Topic: i have a big problem i need the help with my chilli
hi list
first my english is more or less
my problem is that when i put in my url https://192.168.2.1/cgi-bin/hotspotlogin.cgi the page see me "ChilliSpot Login Failed
Login must be performed through ChilliSpot daemon.". I had read 100 manuals and i dont know what is my problem.
i am working with debian etch+apache-ssl 1.3+chillispot_1.0-4_i386.deb+freeradius_1.1.3-3_i386.deb
my configuration is the follow:
I put the same password for freeradius and chillispot, radiussecret and uamsecret........ is it a problem?
******/usr/lib/cgi-bin/hotspotlogin.cgi********************
#!/usr/bin/perl
$uamsecret= "b1tc0mp0w3r";
$userpassword=1;
$loginpath = "/cgi-bin/hotspotlogin.cgi";
use Digest::MD5 qw(md5 md5_hex md5_base64);
*****/etc/chilli.conf****************************************
net 192.168.2.0/24
dynip 192.168.2.0/24
statip 192.168.2.0/24
dns1 200.122.204.3
dns2 200.122.204.12
domain intercable.net.co
radiuslisten 127.0.0.1
radiusserver1 127.0.0.1
radiussecret b1tc0mp0w3r
radiusnasid nas1
dhcpif eth1
uamserver https://192.168.2.1/cgi-bin/hotspotlogin.cgi
uamhomepage https://192.168.2.1/cgi-bin/hotspotlogin.cgi
uamsecret b1tc0mp0w3r
uamlisten 192.168.2.1
******/etc/freeradius/radiusd.conf*******************************
prefix = /usr
exec_prefix = /usr
sysconfdir = /etc
localstatedir = /var
sbindir = ${exec_prefix}/sbin
logdir = /var/log/freeradius
raddbdir = /etc/freeradius
confdir = ${raddbdir}
run_dir = ${localstatedir}/run/freeradius
radacctdir = ${logdir}/radacct
log_file = ${logdir}/radius.log
user = freerad
group = freerad
*******/etc/freeradius/users***********************************
jimbo Auth-Type := Local, User-Password == "qwerty"
Service-Type = Framed-User,
Framed-Protocol = PPP,
Framed-IP-Address = 192.168.2.2,
Framed-IP-Netmask = 255.255.255.0,
Framed-Routing = Broadcast-Listen,
Framed-Filter-Id = "std.ppp",
Framed-MTU = 1500,
Framed-Compression = Van-Jacobsen-TCP-IP
*****/etc/freeradius/client.conf******************************
client 127.0.0.1 {
secret = b1tc0mp0w3r
shortname = 127.0.0.1
nastype = other
}
***/etc/apache-ssl/http.conf*********************************
ServerName 192.168.2.1
in this point i have a question. should i put other parameter?
--------------------------------------------------------------------
i have saw too
#radtest jimbo qwerty 127.0.0.1 1812 b1tc0mp0w3r
Sending Access-Request of id 225 to 127.0.0.1 port 1812
User-Name = "jimbo"
User-Password = "qwerty"
NAS-IP-Address = 255.255.255.255
NAS-Port = 1812
rad_recv: Access-Accept packet from host 127.0.0.1:1812, id=225, length=71
Service-Type = Framed-User
Framed-Protocol = PPP
Framed-IP-Address = 192.168.2.2
Framed-IP-Netmask = 255.255.255.0
Framed-Routing = Broadcast-Listen
Filter-Id = "std.ppp"
Framed-MTU = 1500
Framed-Compression = Van-Jacobson-TCP-IP
#iptables -L -n
Chain INPUT (policy DROP)
target prot opt source destination
ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 flags:0x17/0x02
REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable
DROP 0 -- 0.0.0.0/0 0.0.0.0/0
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 flags:0x17/0x02
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:443 flags:0x17/0x02
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:3990 flags:0x17/0x02
ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0
Chain FORWARD (policy ACCEPT)
target prot opt source destination
DROP 0 -- 0.0.0.0/0 0.0.0.0/0
DROP 0 -- 0.0.0.0/0 0.0.0.0/0
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
and my configuration in my interface are:
#ifconfig
eth0 x.x.x.x
eth1 0.0.0.0
tun0 192.168.2.1 p-t-p 192.168.2.1 mask 255.255.255.0
if any people in the world will want help me....... i give many thanks to this people