- 论坛徽章:
- 0
|
最近看了网络中盛行的pptpd+radius+mysql -sdathisetsket- 安装攻略1,2,3 这篇文章,在进行配置的过程中出现一问题,实在无法解决,在这里希望哪位高人指点一下,万分感谢,
困惑一个星期了.
错误日志如下:
tail -f /var/log/messages
Apr 2 10:31:16 localhost pptpd[14111]: CTRL: Client 219.237.24.160 control connection started
Apr 2 10:31:16 localhost pptpd[14111]: CTRL: Starting call (launching pppd, opening GRE)
Apr 2 10:31:16 localhost pppd[14112]: Plugin /usr/lib/pppd/2.4.4/radius.so loaded.
Apr 2 10:31:16 localhost pppd[14112]: RADIUS plugin initialized.
Apr 2 10:31:16 localhost pppd[14112]: Plugin /usr/lib/pptpd/pptpd-logwtmp.so loaded.
Apr 2 10:31:16 localhost pppd[14112]: pptpd-logwtmp: $Version$
Apr 2 10:31:16 localhost pppd[14112]: pppd options in effect:
Apr 2 10:31:16 localhost pppd[14112]: debug # (from /etc/ppp/options.pptpd)
Apr 2 10:31:16 localhost pppd[14112]: logfile /var/log/pptpd.log # (from /etc/ppp/options.pptpd)
Apr 2 10:31:16 localhost pppd[14112]: dump # (from /etc/ppp/options.pptpd)
Apr 2 10:31:16 localhost pppd[14112]: plugin /usr/lib/pppd/2.4.4/radius.so # (from command line)
Apr 2 10:31:16 localhost pppd[14112]: plugin /usr/lib/pptpd/pptpd-logwtmp.so # (from command line)
Apr 2 10:31:16 localhost pppd[14112]: require-mschap-v2 # (from /etc/ppp/options.pptpd)
Apr 2 10:31:16 localhost pppd[14112]: refuse-pap # (from /etc/ppp/options.pptpd)
Apr 2 10:31:16 localhost pppd[14112]: refuse-chap # (from /etc/ppp/options.pptpd)
Apr 2 10:31:16 localhost pppd[14112]: refuse-mschap # (from /etc/ppp/options.pptpd)
Apr 2 10:31:16 localhost pppd[14112]: name pptpd # (from /etc/ppp/options.pptpd)
Apr 2 10:31:16 localhost pppd[14112]: pptpd-original-ip 219.237.24.160 # (from command line)
Apr 2 10:31:16 localhost pppd[14112]: radius-config-file /etc/radiusclient/radiusclient.conf # (from /etc/ppp/options.pptpd)
Apr 2 10:31:16 localhost pppd[14112]: 115200 # (from command line)
Apr 2 10:31:16 localhost pppd[14112]: lock # (from /etc/ppp/options.pptpd)
Apr 2 10:31:16 localhost pppd[14112]: local # (from command line)
Apr 2 10:31:16 localhost pppd[14112]: novj # (from /etc/ppp/options.pptpd)
Apr 2 10:31:16 localhost pppd[14112]: novjccomp # (from /etc/ppp/options.pptpd)
Apr 2 10:31:16 localhost pppd[14112]: ipparam 219.237.24.160 # (from command line)
Apr 2 10:31:16 localhost pppd[14112]: proxyarp # (from /etc/ppp/options.pptpd)
Apr 2 10:31:16 localhost pppd[14112]: 192.168.5.10:192.168.7.225 # (from command line)
Apr 2 10:31:16 localhost pppd[14112]: nobsdcomp # (from /etc/ppp/options.pptpd)
Apr 2 10:31:16 localhost pppd[14112]: require-mppe-128 # (from /etc/ppp/options.pptpd)
Apr 2 10:31:16 localhost pppd[14112]: pppd 2.4.4 started by root, uid 0
Apr 2 10:31:16 localhost pppd[14112]: Using interface ppp0
Apr 2 10:31:16 localhost pppd[14112]: Connect: ppp0 <--> /dev/pts/3
Apr 2 10:31:16 localhost pptpd[14111]: CTRL: Ignored a SET LINK INFO packet with real ACCMs!
Apr 2 10:31:26 localhost pppd[14112]: Peer miladuo failed CHAP authentication
Apr 2 10:31:26 localhost pppd[14112]: Connection terminated.
Apr 2 10:31:26 localhost pppd[14112]: Exit.
Apr 2 10:31:26 localhost pptpd[14111]: GRE: read(fd=6,buffer=8059680,len=8196) from PTY failed: status = -1 error = Input/output error, usually caused by
unexpected termination of pppd, check option syntax and pppd logs
Apr 2 10:31:26 localhost pptpd[14111]: CTRL: PTY read or GRE write failed (pty,gre)=(6,7)
Apr 2 10:31:26 localhost pptpd[14111]: CTRL: Client 219.237.24.160 control connection finished
vi /var/log/pptpd.log
proxyarp # (from /etc/ppp/options.pptpd)
192.168.5.10:192.168.7.225 # (from command line)
nobsdcomp # (from /etc/ppp/options.pptpd)
require-mppe-128 # (from /etc/ppp/options.pptpd)
using channel 52
Using interface ppp0
Connect: ppp0 <--> /dev/pts/4
sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x367aed54> <pcomp> <accomp>]
rcvd [LCP ConfReq id=0x0 <mru 1400> <magic 0x5b208f3> <pcomp> <accomp> <callback CBCP>]
sent [LCP ConfRej id=0x0 <callback CBCP>]
rcvd [LCP ConfAck id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x367aed54> <pcomp> <accomp>]
rcvd [LCP ConfReq id=0x1 <mru 1400> <magic 0x5b208f3> <pcomp> <accomp>]
sent [LCP ConfAck id=0x1 <mru 1400> <magic 0x5b208f3> <pcomp> <accomp>]
sent [CHAP Challenge id=0x8d <92af2d03f589649f5314d8275b088015>, name = "pptpd"]
rcvd [LCP Ident id=0x2 magic=0x5b208f3 "MSRASV5.20"]
rcvd [LCP Ident id=0x3 magic=0x5b208f3 "MSRAS-0-JINXIN"]
rcvd [CHAP Response id=0x8d <896bcee9820e27f2f747c201ed94930c0000000000000000d291301c52f5063d1b019d9e48b2b7aaf1cfa626e735446f00>, name = "miladuo"]
Peer miladuo failed CHAP authentication
sent [CHAP Failure id=0x8d ""]
sent [LCP TermReq id=0x2 "Authentication failed"]
rcvd [CHAP Response id=0x8d <896bcee9820e27f2f747c201ed94930c0000000000000000d291301c52f5063d1b019d9e48b2b7aaf1cfa626e735446f00>, name = "miladuo"]
Discarded non-LCP packet when LCP not open
rcvd [CHAP Response id=0x8d <896bcee9820e27f2f747c201ed94930c0000000000000000d291301c52f5063d1b019d9e48b2b7aaf1cfa626e735446f00>, name = "miladuo"]
Discarded non-LCP packet when LCP not open
rcvd [CHAP Response id=0x8d <896bcee9820e27f2f747c201ed94930c0000000000000000d291301c52f5063d1b019d9e48b2b7aaf1cfa626e735446f00>, name = "miladuo"]
Discarded non-LCP packet when LCP not open
rcvd [CHAP Response id=0x8d <896bcee9820e27f2f747c201ed94930c0000000000000000d291301c52f5063d1b019d9e48b2b7aaf1cfa626e735446f00>, name = "miladuo"]
Discarded non-LCP packet when LCP not open
rcvd [CHAP Response id=0x8d <896bcee9820e27f2f747c201ed94930c0000000000000000d291301c52f5063d1b019d9e48b2b7aaf1cfa626e735446f00>, name = "miladuo"]
Discarded non-LCP packet when LCP not open
rcvd [LCP TermAck id=0x2 "Authentication failed"]
Connection terminated.
我的服务配置信息如下:
vi /etc/pptpd.conf
option /etc/ppp/options.pptpd
logwtmp
localip 192.168.5.10-30,192.168.5.33
remoteip 192.168.7.225-238,192.168.7.245
vi /etc/ppp/options.pptpd
name pptpd
refuse-pap
refuse-chap
refuse-mschap
require-mschap-v2
require-mppe-128
proxyarp
debug
dump
lock
nobsdcomp
novj
novjccomp
nologfd
plugin /usr/lib/pppd/2.4.4/radius.so
radius-config-file /etc/radiusclient/radiusclient.conf
logfile /var/log/pptpd.log
vi /etc/ppp/chap-secrets
"miladuo" * "1234qwer" *
"miladuo" pptpd "1234qwer" *
vi /etc/raddb/users
miladuo Auth-Type:= MS-CHAP, User-Password=="1234qwer", Simultaneous-Use:=1
Service-Type = Framed-User,
Framed-Protocol = PPP,
Framed-IP-Address = 255.255.255.254,
Framed-IP-Netmask = 255.255.255.0
vi /etc/raddb/clients.conf
client 127.0.0.1 {
secret = testing123
shortname = localhost
nastype = other
}
其他配置完全按文章修改,如
编辑 radiusd.conf 使其支持mysql认证;
vi /etc/raddb/radiusd.conf
注释掉 authorize {
的files
去掉sql前的注释
注释掉 preacct {
的files
注释掉 accounting {
的radutmp
去掉sql前面的#
注释掉 session{
的radutmp
去掉sql前面的#
去掉 post-auth {
sql前的#
总之就是去掉files模块,开启sql模块
我现在在另外一台win机器上面测试拨号,每次都在验证用户名密码那个地方过不去,报错误691.我也看了日志错误,百度,google搜索了N天,实在是找不到解决方案,还望大家帮忙看
看.谢谢! |
|