This Raidus Server is writtten by Python, and is used to Authentication, Authorization, Accounting for WLAN user or PPPoE user. Test authorization through supplicant on Windows10, Android 4.4.4 and iOS 13.
Support authenticate method:
Support Dynamic Authorization Extensions:
- Disconnect Messages
- Change-of-Authorization (CoA) Messages
git submodule update --init --recursive --remote --checkout # pull
-
Setup database
start pg:
docker compose -f docker-compose.yml up pginit database and table data with mysql_insert.sql
-
For authenticate
Build the docker image
docker compose build authRun the docker container
docker compose up auth -
For accouting
similiar with authenticate, but reaplce
authwithacct
docker compose exec auth bash
cd third_party/hostapd-2.10/hostapd/
cat README.mddocker compose exec auth bash
cd third_party/wpa_supplicant-2.10/wpa_supplicant/
cat README.md
freeradiusnot supportOpenSSL 3.0well in debianbookworm
docker compose exec auth bash
cd third_party/freeradius-3.2.3/
cat README.mdenter into authenticate container: docker compose exec auth bash
run simulator in container:
docker compose exec simulator bash
radclient -D /app/tools/simulator/etc/dictionary -d /app/etc/dictionary auth:1812 auth 'testing123' < /app/tools/simulator/radius_test/auth/chap.confdocker compose exec simulator bash
# docker run --rm -it --network pppoe_system_network_name jumanjiman/radclient:latest \
radclient -D /app/tools/simulator/etc/dictionary -d /app/etc/dictionary auth:1812 auth 'testing123' < /app/tools/simulator/radius_test/auth/pap.conf-
docker compose up -d auth_test, listen on port 2812 -
Access Controller route traffic to 2812
add USE_GTC=1 in .env and restart docker container
enter into authenticate container: docker compose exec auth bash
run simulator in container directory /app/tools/simulator/bin:
eapol_test -c /app/tools/simulator/eap_test/eapol_test.conf.peapv1.gtc -a auth -p 1812 -s testing123 -r 0 -N 30:s:FF-FF-FF-FF-FF-FF -N 32:s:ACremove USE_GTC=0 in .env and restart docker container
enter into authenticate container: docker compose exec auth bash
run simulator in container directory /app/tools/simulator/bin:
./eapol_test -c /app/tools/simulator/eap_test/eapol_test.conf.peapv1.mschapv2 -a auth -p 1812 -s testing123 -r 0 -N 30:s:FF-FF-FF-FF-FF-FF -N 32:s:ACdocker compose exec simulator bash
# i package
radclient -D /app/tools/simulator/etc/dictionary -d /app/etc/dictionary acct:1813 acct 'testing123' < /app/tools/simulator/radius_test/acct/i.conf
# u package
radclient -D /app/tools/simulator/etc/dictionary -d /app/etc/dictionary acct:1813 acct 'testing123' < /app/tools/simulator/radius_test/acct/u.conf
# t package
radclient -D /app/tools/simulator/etc/dictionary -d /app/etc/dictionary acct:1813 acct 'testing123' < /app/tools/simulator/radius_test/acct/t.confenter into accounting container: docker compose exec dae bash
run simulator in container directory /app/tools/simulator/bin:
docker compose exec simulator bash
radclient -D /app/tools/simulator/etc/dictionary -d /app/etc/dictionary dae:3799 disconnect 'testing123' < /app/tools/simulator/radius_test/dae/disconnect.confgdb /root/.pyenv/shims/python -c core.1 ENTRYPOINT="tail -f /dev/null" docker compose up -d auth_test
apt-get install gdb
./bin/gdb.sh # gdb python3
(gdb) run /app/src/processor/auth_processor.py
# wait for segfault ##
(gdb) backtrace
# stack trace of the c code