Solved

Install FreeRadius with MySQL on Linux CentOS Based Distr

Posted on 2011-09-30
19
1,622 Views
Last Modified: 2012-05-12
Hello,

I install Freeradius on CentOS and after that and install MySQL module and then daloradius.

Everythings OK and work as well.
Just I can't authenticate users and receive Access-Reject Error.

I create user with daloradius and after that i receive Reject error again.

I attach freeradius configurations. (/etc/raddb)
0
Comment
Question by:re-searcher
  • 12
  • 7
19 Comments
 
LVL 3

Author Comment

by:re-searcher
ID: 36893164
I Upload "/etc/raddb" to google because here don't support .access_reject and some other extentions.

It's available from https://docs.google.com/viewer?a=v&pid=explorer&chrome=true&srcid=0B_yqf89Mdz92M2E3NTk3NjYtOTQ4OC00ZGE3LTg4MGYtMjNiNzRiOTlmYTZh&hl=en_US
0
 
LVL 76

Expert Comment

by:arnold
ID: 36893437
Enable debugging on radius and have it log everything.
Then use radtest to generate auth requests and see what it is doing.
Check whether you have the configuration in the database for the user action or do you think the configuration is to read the /etc/raddb/users while your configuration actually directs radiusd to check a table in the database for determination on what is needed to grant a user access.
check items/reply items?

clearos-users does not have user definition lines.
I do not know whether /etc/raddb/users is not processed and radiusd looks at the database to determine on what the conditions are for the request and then checks the credentials/check items.

The debug report will show you exactly what radiusd is doing when a request comes in.  See whether it queries the database to see whether the presented credentials are valid or it just issues a reject since there is no condition that it should follow.
0
 
LVL 3

Author Comment

by:re-searcher
ID: 36893487
I attach "radiusd -X" result.

I need use freeradius to authenticate VPN Users (PPTP/L2TP) and OpenVPN.
I don't know much information regarding reply and etc.
I need your help.

I install daloradius,too and it's work.
i can creat users with daloradius but i don't know what exactly i should to do.
radiusd--X.txt
0
 
LVL 3

Author Comment

by:re-searcher
ID: 36893498
Debug Result
rad_recv: Access-Request packet from host 127.0.0.1 port 44006, id=9, length=60
	User-Name = "testuser"
	User-Password = "testpass"
	NAS-IP-Address = 10.211.55.12
	NAS-Port = 0
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] No '@' in User-Name = "testuser", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] No EAP-Message, not doing EAP
++[eap] returns noop
++[unix] returns updated
rlm_ldap: Entering ldap_groupcmp()
[files] 	expand: dc=clearos,dc=lan -> dc=clearos,dc=lan
[files] 	expand: %{Stripped-User-Name} -> 
[files] 	expand: %{User-Name} -> testuser
[files] 	expand: (uid=%{%{Stripped-User-Name}:-%{User-Name}}) -> (uid=testuser)
rlm_ldap: ldap_get_conn: Checking Id: 0
rlm_ldap: ldap_get_conn: Got Id: 0
rlm_ldap: performing search in dc=clearos,dc=lan, with filter (uid=testuser)
rlm_ldap: ldap_release_conn: Release Id: 0
[files] 	expand: (|(&(objectClass=GroupOfNames)(member=%{control:Ldap-UserDn}))(&(objectClass=GroupOfUniqueNames)(uniquemember=%{control:Ldap-UserDn}))) -> (|(&(objectClass=GroupOfNames)(member=cn\3dtest user\2cou\3dUsers\2cou\3dAccounts\2cdc\3dclearos\2cdc\3dlan))(&(objectClass=GroupOfUniqueNames)(uniquemember=cn\3dtest user\2cou\3dUsers\2cou\3dAccounts\2cdc\3dclearos\2cdc\3dlan)))
rlm_ldap: ldap_get_conn: Checking Id: 0
rlm_ldap: ldap_get_conn: Got Id: 0
rlm_ldap: performing search in dc=clearos,dc=lan, with filter (&(cn=allusers)(|(&(objectClass=GroupOfNames)(member=cn\3dtest user\2cou\3dUsers\2cou\3dAccounts\2cdc\3dclearos\2cdc\3dlan))(&(objectClass=GroupOfUniqueNames)(uniquemember=cn\3dtest user\2cou\3dUsers\2cou\3dAccounts\2cdc\3dclearos\2cdc\3dlan))))
rlm_ldap::ldap_groupcmp: User found in group allusers
rlm_ldap: ldap_release_conn: Release Id: 0
++[files] returns noop
[sql] 	expand: %{User-Name} -> testuser
[sql] sql_set_user escaped user --> 'testuser'
rlm_sql (sql): Reserving sql socket id: 1
[sql] 	expand: SELECT id, username, attribute, value, op           FROM radcheck           WHERE username = '%{SQL-User-Name}'           ORDER BY id -> SELECT id, username, attribute, value, op           FROM radcheck           WHERE username = 'testuser'           ORDER BY id
[sql] User found in radcheck table
[sql] 	expand: SELECT id, username, attribute, value, op           FROM radreply           WHERE username = '%{SQL-User-Name}'           ORDER BY id -> SELECT id, username, attribute, value, op           FROM radreply           WHERE username = 'testuser'           ORDER BY id
[sql] 	expand: SELECT groupname           FROM radusergroup           WHERE username = '%{SQL-User-Name}'           ORDER BY priority -> SELECT groupname           FROM radusergroup           WHERE username = 'testuser'           ORDER BY priority
rlm_sql (sql): Released sql socket id: 1
++[sql] returns ok
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[dailycounter] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[monthlycounter] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[weeklycounter] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[quaterlycounter] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[yearlycounter] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[noresetcounter] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[accessperiod] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[counterChilliSpotMaxTotalOctetsDaily] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[counterChilliSpotMaxTotalOctetsWeekly] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[counterChilliSpotMaxTotalOctetsMonthly] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[counterChilliSpotMaxTotalOctetsQuarterly] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[counterChilliSpotMaxTotalOctetsYearly] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[counterChilliSpotMaxTotalOctetsAll] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[counterChilliSpotMaxInputOctetsDaily] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[counterChilliSpotMaxInputOctetsWeekly] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[counterChilliSpotMaxInputOctetsMonthly] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[counterChilliSpotMaxInputOctetsQuarterly] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[counterChilliSpotMaxInputOctetsYearly] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[counterChilliSpotMaxInputOctetsAll] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[counterChilliSpotMaxOutputOctetsDaily] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[counterChilliSpotMaxOutputOctetsWeekly] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[counterChilliSpotMaxOutputOctetsMonthly] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[counterChilliSpotMaxOutputOctetsQuarterly] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[counterChilliSpotMaxOutputOctetsYearly] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[counterChilliSpotMaxOutputOctetsAll] returns noop
++[expiration] returns noop
++[logintime] returns noop
++[pap] returns updated
Found Auth-Type = PAP
+- entering group PAP {...}
[pap] login attempt with password "testpass"
[pap] Using CRYPT encryption.
[pap] Passwords don't match
++[pap] returns reject
Failed to authenticate the user.
Using Post-Auth-Type Reject
+- entering group REJECT {...}
[sql] 	expand: %{User-Name} -> testuser
[sql] sql_set_user escaped user --> 'testuser'
[sql] 	expand: %{User-Password} -> testpass
[sql] 	expand: INSERT INTO radpostauth                           (username, pass, reply, authdate)                           VALUES (                           '%{User-Name}',                           '%{%{User-Password}:-%{Chap-Password}}',                           '%{reply:Packet-Type}', '%S') -> INSERT INTO radpostauth                           (username, pass, reply, authdate)                           VALUES (                           'testuser',                           'testpass',                           'Access-Reject', '2011-09-30 14:24:27')
rlm_sql (sql) in sql_postauth: query is INSERT INTO radpostauth                           (username, pass, reply, authdate)                           VALUES (                           'testuser',                           'testpass',                           'Access-Reject', '2011-09-30 14:24:27')
rlm_sql (sql): Reserving sql socket id: 0
rlm_sql (sql): Released sql socket id: 0
++[sql] returns ok
[attr_filter.access_reject] 	expand: %{User-Name} -> testuser
 attr_filter: Matched entry DEFAULT at line 11
++[attr_filter.access_reject] returns updated
Delaying reject of request 1 for 1 seconds
Going to the next request
Waking up in 0.9 seconds.
Sending delayed reject for request 1
Sending Access-Reject of id 9 to 127.0.0.1 port 44006
Waking up in 4.9 seconds.
Cleaning up request 1 ID 9 with timestamp +425
Ready to process requests.

Open in new window

0
 
LVL 76

Expert Comment

by:arnold
ID: 36894059
Line 120-213 deals with user password does not match.
Check which rights testuser has if testpass is the correct password.
0
 
LVL 3

Author Comment

by:re-searcher
ID: 36894205
I create use with clear-password and here show crypt password.

I need more help. I'm not expert ...

Would you mind explain more.
Do you check raddb files which i upload on google?
0
 
LVL 3

Author Comment

by:re-searcher
ID: 36894227
First time i receive Accept and after that i receive Reject message.

rad_recv: Access-Request packet from host 127.0.0.1 port 33984, id=144, length=60
	User-Name = "testuser"
	User-Password = "testpass"
	NAS-IP-Address = 10.211.55.12
	NAS-Port = 0
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] No '@' in User-Name = "testuser", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] No EAP-Message, not doing EAP
++[eap] returns noop
++[unix] returns notfound
rlm_ldap: Entering ldap_groupcmp()
[files] 	expand: dc=clearos,dc=lan -> dc=clearos,dc=lan
[files] 	expand: %{Stripped-User-Name} -> 
[files] 	expand: %{User-Name} -> testuser
[files] 	expand: (uid=%{%{Stripped-User-Name}:-%{User-Name}}) -> (uid=testuser)
rlm_ldap: ldap_get_conn: Checking Id: 0
rlm_ldap: ldap_get_conn: Got Id: 0
rlm_ldap: performing search in dc=clearos,dc=lan, with filter (uid=testuser)
rlm_ldap: ldap_search() failed: LDAP connection lost.
rlm_ldap: Attempting reconnect
rlm_ldap: attempting LDAP reconnection
rlm_ldap: closing existing LDAP connection
rlm_ldap: (re)connect to localhost:389, authentication 0
rlm_ldap: bind as cn=manager,cn=internal,dc=clearos,dc=lan/Sn+8YJHcqJGUHUT4 to localhost:389
rlm_ldap: waiting for bind result ...
rlm_ldap: Bind was successful
rlm_ldap: performing search in dc=clearos,dc=lan, with filter (uid=testuser)
rlm_ldap: ldap_release_conn: Release Id: 0
[files] 	expand: (|(&(objectClass=GroupOfNames)(member=%{control:Ldap-UserDn}))(&(objectClass=GroupOfUniqueNames)(uniquemember=%{control:Ldap-UserDn}))) -> (|(&(objectClass=GroupOfNames)(member=cn\3dtest user\2cou\3dUsers\2cou\3dAccounts\2cdc\3dclearos\2cdc\3dlan))(&(objectClass=GroupOfUniqueNames)(uniquemember=cn\3dtest user\2cou\3dUsers\2cou\3dAccounts\2cdc\3dclearos\2cdc\3dlan)))
rlm_ldap: ldap_get_conn: Checking Id: 0
rlm_ldap: ldap_get_conn: Got Id: 0
rlm_ldap: performing search in dc=clearos,dc=lan, with filter (&(cn=allusers)(|(&(objectClass=GroupOfNames)(member=cn\3dtest user\2cou\3dUsers\2cou\3dAccounts\2cdc\3dclearos\2cdc\3dlan))(&(objectClass=GroupOfUniqueNames)(uniquemember=cn\3dtest user\2cou\3dUsers\2cou\3dAccounts\2cdc\3dclearos\2cdc\3dlan))))
rlm_ldap::ldap_groupcmp: User found in group allusers
rlm_ldap: ldap_release_conn: Release Id: 0
++[files] returns noop
[sql] 	expand: %{User-Name} -> testuser
[sql] sql_set_user escaped user --> 'testuser'
rlm_sql (sql): Reserving sql socket id: 1
[sql] 	expand: SELECT id, username, attribute, value, op           FROM radcheck           WHERE username = '%{SQL-User-Name}'           ORDER BY id -> SELECT id, username, attribute, value, op           FROM radcheck           WHERE username = 'testuser'           ORDER BY id
[sql] User found in radcheck table
[sql] 	expand: SELECT id, username, attribute, value, op           FROM radreply           WHERE username = '%{SQL-User-Name}'           ORDER BY id -> SELECT id, username, attribute, value, op           FROM radreply           WHERE username = 'testuser'           ORDER BY id
[sql] 	expand: SELECT groupname           FROM radusergroup           WHERE username = '%{SQL-User-Name}'           ORDER BY priority -> SELECT groupname           FROM radusergroup           WHERE username = 'testuser'           ORDER BY priority
rlm_sql (sql): Released sql socket id: 1
++[sql] returns ok
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[dailycounter] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[monthlycounter] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[weeklycounter] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[quaterlycounter] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[yearlycounter] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[noresetcounter] returns noop
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
++[accessperiod] returns noop
++[expiration] returns noop
++[logintime] returns noop
++[pap] returns updated
Found Auth-Type = PAP
+- entering group PAP {...}
[pap] login attempt with password "testpass"
[pap] Using clear text password "testpass"
[pap] User authenticated successfully
++[pap] returns ok
+- entering group post-auth {...}
[sql] 	expand: %{User-Name} -> testuser
[sql] sql_set_user escaped user --> 'testuser'
[sql] 	expand: %{User-Password} -> testpass
[sql] 	expand: INSERT INTO radpostauth                           (username, pass, reply, authdate)                           VALUES (                           '%{User-Name}',                           '%{%{User-Password}:-%{Chap-Password}}',                           '%{reply:Packet-Type}', '%S') -> INSERT INTO radpostauth                           (username, pass, reply, authdate)                           VALUES (                           'testuser',                           'testpass',                           'Access-Accept', '2011-09-30 14:45:54')
rlm_sql (sql) in sql_postauth: query is INSERT INTO radpostauth                           (username, pass, reply, authdate)                           VALUES (                           'testuser',                           'testpass',                           'Access-Accept', '2011-09-30 14:45:54')
rlm_sql (sql): Reserving sql socket id: 0
rlm_sql (sql): Released sql socket id: 0
++[sql] returns ok
++[exec] returns noop
Sending Access-Accept of id 144 to 127.0.0.1 port 33984
Finished request 1.
Going to the next request
Waking up in 4.9 seconds.
Cleaning up request 1 ID 144 with timestamp +970
Ready to process requests.

Open in new window



Do you know why one time it use cleartext-password and one time Crypt...
0
 
LVL 76

Expert Comment

by:arnold
ID: 36894450
Clear password is being received as part of the auth-request radiusd gets. It then needs to use the clear text password with the crypted password in the database to see whether the provided password (clear text) is the same as the crypted password.

Is the password in the database crypted or is it in plain text?
If it is in plain text, you need to adjust the entries in the users table to reflect that the password in the data base is in clear text.

You have LDAP tie in as well, until an auth-accept is sent, the OK, NOOP events are just events that radiusd goes through, but not all of the conditions are met for the response to be generated

Do you have radcheck table entries that your setup checks and only allows a single login? authorize_check_query in the radiusd--X.txt
Make sure when the user logs off you delete the corresponding entry from radcheck: authorize_check_query = "SELECT id, username, attribute, value, op           FROM radcheck           WHERE username = '%{SQL-User-Name}'           ORDER BY id"


deletestatesessions
0
 
LVL 3

Author Comment

by:re-searcher
ID: 36914451
Hi Arnold,

I reinstall freeradius2 and freeradius-mysql and reconfig it like following article:
http://www.howtoforge.com/setting-up-a-freeradius-based-aaa-server-with-mysql-and-management-with-daloradius

everythings ok and when i use radtest and test user which i create from daloradius it's work and request Request-Accept msg, but i found new problem.
when i use testuser testpass i receive accept msg, and when i use testuser1 (which not available) and testpass i receive access-reject, but problem is when i use "radtest testuser testpass1" i receive access-accept msg, while testuser's password is "testpass" not "testpass1", for "testpw" i receive reject msg but for "testpass1" and "testpass2" and etc. i receive accept error.

Do you know why? and how i should fix it?
0
Find Ransomware Secrets With All-Source Analysis

Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

 
LVL 76

Expert Comment

by:arnold
ID: 36914967
how is the password stored in the database?
Crypt is limited to eight characters.
perl -e 'print scalar crypt("testpass","R3") ." ". crypt("testpass1","R3") ." \n";'
R3CuineiEk53o R3CuineiEk53o

perl crypt(<plain_text_password>,<salt>) in the example above I use "R3" as the salt
The result for testpass and testpass1 are identical 13 character crypt R3CuineiEk53o

There are other methods that do not have the eight character limitations MD5
http://wiki.debuntu.org/wiki/Freeradius/MySQL_and_MD5_password
http://techtots.blogspot.com/2010/01/installing-and-configuring-freeradius.html

While the references above are not Centos specific which is of little consequence since you are looking to adjust the settings within two application that run on any platform Freeradius and MySQL.

I would think daloradius gives you an option on the type of password encryption to use crypt, plain text, md5??

The freeradius/mysql users authentication/authorization rules should match the type of password based on the check items.
0
 
LVL 3

Author Comment

by:re-searcher
ID: 36921060
- Arnold

as i said before,
I wanna use freeradius , freeradius-mysql and daloradius for PPTP and OpenVPN and L2TP (Openswan) authentication.

yes, daloradius support MD5 and operator can create user with MD5 password.
but, do you know what's different between clear-text,crypt,MD5,user-password,sha1 ? i don't mean what's different between their encryption. i mean are there any specified rules for PPTP? or there are not different i can any type of these encryptions as my choice?

for next step, what i should to do for PPTP and L2TP and OpenVPN configurations?
0
 
LVL 76

Expert Comment

by:arnold
ID: 36922061
The password is included in plain text within the UDP packet access-request.

The mechanism on freeradius is then to use the packet and based on the settings determine whether the credentials provided to it match the conditions to allow/deny the request.

The encryption of the password is localized within freeradius and is of no significance to the application/appliance that generates the UDP access-request packet.

Nothing.  There are no changes required to PPTP, L2TP, or OpenVPN whether you use clear text, crypt, or MD5 as a means to store the user's password in the mysql database.

0
 
LVL 3

Author Comment

by:re-searcher
ID: 36922075
but i don't change /etc/ppp folder and openvpn configuration files.
while i think it's necessary which i should change ppp config file and openvpn config files.
i remember it which we should modify chap-secret file.... but i don't know how to do it exactly.
0
 
LVL 76

Expert Comment

by:arnold
ID: 36922246
I do not know what you are asking here?

There is a secret that is used between the client that sends the requests and freeradius.

we seem to be jumping around.  At this stage do you have your freeradius/mysql daloradius setup operational i.e. freeradius gets a valid request and responds with accepte/deny.

If you configure the appliances/clients to send in encrypted passwords, you would often have to store the passwords in the database in clear text.
testpass is R3CuineiEk53o 43EOHOi4tVVV6 G2p.WXXqzAB9E
Therefore, if freeradius gets the password encrypted, the only way to compare it to the one in the database is to have the plain password from the database encrypted using the received password and if they result in the same string the password sent is correct, if not the password sent is incorrect.


 
0
 
LVL 3

Author Comment

by:re-searcher
ID: 36927886
i mean how i should set PPTP and OpenVPN and L2TP configurations for do authentication with freeradius?

currently i know it which freeradius work with daloradius and mysql as well.
but i wanna do VPN users authenticate through freeradius. which conf files and variables/values should be edit?

Would you mind help me at this situation?!
0
 
LVL 3

Author Comment

by:re-searcher
ID: 36928818
- Arnold

I create new PPTP connection in my Mac OS X Leopard and try to connect to my Server (which run freeradius and freeradius-mysql on that). but i receive error

with radtest on server i receive request-accept message but from my Mac with PPTP connection i receive error.

I don't change any files on /etc/ppp and don't know which files should be modify.

Would you mind help me?!

0
 
LVL 3

Author Comment

by:re-searcher
ID: 36929768
are there anybody to help me more?
0
 
LVL 76

Accepted Solution

by:
arnold earned 500 total points
ID: 36930485
Which version of OpenVPN are you using?
http://www.imped.net/oss/misc/openvpn-2.0-howto-edit.html

PPTP/L2TP
http://poptop.sourceforge.net/dox/radius_mysql.html
http://en.gentoo-wiki.com/wiki/IPsec_L2TP_VPN_server#Authentication_via_RADIUS

This question originally dealt with setup freeradius/mysql/daloradius which has been completed.
You should open a new question for the rest if the above links do not lead you to the solution.  Work one item at a time.
0
 
LVL 3

Author Comment

by:re-searcher
ID: 36930631
Thanks Arnold,

I using last version of OpenVPN and pppd and OpenSwan on CentOS.

I create new ticket regarding next step: http://www.experts-exchange.com/OS/Linux/Q_27385286.html
0

Featured Post

Control application downtime with dependency maps

Visualize the interdependencies between application components better with Applications Manager's automated application discovery and dependency mapping feature. Resolve performance issues faster by quickly isolating problematic components.

Join & Write a Comment

Suggested Solutions

Some of you may have heard that SonicWALL has finally released an app for iOS devices giving us long awaited connectivity for our iPhone's, iPod's, and iPad's. This guide is just a quick rundown on how to get up and running quickly using the app. …
Let’s list some of the technologies that enable smooth teleworking. 
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now