centos7安装FreeRadius3及WEB管理界面DaloRadius
一、基础环境安装
1.基础环境设置
切换yum源为阿里云
下载https://mirrors.aliyun.com/repo/Centos-7.repo
上传到centos中/etc/yum.repos.d/目录下
sudo cp /etc/yum.repos.d/CentOS-Base.repo /etc/yum.repos.d/CentOS-Base.repo.backup //先备份 wget -O /etc/yum.repos.d/CentOS-Base.repo https://mirrors.aliyun.com/repo/Centos-7.repo yum clean all //清理缓存 yum makecache //重新生成缓存 yum -y update && yum -y upgrade //更新系统源码和库
防火墙设置
systemctl stop firewalld //关闭防火墙 systemctl disable firewalld //关闭防火墙自启
Selinux设置
sed -i '/SELINUX/s/enforcing/disabled/' /etc/selinux/config //关闭Selinux reboot sestatus //查询Selinux状态(需重启后查询)
2.安装apache
yum -y install httpd httpd-devel
启动httpd和设置开机启动
systemctl enable httpd systemctl start httpd
浏览器中输入centos的IP可以测试下apache状态
3.安装php
yum -y install php php-devel php-mysql php-common php-gd php-mbstring php-mcrypt php-imap php-odbc php-xml php-xmlrpc php-pear php-pear-DB
查看php版本
php -v
[root@centos7 ~]# php -v
PHP 5.4.16 (cli) (built: Apr 1 2020 04:07:17)
Copyright (c) 1997-2013 The PHP Group
Zend Engine v2.4.0, Copyright (c) 1998-2013 Zend Technologies
测试PHP,Apache网站根目录(/var/www/html/)新建info.php网页,按Ins输入内容后按esc,:wq 保存退出。
vi /var/www/html/info.php
<?php
phpinfo();
?>
重启apache
systemctl restart httpd.service
浏览器输入http://192.168.31.114/info.php
4.安装数据库
yum -y install mariadb-server mariadb
设置开机启动和启动服务
systemctl enable mariadb systemctl start mariadb
设置数据库
mysql_secure_installation
SQL自动配置(除设置root密码Aa123123,其余都回车)
7.创建数据库
mysql -u root -p //登录数据库,需要输入刚刚的root密码Aa123123 create database radius; 创建数据库radius grant all on radius.* to radius@localhost identified by 'radius123'; //设置radius用户名密码及权限 flush privileges; //刷新权限 exit //退出
二、freeradius安装与配置
1.freeradius安装
yum -y install freeradius freeradius-utils freeradius-mysql
启动radius和设置为开机启动
systemctl start radiusd.service systemctl enable radiusd.service
2.导入radius数据表
mysql -u root -p radius < /etc/raddb/mods-config/sql/main/mysql/schema.sql
需要输入root密码Aa123123
3.修改FreeRadius配置文件
vi /etc/raddb/mods-available/sql
修改下面的配置
driver = "rlm_sql_mysql" dialect = "mysql" server = "localhost" port = 3306 login = "radius" password = "radius123"
按Esc退出:wq保存
4.建立mysql调用
cd /etc/raddb/mods-enabled ln -s ../mods-available/sql
5.配置文件权限
chgrp -h radiusd /etc/raddb/mods-available/sql
6.重启radius
systemctl restart radiusd.service
添加启动服务,调整FreeRadius与MariaDB的启动顺序,FreeRadius必须在MariaDB启动之后启动,在[Unit]部分,增加After=mariadb.service
vi /etc/systemd/system/multi-user.target.wants/radiusd.service After=mariadb.service
重启服务
systemctl daemon-reload systemctl restart radiusd.service
三、安装freeradius管理界面Daloradius
1.先下载文件(master.zip,daloradius-0.9-9.tar.gz)
https://github.com/lirantal/daloradius/archive/master.zip
链接:https://pan.baidu.com/s/1SRjQbFEGi5iNNDVFAh5PwQ?pwd=dbbb
提取码:dbbb
链接:https://pan.baidu.com/s/1B0eao5LZ-YTVIjExZ4TDrg?pwd=s7vr
提取码:s7vr
下载后上传master.zip和daloradius-0.9-9.tar.gz到centos的中/var/www/html/目录中
2.解压和移动文件
yum -y install unzip cd /var/www/html/ unzip master.zip mv daloradius-master/ /var/www/html/daloradius //移动文件夹 tar -xzvf daloradius-0.9-9.tar.gz //解压缩包 rm -rf /var/www/html/daloradius/contrib/ //删除daloradius里面的contrib,为了能daloradius-0.9-9/contrib移动过来 //覆盖源码 全部输入y回车 mv daloradius-0.9-9/* /var/www/html/daloradius/
验证下是否daloradius-0.9-9/目录下的所有文件都移动到了/var/www/html/daloradius目录下
输入ls命令查看daloradius-0.9-9/目录下已经没有任何文件了
3.设置daloradius权限
chown -R apache:apache /var/www/html/daloradius chmod -R 664 /var/www/html/daloradius/library/daloradius.conf.php
4.修改配置
编辑数据库信息
导入SQL脚本
mysql -u root -p radius < /var/www/html/daloradius/contrib/db/fr2-mysql-daloradius-and-freeradius.sql mysql -u root -p radius < /var/www/html/daloradius/contrib/db/mysql-daloradius.sql
5.更改daloradius.conf.php
vi /var/www/html/daloradius/library/daloradius.conf.php
修改
$configValues['CONFIG_DB_ENGINE'] = 'mysql';
$configValues['CONFIG_DB_HOST'] = 'localhost';
$configValues['CONFIG_DB_PORT'] = '3306';
$configValues['CONFIG_DB_USER'] = 'radius';
$configValues['CONFIG_DB_PASS'] = 'radius123';
$configValues['CONFIG_DB_NAME'] = 'radius';
configValues[‘CONFIG_FILE_RADIUS_PROXY‘] = ‘/etc/raddb/proxy.conf‘;(68行)
$configValues[‘CONFIG_PATH_DALO_VARIABLE_DATA‘] = ‘/var/www/html/daloradius/var‘; (70行)
$configValues[‘CONFIG_MAINT_TEST_USER_RADIUSSECRET‘] = ‘testing123‘; (86行) #注意这条,要和 /etc/raddb/clients.conf 文件设置的secret = xxxxxxxxxx 值一样。
重启服务
systemctl restart radiusd.service systemctl restart mariadb.service systemctl restart httpd
四、测试访问
http://192.168.31.114/daloradius/
五、页面汉化
进入daloradius 文件目录,修改config-lang.php,添加中文选项:
cd /var/www/html/daloradius
vim config-lang.php
<select name="config_lang" class='form'>
<option value="en"> English </option>
<option value="zh"> Simplified Chinese </option>
<option value="ru"> Russian </option>
<option value="hu"> Hungarian </option>
<option value="it"> Italian </option>
<option value="es_VE"> Spanish - Venezuelan </option>
<option value="pt_br"> Portuguese - Brazilian </option>
<option value="ja"> Japanese </option>
</select>
进入lang目录,修改main.php,增加简体中文文件
cd lang/
vim main.php
switch($configValues['CONFIG_LANG']) {
case "en":
include (dirname(__FILE__)."/en.php");
break;
case "ru":
include (dirname(__FILE__)."/ru.php");
break;
case "hu":
include (dirname(__FILE__)."/hu.php");
break;
case "it":
include (dirname(__FILE__)."/it.php");
break;
case "es_VE":
include (dirname(__FILE__)."/es_VE.php");
break;
/*
* file is currently broken and needs a fix...
case "ro":
include (dirname(__FILE__)."/ro.php");
break;
*/
case "pt_br":
include (dirname(__FILE__)."/pt_br.php");
break;
case "ja":
include (dirname(__FILE__)."/ja.php");
break;
case "zh":
include (dirname(__FILE__)."/zh.php");
break;
default:
include (dirname(__FILE__)."/zh.php");
break;
}
链接:https://pan.baidu.com/s/1yoVfqAATCI5M6y9xoh4PLw?pwd=r2a4
提取码:r2a4
返回lang目录,将zh.php文件放入lang目录
刷新页面,修改Config里面的的语言设置
更改后的页面
其他:
设置可以远程访问数据库:
vi /etc/my.cnf.d/server.cnf
在 [mysqld]下添加
bind-address = 0.0.0.0
skip-networking = 0
保存
登录MariaDB并为root用户授权远程访问:
mysql -u root -p GRANT ALL PRIVILEGES ON *.* TO 'root'@'%' IDENTIFIED BY 'Aa123123' WITH GRANT OPTION; FLUSH PRIVILEGES;
exit
重启mariadb
systemctl restart mariadb
防火墙允许3306端口
firewall-cmd --permanent --add-port=3306/tcp firewall-cmd --reload
浙公网安备 33010602011771号