Time for action – testing authentication on the inner-tunnel virtual server
The inner-tunnel
virtual server has a listen
section by default that listens on IP address 127.0.0.1 and port 18120 for authentication requests. This can be used to test how the virtual server will react to authentication requests.
- Confirm that the
inner-tunnel
virtual server is enabled (listed under thesites-enabled
directory) and that it contains the followinglisten
section. This should be included by default.listen { ipaddr = 127.0.0.1 port = 18120 type = auth }
- Restart FreeRADIUS in debug mode.
- Test the authentication on the
inner-tunnel
virtual server by using the following command:radtest alice passme 127.0.0.1:18120 100 testing123
- You should see that the
inner-tunnel
virtual server is used by looking at the feedback in the debug output:server inner-tunnel { +- entering group authorize {...} ++[chap] returns noop ...
What just happened?
We have made use of the listen
section defined...