Testing radius server

Alex Bahoor alexbahoor at sbcglobal.net
Thu Dec 10 08:38:37 CET 2009


Thanks Gera, it was a fire wall issue, even though when I installed F12 I
did not select firewall, but it was running.

Now I know it's a config issue in the clients.conf, as radtest is failing. I
set user name and password, but radius is sending a reject. This is the
first time I'm using radius. So please bear with me. Can some one mail me
example of the minimum required configuration that needed for the radius to
work, no EAP or MSCAP ..etc. 

Rrgds,

Alex


-----Original Message-----
From: freeradius-users-bounces+alexbahoor=sbcglobal.net at lists.freeradius.org
[mailto:freeradius-users-bounces+alexbahoor=sbcglobal.net at lists.freeradius.o
rg] On Behalf Of gera
Sent: Wednesday, December 09, 2009 10:19 PM
To: FreeRadius users mailing list
Subject: Re: Testing radius server


For testing, you can always use radtest.

On Wednesday 09 December 2009 10:31:55 pm Alex Bahoor wrote:
> Hi,
> 
> I'm getting trouble authenticating my AP to freeradius. When I type in a
> password on the AP, it reaches the radius server, however the server
> responds with ICMP destination unreachable to the AP. I can see radius is
> listening to the following ports:
> 
> Udp 	0	0 *:radius
> Udp 	0	0 *:radius-acct
> 
> I take it the above are port 1812 and 1813 respectfully. Right?
> I see the Cisco AP is sending request with destination port 1812. So, any
> clue as to why it sending the ICMP unreachable? It seems that the port
> numbers are not what I think they are, but netstat identifies the two
ports
> as radius default, so it got to be right. But I know that icmp unreachable
> is only sent out (in this case), if the server cannot identify the
> destination port number.
> 
> How can I locally test that radius is serving the port above and the
> password. Like is there a way that I can use CLI to test the radius as if
> I'm the AP, but from the command line on the server?
> 
> Thanks,
> 
> Alex
> 
> 
> 
> __________ Information from ESET NOD32 Antivirus, version of virus
>  signature database 4674 (20091209) __________
> 
> The message was checked by ESET NOD32 Antivirus.
> 
> http://www.eset.com
> 
> 
> 
> __________ Information from ESET NOD32 Antivirus, version of virus
>  signature database 4674 (20091209) __________
> 
> The message was checked by ESET NOD32 Antivirus.
> 
> http://www.eset.com
> 
> 
> -
> List info/subscribe/unsubscribe? See
>  http://www.freeradius.org/list/users.html
> 
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
 

__________ Information from ESET NOD32 Antivirus, version of virus signature
database 4674 (20091209) __________

The message was checked by ESET NOD32 Antivirus.

http://www.eset.com
 
 

__________ Information from ESET NOD32 Antivirus, version of virus signature
database 4674 (20091209) __________

The message was checked by ESET NOD32 Antivirus.

http://www.eset.com
 




More information about the Freeradius-Users mailing list