Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    FreeRadius2 после обновления не запускается. 2.3.3-RELEASE-p1 (i386)

    Russian
    4
    7
    872
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      shux last edited by

      Что показывают логи:

      Apr 14 22:22:07  radiusd  69196  rlm_eap: SSL error error:02001002:system library:fopen:No such file or directory 
      Apr 14 22:22:07  radiusd  69196  rlm_eap_tls: Error reading certificate file /usr/local/etc/raddb/certs/server_cert.pem 
      Apr 14 22:22:07  radiusd  69196  rlm_eap: Failed to initialize type tls 
      Apr 14 22:22:07  radiusd  69196  /usr/local/etc/raddb/eap.conf[2]: Instantiation failed for module "eap" 
      Apr 14 22:22:07  radiusd  69196  /usr/local/etc/raddb/sites-enabled/default[328]: Failed to find "eap" in the "modules" section. 
      Apr 14 22:22:07  radiusd  69196  /usr/local/etc/raddb/sites-enabled/default[263]: Errors parsing authenticate section. 
      Apr 14 22:22:07  radiusd  69196  Failed to load virtual server <default> 
      Apr 14 22:22:33  radiusd  77210  rlm_eap: SSL error error:02001002:system library:fopen:No such file or directory 
      Apr 14 22:22:33  radiusd  77210  rlm_eap_tls: Error reading certificate file /usr/local/etc/raddb/certs/server_cert.pem 
      Apr 14 22:22:33  radiusd  77210  rlm_eap: Failed to initialize type tls 
      Apr 14 22:22:33  radiusd  77210  /usr/local/etc/raddb/eap.conf[2]: Instantiation failed for module "eap" 
      Apr 14 22:22:33  radiusd  77210  /usr/local/etc/raddb/sites-enabled/default[328]: Failed to find "eap" in the "modules" section. 
      Apr 14 22:22:33  radiusd  77210  /usr/local/etc/raddb/sites-enabled/default[263]: Errors parsing authenticate section. 
      Apr 14 22:22:33  radiusd  77210  Failed to load virtual server <default>

      на комнаду #radiusd -X

      rlm_eap: SSL error error:02001002:system library:fopen:No such file or directory
      rlm_eap_tls: Error reading certificate file /usr/local/etc/raddb/certs/server_cert.pem
      rlm_eap: Failed to initialize type tls
      /usr/local/etc/raddb/eap.conf[2]: Instantiation failed for module "eap"
      /usr/local/etc/raddb/sites-enabled/default[328]: Failed to find "eap" in the "modules" section.
      /usr/local/etc/raddb/sites-enabled/default[263]: Errors parsing authenticate section.

      подскажите, как настроить
      с уважением shux!!!</default></default>

      1 Reply Last reply Reply Quote 0
      • A
        anzak84 last edited by

        Установи –->Service Watchdog, там добавь сервис  FreeRadius Server. После перезагрузки должен запуститься

        1 Reply Last reply Reply Quote 0
        • P
          pigbrother last edited by

          Apr 14 22:22:07  radiusd  69196  rlm_eap: SSL error error:02001002:system library:fopen:No such file or directory
          Apr 14 22:22:07  radiusd  69196  rlm_eap_tls: Error reading certificate file /usr/local/etc/raddb/certs/server_cert.pem

          Похоже, что пути после обновления стали некорректными .

          1 Reply Last reply Reply Quote 0
          • S
            shux last edited by

            @anzak84:

            Установи –->Service Watchdog, там добавь сервис  FreeRadius Server. После перезагрузки должен запуститься

            Service Watchdog думаю не поможет, но попробую спс..

            1 Reply Last reply Reply Quote 0
            • S
              shux last edited by

              @pigbrother:

              Apr 14 22:22:07  radiusd  69196  rlm_eap: SSL error error:02001002:system library:fopen:No such file or directory
              Apr 14 22:22:07  radiusd  69196  rlm_eap_tls: Error reading certificate file /usr/local/etc/raddb/certs/server_cert.pem

              Похоже, что пути после обновления стали некорректными .

              тут проблема /usr/local/etc/raddb/certs/server_cert.pem такого сертификата как server_cert.pem  совсем нет, есть другие
              01.pem
              02.pem
              ca_cert.pem
              ca_key.pem

              выход пока нашел, но это временно
              в конфиге радиуса radiusd.conf найти и уберать $INCLUDE eap.conf или секцию eap { … } и соответственно далее следует отключить EAP во всех sites-enabled/*

              но после перезапуска PF /usr/local/etc/raddb/sites-enabled/default восстанавливается и все происходит обратно

              1 Reply Last reply Reply Quote 0
              • D
                derwin last edited by

                ОМГ, такие же грабли.
                Отпишите трабл тикет пожалуйста сюда redmine.pfsense.org

                1 Reply Last reply Reply Quote 0
                • D
                  derwin last edited by

                  https://redmine.pfsense.org/issues/7479
                  быстро ответ дали )

                  1 Reply Last reply Reply Quote 0
                  • First post
                    Last post

                  Products

                  • Platform Overview
                  • TNSR
                  • pfSense Plus
                  • Appliances

                  Services

                  • Training
                  • Professional Services

                  Support

                  • Subscription Plans
                  • Contact Support
                  • Product Lifecycle
                  • Documentation

                  News

                  • Media Coverage
                  • Press
                  • Events

                  Resources

                  • Blog
                  • FAQ
                  • Find a Partner
                  • Resource Library
                  • Security Information

                  Company

                  • About Us
                  • Careers
                  • Partners
                  • Contact Us
                  • Legal
                  Our Mission

                  We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

                  Subscribe to our Newsletter

                  Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

                  © 2021 Rubicon Communications, LLC | Privacy Policy