terminal specific lock (e.g. /etc/nologin.ttyS2 will disable
  20. # logins on /dev/ttyS2)
  21. nologin /etc/nologin

  23. # name of the issue file. it's only display when no username is passed
  24. # on the radlogin command line
  25. issue        /usr/local/etc/radiusclient/issue

  27. # RADIUS settings

  29. # RADIUS server to use for authentication requests. this config
  30. # item can appear more then one time. if multiple servers are
  31. # defined they are tried in a round robin fashion if one
  32. # server is not answering.
  33. # optionally you can specify a the port number on which is remote
  34. # RADIUS listens separated by a colon from the hostname. if
  35. # no port is specified /etc/services is consulted of the radius
  36. # service. if this fails also a compiled in default is used.
  37. authserver         192.168.1.4:1812

  39. # RADIUS server to use for accouting requests. All that I
  40. # said for authserver applies, too.
  41. #
  42. acctserver         192.168.1.4:1813

  44. # file holding shared secrets used for the communication
  45. # between the RADIUS client and server
  46. servers                /usr/local/etc/radiusclient/servers

  48. # dictionary of allowed attributes and values
  49. # just like in the normal RADIUS distributions
  50. dictionary         /usr/local/etc/radiusclient/dictionary

  52. # program to call for a RADIUS authenticated login
  53. login_radius        /usr/local/sbin/login.radius

  55. # file which holds sequence number for communication with the
  56. # RADIUS server
  57. seqfile                /var/run/radius.seq

  59. # file which specifies mapping between ttyname and NAS-Port attribute
  60. mapfile                /usr/local/etc/radiusclient/port-id-map

  62. # default authentication realm to append to all usernames if no
  63. # realm was explicitly specified by the user
  64. # the radiusd directly form Livingston doesnt use any realms, so leave
  65. # it blank then
  66. default_realm

  68. # time to wait for a reply from the RADIUS server
  69. radius_timeout        10

  71. # resend request this many times before trying the next server
  72. radius_retries        3

  74. # The length of time in seconds that we skip a nonresponsive RADIUS
  75. # server for transaction requests.  Server(s) being in the "dead" state
  76. # are tried only after all other non-dead servers have been tried and
  77. # failed or timeouted.  The deadtime interval starts when the server
  78. # does not respond to an authentication/accounting request transmissions.
  79. # When the interval expires, the "dead" server would be re-tried again,
  80. # and if it's still down then it will be considered "dead" for another
  81. # such interval and so on. This option is no-op if there is only one
  82. # server in the list. Set to 0 in order to disable the feature.
  83. radius_deadtime        0
  84. # local address from which radius packets have to be sent
  85. bindaddr *

  87. # LOCAL settings

  89. # program to execute for local login
  90. # it must support the -f flag for preauthenticated login
  91. login_local        /bin/login
复制代码
83 行是  radius_deadtime        0
作者: 店小二    时间: 2011-12-9 16:00
radius_deadtime        0
注释掉 试试 或者 去掉 0

[ 本帖最后由 店小二 于 2011-12-9 16:03 编辑 ]
作者: Meiam    时间: 2011-12-9 16:02
原帖由 店小二 于 2011-12-9 16:00 发表
radius_deadtime        0
注释掉 试试



注释掉

/usr/local/etc/radiusclient/radiusclient.conf: line 86: unrecognized keyword: bindaddr
RADIUS: Can't read config file /usr/local/etc/radiusclient/radiusclient.conf

在注释掉 bindaddr *

还是不行
作者: Meiam    时间: 2011-12-9 16:02
原帖由 店小二 于 2011-12-9 16:00 发表
radius_deadtime        0
注释掉 试试



注释掉

/usr/local/etc/radiusclient/radiusclient.conf: line 86: unrecognized keyword: bindaddr
RADIUS: Can't read config file /usr/local/etc/radiusclient/radiusclient.conf

在注释掉 bindaddr *

还是不行
作者: 店小二    时间: 2011-12-9 16:04
bindaddr * 这行需要注释掉
作者: Meiam    时间: 2011-12-9 16:04
原帖由 店小二 于 2011-12-9 16:04 发表
bindaddr * 这行需要注释掉



还是不行的。我之前已经测试过了
作者: Meiam    时间: 2011-12-9 16:04
原帖由 店小二 于 2011-12-9 16:04 发表
bindaddr * 这行需要注释掉



还是不行的。我之前已经测试过了
作者: 店小二    时间: 2011-12-9 16:05
#radius_deadtime        0
#bindaddr *
偶的是全部注释掉的
作者: Meiam    时间: 2011-12-9 16:11
原帖由 店小二 于 2011-12-9 16:05 发表
#radius_deadtime        0
#bindaddr *
偶的是全部注释掉的



全部注释掉还是 691 疯了
作者: Meiam    时间: 2011-12-9 16:11
原帖由 店小二 于 2011-12-9 16:05 发表
#radius_deadtime        0
#bindaddr *
偶的是全部注释掉的



全部注释掉还是 691 疯了
作者: 店小二    时间: 2011-12-9 16:15
再看日志,看问题处在哪儿
作者: Meiam    时间: 2011-12-9 16:15
Dec  9 15:38:07 Centos pppd[14549]: /usr/local/etc/radiusclient/radiusclient.conf: line 86: unrecognized keyword: bindaddr
Dec  9 15:38:07 Centos pppd[14549]: RADIUS: Can't read config file /usr/local/etc/radiusclient/radiusclient.conf
Dec  9 15:38:07 Centos pppd[14549]: Peer user failed CHAP authentication
Dec  9 15:38:07 Centos pppd[14549]: Connection terminated.
Dec  9 15:38:07 Centos pppd[14549]: Exit.
Dec  9 15:38:07 Centos pptpd[14548]: CTRL: Client 192.168.1.10 control connection finished
Dec  9 15:38:10 Centos pptpd[14581]: MGR: connections limit (100) reached, extra IP addresses ignored
Dec  9 15:38:10 Centos pptpd[14582]: MGR: Manager process started
Dec  9 15:38:10 Centos pptpd[14582]: MGR: Maximum of 100 connections available
Dec  9 15:38:13 Centos pptpd[14584]: CTRL: Client 192.168.1.10 control connection started
Dec  9 15:38:13 Centos pptpd[14584]: CTRL: Starting call (launching pppd, opening GRE)
Dec  9 15:38:13 Centos pppd[14585]: Plugin /usr/lib/pppd/2.4.4/radius.so loaded.
Dec  9 15:38:13 Centos pppd[14585]: RADIUS plugin initialized.
Dec  9 15:38:13 Centos pppd[14585]: Plugin /usr/lib/pppd/2.4.4/radattr.so loaded.
Dec  9 15:38:13 Centos pppd[14585]: RADATTR plugin initialized.
Dec  9 15:38:13 Centos pppd[14585]: pppd 2.4.4 started by root, uid 0
Dec  9 15:38:13 Centos pppd[14585]: Using interface ppp0
Dec  9 15:38:13 Centos pppd[14585]: Connect: ppp0 <--> /dev/pts/1
Dec  9 15:38:13 Centos pppd[14585]: /usr/local/etc/radiusclient/radiusclient.conf: line 86: unrecognized keyword: bindaddr
Dec  9 15:38:13 Centos pppd[14585]: RADIUS: Can't read config file /usr/local/etc/radiusclient/radiusclient.conf
Dec  9 15:38:13 Centos pppd[14585]: Peer user failed CHAP authentication
Dec  9 15:38:13 Centos pppd[14585]: Connection terminated.
Dec  9 15:38:13 Centos pppd[14585]: Exit.
Dec  9 15:38:13 Centos pptpd[14584]: GRE: read(fd=6,buffer=8059a40,len=8196) from PTY failed: status = -1 error = Input/output error, usually caused by unexpected termination of pppd, check option syntax and pppd logs
Dec  9 15:38:13 Centos pptpd[14584]: CTRL: PTY read or GRE write failed (pty,gre)=(6,7)
Dec  9 15:38:13 Centos pptpd[14584]: CTRL: Client 192.168.1.10 control connection finished
Dec  9 15:42:47 Centos init: Trying to re-exec init
Dec  9 15:44:13 Centos pptpd[22233]: MGR: connections limit (100) reached, extra IP addresses ignored
Dec  9 15:44:13 Centos pptpd[22234]: MGR: Manager process started
Dec  9 15:44:13 Centos pptpd[22234]: MGR: Maximum of 100 connections available
Dec  9 15:44:59 Centos pptpd[22238]: CTRL: Client 192.168.1.10 control connection started
Dec  9 15:44:59 Centos pptpd[22238]: CTRL: Starting call (launching pppd, opening GRE)
Dec  9 15:44:59 Centos pppd[22239]: Plugin /usr/lib/pppd/2.4.4/radius.so loaded.
Dec  9 15:44:59 Centos pppd[22239]: RADIUS plugin initialized.
Dec  9 15:44:59 Centos pppd[22239]: Plugin /usr/lib/pppd/2.4.4/radattr.so loaded.
Dec  9 15:44:59 Centos pppd[22239]: RADATTR plugin initialized.
Dec  9 15:44:59 Centos pppd[22239]: pppd 2.4.4 started by root, uid 0
Dec  9 15:44:59 Centos pppd[22239]: Using interface ppp0
Dec  9 15:44:59 Centos pppd[22239]: Connect: ppp0 <--> /dev/pts/1
Dec  9 15:44:59 Centos pptpd[22238]: CTRL: Ignored a SET LINK INFO packet with real ACCMs!
Dec  9 15:44:59 Centos pppd[22239]: /usr/local/etc/radiusclient/radiusclient.conf: line 83: unrecognized keyword: radius_deadtime
Dec  9 15:44:59 Centos pppd[22239]: RADIUS: Can't read config file /usr/local/etc/radiusclient/radiusclient.conf
Dec  9 15:44:59 Centos pppd[22239]: Peer user failed CHAP authentication
Dec  9 15:44:59 Centos pppd[22239]: Connection terminated.
Dec  9 15:44:59 Centos pppd[22239]: Exit.
Dec  9 15:44:59 Centos pptpd[22238]: CTRL: Client 192.168.1.10 control connection finished
Dec  9 16:08:21 Centos pptpd[25889]: MGR: connections limit (100) reached, extra IP addresses ignored
Dec  9 16:08:21 Centos pptpd[25890]: MGR: Manager process started
Dec  9 16:08:21 Centos pptpd[25890]: MGR: Maximum of 100 connections available
Dec  9 16:08:48 Centos pptpd[25892]: CTRL: Client 192.168.1.10 control connection started
Dec  9 16:08:48 Centos pptpd[25892]: CTRL: Starting call (launching pppd, opening GRE)
Dec  9 16:08:48 Centos pppd[25893]: Plugin /usr/lib/pppd/2.4.4/radius.so loaded.
Dec  9 16:08:48 Centos pppd[25893]: RADIUS plugin initialized.
Dec  9 16:08:48 Centos pppd[25893]: Plugin /usr/lib/pppd/2.4.4/radattr.so loaded.
Dec  9 16:08:48 Centos pppd[25893]: RADATTR plugin initialized.
Dec  9 16:08:48 Centos pppd[25893]: pppd 2.4.4 started by root, uid 0
Dec  9 16:08:48 Centos pppd[25893]: Using interface ppp0
Dec  9 16:08:48 Centos pppd[25893]: Connect: ppp0 <--> /dev/pts/1
Dec  9 16:08:48 Centos pptpd[25892]: CTRL: Ignored a SET LINK INFO packet with real ACCMs!
Dec  9 16:08:49 Centos pppd[25893]: Peer user failed CHAP authentication
Dec  9 16:08:49 Centos pppd[25893]: Connection terminated.
Dec  9 16:08:49 Centos pppd[25893]: Exit.
Dec  9 16:08:49 Centos pptpd[25892]: CTRL: Client 192.168.1.10 control connection finished
Dec  9 16:08:53 Centos pptpd[25907]: CTRL: Client 192.168.1.10 control connection started
Dec  9 16:08:53 Centos pptpd[25907]: CTRL: Starting call (launching pppd, opening GRE)
Dec  9 16:08:53 Centos pppd[25908]: Plugin /usr/lib/pppd/2.4.4/radius.so loaded.
Dec  9 16:08:53 Centos pppd[25908]: RADIUS plugin initialized.
Dec  9 16:08:53 Centos pppd[25908]: Plugin /usr/lib/pppd/2.4.4/radattr.so loaded.
Dec  9 16:08:53 Centos pppd[25908]: RADATTR plugin initialized.
Dec  9 16:08:53 Centos pppd[25908]: pppd 2.4.4 started by root, uid 0
Dec  9 16:08:53 Centos pppd[25908]: Using interface ppp0
Dec  9 16:08:53 Centos pppd[25908]: Connect: ppp0 <--> /dev/pts/1
Dec  9 16:08:53 Centos pptpd[25907]: CTRL: Ignored a SET LINK INFO packet with real ACCMs!
Dec  9 16:08:54 Centos pppd[25908]: Peer user failed CHAP authentication
Dec  9 16:08:54 Centos pppd[25908]: Connection terminated.
Dec  9 16:08:54 Centos pppd[25908]: tcflush failed: Input/output error
Dec  9 16:08:54 Centos pppd[25908]: Exit.
Dec  9 16:08:54 Centos pptpd[25907]: CTRL: Client 192.168.1.10 control connection finished
Dec  9 16:08:57 Centos pptpd[25922]: CTRL: Client 192.168.1.10 control connection started
Dec  9 16:08:57 Centos pptpd[25922]: CTRL: Starting call (launching pppd, opening GRE)
Dec  9 16:08:57 Centos pppd[25923]: Plugin /usr/lib/pppd/2.4.4/radius.so loaded.
Dec  9 16:08:57 Centos pppd[25923]: RADIUS plugin initialized.
Dec  9 16:08:57 Centos pppd[25923]: Plugin /usr/lib/pppd/2.4.4/radattr.so loaded.
Dec  9 16:08:57 Centos pppd[25923]: RADATTR plugin initialized.
Dec  9 16:08:57 Centos pppd[25923]: pppd 2.4.4 started by root, uid 0
Dec  9 16:08:57 Centos pppd[25923]: Using interface ppp0
Dec  9 16:08:57 Centos pppd[25923]: Connect: ppp0 <--> /dev/pts/1
Dec  9 16:08:57 Centos pptpd[25922]: CTRL: Ignored a SET LINK INFO packet with real ACCMs!
Dec  9 16:08:58 Centos pppd[25923]: Peer user failed CHAP authentication
Dec  9 16:08:58 Centos pppd[25923]: Connection terminated.
Dec  9 16:08:58 Centos pppd[25923]: Exit.
Dec  9 16:08:58 Centos pptpd[25922]: CTRL: Client 192.168.1.10 control connection finished
Dec  9 16:12:47 Centos pptpd[25943]: CTRL: Client 192.168.1.10 control connection started
Dec  9 16:12:47 Centos pptpd[25943]: CTRL: Starting call (launching pppd, opening GRE)
Dec  9 16:12:47 Centos pppd[25944]: Plugin /usr/lib/pppd/2.4.4/radius.so loaded.
Dec  9 16:12:47 Centos pppd[25944]: RADIUS plugin initialized.
Dec  9 16:12:47 Centos pppd[25944]: Plugin /usr/lib/pppd/2.4.4/radattr.so loaded.
Dec  9 16:12:47 Centos pppd[25944]: RADATTR plugin initialized.
Dec  9 16:12:47 Centos pppd[25944]: pppd 2.4.4 started by root, uid 0
Dec  9 16:12:47 Centos pppd[25944]: Using interface ppp0
Dec  9 16:12:47 Centos pppd[25944]: Connect: ppp0 <--> /dev/pts/1
Dec  9 16:12:47 Centos pptpd[25943]: CTRL: Ignored a SET LINK INFO packet with real ACCMs!
Dec  9 16:12:48 Centos pppd[25944]: Peer user failed CHAP authentication
Dec  9 16:12:48 Centos pppd[25944]: Connection terminated.
Dec  9 16:12:48 Centos pppd[25944]: Exit.

[ 本帖最后由 Meiam 于 2011-12-9 16:17 编辑 ]
作者: Meiam    时间: 2011-12-9 16:17
上前是全部注释掉得 日志
作者: 店小二    时间: 2011-12-9 16:17
Peer user failed CHAP authentication
认证失败
作者: Meiam    时间: 2011-12-9 16:19
原帖由 店小二 于 2011-12-9 16:17 发表
Peer user failed CHAP authentication
认证失败


是得啊。密码账号没有错误的
作者: Meiam    时间: 2011-12-9 16:19
原帖由 店小二 于 2011-12-9 16:17 发表
Peer user failed CHAP authentication
认证失败


是得啊。密码账号没有错误的
作者: 店小二    时间: 2011-12-9 16:24
clients.conf 认证还是 数据库认证,自己排查把
作者: Meiam    时间: 2011-12-9 16:27
Radius Manager  和 ROS 对接没有问题

但是 和 Centos + PPTPD 对接就出这个毛病了。

Radius Manager 使用的是 FreeRadius    NAS 加好了。
作者: 店小二    时间: 2011-12-9 16:32
那就是Centos + PPTPD的问题 Radius Manager添加NAS后要重启radiusd,否则不生效
作者: Meiam    时间: 2011-12-9 16:43
原帖由 店小二 于 2011-12-9 16:32 发表
那就是Centos + PPTPD的问题 Radius Manager添加NAS后要重启radiusd,否则不生效


重启了。我也不是一点基础知识都不懂
作者: wwwroot    时间: 2011-12-9 17:16
不懂,楼下来
作者: xyingwd    时间: 2011-12-9 17:29
错误日志很明显的给你指出了啊
RADIUS: Can't read config file /usr/local/etc/radiusclient/radiusclient.conf

这个配置文件读取不到,哥



欢迎光临 全球主机交流论坛 (https://loc.888543.xyz/) Powered by Discuz! X3.4