需要:i86bi-linux-l2-adventerprisek9-15.1a.bin (switch)
telnet客户端(r1)的配置过程:
r1#conf t
r1(config)#inter e0/0
r1(config-if)#ip add 192.168.1.1 255.255.255.0
r1(config-if)#duplex full
r1(config-if)#no shut
r1(config-if)#exit
r1(config)#ip route 0.0.0.0 0.0.0.0 192.168.1.2
NAS(sw1)的配置过程:
sw1#conf t
sw1(config)#inter e0/0
sw1(config-if)#no switchport
sw1(config-if)#ip add 192.168.1.2 255.255.255.0
sw1(config-if)#duplex full
sw1(config-if)#no shut
sw1(config-if)#exit
sw1(config)#inter e0/1
sw1(config-if)#no switchport
sw1(config-if)#ip add 192.168.34.1 255.255.255.0
sw1(config-if)#no shut
sw1(config-if)#exit
此时测试r1能否ping通radius服务器端:
r1#ping 192.168.34.2
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.34.2, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/2/5 ms
r1#
设置认证方式为radius认证和本地认证:
sw1(config)#aaa new-model
sw1(config)#username thrfurLocal password 1234 //用于本地验证
sw1(config)#aaa authentication login telnetRadiusLocal group radius local
sw1(config)#radius-server host 192.168.34.2 auth-port 1812 acct-port 1813 key 12345
sw1(config)#line vty 0 4
sw1(config-line)#login authentication telnetRadiusLocal
在radius端添加好thrfurRadius账号,密码为1234,尝试在r1上远程访问radius:
r1#telnet 192.168.1.2
Trying 192.168.1.2 ... Open
User Access Verification
Username: thrfurRadius
Password:
sw1>
radius登录成功,下面尝试用本地身份登录(需关闭radius验证软件):
r1#telnet 192.168.1.2
Trying 192.168.1.2 ... Open
User Access Verification
Username: thrfurLocal
Password:
sw1>
