Hello, Anyone can help me out these?
Regards, On 12 June 2015 at 11:28, Minh Trung <[email protected]> wrote: > Hello expert, > > I freshed install PF 5.1 on CentOS, but can not start radius although i > tried many times. > Here is some logs may you will help me to solved. > #service packetfence restart > >> Restarting PacketFence...service|command >> carbon-cache|stop >> carbon-relay|stop >> collectd|stop >> dhcpd|stop >> haproxy|already stopped >> httpd.aaa|stop >> httpd.admin|stop >> httpd.graphite|stop >> httpd.portal|stop >> httpd.proxy|already stopped >> httpd.webservices|stop >> iptables|stop >> memcached|stop >> pfbandwidthd|already stopped >> pfdetect|already stopped >> pfdhcplistener_eth0.210|already stopped >> pfdhcplistener_eth0.220|already stopped >> pfdhcplistener_eth0|already stopped >> pfdns|stop >> pfmon|stop >> pfsetvlan|already stopped >> radiusd|already stopped >> radsniff3|already stopped >> snmptrapd|already stopped >> snort|already stopped >> statsd|already stopped >> suricata|already stopped >> keepalived|already stopped >> memcached|start >> httpd.admin|start >> Checking configuration sanity... >> Starting carbon-cache (instance a) >> carbon-cache|start >> Starting carbon-relay (instance a) >> carbon-relay|start >> collectd|start >> Internet Systems Consortium DHCP Server 4.1.1-P1 >> Copyright 2004-2010 Internet Systems Consortium. >> All rights reserved. >> For info, please visit https://www.isc.org/software/dhcp/ >> Not searching LDAP since ldap-server, ldap-port and ldap-base-dn were not >> specified in the config file >> Wrote 0 leases to leases file. >> Listening on LPF/eth0.220/00:50:56:ac:3c:01/10.126.220.0/24 >> Sending on LPF/eth0.220/00:50:56:ac:3c:01/10.126.220.0/24 >> Listening on LPF/eth0.210/00:50:56:ac:3c:01/10.126.210.0/24 >> Sending on LPF/eth0.210/00:50:56:ac:3c:01/10.126.210.0/24 >> Sending on Socket/fallback/fallback-net >> dhcpd|start >> httpd.aaa|start >> httpd.graphite|start >> httpd.portal|start >> httpd.webservices|start >> iptables|start >> pfdhcplistener_eth0.210|start >> pfdhcplistener_eth0.220|start >> pfdhcplistener_eth0|start >> pfdns|start >> pfmon|start >> Can't call method "network" on an undefined value at >> /usr/local/pf/lib/pf/services/manager/radiusd.pm line 187. >> > > #cat radiusd.conf > >> prefix = /usr >> exec_prefix = /usr >> sysconfdir = /etc >> localstatedir = %%install_dir%%/var >> sbindir = /usr/sbin >> logdir = %%install_dir%%/logs >> raddbdir = %%install_dir%%/var/radiusd >> radacctdir = %%install_dir%%/logs/radacct >> >> name = radiusd >> >> confdir = ${raddbdir} >> run_dir = ${localstatedir}/run >> >> db_dir = ${raddbdir} >> >> libdir = /usr/lib%%arch%%/freeradius >> pidfile = ${run_dir}/${name}.pid >> >> rpc_user = %%rpc_user%% >> rpc_pass = %%rpc_pass%% >> rpc_port = %%rpc_port%% >> rpc_host = %%rpc_host%% >> rpc_proto = %%rpc_proto%% >> >> >> user = pf >> group = pf >> >> max_request_time = 10 >> cleanup_delay = 5 >> max_requests = 20000 >> >> listen { >> type = auth >> ipaddr = %%management_ip%% >> port = 0 >> virtual_server = packetfence >> } >> >> listen { >> ipaddr = %%management_ip%% >> port = 0 >> type = acct >> virtual_server = packetfence >> } >> >> hostname_lookups = no >> allow_core_dumps = no >> >> regular_expressions = yes >> extended_expressions = yes >> >> log { >> destination = files >> file = ${logdir}/radius.log >> syslog_facility = daemon >> stripped_names = no >> auth = yes >> auth_badpass = no >> auth_goodpass = no >> } >> >> checkrad = ${sbindir}/checkrad >> >> security { >> max_attributes = 200 >> reject_delay = 1 >> status_server = yes >> # On Centos, even if the openssl lib has been patched, freeradius >> refuse to start. Make sure you update openssl. >> allow_vulnerable_openssl = yes >> } >> >> proxy_requests = yes >> $INCLUDE proxy.conf >> $INCLUDE clients.conf >> >> thread pool { >> start_servers = 5 >> max_servers = 64 >> min_spare_servers = 3 >> max_spare_servers = 10 >> max_requests_per_server = 0 >> } >> >> modules { >> $INCLUDE ${confdir}/modules/ >> $INCLUDE eap.conf >> $INCLUDE sql.conf >> } >> >> instantiate { >> exec >> expr >> expiration >> logintime >> sql >> raw >> } >> >> $INCLUDE policy.conf >> $INCLUDE sites-enabled/ >> > > # cat /var/log/radius/radius.log > >> Thu Jun 11 10:23:01 2015 : Error: Refusing to start with libssl version >> OpenSSL 1.0.1e-fips 11 Feb 2013 (in range 1.0.1 - 1.0.1f). Security >> advisory CVE-2014-0160 (Heartbleed) >> Thu Jun 11 10:23:01 2015 : Error: For more information see >> http://heartbleed.com >> Thu Jun 11 10:23:02 2015 : Error: Refusing to start with libssl version >> OpenSSL 1.0.1e-fips 11 Feb 2013 (in range 1.0.1 - 1.0.1f). Security >> advisory CVE-2014-0160 (Heartbleed) >> Thu Jun 11 10:23:02 2015 : Error: For more information see >> http://heartbleed.com >> Thu Jun 11 10:23:04 2015 : Error: Refusing to start with libssl version >> OpenSSL 1.0.1e-fips 11 Feb 2013 (in range 1.0.1 - 1.0.1f). Security >> advisory CVE-2014-0160 (Heartbleed) >> Thu Jun 11 10:23:04 2015 : Error: For more information see >> http://heartbleed.com >> Thu Jun 11 10:32:44 2015 : Error: Refusing to start with libssl version >> OpenSSL 1.0.1e-fips 11 Feb 2013 (in range 1.0.1 - 1.0.1f). Security >> advisory CVE-2014-0160 (Heartbleed) >> Thu Jun 11 10:32:44 2015 : Error: For more information see >> http://heartbleed.com >> Thu Jun 11 10:32:47 2015 : Error: Refusing to start with libssl version >> OpenSSL 1.0.1e-fips 11 Feb 2013 (in range 1.0.1 - 1.0.1f). Security >> advisory CVE-2014-0160 (Heartbleed) >> Thu Jun 11 10:32:47 2015 : Error: For more information see >> http://heartbleed.com >> Thu Jun 11 10:32:48 2015 : Error: Refusing to start with libssl version >> OpenSSL 1.0.1e-fips 11 Feb 2013 (in range 1.0.1 - 1.0.1f). Security >> advisory CVE-2014-0160 (Heartbleed) >> Thu Jun 11 10:32:48 2015 : Error: For more information see >> http://heartbleed.com >> Thu Jun 11 10:57:59 2015 : Error: Refusing to start with libssl version >> OpenSSL 1.0.1e-fips 11 Feb 2013 (in range 1.0.1 - 1.0.1f). Security >> advisory CVE-2014-0160 (Heartbleed) >> Thu Jun 11 10:57:59 2015 : Error: For more information see >> http://heartbleed.com >> Thu Jun 11 14:10:02 2015 : Error: Refusing to start with libssl version >> OpenSSL 1.0.1e-fips 11 Feb 2013 (in range 1.0.1 - 1.0.1f). Security >> advisory CVE-2014-0160 (Heartbleed) >> Thu Jun 11 14:10:02 2015 : Error: For more information see >> http://heartbleed.com >> Fri Jun 12 10:37:40 2015 : Error: Refusing to start with libssl version >> OpenSSL 1.0.1e-fips 11 Feb 2013 (in range 1.0.1 - 1.0.1f). Security >> advisory CVE-2014-0160 (Heartbleed) >> Fri Jun 12 10:37:40 2015 : Error: For more information see >> http://heartbleed.com >> > > #radiusd -d /usr/local/pf/raddb/ -X > >> radiusd: FreeRADIUS Version 2.2.5 (git #6700a14), for host >> x86_64-redhat-linux-gnu, built on Oct 29 2014 at 16:08:30 >> Copyright (C) 1999-2013 The FreeRADIUS server project and contributors. >> There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A >> PARTICULAR PURPOSE. >> You may redistribute copies of FreeRADIUS under the terms of the >> GNU General Public License. >> For more information about these matters, see the file named COPYRIGHT. >> Starting - reading configuration files ... >> including configuration file /usr/local/pf/raddb//radiusd.conf >> including configuration file /usr/local/pf/raddb//proxy.conf >> including configuration file /usr/local/pf/raddb//proxy.conf.inc >> including configuration file /usr/local/pf/raddb//clients.conf >> including configuration file /usr/local/pf/raddb//clients.conf.inc >> Unable to open file "/usr/local/pf/raddb//clients.conf.inc": No such file >> or directory >> Errors reading or parsing /usr/local/pf/raddb//radiusd.conf >> > > Any help is appreciated, > > Regards, >
------------------------------------------------------------------------------
_______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
