self-hosted/dockerfiles
1
0
Fork 0
mirror of https://github.com/vimagick/dockerfiles.git synced 2025-04-23 12:08:49 +02:00
Code Issues Releases Activity

freeradius load nas table

Browse Source
This commit is contained in:
kev 2016-07-28 15:37:07 +08:00
parent f1ba5edda1
commit 7a8b4a93a4
2 changed files with 40 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
freeradius/Dockerfile
View File

@ -10,9 +10,11 @@ RUN set -xe \
freeradius-mysql \ freeradius-mysql \
freeradius-radclient \ freeradius-radclient \
&& rm -f /etc/raddb/mods-enabled/eap \ && rm -f /etc/raddb/mods-enabled/eap \
&& ln -s /etc/raddb/mods-available/sql /etc/raddb/mods-enabled/sql \ && ln -s /etc/raddb/mods-available/sql \
/etc/raddb/mods-available/sqlcounter /etc/raddb/mods-enabled \
&& sed -i -e 's@driver =.*@driver = "rlm_sql_mysql"@' \ && sed -i -e 's@driver =.*@driver = "rlm_sql_mysql"@' \
-e 's@dialect =.*@dialect = "mysql"@' \ -e 's@dialect =.*@dialect = "mysql"@' \
-e '/read_clients = yes/s@^#@@' \
-e '/Connection info:/,/^$/{s@^#@@;s@localhost@mysql@}' \ -e '/Connection info:/,/^$/{s@^#@@;s@localhost@mysql@}' \
/etc/raddb/mods-available/sql /etc/raddb/mods-available/sql

42
freeradius/README.md
View File

@ -57,15 +57,44 @@ $ docker-compose exec mysql mysql -uroot -proot radius
+----------------------------------------------------------------+ +----------------------------------------------------------------+
5 rows in set (0.00 sec) 5 rows in set (0.00 sec)
>>> INSERT INTO radcheck(id, username, attribute, op, value) VALUES(0, 'user', 'Cleartext-Password', ':=', 'pass'); >>> INSERT INTO radcheck VALUES(NULL, 'user', 'Cleartext-Password', ':=', 'pass');
Query OK, 1 row affected (0.00 sec) Query OK, 1 row affected (0.00 sec)
>>> SELECT * FROM radcheck;
+----+----------+--------------------+----+-------+
| id | username | attribute | op | value |
+----+----------+--------------------+----+-------+
| 1 | user | Cleartext-Password | := | pass |
+----+----------+--------------------+----+-------+
1 row in set (0.00 sec)
>>> INSERT INTO nas VALUES(NULL, '0.0.0.0/0', 'testing', NULL, NULL, 'testing321', NULL, NULL, NULL);
Query OK, 1 row affected (0.02 sec)
>>> SELECT * FROM nas;
+----+-----------+-----------+------+-------+------------+--------+-----------+-------------+
| id | nasname | shortname | type | ports | secret | server | community | description |
+----+-----------+-----------+------+-------+------------+--------+-----------+-------------+
| 1 | 0.0.0.0/0 | testing | NULL | NULL | testing321 | NULL | NULL | NULL |
+----+-----------+-----------+------+-------+------------+--------+-----------+-------------+
1 row in set (0.00 sec)
>>> SELECT * FROM radpostauth;
+----+----------+--------------------------------------------------------------+---------------+---------------------+
| id | username | pass | reply | authdate |
+----+----------+--------------------------------------------------------------+---------------+---------------------+
| 1 | user | pass | Access-Accept | 2016-07-28 06:28:28 |
| 2 | user | pass | Access-Accept | 2016-07-28 06:30:04 |
| 3 | user | xxxx | Access-Reject | 2016-07-28 06:30:22 |
+----+----------+--------------------------------------------------------------+---------------+---------------------+
>>> EXIT >>> EXIT
Bye Bye
$ docker-compose up -d freeradius $ docker-compose up -d freeradius
$ docker-compose exec freeradius sh $ docker-compose exec freeradius sh
>>> vi /etc/raddb/clients.conf >>> vi /etc/raddb/clients.conf
>>> radtest user pass localhost 0 testing123
>>> exit >>> exit
$ docker-compose restart freeradius $ docker-compose restart freeradius
``` ```
@ -73,18 +102,21 @@ $ docker-compose restart freeradius
``` ```
# /etc/raddb/clients.conf # /etc/raddb/clients.conf
client testing { #client testing {
ipaddr = 0.0.0.0/0 # ipaddr = 0.0.0.0/0
secret = testing321 # secret = testing321
} #}
``` ```
> Manage NAS (Network Access Server) via MySQL.
## Client Setup ## Client Setup
```bash ```bash
# ssh root@192.168.31.231 # ssh root@192.168.31.231
$ pacman -S freeradius freeradius-client $ pacman -S freeradius freeradius-client
$ radtest user pass 192.168.31.234 0 testing321 $ radtest user pass 192.168.31.234 0 testing321
$ radtest user xxxx 192.168.31.234 0 testing321
``` ```
[1]: http://freeradius.org/ [1]: http://freeradius.org/