* Be sure to install mysql 5-xxx and Development packages. I use Fedora core 5 for my installation.
*Obtain freeradius-1.1.7, extract and install
IMPORTANT
Before compiling, delete sqlippool package, it is located in src/modules. The reason is this particular package is not included in the mysql Development package that comes with FC5
**Edit Edit /usr/local/etc/raddb/users. Look for a line whose variable is System, change that to Local
** Check up the radius secret in /usr/local/etc/raddb/clients.conf, u can change that if u want but the value will be needed, so be sure to know it
**As for /usr/local/etc/raddb/radiusd.conf , i have a custom made one which i put together from different sources.
** Edit /etc/freeradius/sql.conf for ur database variables, its easy to do. Only a root password is needed for initial configuration,installation of phpmyprepaid will create databases, tables and users for u. Of course, u will be the one to put in the values that suit u.
** Refer to http://www.frontios.com/freeradius.html for configuration and testing of freeradius with mysql combo
* Install chillispot (Obtain from website)
**Edit /etc/chilli.conf as appropriate. Some of the sections that are worth editing are:
radiusserver1 127.0.0.1 (do not touch this)
radiusserver2 127.0.0.1 (do not touch this)
radiussecret theradiussecret (radius secret as mentioned above)
dns1 192.168.1.73
dhcpif eth0 (NIC used for tunnelling)
uamallowed 192.168.182.1,192.168.1.73,www.google.it (LAN address for clients)
uamserver [WWW] https://192.168.1.73/hotspotlogin.php (web interface presented to users for authentication and authorization)
uamsecret theuamsecret (this secret must be the same as that in the hotspotlogin.php, this is different from radius secret)
Look for and edit as appropriate the firewall script and hotspotlogin.cgi that comes with chillispot package.
Be sure to enable ip forwarding in /etc/sysctl.conf or via the firewall script.
PHPMYPREPAID
Download phpmyprepaid from sourceforge,extract(in apache root directory),install andset-up accounts
Sunday, November 4, 2007
Thursday, February 8, 2007
dns server configured with djbdns on linux
Very recently, i was given a project to develop a dns server for an ISP company.
I had 2 options when it came down to the type of software to use.The most common dns software on linux is BIND. But BIND has serious security flaws because one has to configure the nameserver function and the resolver function on the same IP and network card. This means that if something goes wrong with one funtion, the other's functionality will be affected.
So i opted for the recently developed DJBDNS software. This seperated the two functions and has been proven by seasoned developers to be very secure.
The dns server was commissioned last week and i am very happy.
Thanks to linux and djbdns.
I had 2 options when it came down to the type of software to use.The most common dns software on linux is BIND. But BIND has serious security flaws because one has to configure the nameserver function and the resolver function on the same IP and network card. This means that if something goes wrong with one funtion, the other's functionality will be affected.
So i opted for the recently developed DJBDNS software. This seperated the two functions and has been proven by seasoned developers to be very secure.
The dns server was commissioned last week and i am very happy.
Thanks to linux and djbdns.
Subscribe to:
Posts (Atom)