国产目拍亚洲精品99久久精品_成人网av_99精品一区二区_久久久免费_成人伊人_一区二区三区视频

Linux C»·¾³ÏµÄRADIUS·þÎñÆ÷ʵÏÖÓëÓÅ»¯ ÔÚµ±½ñµÄÍøÂ簲ȫÁìÓò£¬ÈÏÖ¤¡¢ÊÚȨºÍ¼ÇÕË£¨AAA£©·þÎñÊÇÈ·±£ÍøÂç×ÊÔ´°²È«·ÃÎʵĹؼü×é³É²¿·Ö

    RADIUS£¨Remote Authentication Dial-In User Service£©Ð­Òé×÷ΪһÖֹ㷺ӦÓõÄAAAЭÒ飬Ϊ¸÷ÖÖÍøÂç½ÓÈë·þÎñ£¨ÈçVPN¡¢ÎÞÏß¾ÖÓòÍø¡¢²¦ºÅÍøÂçµÈ£©ÌṩÁ˱ê×¼»¯µÄÈÏÖ¤¿ò¼Ü

    ±¾ÎÄÖ¼ÔÚÉîÈë̽ÌÖÔÚLinux C»·¾³ÏÂʵÏÖºÍÓÅ»¯RADIUS·þÎñÆ÷µÄ¹ý³Ì£¬Õ¹ÏÖÆä¼¼Êõ÷ÈÁ¦Óëʵ¼ÊÓ¦ÓüÛÖµ

     Ò»¡¢RADIUSЭÒé¼ò½é RADIUSЭÒé×î³õÓÉLivingston EnterprisesÉè¼Æ£¬ºó±»IETF±ê×¼»¯£¨RFC 2865ºÍRFC 2866£©£¬³ÉΪһÖÖ»ùÓÚUDPЭÒéµÄÓ¦ÓòãЭÒ飬Ö÷ÒªÓÃÓÚÔÚÓû§³¢ÊÔ·ÃÎÊÍøÂç×ÊԴʱ£¬ÏòÖÐÑë·þÎñÆ÷ÇëÇóÈÏÖ¤¡¢ÊÚȨºÍ¼ÇÕËÐÅÏ¢

    RADIUS·þÎñÆ÷ͨ³£²¿ÊðÔÚÍøÂçµÄºËÐÄλÖ㬽ÓÊÕÀ´×Ô½ÓÈëÉ豸£¨Èç·ÓÉÆ÷¡¢½»»»»ú¡¢ÎÞÏß½ÓÈëµãµÈ£©µÄRADIUSÇëÇó±¨ÎÄ£¬²¢¸ù¾ÝÔ¤ÉèµÄ²ßÂÔºÍÊý¾Ý¿â½øÐÐÑéÖ¤£¬×îºó·µ»ØÏàÓ¦µÄÏìÓ¦±¨ÎÄ

     RADIUSЭÒéµÄºËÐÄÓÅÊÆÔÚÓÚÆä¼òµ¥ÐÔ¡¢¿ÉÀ©Õ¹ÐԺ͸߿ÉÓÃÐÔ

    ËüʹÓÃÃ÷ÎÄ»ò¼ÓÃÜ·½Ê½´«ÊäÊý¾Ý£¬Ö§³Ö¶àÖÖÈÏÖ¤·½·¨£¨ÈçPAP¡¢CHAP¡¢EAPµÈ£©£¬²¢ÇÒÒ×ÓÚÓëÆäËûϵͳ£¨ÈçLDAP¡¢Êý¾Ý¿â£©¼¯³É£¬ÊµÏÖÁé»îµÄÓû§¹ÜÀíºÍ²ßÂÔ¿ØÖÆ

     ¶þ¡¢Linux C»·¾³ÏµÄRADIUS·þÎñÆ÷ʵÏÖ ÔÚLinux»·¾³Ï£¬ÀûÓÃCÓïÑÔ¿ª·¢RADIUS·þÎñÆ÷£¬²»½öÄܳä·ÖÀûÓÃLinuxϵͳµÄÎȶ¨ÐԺͰ²È«ÐÔ£¬»¹ÄÜÉîÈë²Ù×÷ϵͳµ×²ã£¬ÊµÏÖ¸ßЧµÄÊý¾Ý´¦ÀíºÍÍøÂçͨÐÅ

    ÒÔÏÂÊÇÒ»¸ö¼ò»¯µÄRADIUS·þÎñÆ÷ʵÏÖ¿ò¼Ü£¬°üÀ¨¹Ø¼üÄ£¿éºÍÁ÷³Ì

     1. ÒÀÀµ¿âÑ¡Ôñ - libfreeradius£ºÕâÊÇÒ»¸ö¿ªÔ´µÄRADIUS¿â£¬ÌṩÁ˷ḻµÄAPI£¬¼ò»¯ÁËRADIUS±¨ÎĵĹ¹½¨¡¢½âÎöºÍ´¦Àí

     - OpenSSL£ºÓÃÓÚ¼ÓÃܺͽâÃÜRADIUS±¨ÎÄÖеÄÃô¸ÐÐÅÏ¢£¬È·±£Êý¾Ý´«ÊäµÄ°²È«ÐÔ

     - ¶àÏ̱߳à³Ì£ºÀûÓÃPOSIXÏ߳̿⣨pthread£©ÊµÏÖ²¢·¢´¦Àí£¬Ìá¸ß·þÎñÆ÷µÄÍÌÍÂÁ¿ºÍÏìÓ¦ËÙ¶È

     2. ·þÎñÆ÷¼Ü¹¹Éè¼Æ - ÍøÂçͨÐÅÄ£¿é£º¸ºÔð¼àÌýUDP¶Ë¿Ú£¨Í¨³£Îª1812ºÍ1813£©£¬½ÓÊպͷ¢ËÍRADIUS±¨ÎÄ

     - ±¨ÎÄ´¦ÀíÄ£¿é£º½âÎö½ÓÊÕµ½µÄRADIUS±¨ÎÄ£¬¸ù¾Ý±¨ÎÄÀàÐÍ£¨Access-Request¡¢Accounting-RequestµÈ£©µ÷ÓÃÏàÓ¦µÄ´¦Àíº¯Êý

     - Óû§ÈÏÖ¤ÓëÊÚȨģ¿é£º¸ù¾ÝÓû§Ìá½»µÄÐÅÏ¢£¨ÈçÓû§Ãû¡¢ÃÜÂ룩£¬²éѯÊý¾Ý¿â»òÍⲿÈÏÖ¤·þÎñ£¬Ö´ÐÐÈÏÖ¤ºÍÊÚȨÂß¼­

     - ÈÕÖ¾¼Ç¼Ä£¿é£º¼Ç¼ËùÓÐRADIUSÊÂÎñµÄÏêϸÐÅÏ¢£¬°üÀ¨ÇëÇóʱ¼ä¡¢Óû§ÐÅÏ¢¡¢´¦Àí½á¹ûµÈ£¬±ãÓÚÉó¼ÆºÍ¹ÊÕÏÅŲé

     - ÅäÖùÜÀíÄ£¿é£ºÖ§³Öͨ¹ýÅäÖÃÎļþ»òÃüÁîÐвÎÊýµ÷Õû·þÎñÆ÷ÐÐΪ£¬Èç¼àÌý¶Ë¿Ú¡¢ÈÕÖ¾¼¶±ð¡¢ÈÏÖ¤²ßÂÔµÈ

     3. ¹Ø¼ü´úÂëʾÀý ÒÔÏÂÊÇÒ»¸ö¼ò»¯µÄRADIUS·þÎñÆ÷½ÓÊպʹ¦ÀíAccess-Request±¨ÎĵĴúÂëƬ¶Î£º include include include include include include include defineRADIUS_PORT 1812 defineBUF_SIZE 4096 void handle_client(void arg){ int sockfd= ((int )arg); free(arg); charbuffer¡¾BUF_SIZE¡¿; structsockaddr_in client_addr; socklen_tclient_len =sizeof(client_addr); ssize_t n = recvfrom(sockfd, buffer, BUF_SIZE, 0,(structsockaddr )&client_addr, &client_len); if(n < { perror(recvfrom); close(sockfd); return NULL; } RADIUS_PACKETpacket = rad_decode(NULL, buffer, n); if(!packet) { fprintf(stderr, Failed to decode RADIUS packetn); close(sockfd); return NULL; } // ¼ÙÉè½ö´¦ÀíAccess-Request±¨ÎÄ if(packet->code == PW_ACCESS_REQUEST) { // Ö´ÐÐÈÏÖ¤Âß¼­£¨Ê¡ÂÔ¾ßÌåʵÏÖ£© intauth_result =authenticate_user(packet); // ¹¹½¨ÏìÓ¦±¨ÎÄ RADIUS_PACKETresponse = rad_alloc(NULL); response->code= (auth_result == 0) ?PW_ACCESS_ACCEPT :PW_ACCESS_REJECT; rad_add_attr(response, PW_USER_NAME, packet->vps¡¾0¡¿->vp_strvalue, -1, 0); // Ìí¼ÓÆäËû±ØÒªµÄÊôÐÔ... charresponse_buf; intresponse_len =rad_encode(response, &response_buf); sendto(sockfd, response_buf, response_len, 0,(structsockaddr )&client_addr, c