<div dir="ltr">Greetings!<div><br></div><div>I have a suggestion ,If you want to see if the packets are getting to the host try running</div><div><br></div><div>tcp -X udp </div><div><br></div><div>also</div><div>tcpdump -X host <hostname></div>
<div><br></div><div><br></div><div>then try a request and see if the packets show up.</div><div><br><br><div class="gmail_quote">On Sun, Oct 19, 2008 at 7:38 PM, saman saman <span dir="ltr"><<a href="mailto:ssaman@hotmail.com">ssaman@hotmail.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;"><br>
HI Alan,<br>
what If radtest localhost also doesn't work either?<br>
here the iptables output<br>
#iptables -L -n<br>
Chain INPUT (policy DROP)<br>
target prot opt source destination<br>
ACCEPT all -- <a href="http://127.0.0.1" target="_blank">127.0.0.1</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a><br>
ACCEPT all -- <a href="http://192.168.1.2" target="_blank">192.168.1.2</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a><br>
ACCEPT all -- <a href="http://192.168.0.10" target="_blank">192.168.0.10</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a><br>
ACCEPT all -- <a href="http://192.168.0.0/24" target="_blank">192.168.0.0/24</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a><br>
ACCEPT all -- <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> <a href="http://192.168.1.0/24" target="_blank">192.168.1.0/24</a><br>
ACCEPT all -- .0.0.0/0 <a href="http://192.168.1.2" target="_blank">192.168.1.2</a> state RELATED,ESTABLISHED<br>
svr1 tcp -- <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> tcp dpt:21<br>
svr1 tcp -- <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> tcp dpt:22<br>
srv1 tcp -- <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> tcp dpt:80<br>
srv1 tcp -- <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> tcp dpt:80<br>
svr1 tcp -- <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> tcp dpt:110<br>
svr1 tcp -- <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> tcp dpt:113<br>
ACCEPT udp -- <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> udp dpt:1812<br>
ACCEPT udp -- <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> udp dpt:1813<br>
ACCEPT udp -- <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> udp dpt:1814<br>
ACCEPT udp -- <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> udp dpt:53<br>
ACCEPT udp -- <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> udp dpt:110<br>
ACCEPT udp -- <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> udp dpt:2074<br>
ACCEPT udp -- <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> udp dpt:4000<br>
ACCEPT icmp -- <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> icmp type 8<br>
ACCEPT icmp -- <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> icmp type 11<br>
ACCEPT icmp -- <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> icmp type 80<br>
<br>
Chain FORWARD (policy DROP)<br>
target prot opt source destination<br>
ACCEPT all -- <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a><br>
ACCEPT all -- <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a><br>
ACCEPT all -- <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> state RELATED,ESTABLISHED<br>
<br>
Chain OUTPUT (policy DROP)<br>
target prot opt source destination<br>
ACCEPT all -- <a href="http://127.0.0.1" target="_blank">127.0.0.1</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a><br>
ACCEPT all -- <a href="http://192.168.0.10" target="_blank">192.168.0.10</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a><br>
ACCEPT all -- <a href="http://192.168.1.2" target="_blank">192.168.1.2</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a><br>
ACCEPT all -- <a href="http://192.168.1.206" target="_blank">192.168.1.206</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a><br>
<br>
Chain mars (6 references)<br>
target prot opt source destination<br>
ACCEPT tcp -- <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> tcp flags:0x16/0x02<br>
ACCEPT tcp -- <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> state RELATED,ESTABLISHED<br>
DROP tcp -- <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a> <a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a><br>
<br>
#radtest John hello localhost 0 testing<br>
User-Name = "John"<br>
User-Password = "hello"<br>
NAS-IP-Address = <a href="http://192.168.1.2" target="_blank">192.168.1.2</a><br>
NAS-Port = 0<br>
User-Name = "John"<br>
User-Password = "hello"<br>
NAS-IP-Address = <a href="http://192.168.1.2" target="_blank">192.168.1.2</a><br>
NAS-Port = 0<br>
User-Name = "John"<br>
User-Password = "hello"<br>
NAS-IP-Address = <a href="http://192.168.1.2" target="_blank">192.168.1.2</a><br>
NAS-Port = 0<br>
User-Name = "John"<br>
User-Password = "hello"<br>
NAS-IP-Address = <a href="http://192.168.1.2" target="_blank">192.168.1.2</a><br>
NAS-Port = 0<br>
User-Name = "John"<br>
User-Password = "hello"<br>
NAS-IP-Address = <a href="http://192.168.1.2" target="_blank">192.168.1.2</a><br>
NAS-Port = 0<br>
User-Name = "John"<br>
User-Password = "hello"<br>
NAS-IP-Address = <a href="http://192.168.1.2" target="_blank">192.168.1.2</a><br>
NAS-Port = 0<br>
<br>
The above iptables output shows the udp 1812, 1813 & 1814 are all accepted.<br>
<br>
> > Hi I am a newbie and recently would like to try to experience freeradius-server-2.0.4 but unfortunately I have problems can't solved.<br>
> > The freeradius is running ok but when attempt to authenticate the server is just not responding to clients request.<br>
> ...<br>
> > #radiusd -X<br>
> ...<br>
> > Ready to process requests.<br>
><br>
> The point of debug mode is to show it processing packets.<br>
><br>
> If you've sent it packets and it doesn't receive them, fix the<br>
> firewall on your OS to allow RADIUS packets.<br>
><br>
> Alan DeKok.<br>
> -<br>
> List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/list/users.html</a><br>
<br>
_________________________________________________________________<br>
<br>
<br>
-<br>
List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/list/users.html</a><br>
</blockquote></div><br></div></div>