freeradius server works only on localhost

Alan DeKok aland at deployingradius.com
Thu Jun 24 15:55:04 CEST 2021


On Jun 24, 2021, at 9:22 AM, Ron Eggler <ron.eggler at gmail.com> wrote:
> I have a freeradius server setup but it only works on my localhost. I do see the frames from the remote host coming in on Wireshark, so the requests do arrive but on the client I just get:

  ... the frames blocked by your local firewall.

> |radtest MAC foo host:1812 0 bar Sent Access-Request Id 67 from 0.0.0.0:47922 to host:1812 length 82 User-Name = "MAC" User-Password = "foo" NAS-IP-Address = 127.0.1.1 NAS-Port = 0 Message-Authenticator = 0x00 Cleartext-Password = "foo" Sent Access-Request Id 67 from 0.0.0.0:47922 to host:1812 length 82 User-Name = "MAC" User-Password = "foo" NAS-IP-Address = 127.0.1.1 NAS-Port = 0 Message-Authenticator = 0x00 Cleartext-Password = "foo" Sent Access-Request Id 67 from 0.0.0.0:47922 to host:1812 length 82 User-Name = "MAC" User-Password = "foo" NAS-IP-Address = 127.0.1.1 NAS-Port = 0 Message-Authenticator = 0x00 Cleartext-Password = "foo" (0) No reply from server for ID 67 socket 3 |
> 
> While on localhost I get:
> 
> |radtest MAC foo 127.0.0.1:1812 0 bar Sent Access-Request Id 12 from 0.0.0.0:50005 to 127.0.0.1:1812 length 82 User-Name = "MAC" User-Password = "foo" NAS-IP-Address = 127.0.1.1 NAS-Port = 0 Message-Authenticator = 0x00 Cleartext-Password = "foo" Received Access-Accept Id 12 from 127.0.0.1:1812 to 127.0.0.1:50005 length 20 |
> 
> How do I open server access up to the outside, as well?

  Some combination of fixing SeLinux and/or your local IP firewall rules.

  Alan DeKok.




More information about the Freeradius-Users mailing list