linux认证上网问题，整个学校的linux都上不了网，好郁闷阿

hualala

我们学校用的是港湾网络的8012x认证上网，但没有Linux版的
我原以为不得不放弃linux了，因为我用的是debian，不上网就没啥用了
学校是从来不在意学生的感受的，linux客户端肯定要等到猴年马月才出来
我在网上看见有人同样是港湾网络，用xsupplicant实现上网了，很是高兴
但自己试却没成功
我的系统是Debian ，kernel 2.6.8
安装xsupplicant1.0.1 成功
可以确定港湾网络用的是MD5-Challenge的身份验证，认证触发为广播
上网帐号：
user：21311033
password: 123456
xsupplicant.conf如下：

1. 
   
2. # This is an example configuration file for xsupplicant versions after 0.8b.
   
3. 
   
4. ##########################################################################
   
5. #                              GLOBAL SECTION                            #
   
6. ##########################################################################
   
7. 
   
8. # List of configured networks to keep in memory, expressed as a comma
   
9. # seperated list or the keyword 'all'. For efficiency, keep only the
   
10. # networks you use in this list and make sure that it includes your
    
11. # default network.
    
12. 
    
13. #network_list = default, test1, test2
    
14. network_list = all
    
15. 
    
16. # Default network name to use when there is not an explicit match
    
17. 
    
18. #default_netname = my_defaults
    
19. default_netname = default
    
20. 
    
21. # When using the startup_command, first_auth_command, and reauth_command
    
22. # directives, "%i" will be expanded to the interface name. This allows a
    
23. # single network profile to work across different interfaces.
    
24. 
    
25. # The command to run when xsupplicant is first started.
    
26. 
    
27. startup_command = <BEGIN_COMMAND>echo "xsupplicant startup"<END_COMMAND>
    
28. 
    
29. # The command to run when xsupplicant authenticates to a network for the
    
30. # first time.  This will usually be used to start a DHCP client process.
    
31. 
    
32. first_auth_command = <BEGIN_COMMAND>dhclient %i<END_COMMAND>
    
33. 
    
34. # The command to run when xsupplicant reauthenticates to a network.
    
35. 
    
36. reauth_command = <BEGIN_COMMAND>echo "reauthenticated %i"<END_COMMAND>
    
37. 
    
38. # Where the supplicant should log to, (xsupplicant will create a new log
    
39. # file on each invocation).
    
40. logfile = /var/log/xsupplicant.log
    
41. 
    
42. # The auth_period, held_period, and max_starts directives modify the
    
43. # timers in the state machine. (Please reference the 802.1x spec for info
    
44. # on how they are used.) For most people, there is no reason to define
    
45. # these values, as the defaults should work.
    
46. 
    
47. #auth_period = 30
    
48. #held_period = 30
    
49. #max_starts = 3
    
50. 
    
51. # For most people, the default setting for "allmulti" will work just fine.  
    
52. # In some cases however wireless cards have been known to not work when
    
53. # ALLMULTI is enabled, (such as certain Orinoco cards with older drivers).
    
54. # If allmulti is set to no, xsupplicant will not attempt to change the state
    
55. # of the setting in the driver so you should make sure to do an "ifconfig
    
56. # ethX -allmulti".
    
57. 
    
58. #allmulti = no
    
59. 
    
60. # Defining an interface in "allow_interfaces" will bypass the rules that
    
61. # xsupplicant uses to determine if an interface is valid.  For most people
    
62. # this setting shouldn't be needed.  It is useful for having xsupplicant
    
63. # attempt to authenticate on interfaces that don't appear to be true
    
64. # physical interfaces, (i.e. virtual interfaces such as eth0:1).
    
65. 
    
66. #allow_interfaces = eth0, wlan0
    
67. 
    
68. # Defining an interface in "deny_interfaces" will prevent xsupplicant from
    
69. # attempting to authenticate on a given interface.  This is useful if you
    
70. # know that you will never do 802.1x on a specific interface.  However,
    
71. # allows will take priority over denies, so defining the same interface in
    
72. # the allow_interfaces, and deny_interfaces will result in the interface
    
73. # being used.
    
74. 
    
75. #deny_interfaces = eth1
    
76. 
    
77. ##########################################################################
    
78. #                             NETWORK SECTION                            #
    
79. ##########################################################################
    
80. 
    
81. # the general format of the network section is a network name followed
    
82. # by a group of variables
    
83. 
    
84. # network names may contain the following characters: a-z, A-Z, 0-9, '-',
    
85. # '_', '\', and '/'. Those interested in having an SSID with ANY character
    
86. # in it can use the ssid tag within the network clause. Otherwise, your
    
87. # ssid will be the name of the network.
    
88. 
    
89. ## The default network is not a network itself. These values are the
    
90. ## default used for any network parameters not overridden in another
    
91. ## section. If it's not in your network configuration and not in your
    
92. ## default, it won't work!!
    
93. 
    
94. default  
    
95. {
    
96.   # The type of this network. wired or wireless, if this value is not set,
    
97.   # xsupplicant will attempt to determine if the interface is wired or
    
98.   # wireless.  In general, you should only need to define this when
    
99.   # xsupplicant incorrectly identifies your network interface.
    
100.   #type = wireless
     
101. 
     
102.   # If this profile is forced to wired, this will not do anything.
     
103.   # However, if the interface is forced, or detected to be wireless
     
104.   # xsupplicant will take control of re/setting WEP keys when the machine
     
105.   # first starts, and when it jumps to a different AP.  In general, you
     
106.   # won't need to define, or set this value.
     
107.   #wireless_control = yes
     
108. 
     
109.   # Describes which EAP types this network will allow. The first type
     
110.   # listed will be requested if the server tries to use something not in
     
111.   # this list.
     
112.   #allow_types = eap_tls, eap_md5, eap_gtc, eap-otp
     
113.   allow_types = eap_md5
     
114. 
     
115.   # What to respond with when presented with an EAP Id Request. Typically,
     
116.   # this is the username for this network. Since this can be an arbitrary
     
117.   # string, enclose within <BEGIN_ID> and <END_ID>
     
118.   identity = <BEGIN_ID>21311033<END_ID>
     
119. 
     
120.   # Force xsupplicant to send it's packets to this destination MAC address.
     
121.   # In most cases, this isn't needed, and shouldn't be defined.
     
122.   #dest_mac = 00:aA:bB:cC:dD:eE
     
123. 
     
124.   ## Method-specific parameters are kept in the method
     
125. 
     
126. 
     
127.   eap-md5 {
     
128.       username = <BEGIN_UNAME>21311033<END_UNAME>
     
129.       password = <BEGIN_PASS>123456<END_PASS>
     
130.   }
     
131. 
     
132.   
     
133. }
     
134. 
     
135. 
     

复制代码

上面代码中其实还有几个其他认证方式的函数被我删掉了，只留了 eap-md5

运行xsupplicant时的问题:
root@0[root]# xsupplicant -i eth0
Using default config!
network_list: all
Default network: "default"
Startup command: "echo "xsupplicant startup""
First_Auth command: "dhclient %i"
Reauth command: "echo "reauthenticated %i""
Logfile: "/var/log/xsupplicant.log"
Allow Type: MD5
ID: "21311033"
md5 username: "21311033"
md5 password: "123456"
"xsupplicant startup"
停在这里就不动了

xsupplicant.log中的信息:
Interface initalized!
No configuration information for network "(null)" found. Using default.
There was no active method in eap_cleanup()!

如有情况相似而又成功在linux下上网的兄弟一定要不吝赐教
最好能贴一下你们的配置文件

zhy2111314

我们这里宿舍是赛尔的，到现在还没有搞定呢！虽然都是802.1……

hualala

我觉得港湾用的应该是标准的8012x协议
因为学校里有人用苹果机自带的连接软件上网了
不过似乎那个软件不能在linux下安装

zhy2111314

看看这个：
http://www.linuxsir.cn/bbs/showthread.php?t=32281

versace

可以用代理啊！sygate ccproxy都可以的