Portál AbcLinuxu, 10. května 2025 11:21
Ahoj, mam freeradius 2.1.10-2 pro WPA2 WiFi (WiFI SSID: TEST_1) s nasledujicim nastavenim logovani:
## /etc/freeradius2/radiusd.conf -- FreeRADIUS server configuration file.
log {
destination = files
file = ${logdir}/radius.log
syslog_facility = daemon
stripped_names = yes
auth = yes
auth_badpass = yes
auth_goodpass = yes
msg_goodpass = "DOBRE HESLO; NAS: %{Calling-Station-Id}; UZIVATEL: %{User-Name}; UZIVATEL-IP: %{Client-IP-Address}; PACKET-IP: %{Packet-Src-IP-Address}"
msg_badpass = "SPATNE HESLO"
}
po pripojeni klienta se v logu objevi:
root@server:/# cat /var/log/radius.log Sun Jul 17 13:40:43 2011 : Info: Loaded virtual server <default> Sun Jul 17 13:40:43 2011 : Info: Ready to process requests. Sun Jul 17 13:40:51 2011 : Auth: Login OK: [pokus/<via Auth-Type = EAP>] (from client 192.168.7.1 port 1 cli 00-1B-73-62-4C-B9 via TLS tunnel) DOBRE HESLO; NAS: 00-1B-73-62-4C-B9; UZIVATEL: pokus; UZIVATEL-IP: 192.168.7.1; PACKET-IP: 192.168.7.1 Sun Jul 17 13:40:51 2011 : Auth: Login OK: [pokus/<via Auth-Type = EAP>] (from client 192.168.7.1 port 1 cli 00-1B-73-62-4C-B9) DOBRE HESLO; NAS: 00-1B-73-62-4C-B9; UZIVATEL: pokus; UZIVATEL-IP: 192.168.7.1; PACKET-IP: 192.168.7.1 root@server:/#
Jak muzu do logu ulozit IP adresu, ktera byla uzivatelovi pridelena (nepotrebuju uzivatelovi pridelovat vzdy stejnou IP, jen potrebuju vedet, jakou dostal). Jak muzu spustit prikaz po prihlaseni uzivatele, napr.
iptables -A INPUT -s IP_CO_DOSTANE_KLIENT_Z_RADIUSU -d 192.168.199.50 -j ACCEPT
Hraju si s tim uz par dni a porad mi to nejde 
iptool nemam
Mam pouze: ( http://downloads.openwrt.org/snapshots/trunk/ar71xx/packages/ )
freeradius2-democerts_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 9852 freeradius2-mod-always_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 2884 freeradius2-mod-attr-filter_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 6162 freeradius2-mod-attr-rewrite_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 5574 freeradius2-mod-chap_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 3101 freeradius2-mod-detail_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 6147 freeradius2-mod-eap-gtc_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 3052 freeradius2-mod-eap-md5_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 3370 freeradius2-mod-eap-mschapv2_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 4607 freeradius2-mod-eap-peap_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 8256 freeradius2-mod-eap-tls_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 8844 freeradius2-mod-eap-ttls_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 7441 freeradius2-mod-eap_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 30938 freeradius2-mod-exec_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 5999 freeradius2-mod-expiration_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 3366 freeradius2-mod-expr_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 4781 freeradius2-mod-files_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 8336 freeradius2-mod-ldap_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 18153 freeradius2-mod-logintime_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 5527 freeradius2-mod-mschap_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 11605 freeradius2-mod-pap_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 6711 freeradius2-mod-passwd_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 6634 freeradius2-mod-preprocess_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 7215 freeradius2-mod-radutmp_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 6469 freeradius2-mod-realm_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 15148 freeradius2-mod-sql-mysql_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 3743 freeradius2-mod-sql-pgsql_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 7574 freeradius2-mod-sql-sqlite_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 3572 freeradius2-mod-sql_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 14428 freeradius2-mod-sqlcounter_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 5945 freeradius2-utils_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 35953 freeradius2_2.1.10-2_ar71xx.ipk 01-Jul-2011 22:32 191353Da se to nekde stahnout a doinstalovat? Ja nemuzu nic najit.
--without-rlm_ippoolNN
Tiskni
Sdílej:
ISSN 1214-1267, (c) 1999-2007 Stickfish s.r.o.