[PacketFence-users] R: R: R: R: R: R: Radius Project Reloaded

Alessandro Canella via PacketFence-users Thu, 09 Nov 2017 12:54:21 -0800

Hi All,

seems ok, but still not authenticate my switches. I will test Firewalls 
tomoorow, but where I can find Radius auth log?


2nd question, preshared key for radius where is ? to check typo.

thanks

Da: Fabrice Durand [mailto:fdur...@inverse.ca]
Inviato: martedì 7 novembre 2017 22.16
A: Alessandro Canella <alessandro.cane...@itcare.it>; 
packetfence-users@lists.sourceforge.net
Oggetto: Re: R: R: [PacketFence-users] R: R: R: Radius Project Reloaded


So in radius_chilf.pm replace all:

foreach my $interface ( @radius_ints ) {

with

foreach my $interface ( uniq @radius_ints ) {
and retry

Regards
Fabrice
Le 2017-11-07 à 08:43, Alessandro Canella a écrit :
Here we are!



Da: Fabrice Durand [mailto:fdur...@inverse.ca]
Inviato: lunedì 6 novembre 2017 14.23
A: Alessandro Canella 
<alessandro.cane...@itcare.it><mailto:alessandro.cane...@itcare.it>; 
packetfence-users@lists.sourceforge.net<mailto:packetfence-users@lists.sourceforge.net>
Oggetto: Re: R: [PacketFence-users] R: R: R: Radius Project Reloaded


Hello Alessandro,

can you give me your radiusd_child.pm, pf.conf and conf/radius/auth.conf file ?

Regards

Fabrice



Le 2017-11-03 à 06:48, Alessandro Canella a écrit :
Seems all ok, but patch was unapplied (or not correct)

Nov  3 10:45:47 PacketFence-ZEN auth[3901]: Failed binding to auth address 
192.168.0.72 port 1812 bound to server packetfence: Address already in use
Nov  3 10:45:47 PacketFence-ZEN auth[3901]: /usr/local/pf/raddb/auth.conf[23]: 
Error binding to port for 192.168.0.72 port 1812


Da: Alessandro Canella via PacketFence-users 
[mailto:packetfence-users@lists.sourceforge.net]
Inviato: giovedì 2 novembre 2017 16.33
A: Fabrice Durand <fdur...@inverse.ca><mailto:fdur...@inverse.ca>; 
packetfence-users@lists.sourceforge.net<mailto:packetfence-users@lists.sourceforge.net>
Cc: Alessandro Canella 
<alessandro.cane...@itcare.it><mailto:alessandro.cane...@itcare.it>
Oggetto: [PacketFence-users] R: R: R: Radius Project Reloaded

Means checkup?

[root@PacketFence-ZEN bin]# ./pfcmd checkup
Array found where operator expected at 
/usr/local/pf/lib/pf/services/manager/rad    iusd_child.pm line 570, at end of 
line
        (Do you need to predeclare uniq?)
"my" variable $cluster_ip masks earlier declaration in same scope at 
/usr/local/    pf/lib/pf/services/manager/radiusd_child.pm line 572.
"my" variable $interface masks earlier declaration in same scope at 
/usr/local/p    f/lib/pf/services/manager/radiusd_child.pm line 572.
"my" variable %tags masks earlier declaration in same scope at 
/usr/local/pf/lib    /pf/services/manager/radiusd_child.pm line 573.
"my" variable $cluster_ip masks earlier declaration in same statement at 
/usr/lo    cal/pf/lib/pf/services/manager/radiusd_child.pm line 573.
"my" variable $cluster_ip masks earlier declaration in same statement at 
/usr/lo    cal/pf/lib/pf/services/manager/radiusd_child.pm line 573.
"my" variable $cluster_ip masks earlier declaration in same statement at 
/usr/lo    cal/pf/lib/pf/services/manager/radiusd_child.pm line 573.
Couldn't require pf::services::manager::radiusd : Global symbol "%tags" 
requires     explicit package name at 
/usr/local/pf/lib/pf/services/manager/radiusd_child.pm     line 603.
Global symbol "%tags" requires explicit package name at 
/usr/local/pf/lib/pf/ser    vices/manager/radiusd_child.pm line 608.
Global symbol "%tags" requires explicit package name at 
/usr/local/pf/lib/pf/ser    vices/manager/radiusd_child.pm line 618.
Global symbol "%tags" requires explicit package name at 
/usr/local/pf/lib/pf/ser    vices/manager/radiusd_child.pm line 621.
Global symbol "%tags" requires explicit package name at 
/usr/local/pf/lib/pf/ser    vices/manager/radiusd_child.pm line 621.
Global symbol "@radius_backend" requires explicit package name at 
/usr/local/pf/    lib/pf/services/manager/radiusd_child.pm line 624.
Global symbol "$cluster_ip" requires explicit package name at 
/usr/local/pf/lib/    pf/services/manager/radiusd_child.pm line 624.
Global symbol "@radius_backend" requires explicit package name at 
/usr/local/pf/    lib/pf/services/manager/radiusd_child.pm line 625.
Global symbol "%tags" requires explicit package name at 
/usr/local/pf/lib/pf/ser    vices/manager/radiusd_child.pm line 626.
syntax error at /usr/local/pf/lib/pf/services/manager/radiusd_child.pm line 
634,     near "}"
/usr/local/pf/lib/pf/services/manager/radiusd_child.pm has too many errors.
Compilation failed in require at 
/usr/local/pf/lib/pf/services/manager/radiusd.p    m line 28.
BEGIN failed--compilation aborted at 
/usr/local/pf/lib/pf/services/manager/radiu    sd.pm line 28.
Compilation failed in require at (eval 1720) line 2.
at /usr/share/perl5/vendor_perl/Module/Pluggable.pm line 32.
module pf::cmd::pf::checkup cannot be loaded
Can't locate object method "name" via package "pf::services::manager::radiusd" 
a    t /usr/local/pf/lib/pf/services.pm line 42.
Compilation failed in require at /usr/local/pf/lib/pf/cmd/pf/checkup.pm line 20.
BEGIN failed--compilation aborted at /usr/local/pf/lib/pf/cmd/pf/checkup.pm 
line     20.
Compilation failed in require at /usr/share/perl5/vendor_perl/Module/Load.pm 
lin    e 27.
Can't locate pf/cmd/pf/checkup in @INC (@INC contains: /usr/local/pf/lib 
/usr/lo    cal/lib64/perl5 /usr/local/share/perl5 /usr/lib64/perl5/vendor_perl 
/usr/share/p    erl5/vendor_perl /usr/lib64/perl5 /usr/share/perl5) at 
/usr/share/perl5/vendor_p    erl/Module/Load.pm line 27.



Da: Fabrice Durand [mailto:fdur...@inverse.ca]
Inviato: giovedì 2 novembre 2017 15.45
A: Alessandro Canella 
<alessandro.cane...@itcare.it<mailto:alessandro.cane...@itcare.it>>; 
packetfence-users@lists.sourceforge.net<mailto:packetfence-users@lists.sourceforge.net>
Oggetto: Re: R: R: [PacketFence-users] Radius Project Reloaded


What are the errors ?



Le 2017-11-02 à 09:18, Alessandro Canella a écrit :
Something went wrong...


[root@PacketFence-ZEN pf]# patch -p1 < pat.diff
(Stripping trailing CRs from patch; use --binary to disable.)
patching file lib/pf/services/manager/radiusd_child.pm
patch unexpectedly ends in middle of line
Hunk #1 succeeded at 567 with fuzz 1 (offset -23 lines).



A)      Pfcmd checkup reports lot of error

B)      Web Admin stop works.


Da: Fabrice Durand [mailto:fdur...@inverse.ca]
Inviato: martedì 31 ottobre 2017 17.32
A: Alessandro Canella 
<alessandro.cane...@itcare.it><mailto:alessandro.cane...@itcare.it>; 
packetfence-users@lists.sourceforge.net<mailto:packetfence-users@lists.sourceforge.net>
Oggetto: Re: R: [PacketFence-users] Radius Project Reloaded


Once you have the file do

cd /usr/local/pf

patch -p1 < the_patch.diff



Regards

Fabrice



Le 2017-10-31 à 11:56, Alessandro Canella a écrit :
Hello Fabrice,


Done some tests. Cannot grant internet access to PF, so I've pasted diff 
content in a local diff file, but doesn't work (remains freezed and needs a 
ctrl-c to return to prompt)

Not too simply.. any ideas? Can I execute single lines of diff file?

Da: Fabrice Durand via PacketFence-users 
[mailto:packetfence-users@lists.sourceforge.net]
Inviato: martedì 31 ottobre 2017 14.15
A: 
packetfence-users@lists.sourceforge.net<mailto:packetfence-users@lists.sourceforge.net>
Cc: Fabrice Durand <fdur...@inverse.ca><mailto:fdur...@inverse.ca>
Oggetto: Re: [PacketFence-users] Radius Project Reloaded


Hello Alessandro,

can you try this patch:

cd /usr/local/pf

curl 
https://github.com/inverse-inc/packetfence/commit/fa866d14be0b16ef1af0ed849c85a481a4011048.diff
 | patch -p1

Then restart packetfence.

Regards

Fabrice



Le 2017-10-31 à 07:59, Alessandro Canella via PacketFence-users a écrit :
Hello all,

after closing successfully inline config, I will try to config AAA in Zyxel 
Switches.

I've configured dictionary.zyxel and clients.conf too , according this faq : 
https://kb.zyxel.com/KB/searchArticle!gwsViewDetail.action?articleOid=009451&lang=EN<https://kb.zyxel.com/KB/searchArticle%21gwsViewDetail.action?articleOid=009451&lang=EN>

But login doesn't work. So I've created user in raddb/users. Nothing happens.

I've stopped to search log and I've found in usr/local/pf/logs/radius.log

Oct 31 11:10:43 PacketFence-ZEN auth[2945]: Failed binding to auth address 
192.168.0.72 port 1812 bound to server packetfence: Address already in use
Oct 31 11:10:43 PacketFence-ZEN auth[2945]: /usr/local/pf/raddb/auth.conf[23]: 
Error binding to port for 192.168.0.72 port 1812


/usr/local/pf/raddb/auth.conf contain:

listen {

    ipaddr = 127.0.0.1
    port = 18120
    type = auth
    virtual_server = packetfence
}

listen {
        ipaddr = 192.168.0.72
        port = 0
        type = auth
        virtual_server = packetfence
}

listen {
        ipaddr = 192.168.0.72
        port = 0
        type = auth
        virtual_server = packetfence
}

Last "listen" is row 23, I think can be safely removed.

But if raw 23 goes on error, it's because as you see listener is already 
on...so where I can find my AAA error?









------------------------------------------------------------------------------

Check out the vibrant tech community on one of the world's most

engaging tech sites, Slashdot.org! http://sdm.link/slashdot









_______________________________________________

PacketFence-users mailing list

PacketFence-users@lists.sourceforge.net<mailto:PacketFence-users@lists.sourceforge.net>

https://lists.sourceforge.net/lists/listinfo/packetfence-users








--

Fabrice Durand

fdur...@inverse.ca<mailto:fdur...@inverse.ca> ::  +1.514.447.4918 (x135) ::  
www.inverse.ca<http://www.inverse.ca>

Inverse inc. :: Leaders behind SOGo (http://www.sogo.nu) and PacketFence 
(http://packetfence.org)







--

Fabrice Durand

fdur...@inverse.ca<mailto:fdur...@inverse.ca> ::  +1.514.447.4918 (x135) ::  
www.inverse.ca<http://www.inverse.ca>

Inverse inc. :: Leaders behind SOGo (http://www.sogo.nu) and PacketFence 
(http://packetfence.org)






--

Fabrice Durand

fdur...@inverse.ca<mailto:fdur...@inverse.ca> ::  +1.514.447.4918 (x135) ::  
www.inverse.ca<http://www.inverse.ca>

Inverse inc. :: Leaders behind SOGo (http://www.sogo.nu) and PacketFence 
(http://packetfence.org)




--

Fabrice Durand

fdur...@inverse.ca<mailto:fdur...@inverse.ca> ::  +1.514.447.4918 (x135) ::  
www.inverse.ca<http://www.inverse.ca>

Inverse inc. :: Leaders behind SOGo (http://www.sogo.nu) and PacketFence 
(http://packetfence.org)



--

Fabrice Durand

fdur...@inverse.ca<mailto:fdur...@inverse.ca> ::  +1.514.447.4918 (x135) ::  
www.inverse.ca<http://www.inverse.ca>

Inverse inc. :: Leaders behind SOGo (http://www.sogo.nu) and PacketFence 
(http://packetfence.org)

------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot

_______________________________________________
PacketFence-users mailing list
PacketFence-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/packetfence-users

[PacketFence-users] R: R: R: R: R: R: Radius Project Reloaded

Reply via email to