当前位置:首页 -> AI编程基础 -> 数据库编程

CentOS 5.4 pptp + freeradius2 +mysql +daloradius完美整合(图文并茂)(三)

2014-11-24 16:45:32 · 作者: · 浏览: 4
标签: CentOS 5.4 pptp freeradius2 mysql daloradius 完美 整合 图文并茂
ent/radiusclient.conf

三、建立radius 数据库及导入相应的数据库表:
可采用命令或使用Navicat for MySQL工具来完成: 
1、radius中提供了mysql的导入文件:
[plain] 
1. [root@localhost ~]# ls /etc/raddb/sql/mysql/*.sql -l  
2. -rw-r----- 1 root radiusd  661 Jan  9 02:04 /etc/raddb/sql/mysql/admin.sql  
3. -rw-r----- 1 root radiusd  452 Jan  9 02:04 /etc/raddb/sql/mysql/cui.sql  
4. -rw-r----- 1 root radiusd  761 Jan  9 02:04 /etc/raddb/sql/mysql/ippool.sql  
5. -rw-r----- 1 root radiusd  399 Jan  9 02:04 /etc/raddb/sql/mysql/nas.sql  
6. -rw-r----- 1 root radiusd 4318 Jan  9 02:04 /etc/raddb/sql/mysql/schema.sql  
7. -rw-r----- 1 root radiusd  407 Jan  9 02:04 /etc/raddb/sql/mysql/wimax.sql

2、这里采用了命令方式,首先建立radius数据库:
为了方便以后使用Navicat for MySQL工具管理My sql数据库,所以做了权限等方便的修改:
3、具体操作可复制代码: 
[plain] 
1. [root@localhost ~]# mysql -uroot -p  
2. Enter password:  
3. Welcome to the MySQL monitor.  Commands end with ; or \g.  
4. Your MySQL connection id is 4  
5. Server version: 5.0.95 Source distribution  
6. 
7. Copyright (c) 2000, 2011, Oracle and/or its affiliates. All rights reserved.  
8. 
9. Oracle is a registered trademark of Oracle Corporation and/or its  
10. affiliates. Other names may be trademarks of their respective  
11. owners.  
12. 
13. Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.  
14. 
15. mysql> show databases;  
16. +--------------------+  
17. | Database           |  
18. +--------------------+  
19. | information_schema |  
20. | mysql              |  
21. | test               |  
22. +--------------------+  
23. 3 rows in set (0.00 sec)  
24. 
25. mysql> CREATE DATABASE radius DEFAULT CHARACTER SET utf8 COLLATE utf8_general_ci;  
26. Query OK, 1 row affected (0.00 sec)  
27. 
28. mysql> GRANT ALL PRIVILEGES ON *.* TO 'root'@'%' IDENTIFIED BY 'leekwen' WITH GRANT OPTION;  
29. Query OK, 0 rows affected (0.00 sec)  
30. 
31. mysql> flush PRIVILEGES;  
32. Query OK, 0 rows affected (0.00 sec)  
33. 
34. mysql> \q;  
35. Bye  
36. [root@localhost ~]# mysql -uroot -p radius < /etc/raddb/sql/mysql/admin.sql  
37. Enter password:  
38. [root@localhost ~]# mysql -uroot -p radius < /etc/raddb/sql/mysql/cui.sql  
39. Enter password:  
40. [root@localhost ~]# mysql -uroot -p radius < /etc/raddb/sql/mysql/ippool.sql  
41. Enter password:  
42. [root@localhost ~]# mysql -uroot -p radius < /etc/raddb/sql/mysql/nas.sql  
43. Enter password:  
44. [root@localhost ~]# mysql -uroot -p radius < /etc/raddb/sql/mysql/schema.sql  
45. Enter password:  
46. [root@localhost ~]# mysql -uroot -p radius < /etc/raddb/sql/mysql/wimax.sql  
47. Enter password:  
4、防火墙中关于数据库相关的设置:
[plain] 
1. [root@localhost ~]# grep 3306 /etc/sysconfig/iptables  
2. [root@localhost ~]# vi /etc/sysconfig/iptables  
3. [root@localhost ~]# /etc/init.d/iptables restart  
4. Flushing firewall rules:                                   [  OK  ]  
5. Setting chains to policy ACCEPT: filter nat                [  OK  ]  
6. Unloading iptables modules:                                [  OK  ]  
7. Applying iptables firewall rules:                          [  OK  ]  
8. Loading additional iptables modules: ip_conntrack_netbios_n[  OK  ]  
9. [root@localhost ~]# grep 3306 /etc/sysconfig/iptables  
10. -A RH-Firewall-1-INPUT -p tcp -m tcp --dport 3306 -j ACCEPT

四、修改radius的相关配置文件: 
[plain] 
1. [root@localhost ~]# cp /etc/raddb/radiusd.conf /etc/raddb/radiusd.conf.bak  
2. [root@localhost ~]# vi /etc/raddb/radiusd.conf  
3. 行号 |      修改后配置                |           未修改的配置  
4. 700  | $INCLUDE sql.conf              | #  $INCLUDE sql.conf <------去掉注释#  
5. 712  | $INCLUDE sql/mysql/counter.conf| #  $INCLUDE sql/mysql/counter.conf  <------去掉注释#  
6. 
7. [root@localhost ~]# cp /etc/raddb/sql.conf /etc/raddb/sql.conf.bak  
8. [root@localhost ~]# vi /etc/raddb/sql.conf  
9. 行号 |     修改后配置           |     未修改的配置  
10. 38   |   login = "root"         |   login = "radius"   <------修改连接mysql的用户名  
11. 39   |   password = "leekwen"   |  password = "radpass"<------修改连接mysql的密码  
12. 100  |   readclients = yes      | #readclients = yes   <------去掉注释#

说明:如果在运行radiusd -X 时会加载配置文件;
如果看到加载的配置文件时,出现下面的错误:
!!! Error !!!
Duplicate virtual server "inner-tunnel" in file /etc/raddb/sites-enabled/inner-tunnel:11
and file /etc/raddb/sites-enabled/inner-tunnel.bak:11
请将/etc/raddb/sites-enabled/inner-tunnel.bak 与 /etc/raddb/sites-enabled/default.bak全部删除,
这也是为什么下面在编辑前没有备份这两个文件的原因: 
[plain] 
1. [root@localhost ~]# vi /etc/raddb/sites-enabled/default  
2. 行号  |       修改后配置                    |               未修改的配置  
3. 170    #       files                         |          files  <------增加注释#  
4. 177            sql                           |  #       sql    <------去掉注释#  
5. 372    #       files                         |          files  <------增加注释#  
6. 406            sql                           |  #       sql  <------去掉注释#  
7. 454            sql                           |  #       sql  <------去掉注释#  
8. 475            sql                           |  #       sql  <------去掉注释#  
9. 
10. [root@localhost ~]# vi /etc/raddb/sites-enabled/inner-tunnel  
11. 行号  |      修改后配置                     |           未修改的配置  
12. 124   #       files                          |           files <------增加注释#  
13. 131           sql                            |   #       sql  <------去掉注释#  
14. 255           sql                            |   #       sql  <------去掉注释#  
15. 277           sql                            |   #       sql  <------去掉注释#

2、启动radiusd服务,并在数据库总插入测试账号,并查看测试结果!
3、测试通过后,修改默认密钥密码: 
[plain] 
1. [root@localhost ~]# cp /etc/raddb/clients.conf /etc/raddb/clients.conf.bak  
2. [root@localhost ~]# vi /etc/raddb/clients.conf  
3. 
4. 行号  |      修改后配置                  |           未修改的配置  
5. 101       secret          = leekwen       |        secret          = testing123

4、重新启动相关服务后,进行数据库用户测试!
5、此测试通过后,进行客户端的拨号连接,并在服务端查看客户端的拨号日志:
6、到此,已经完成了pptpd + freeradius2 + mysql 三者之间的整合.