Using Proxmox VE to serve FreeRADIUS
FreeRADIUS is one of the most popular open-source RADIUS servers, widely used for Authentication, Authorization, and Accounting (AAA) in networks. Proxmox VE, a robust open-source virtualization platform, provides an excellent environment to host FreeRADIUS, offering scalability, isolation, and efficient resource management. This blog post will guide you through the process of setting up FreeRADIUS on a virtual machine using Proxmox VE.
Why Use Proxmox VE for FreeRADIUS?
Proxmox VE is a powerful virtualization environment that supports KVM-based virtual machines and Linux containers. By running FreeRADIUS on Proxmox VE, you gain several advantages:
- Isolation: FreeRADIUS runs independently of other services, ensuring better security and performance.
- Scalability: Proxmox makes it easy to allocate more resources as your network grows.
- Snapshot and Backup: Proxmox allows snapshots and regular backups, providing a safety net for critical configurations.
- Multi-Server Hosting: You can use the same Proxmox instance to host additional services like DNS, web servers, and monitoring tools.
Setting Up FreeRADIUS on Proxmox VE
Follow these steps to deploy FreeRADIUS on a virtual machine hosted in Proxmox VE.
1. Install Proxmox VE
- Install Proxmox VE on a dedicated server. You can follow the official Proxmox Installation Guide.
- Once installed, access the Proxmox web interface via your browser.
2. Create a Virtual Machine (VM)
- Log into the Proxmox web interface.
- Click on Create VM and provide a name for your virtual machine.
- Choose a Linux-based ISO image (e.g., Ubuntu, Debian, or CentOS) that you’ve uploaded to the Proxmox storage.
- Configure the VM's resources:
- CPU: At least 2 cores.
- RAM: 2 GB or more.
- Disk: 10 GB or more (SSD recommended for performance).
3. Install the Linux Operating System
- Start the VM and install the chosen Linux distribution.
- Set up SSH access for remote management.
4. Install FreeRADIUS
Once your VM is ready, log in via SSH or the Proxmox console and proceed with the installation of FreeRADIUS:
- Update your system:
sudo apt update && sudo apt upgrade -y
Install FreeRADIUS and utilities:
sudo apt install freeradius freeradius-utils -y
5. Configure FreeRADIUS
- Navigate to the configuration directory:
cd /etc/freeradius/3.0/
Edit the clients.conf file to define your network devices, such as MikroTik routers:
client my-mikrotik { ipaddr = 192.168.1.1 secret = mysecret }
- Configure authentication methods in the
usersfile or link FreeRADIUS to a database like MySQL or LDAP.
6. Test the Installation
- Test FreeRADIUS using the
radtestutility:
radtest username password localhost 0 testing123
- Replace
username,password, andtesting123with your configured values.
7. Integrate FreeRADIUS with Network Devices
- On your MikroTik or other networking devices, configure the RADIUS settings to point to the FreeRADIUS VM's IP address and use the shared secret from the configuration.
8. Optimize and Secure FreeRADIUS
- Use Proxmox’s firewall to restrict access to the FreeRADIUS VM.
- Regularly monitor logs located at
/var/log/freeradius/.
Benefits of Running FreeRADIUS on Proxmox VE
- High Availability: Proxmox supports clustering, allowing you to set up a high-availability environment for FreeRADIUS.
- Flexibility: Easily create snapshots before making major configuration changes, ensuring quick recovery if needed.
- Centralized Management: Manage multiple services, including FreeRADIUS, from a single Proxmox interface.
Conclusion
Deploying FreeRADIUS on Proxmox VE combines the power of an enterprise-grade RADIUS server with the flexibility and scalability of a modern virtualization platform. Whether you're running a WISP, managing a corporate network, or experimenting with AAA services, this setup provides a robust, efficient, and secure solution.
If you found this guide helpful, let us know in the comments! Have you already deployed FreeRADIUS on Proxmox? Share your experience with the community.
Post a Comment