部署FreeRadius+php+apache+mariaDB+daloradius 实现认证计费功能

一、适用场景与功能特点

（一）适用场景

1、运营商/ISP：宽带接入计费管理

2、校园网/企业网：统一认证与上网行为审计

3、公共 Wi-Fi：酒店、商场、机场等热点计费

4、WISP（无线 ISP）：无线接入用户管理与计费

FreeRadius开源免费：基于 GPL 协议，PHP + MySQL 架构；多语言支持：包含中文等多语言界面；集成 Map：支持 Google Maps 显示热点分布（需 API）；扩展性：可通过插件或自定义脚本扩展功能。如果需要部署 Portal 认证，通常的组合是：FreeRadius（认证后端）+ DaloRADIUS（管理界面）+ CoovaChilli/OpenNDS（Portal 网关）。

（二）FreeRadius的核心功能

1、用户管理

创建、编辑、删除用户账号； 批量导入/导出用户数据； 用户组管理（按组分配权限和策略）； 用户状态监控（在线/离线/锁定）

2、 计费与账务

预付费和后付费账户管理； 流量/时长统计与计费； 账单生成与支付记录； 充值卡（voucher）管理

3、 RADIUS 配置管理

通过 Web 界面管理 FreeRADIUS 配置，无需手动编辑配置文件； NAS（网络接入服务器/设备）管理； 热点（Hotspot）配置； 代理设置

4、 实时监控与日志

在线用户实时查看； 连接日志查询与审计； 详细的 RADIUS 认证/计费记录（Accounting）；

失败登录统计

5、 报表与统计

流量使用报表； 用户活跃度统计； 财务收入报表； 图表可视化展示

二、基础环境安装

（一） 编辑源配置文件

FreeRadius支持较好的系统是CentOS7，由于 CentOS 7 已停止安全更新，所以本例配置 EPEL 和必要的安全更新源为阿里云。

#1. 先备份当前配置

cp /etc/yum.repos.d/CentOS-Base.repo /etc/yum.repos.d/CentOS-Base.repo.bak.KaTeX parse error: Expected 'EOF', got '#' at position 16: (date +%Y%m%d) #̲2. 直接脚本写整个配置文件（...basearch/

http://mirrors.aliyun.com/centos-vault/7.9.2009/os/basearch/gpgcheck=1gpgkey=https://mirrors.aliyun.com/centos/RPM−GPG−KEY−CentOS−7enabled=1\[updates\]name=CentOS−7.9.2009−Updates−mirrors.aliyun.combaseurl=https://mirrors.aliyun.com/centos−vault/7.9.2009/updates/basearch/ gpgcheck=1 gpgkey=https://mirrors.aliyun.com/centos/RPM-GPG-KEY-CentOS-7 enabled=1 [updates] name=CentOS-7.9.2009 - Updates - mirrors.aliyun.com baseurl=https://mirrors.aliyun.com/centos-vault/7.9.2009/updates/basearch/gpgcheck=1gpgkey=https://mirrors.aliyun.com/centos/RPM−GPG−KEY−CentOS−7enabled=1\[updates\]name=CentOS−7.9.2009−Updates−mirrors.aliyun.combaseurl=https://mirrors.aliyun.com/centos−vault/7.9.2009/updates/basearch/

http://mirrors.aliyun.com/centos-vault/7.9.2009/updates/basearch/gpgcheck=1gpgkey=https://mirrors.aliyun.com/centos/RPM−GPG−KEY−CentOS−7enabled=1\[extras\]name=CentOS−7.9.2009−Extras−mirrors.aliyun.combaseurl=https://mirrors.aliyun.com/centos−vault/7.9.2009/extras/basearch/ gpgcheck=1 gpgkey=https://mirrors.aliyun.com/centos/RPM-GPG-KEY-CentOS-7 enabled=1 [extras] name=CentOS-7.9.2009 - Extras - mirrors.aliyun.com baseurl=https://mirrors.aliyun.com/centos-vault/7.9.2009/extras/basearch/gpgcheck=1gpgkey=https://mirrors.aliyun.com/centos/RPM−GPG−KEY−CentOS−7enabled=1\[extras\]name=CentOS−7.9.2009−Extras−mirrors.aliyun.combaseurl=https://mirrors.aliyun.com/centos−vault/7.9.2009/extras/basearch/

http://mirrors.aliyun.com/centos-vault/7.9.2009/extras/basearch/gpgcheck=1gpgkey=https://mirrors.aliyun.com/centos/RPM−GPG−KEY−CentOS−7enabled=1\[centosplus\]name=CentOS−7.9.2009−Plus−mirrors.aliyun.combaseurl=https://mirrors.aliyun.com/centos−vault/7.9.2009/centosplus/basearch/ gpgcheck=1 gpgkey=https://mirrors.aliyun.com/centos/RPM-GPG-KEY-CentOS-7 enabled=1 [centosplus] name=CentOS-7.9.2009 - Plus - mirrors.aliyun.com baseurl=https://mirrors.aliyun.com/centos-vault/7.9.2009/centosplus/basearch/gpgcheck=1gpgkey=https://mirrors.aliyun.com/centos/RPM−GPG−KEY−CentOS−7enabled=1\[centosplus\]name=CentOS−7.9.2009−Plus−mirrors.aliyun.combaseurl=https://mirrors.aliyun.com/centos−vault/7.9.2009/centosplus/basearch/

http://mirrors.aliyun.com/centos-vault/7.9.2009/centosplus/$basearch/

gpgcheck=1

gpgkey=https://mirrors.aliyun.com/centos/RPM-GPG-KEY-CentOS-7

enabled=0

EOF

#3. 清理缓存并重建缓存

yum clean all

yum makecache

#4. 更新系统源码和库

yum -y update && yum -y upgrade

5、防火墙设置

systemctl stop firewalld //关闭防火墙

systemctl disable firewalld //关闭防火墙自启

说明：所有组件部署安装完成后再开启防火墙

6、Selinux设置

（1）修改前：

（2）关闭Selinux

sed -i '/SELINUX/s/enforcing/disabled/' /etc/selinux/config

（3）修改后重启系统Reboot

sestatus //查询Selinux状态（需重启后查询）

（二）安装apache

1、安装apache的组件依赖

yum -y install httpd httpd-devel

2、启动httpd和设置开机启动

systemctl enable httpd

systemctl start httpd

3、httpd启动失败，使用命令排查问题（若您的实际环境启动正常可忽略排查故障的步骤）

（1）查看httpd服务的状态

Systemctl status httpd

（2）查看 httpd 详细错误日志

cat /var/log/httpd/error_log | tail -30

（上图提示SSL认证过期）

（3）编辑 nss.conf 文件

vi /etc/httpd/conf.d/nss.conf

（4）找到 NSSEnforceValidCerts 行，修改为：

NSSEnforceValidCerts off //若没有这行，则增加一行

（5）保存后启动httpd

systemctl start httpd

此时，httpd服务启动正常。

（三）验证apache的状态

1、浏览器中输入CentOS 的IP可以测试下apache状态

2、也可以使用httpd -v查看apache的版本

3、启动系统防火墙

Systemctl start firewalld.service

4、设置系统防火墙开机自动启动

Systemctl enable firewalld.service

5、防火墙上开启apache的端口

firewall-cmd --permanent --add-service=http

firewall-cmd --permanent --add-service=https

（四）安装php及常用扩展

1、安装基础编译工具和依赖库

yum -y install php php-devel php-mysql php-common php-gd php-mbstring php-mcrypt php-imap php-odbc php-xml php-xmlrpc php-pear php-pear-DB

2、测试PHP，Apache网站根目录（/var/www/html/）新建info.php网页，按Insert输入内容后按esc，:wq 保存退出。

cd /var/www/html

vi info.php

3、重启apache

systemctl restart httpd.service

4、浏览器输入http://192.168.0.139/info.php

可以看到如上图的内容，说明php工作正常。

（五）安装数据库

1、安装mariadb数据库

yum -y install mariadb-server mariadb

2、设置开机启动和启动服务

systemctl enable mariadb.service

systemctl start mariadb.service

3、设置数据库

mysql_secure_installation

SQL自动配置（除设置root密码，其余都回车）

（六）创建数据库

1、登录数据库,需要输入刚刚的root密码

mysql -u root -p

2、创建数据库radius

create database radius;

3、设置radius用户名密码

create user 'radius'@'localhost' identified by 'radiuspassword';

4、打开radius数据库

Use radius;

5、设置radius用户权限

grant all privileges on radius.* to radius@localhost;

6、刷新权限

flush privileges;

7、退出radius数据库的设置

Exit;

8、设置mariadb数据库网络访问

（1）将mysql数据库中的user表中的root和radius用户访问规则由localhost改为%

update user host="%" where user="root";

update user host="%" where user="radius";

（2）系统防火墙放开3306端口号

firewall-cmd --add-port=3306/tcp

firewall-cmd --add-port=3306/tcp --permanent

（3）使用navicat Premium工具连接测试mariadb数据库连接成功

（4）使用radius用户连接到mariadb数据库后，并没有对radius数据库具备访问权限，仅有一个information_schema

（5）查看radius用户的权限

show grants for "radius"@"localhost";

（6）修改radius用户的权限

grant all privileges on radius.* to "radius"@"%";

（7）修改权限后再验证

show grants for "radius"@"%";

（8）刷新更新后的权限

flush privileges;

（9）此时再验证，radius用户已经可以访问radius数据库了

二、freeradius安装与配置

1、安装freeradius的依赖

yum -y install freeradius freeradius-utils freeradius-mysql

2、启动radius和设置为开机启动

systemctl start radiusd.service

systemctl enable radiusd.service

3、导入radius数据表

mysql -u root -p radius < /etc/raddb/mods-config/sql/main/mysql/schema.sql

需要输入root密码

4、修改FreeRadius配置文件

vi /etc/raddb/mods-available/sql

修改下面的配置

driver = "rlm_sql_mysql"

dialect = "mysql"

server = "localhost"

port = 3306

login = "radius"

password = "radiuspassword"

按Esc退出:wq保存

5、建立mysql调用

cd /etc/raddb/mods-enabled/

ln -sf /etc/raddb/mods-available/sql /etc/raddb/mods-enabled/sql

6、配置文件权限（注意命令手动输入）

chgrp -h radiusd /etc/raddb/mods-available/sql

7、重启radius（正常）

systemctl restart radiusd.service

8、重启radius（报错的处理，若重启radius正常则忽略此步）

（1）重启时报错，使用命令排查问题

/usr/sbin/radiusd -XC 2>&1 | tail -10

（2）根据排查的结果，TLS证书问题，修改/etc/raddb/mods-enabled/sql

vi /etc/raddb/mods-enabled/sql

（3）找到 TLS 部分（约第 80-90 行，有2处），注释掉或删除：

（4）再次排查问题消失，显示Configuration appears to be OK

/usr/sbin/radiusd -XC 2>&1 | tail -10

（5）此时使用命令systemctl restart radiusd.service再启动服务正常

9、添加启动服务，调整FreeRadius与MariaDB的启动顺序,FreeRadius必须在MariaDB启动之后启动,在[Unit]部分，增加After=mariadb.service

vi /etc/systemd/system/multi-user.target.wants/radiusd.service

After=mariadb.service

10、重启服务

systemctl daemon-reload

systemctl restart radiusd.service

三、安装freeradius管理界面Daloradius

1、先下载文件（master.zip,daloradius-0.9-9.tar.gz）

https://github.com/lirantal/daloradius/archive/master.zip

下载后上传master.zip和daloradius-0.9-9.tar.gz到OpenEuler系统的/var/www/html/目录中

2、在CentOS系统中解压和移动文件

(1)改当前目录，解压master.zip

cd /var/www/html/

unzip master.zip

（2）解压daloradius-0.9-9.tar.gz

tar -zxvf daloradius-0.9-9.tar.gz

（3）创建文件目录daloradius

Mkdir daloradius

（4）移动文件夹中的文件

mv ./daloradius-master/* ./daloradius

（5）删除daloradius里面的contrib下的文件，为了能daloradius-0.9-9/contrib移过来尽量不报错

rm -rf /var/www/html/daloradius/contrib/

（6）覆盖源码 全部输入y回车

mv ./daloradius-0.9-9/* /var/www/html/daloradius/

（7）验证下是否daloradius-0.9-9/目录下的所有文件都移动到了/var/www/html/daloradius目录下,输入ll命令查看daloradius-0.9-9/目录下已经没有任何文件了，总用量0

3、设置daloradius权限

chown -R apache:apache /var/www/html/daloradius

chmod -R 664 /var/www/html/daloradius/library/daloradius.conf.php

4、修改配置，编辑数据库信息，导入SQL脚本，要输入root用户的密码。

（1）将 daloRADIUS 的数据库结构文件导入到 radius 数据库中，同时包含 FreeRADIUS 和 daloRADIUS 所需的表结构。

mysql -u root -p radius < /var/www/html/daloradius/contrib/db/fr2-mysql-daloradius-and-freeradius.sql

（2）将 daloRADIUS 的数据库结构文件导入到 radius 数据库中，创建 daloRADIUS 所需的表结构。

mysql -u root -p radius < /var/www/html/daloradius/contrib/db/mysql-daloradius.sql

5、更改daloradius.conf.php

（1）编辑daloradius.conf.php

vi /var/www/html/daloradius/library/daloradius.conf.php

（2）修改内容如下：

$configValues['CONFIG_DB_ENGINE'] = 'mysql';

$configValues['CONFIG_DB_HOST'] = 'localhost';

$configValues['CONFIG_DB_PORT'] = '3306';

$configValues['CONFIG_DB_USER'] = 'radius';

$configValues['CONFIG_DB_PASS'] = 'radiuspassword';

$configValues['CONFIG_DB_NAME'] = 'radius';

configValues['CONFIG_FILE_RADIUS_PROXY'] = '/etc/raddb/proxy.conf';（68行）

$configValues['CONFIG_PATH_DALO_VARIABLE_DATA'] = '/var/www/html/daloradius/var'; （70行）

$configValues['CONFIG_MAINT_TEST_USER_RADIUSSECRET'] = 'testing123'; （86行） #注意这条，要和 /etc/raddb/clients.conf 文件设置的secret = xxxxxxxxxx 值一样。

6、添加客户端连接设置，添加允许所以用户接入

（1）编辑clients.conf

vi /etc/raddb/clients.conf

（2）添加如下内容

client all_client {

ipaddr = 0.0.0.0/0

secret = testing123

require_message_authenticator = no

}

7、重启服务

systemctl restart radiusd.service

systemctl restart mariadb.service

systemctl restart httpd

8、测试FreeRADIUS配置（可选）

（1）可以使用radtest工具来测试配置是否正确：

radtest username password localhost 0 testing123

将username和password替换为你的用户名和密码。确保这里的localhost和testing123与你在clients.conf中配置的相匹配。

（2）从上图可以看出，radtest 测试显示 Access-Reject，说明认证被拒绝。这通常是因为 FreeRADIUS 配置中未启用 SQL 认证，或数据库中没有该用户。

vi /etc/raddb/sites-enabled/default

（3）修改内容如下：确保sql行未被注释

（4）修复

vi /etc/raddb/users

#4. 重启

systemctl restart radiusd

#5. 测试

radtest radius radiuspassword localhost 0 testing123

认证成功！ Access-Accept 表示 FreeRADIUS 基础功能已正常。

四、测试访问

1、通过浏览器打开

http://192.168.0.139/daloradius/

2、输入用户名和密码后，登录时显示无法使用此页面

3、根据前面安装过程中的图开始排查：

4、一些包在 CentOS 7 默认源中不存在，所以本例需要安装php-pear-DB

（1）一键修复脚本安装DB：

#!/bin/bash

#安装基础 PHP 包

yum install -y php php-devel php-mysql php-common php-gd php-mbstring php-xml php-pear php-pecl-xmlphp

#安装 EPEL 源获取更多扩展

yum install -y epel-release 2>/dev/null || true

#安装 DB 库

pear install DB 2>/dev/null || true

#重启 Apache

systemctl restart httpd

#验证

echo "=== PHP 版本 ="
php -v
echo ""
echo "= 已安装模块 ="
php -m | grep -E "(mysql|gd|mbstring|xml)"
echo ""
echo "= Pear DB ="
pear list | grep DB
echo ""
echo "= Apache 状态 ==="

systemctl status httpd --no-pager

（2）执行一键修复脚本后，提示install failed

5、安装DB失败，如上图箭头所示，所以手动下载安装DB：

（1）下载地址：https://pear.php.net/get/DB-1.9.2.tgz

cd /tmp

wget https://pear.php.net/get/DB-1.9.2.tgz

（2）解压下载的DB包

tar -xzf DB-1.9.2.tgz

（3）复制DB包解压后生成的文件

cd DB-1.9.2

cp -r DB /usr/share/pear/

文件已复制但 pear list 未显示，因为 PEAR 的注册表没有记录。不过文件已经到位了。

（4）脚本1：一键修复DB的注册信息脚本：

#1. 确认 DB.php 存在

ls -la /usr/share/pear/DB.php

ls -la /usr/share/pear/DB/

#2. 复制 DB.php 主文件（如果不在）

cp /tmp/DB-1.9.2/DB.php /usr/share/pear/ 2>/dev/null || true

#3. 设置正确权限

chown -R root:root /usr/share/pear/DB

chmod -R 755 /usr/share/pear/DB

#4. 重启 Apache

systemctl restart httpd

#5. 测试 PHP 是否能找到 DB

php -r "require_once 'DB.php'; echo 'DB.php loaded successfully\n';"

（5）脚本1执行:一键修复DB的注册信息脚本执行结果如下：

root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# # 1. 确认 DB.php 存在 \[root@centos7_radius DB-1.9.2\]# ls -la /usr/share/pear/DB.php /share/pear/DB/ #2. 复制 DB.php 主文件（如果不在） cp /tmp/DB-1.9.2/DB.php /usr/share/pear/ 2\>/dev/null \|\| true #3. 设置正确权限 chown -R root:root /usr/share/pear/DB chmod -R 755 /usr/share/pear/DB #4. 重启 Apache systemctl restart httpd #5. 测试 PHP 是否能找到 DB php -r "require_once 'DB.php'; echo 'DB.php loaded sucls: 无法访问/usr/share/pear/DB.php: 没有那个文件或目录 \[root@centos7_radius DB-1.9.2\]# ls -la /usr/share/pear/DB/ 总用量 484 drwxr-xr-x 2 root root 262 4月 21 10:48 . drwxr-xr-x 9 root root 186 4月 21 10:48 ... -rw-r----- 1 root root 72441 4月 21 10:48 common.php -rw-r----- 1 root root 15357 4月 21 10:48 dbase.php -rw-r----- 1 root root 23218 4月 21 10:48 fbsql.php -rw-r----- 1 root root 34069 4月 21 10:48 ibase.php -rw-r----- 1 root root 20011 4月 21 10:48 ifx.php -rw-r----- 1 root root 24578 4月 21 10:48 msql.php -rw-r----- 1 root root 29765 4月 21 10:48 mssql.php -rw-r----- 1 root root 34966 4月 21 10:48 mysqli.php -rw-r----- 1 root root 32606 4月 21 10:48 mysql.php -rw-r----- 1 root root 37630 4月 21 10:48 oci8.php -rw-r----- 1 root root 26726 4月 21 10:48 odbc.php -rw-r----- 1 root root 36878 4月 21 10:48 pgsql.php -rw-r----- 1 root root 30591 4月 21 10:48 sqlite.php -rw-r----- 1 root root 14844 4月 21 10:48 storage.php -rw-r----- 1 root root 29296 4月 21 10:48 sybase.php \[root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# # 2. 复制 DB.php 主文件（如果不在） \[root@centos7_radius DB-1.9.2\]# cp /tmp/DB-1.9.2/DB.php /usr/share/pear/ 2\>/dev/null \|\| true \[root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# # 3. 设置正确权限 \[root@centos7_radius DB-1.9.2\]# chown -R root:root /usr/share/pear/DB cessfully\\n';" \[root@centos7_radius DB-1.9.2\]# chmod -R 755 /usr/share/pear/DB \[root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# # 4. 重启 Apache \[root@centos7_radius DB-1.9.2\]# systemctl restart httpd \[root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# # 5. 测试 PHP 是否能找到 DB \[root@centos7_radius DB-1.9.2\]# php -r "require_once 'DB.php'; echo 'DB.php loaded successfully\\n';" DB.php loaded successfully\\n\[root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# 此时，DB.php 加载成功。 6、再次验证登录是否正常： （1）脚本2：验证脚本: #1. 确认 Apache 运行正常 systemctl status httpd --no-pager #2. 查看最近错误日志（确认无新错误） cat /var/log/httpd/error_log \| tail -20 #3. 测试访问 curl -I http://localhost/daloradius/dologin.php 2\>/dev/null \| head -5 （2）脚本2执行，验证显示结果如下： \[root@centos7_radius DB-1.9.2\]# # 1. 确认 Apache 运行正常 \[root@centos7_radius DB-1.9.2\]# systemctl status httpd --no-pager 看最近错误日志（确认无新错误） cat /var/log/httpd/error_log \| tail -20 #3. 测试访问 curl -I http://localhost/daloradius/dolo● httpd.service - The Apache HTTP Server Loaded: loaded (/usr/lib/systemd/system/httpd.service; enabled; vendor preset: disabled) Active: active (running) since 二 2026-04-21 10:50:12 CST; 2min 11s ago Docs: man:httpd(8) man:apachectl(8) Process: 17949 ExecStop=/bin/kill -WINCH ${MAINPID} (code=exited, status=0/SUCCESS) Main PID: 17956 (httpd) Status: "Total requests: 0; Current requests/sec: 0; Current traffic: 0 B/sec" Tasks: 8 CGroup: /system.slice/httpd.service ├─17956 /usr/sbin/httpd -DFOREGROUND ├─17957 /usr/libexec/nss_pcache 43 off ├─17961 /usr/sbin/httpd -DFOREGROUND ├─17962 /usr/sbin/httpd -DFOREGROUND ├─17963 /usr/sbin/httpd -DFOREGROUND ├─17964 /usr/sbin/httpd -DFOREGROUND └─17965 /usr/sbin/httpd -DFOREGROUND 4月 21 10:50:11 centos7_radius systemd\[1\]: Starting The Apache HTTP Server... 4月 21 10:50:11 centos7_radius httpd\[17956\]: AH00558: httpd: Could not reliably determine the server's fully qualifi...ssage 4月 21 10:50:12 centos7_radius systemd\[1\]: Started The Apache HTTP Server. Hint: Some lines were ellipsized, use -l to show in full. \[root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# # 2. 查看最近错误日志（确认无新错误） \[root@centos7_radius DB-1.9.2\]# cat /var/log/httpd/error_log \| tail -20 \[Tue Apr 21 10:41:10.210227 2026\] \[:error\] \[pid 17826\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. \[Tue Apr 21 10:41:10.210270 2026\] \[:error\] \[pid 17826\] Server certificate is expired: 'Server-Cert' \[Tue Apr 21 10:50:10.190651 2026\] \[mpm_prefork:notice\] \[pid 17817\] AH00170: caught SIGWINCH, shutting down gracefully \[Tue Apr 21 10:50:11.651870 2026\] \[suexec:notice\] \[pid 17956\] AH01232: suEXEC mechanism enabled (wrapper: /usr/sbin/suexec) \[Tue Apr 21 10:50:12.021847 2026\] \[:error\] \[pid 17956\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. \[Tue Apr 21 10:50:12.021887 2026\] \[:error\] \[pid 17956\] Server certificate is expired: 'Server-Cert' AH00558: httpd: Could not reliably determine the server's fully qualified domain name, using fe80::23f9:2d3f:9e94:9cfd. Set the 'ServerName' directive globally to suppress this message \[Tue Apr 21 10:50:12.502803 2026\] \[lbmethod_heartbeat:notice\] \[pid 17956\] AH02282: No slotmem from mod_heartmonitor \[Tue Apr 21 10:50:12.564400 2026\] \[mpm_prefork:notice\] \[pid 17956\] AH00163: Apache/2.4.6 (CentOS) mod_auth_gssapi/1.5.1 mod_nss/1.0.14 NSS/3.28.4 PHP/5.4.16 mod_wsgi/3.4 Python/2.7.5 configured -- resuming normal operations \[Tue Apr 21 10:50:12.564436 2026\] \[core:notice\] \[pid 17956\] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND' \[Tue Apr 21 10:50:12.902944 2026\] \[:error\] \[pid 17961\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. \[Tue Apr 21 10:50:12.902999 2026\] \[:error\] \[pid 17961\] Server certificate is expired: 'Server-Cert' \[Tue Apr 21 10:50:12.921724 2026\] \[:error\] \[pid 17964\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. \[Tue Apr 21 10:50:12.921758 2026\] \[:error\] \[pid 17964\] Server certificate is expired: 'Server-Cert' \[Tue Apr 21 10:50:12.973393 2026\] \[:error\] \[pid 17965\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. \[Tue Apr 21 10:50:12.973434 2026\] \[:error\] \[pid 17965\] Server certificate is expired: 'Server-Cert' \[Tue Apr 21 10:50:12.995841 2026\] \[:error\] \[pid 17962\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. \[Tue Apr 21 10:50:12.995871 2026\] \[:error\] \[pid 17962\] Server certificate is expired: 'Server-Cert' \[Tue Apr 21 10:50:13.060251 2026\] \[:error\] \[pid 17963\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. \[Tue Apr 21 10:50:13.060297 2026\] \[:error\] \[pid 17963\] Server certificate is expired: 'Server-Cert' \[root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# # 3. 测试访问 \[root@centos7_radius DB-1.9.2\]# curl -I http://localhost/daloradius/dologin.php 2\>/dev/null \| head -5 HTTP/1.0 500 Internal Server Error Date: Tue, 21 Apr 2026 02:52:24 GMT Server: Apache/2.4.6 (CentOS) mod_auth_gssapi/1.5.1 mod_nss/1.0.14 NSS/3.28.4 PHP/5.4.16 mod_wsgi/3.4 Python/2.7.5 X-Powered-By: PHP/5.4.16 Set-Cookie: PHPSESSID=3837ec5754f503c3dec1cf9; path=/ \[root@centos7_radius DB-1.9.2\]# 仍然 HTTP 500，但 Apache 正在运行。错误不在 DB.php 了，需要进一步诊断 PHP 错误。 7、进一步诊断修复 （1）脚本3，HTTP500快速修复脚本如下： #!/bin/bash #1. 开启 PHP 错误显示 sed -i 's/display_errors = Off/display_errors = On/' /etc/php.ini sed -i 's/error_reporting = .\*/error_reporting = E_ALL/' /etc/php.ini #2. 修复权限 chown -R apache:apache /var/www/html/daloradius chmod -R 755 /var/www/html/daloradius chown -R apache:apache /var/lib/php/session/ chmod 755 /var/lib/php/session/ #3. 重启 Apache systemctl restart httpd #4. 测试 echo "请刷新浏览器查看具体错误信息" echo "" echo "或执行: curl http://localhost/daloradius/dologin.php 2\>/dev/null \| grep -i error" （2）脚本3执行修复脚本的结果如下： \[root@centos7_radius DB-1.9.2\]# # 1. 确认 Apache 运行正常 \[root@centos7_radius DB-1.9.2\]# systemctl status httpd --no-pager 看最近错误日志（确认无新错误） cat /var/log/httpd/error_log \| tail -20 #3. 测试访问 curl -I http://localhost/daloradius/dolo● httpd.service - The Apache HTTP Server Loaded: loaded (/usr/lib/systemd/system/httpd.service; enabled; vendor preset: disabled) Active: active (running) since 二 2026-04-21 10:50:12 CST; 2min 11s ago Docs: man:httpd(8) man:apachectl(8) Process: 17949 ExecStop=/bin/kill -WINCH ${MAINPID} (code=exited, status=0/SUCCESS) Main PID: 17956 (httpd) Status: "Total requests: 0; Current requests/sec: 0; Current traffic: 0 B/sec" Tasks: 8 CGroup: /system.slice/httpd.service ├─17956 /usr/sbin/httpd -DFOREGROUND ├─17957 /usr/libexec/nss_pcache 43 off ├─17961 /usr/sbin/httpd -DFOREGROUND ├─17962 /usr/sbin/httpd -DFOREGROUND ├─17963 /usr/sbin/httpd -DFOREGROUND ├─17964 /usr/sbin/httpd -DFOREGROUND └─17965 /usr/sbin/httpd -DFOREGROUND 4月 21 10:50:11 centos7_radius systemd\[1\]: Starting The Apache HTTP Server... 4月 21 10:50:11 centos7_radius httpd\[17956\]: AH00558: httpd: Could not reliably determine the server's fully qualifi...ssage 4月 21 10:50:12 centos7_radius systemd\[1\]: Started The Apache HTTP Server. Hint: Some lines were ellipsized, use -l to show in full. \[root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# # 2. 查看最近错误日志（确认无新错误） \[root@centos7_radius DB-1.9.2\]# cat /var/log/httpd/error_log \| tail -20 \[Tue Apr 21 10:41:10.210227 2026\] \[:error\] \[pid 17826\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. \[Tue Apr 21 10:41:10.210270 2026\] \[:error\] \[pid 17826\] Server certificate is expired: 'Server-Cert' \[Tue Apr 21 10:50:10.190651 2026\] \[mpm_prefork:notice\] \[pid 17817\] AH00170: caught SIGWINCH, shutting down gracefully \[Tue Apr 21 10:50:11.651870 2026\] \[suexec:notice\] \[pid 17956\] AH01232: suEXEC mechanism enabled (wrapper: /usr/sbin/suexec) \[Tue Apr 21 10:50:12.021847 2026\] \[:error\] \[pid 17956\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. \[Tue Apr 21 10:50:12.021887 2026\] \[:error\] \[pid 17956\] Server certificate is expired: 'Server-Cert' AH00558: httpd: Could not reliably determine the server's fully qualified domain name, using fe80::23f9:2d3f:9e94:9cfd. Set the 'ServerName' directive globally to suppress this message \[Tue Apr 21 10:50:12.502803 2026\] \[lbmethod_heartbeat:notice\] \[pid 17956\] AH02282: No slotmem from mod_heartmonitor \[Tue Apr 21 10:50:12.564400 2026\] \[mpm_prefork:notice\] \[pid 17956\] AH00163: Apache/2.4.6 (CentOS) mod_auth_gssapi/1.5.1 mod_nss/1.0.14 NSS/3.28.4 PHP/5.4.16 mod_wsgi/3.4 Python/2.7.5 configured -- resuming normal operations \[Tue Apr 21 10:50:12.564436 2026\] \[core:notice\] \[pid 17956\] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND' \[Tue Apr 21 10:50:12.902944 2026\] \[:error\] \[pid 17961\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. \[Tue Apr 21 10:50:12.902999 2026\] \[:error\] \[pid 17961\] Server certificate is expired: 'Server-Cert' \[Tue Apr 21 10:50:12.921724 2026\] \[:error\] \[pid 17964\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. \[Tue Apr 21 10:50:12.921758 2026\] \[:error\] \[pid 17964\] Server certificate is expired: 'Server-Cert' \[Tue Apr 21 10:50:12.973393 2026\] \[:error\] \[pid 17965\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. \[Tue Apr 21 10:50:12.973434 2026\] \[:error\] \[pid 17965\] Server certificate is expired: 'Server-Cert' \[Tue Apr 21 10:50:12.995841 2026\] \[:error\] \[pid 17962\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. \[Tue Apr 21 10:50:12.995871 2026\] \[:error\] \[pid 17962\] Server certificate is expired: 'Server-Cert' \[Tue Apr 21 10:50:13.060251 2026\] \[:error\] \[pid 17963\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. \[Tue Apr 21 10:50:13.060297 2026\] \[:error\] \[pid 17963\] Server certificate is expired: 'Server-Cert' \[root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# # 3. 测试访问 \[root@centos7_radius DB-1.9.2\]# curl -I http://localhost/daloradius/dologin.php 2\>/dev/null \| head -5 HTTP/1.0 500 Internal Server Error Date: Tue, 21 Apr 2026 02:52:24 GMT Server: Apache/2.4.6 (CentOS) mod_auth_gssapi/1.5.1 mod_nss/1.0.14 NSS/3.28.4 PHP/5.4.16 mod_wsgi/3.4 Python/2.7.5 X-Powered-By: PHP/5.4.16 Set-Cookie: PHPSESSID=3837ec5754f503c3dec1cf9; path=/ \[root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# # 检查 daloRADIUS 配置 \[root@centos7_radius DB-1.9.2\]# cat /var/www/html/daloradius/library/daloradius.conf.php \| grep -E "(CONFIG_DB_HOST\|CONFIG_DB_USER\|CONFIG_DB_PASS\|CONFIG_DB_NAME)" $configValues\['CONFIG_DB_HOST'\] = 'localhost'; $configValues\['CONFIG_DB_USER'\] = 'radius'; $configValues\['CONFIG_DB_PASS'\] = 'radiuspassword'; $configValues\['CONFIG_DB_NAME'\] = 'radius'; $configValues\['CONFIG_DB_PASSWORD_ENCRYPTION'\] = 'cleartext'; \[root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# # 测试数据库连接 \[root@centos7_radius DB-1.9.2\]# mysql -u radius -p'radiuspassword' -e "USE radius; SHOW TABLES;" ±-----------------------+ \| Tables_in_radius \| ±-----------------------+ \| batch_history \| \| billing_history \| \| billing_merchant \| \| billing_paypal \| \| billing_plans \| \| billing_plans_profiles \| \| billing_rates \| \| cui \| \| dictionary \| \| hotspots \| \| invoice \| \| invoice_items \| \| invoice_status \| \| invoice_type \| \| nas \| \| node \| \| operators \| \| operators_acl \| \| operators_acl_files \| \| payment \| \| payment_type \| \| proxys \| \| radacct \| \| radcheck \| \| radgroupcheck \| \| radgroupreply \| \| radhuntgroup \| \| radippool \| \| radpostauth \| \| radreply \| \| radusergroup \| \| realms \| \| userbillinfo \| \| userinfo \| \| wimax \| ±-----------------------+ \[root@centos7_radius DB-1.9.2\]# 数据库连接正常，表也存在。HTTP 500 错误可能是 PHP 运行时错误。 8、HTTP 500 错误继续排查 （1）脚本4，http 500修复脚本如下： #!/bin/bash #1. 开启 PHP 错误显示 sed -i 's/display_errors = Off/display_errors = On/' /etc/php.ini sed -i 's/error_reporting = .\*/error_reporting = E_ALL/' /etc/php.ini #2. 修复数据库引擎配置 sed -i "s/CONFIG_DB_ENGINE'\] = 'mysql'/CONFIG_DB_ENGINE'\] = 'mysqli'/" /var/www/html/daloradius/library/daloradius.conf.php #3. 修复权限 chown -R apache:apache /var/www/html/daloradius /var/lib/php/session/ chmod -R 755 /var/www/html/daloradius chmod 755 /var/lib/php/session/ #4. 重启 Apache systemctl restart httpd #5. 验证配置 echo "=== 数据库配置 =" grep "CONFIG_DB_ENGINE" /var/www/html/daloradius/library/daloradius.conf.php echo "" echo "= 测试访问 ===" curl -s http://localhost/daloradius/dologin.php 2\>/dev/null \| head -5 echo "" echo "请刷新浏览器查看具体错误信息" （2）脚本4执行,修复脚本结果如下： \[root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# # 1. 确认 Apache 运行正常 @centos7_radius DB-1.9.2\]# systemctl status httpd --no-pager 看最近错误日志（确认无新错误） cat /var/log/httpd/error_log \| tail -20 #3. 测试访问 curl -I http://localhost/daloradius/dolo● httpd.service - The Apache HTTP Server Loaded: loaded (/usr/lib/systemd/system/httpd.service; enabled; vendor preset: disabled) Active: active (running) since 二 2026-04-21 10:50:12 CST; 2min 11s ago Docs: man:httpd(8) man:apachectl(8) Process: 17949 ExecStop=/bin/kill -WINCH ${MAINPID} (code=exited, status=0/SUCCESS) Main PID: 17956 (httpd) Status: "Total requests: 0; Current requests/sec: 0; Current traffic: 0 B/sec" Tasks: 8 CGroup: /system.slice/httpd.service ├─17956 /usr/sbin/httpd -DFOREGROUND ├─17957 /usr/libexec/nss_pcache 43 off ├─17961 /usr/sbin/httpd -DFOREGROUND ├─17962 /usr/sbin/httpd -DFOREGROUND ├─17963 /usr/sbin/httpd -DFOREGROUND ├─17964 /usr/sbin/httpd -DFOREGROUND └─17965 /usr/sbin/httpd -DFOREGROUND 4月 21 10:50:11 centos7_radius systemd\[1\]: Starting The Apache HTTP Server... 4月 21 10:50:11 centos7_radbash: \[root@centos7_radius: 未找到命令... ius httpd\[17956\]: AH00558: httpd: Could not reliably determine the server's fully qualifi...ssage 4月 21 10:50:12 centos7_radius systemd\[1\]: Started The Apache HTTP Server. Hint: Some lines were ellipsized, use -l to show in full. \[root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# # \[root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# systemctl status httpd --no-pager 2. 查看最近错误日志（确认无新错误） \[root@centos7_radius DB-1.9.2\]# cat /var/log/httpd/error_log \| tail -20 \[Tue Apr 21 10:41:10.210227 2026\] \[:error\] \[pid 17826\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. \[Tue Apr 21 10:41:10.210270 2026\] \[:error\] \[pid 17826\] Server certificate is expired: 'Server-Cert' \[Tue Apr 21 10:50:10.190651 2026\] \[mpm_prefork:notice\] \[pid 17817\] AH00170: caught SIGWINCH, shutting down gracefully \[Tue Apr 21 10:50:11.651870 2026\] \[suexec:notice\] \[pid 17956\] AH01232: suEXEC mechanism enabledbash: \[root@centos7_radius: 未找到命令... (wrapper: /usr/sbin/suexec) \[Tue Apr 21 10:50:12.021847 2026\] \[:error\] \[pid 17956\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. \[Tue Apr 21 10:50:12.021887 2026\] \[:error\] \[pid 17956\] Server certificate is expired: 'Server-Cert' AH00558: httpd: Could not reliably determine the server's fully qualifie\[root@centos7_radius DB-1.9.2\]# 看最近错误日志（确认 无新错误） d domain name, using fe80::23f9:2d3f:9e94:9cfd. Set the 'ServerName' directive globally to suppress this message \[Tue Apr 21 10:50:12.502803 2026\] \[lbmethod_heartbeat:notice\] \[pid 17956\] AH02282: No slotmem from mod_heartmonitor \[Tue Apr 21 10:50:12.564400 2026\] \[mpm_prefork:notice\] \[pid 17956\] AH00163: Apache/2.4.6 (CentOS) mod_auth_gssapi/1.5.1 mod_nss/1.0.14 NSS/3.28.4 PHP/5.4.16 mod_wsgi/3.4 Python/2.7.5 configured -- resuming normal operations \[Tue bash: 看最近错误日志（确认无新错误）: 未找到命令... Apr 21 10:50:12.564436 2026\] \[core:notice\] \[pid 17956\] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND' \[Tue Apr 21 10:50:12.902944 2026\] \[:error\] \[pid 17961\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. \[Tue Apr 21 10:50:12.902999 2026\] \[:error\] \[pid 17961\] Server certificate is expired: 'Server-Cert' \[Tue Apr 21 10:50:12.921724 202\[root@centos7_radius DB-1.9.2\]# cat /var/log/httpd/error_log \| tail -20 6\] \[:error\] \[pid 17964\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. \[Tue Apr 21 10:50:12.921758 2026\] \[:error\] \[pid 17964\] Server certificate is expired: 'Server-Cert' \[Tue Apr 21 10:50:12.973393 2026\] \[:error\] \[pid 17965\] Misconfiguration of\[Tue Apr 21 10:50:12.021847 2026\] \[:error\] \[pid 17956\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. \[Tue Apr 21 10:50:12.021887 2026\] \[:error\] \[pid 17956\] Server certificate is expired: 'Server-Cert' AH00558: httpd: Could not reliably determine the server's fully qualified domain name, using fe80::23f9:2d3f:9e94:9cfd. Set the 'ServerName' directive globally to suppress this message \[Tue Apr 21 10:50:12.502803 2026\] \[lbmethod_heartbeat:notice\] \[pid 17956\] AH02282: No slotmem from mod_heartmonitor \[Tue Apr 21 10:50:12.564400 2026\] \[mpm_prefork:notice\] \[pid 17956\] AH00163: Apache/2.4.6 (CentOS) mod_auth_gssapi/1.5.1 mod_nss/1.0.14 NSS/3.28.4 PHP/5.4.16 mod_wsgi/3.4 Python/2.7.5 configured -- resuming normal operations \[Tue Apr 21 10:50:12.564436 2026\] \[core:notice\] \[pid 17956\] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND' \[Tue Apr 21 10:50:12.902944 2026\] \[:error\] \[pid 17961\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. \[Tue Apr 21 10:50:12.902999 2026\] \[:error\] \[pid 17961\] Server certificate is expired: 'Server-Cert' \[Tue Apr 21 10:50:12.921724 2026\] \[:error\] \[pid 17964\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. \[Tue Apr 21 10:50:12.921758 2026\] \[:error\] \[pid 17964\] Server certificate is expired: 'Server-Cert' \[Tue Apr 21 10:50:12.973393 2026\] \[:error\] \[pid 17965\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. \[Tue Apr 21 10:50:12.973434 2026\] \[:error\] \[pid 17965\] Server certificate is expired: 'Server-Cert' \[Tue Apr 21 10:50:12.995841 2026\] \[:error\] \[pid 17962\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. \[Tue Apr 21 10:50:12.995871 2026\] \[:error\] \[pid 17962\] Server certificate is expired: 'Server-Cert' \[Tue Apr 21 10:50:13.060251 2026\] \[:error\] \[pid 17963\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. \[Tue Apr 21 10:50:13.060297 2026\] \[:error\] \[pid 17963\] Server certificate is expired: 'Server-Cert' \[Tue Apr 21 10:52:24.616852 2026\] \[:error\] \[pid 17961\] \[client ::1:48838\] PHP Notice: Undefined index: location in /var/www/html/daloradius/dologin.php on line 45 \[Tue Apr 21 10:52:24.617912 2026\] \[:error\] \[pid 17961\] \[client ::1:48838\] PHP Warning: include_once(/usr/share/pear/DB.php): failed to open stream: Permission denied in /var/www/html/daloradius/library/opendb.php on line 84 \[Tue Apr 21 10:52:24.617944 2026\] \[:error\] \[pid 17961\] \[client ::1:48838\] PHP Warning: include_once(): Failed opening 'DB.php' for inclusion (include_path='.:/usr/share/pear:/usr/share/php') in /var/www/html/daloradius/library/opendb.php on line 84 \[Tue Apr 21 10:52:24.618009 2026\] \[:error\] \[pid 17961\] \[client ::1:48838\] PHP Fatal error: Class 'DB' not found in /var/www/html/daloradius/library/opendb.php on line 86 \[root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# # 3. 测试访问 \[root@centos7_radius DB-1.9.2\]# curl -I http://localhost/daloradius/dolo● httpd.service - The Apache HTTP Server certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. \[Tue Apr 21 10:50:12.973434 2026\] \[:error\] \[pid 17965\] Server certificate is expired: 'Server-Cert' \[Tue Apr 21 10:50:12.995841 2026\] \[:error\] \[pid 17962\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. \[Tue Apr 21 10:50:12.995871 2026\] \[:error\] \[pid 17962\] Server certificatcurl: option -: is unknown curl: try 'curl --help' or 'curl --manual' for more information \[root@centos7_radius DB-1.9.2\]# Loaded: loaded (/usr/lib/systemd/system/httpd.service; enabled; vendor preset: disabled) -bash: 未预期的符号 `(' 附近有语法错误 [root@centos7_radius DB-1.9.2]# Active: active (running) since 二 2026-04-21 10:50:12 CST; 2min 11s ago -bash: 未预期的符号 `(' 附近有语法错误 \[root@centos7_radius DB-1.9.2\]# Docs: man:httpd(8) -bash: 未预期的符号 `(' 附近有语法错误 [root@centos7_radius DB-1.9.2]# man:apachectl(8) -bash: 未预期的符号 `8' 附近有语法错误 \[root@centos7_radius DB-1.9.2\]# Process: 17949 ExecStop=/bin/kill -WINCH ${MAINPID} (code=exited, status=0/SUCCESS) -bash: 未预期的符号 `(' 附近有语法错误 [root@centos7_radius DB-1.9.2]# Main PID: 17956 (httpd) -bash: 未预期的符号 `(' 附近有语法错误 \[root@centos7_radius DB-1.9.2\]# Status: "Total requests: 0; Current requests/sec: 0; Current traffic: 0 B/sec" bash: Status:: 未找到命令... \[root@centos7_radius DB-1.9.2\]# Tasks: 8 s bash: Tasks:: 未找到命令... \[root@centos7_radius DB-1.9.2\]# CGroup: /system.slice/httpd.service t bash: CGroup:: 未找到命令... \[root@centos7_radius DB-1.9.2\]# ├─17956 /usr/sbin/httpd -DFOREGROUND 1 bash: ├─17956: 未找到命令... \[root@centos7_radius DB-1.9.2\]# ├─17957 /usr/libexec/nss_pcache 43 off c bash: ├─17957: 未找到命令... \[root@centos7_radius DB-1.9.2\]# ├─17961 /usr/sbin/httpd -DFOREGROUND u bash: ├─17961: 未找到命令... \[root@centos7_radius DB-1.9.2\]# ├─17962 /usr/sbin/httpd -DFOREGROUND u bash: ├─17962: 未找到命令... \[root@centos7_radius DB-1.9.2\]# ├─17963 /usr/sbin/httpd -DFOREGROUND S bash: ├─17963: 未找到命令... \[root@centos7_radius DB-1.9.2\]# ├─17964 /usr/sbin/httpd -DFOREGROUND d bash: ├─17964: 未找到命令... \[root@centos7_radius DB-1.9.2\]# └─17965 /usr/sbin/httpd -DFOREGROUND n bash: └─17965: 未找到命令... \[root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# 4月 21 10:50:11 centos7_radius systemd\[1\]: Starting The Apache HTTP Server... bash: 4月: 未找到命令... \[root@centos7_radius DB-1.9.2\]# 4月 21 10:50:11 centos7_radius httpd\[17956\]: AH00558: httpd: Could not reliably determine the server's fully qualifi...ssage > 4月 21 10:50:12 centos7_radius systemd\[1\]: Started The Apache HTTP Server. > > Hint: Some lines were ellipsized, use -l to show in full. > > \[root@centos7_radius DB-1.9.2\]# > > \[root@centos7_radius DB-1.9.2\]# # 2. 查看最近错误日志（确认无新错误） > > \[root@centos7_radius DB-1.9.2\]# cat /var/log/httpd/error_log \| tail -20 > > \[Tue Apr 21 10:41:10.210227 2026\] \[:error\] \[pid 17826\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. > > u > > bash: 4月: 未找到命令... > > \[root@centos7_radius DB-1.9.2\]# \[Tue Apr 21 10:41:10.210270 2026\] \[:error\] \[pid 17826\] Server certificate is expired: 'Server-Cert' > > bash: \[Tue: 未找到命令... > > \[root@centos7_radius DB-1.9.2\]# \[Tue Apr 21 10:50:10.190651 2026\] \[mpm_prefork:notice\] \[pid 17817\] AH00170: caught SIGWINCH, shutting down gracefully > > bash: \[Tue: 未找到命令... > > \[root@centos7_radius DB-1.9.2\]# \[Tue Apr 21 10:50:11.651870 2026\] \[suexec:notice\] \[pid 17956\] AH01232: suEXEC mechanism enabled (wrapper: /usr/sbin/suexec) > > -bash: 未预期的符号 `(' 附近有语法错误 [root@centos7_radius DB-1.9.2]# [Tue Apr 21 10:50:12.021847 2026] [:error] [pid 17956] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. [Tue Apr 21 10:50:12.021887 2026] [:error] [pid 17956] Server certificate is expired: 'Server-Cert' AH00558: httpd: Could not reliably determine the server's fully qualified domain name, using fe80::23f9:2d3f:9e94:9cfd. Set the 'ServerName' directive globally to suppress this message bash: [Tue: 未找到命令... [root@centos7_radius DB-1.9.2]# [Tue Apr 21 10:50:12.502803 2026] [lbmethod_heartbeat:notice] [pid 17956] AH02282: No slotmem from mod_heartmonitor bash: [Tue: 未找到命令... [root@centos7_radius DB-1.9.2]# [Tue Apr 21 10:50:12.564400 2026] [mpm_prefork:notice] [pid 17956] AH00163: Apache/2.4.6 (CentOS) mod_auth_gssapi/1.5.1 mod_nss/1.0.14 NSS/3.28.4 PHP/5.4.16 mod_wsgi/3.4 Python/2.7.5 configured -- resuming normal operations -bash: 未预期的符号 `(' 附近有语法错误 > > \[root@centos7_radius DB-1.9.2\]# \[Tue Apr 21 10:50:12.564436 2026\] \[core:notice\] \[pid 17956\] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND' > > bash: \[Tue: 未找到命令... > > \[root@centos7_radius DB-1.9.2\]# \[Tue Apr 21 10:50:12.902944 2026\] \[:error\] \[pid 17961\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. > > \[Tue Apr 21 10:50:12.902999 2026\] \[:error\] \[pid 17961\] Server certificate is expired: 'Server-Cert' > > \[Tue Apr 21 10:50:12.921724 2026\] \[:error\] \[pid 17964\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. > > bash: \[Tue: 未找到命令... > > \[root@centos7_radius DB-1.9.2\]# \[Tue Apr 21 10:50:12.921758 2026\] \[:error\] \[pid 17964\] Server certificate is expired: 'Server-Cert' > > bash: \[Tue: 未找到命令... > > \[root@centos7_radius DB-1.9.2\]# \[Tue Apr 21 10:50:12.973393 2026\] \[:error\] \[pid 17965\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. > > \[Tue Apr 21 10:50:12.973434 2026\] \[:error\] \[pid 17965\] Server certificate is expired: 'Server-Cert' > > \[Tue Apr 21 10:50:12.995841 2026\] \[:error\] \[pid 17962\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. > > bash: \[Tue: 未找到命令... > > \[root@centos7_radius DB-1.9.2\]# \[Tue Apr 21 10:50:12.995871 2026\] \[:error\] \[pid 17962\] Server certificate is expired: 'Server-Cert' > > bash: \[Tue: 未找到命令... > > \[root@centos7_radius DB-1.9.2\]# \[Tue Apr 21 10:50:13.060251 2026\] \[:error\] \[pid 17963\] Misconfiguration of certificate's CN and virtual name. The certificate CN has localhost4.localdomain4. We expected fe80::23f9:2d3f:9e94:9cfd as virtual name. > > \[Tue Apr 21 10:50:13.060297 2026\] \[:error\] \[pid 17963\] Server certificate is expired: 'Server-Cert' > > \[root@centos7_radius DB-1.9.2\]# > > \[root@centos7_radius DB-1.9.2\]# # 3. 测 > > \[root@centos > > HTTP/1.0 500 Internal Server Error > > Dat > > Server: Apache/2.4.6 (CentOS) mod_auth_gssapi/1.5.1 > > X-Powered-By: PHP/5.4.16 > > Set-Cookie: PHPSESSID=3837ec > > \[root@centos7_radius DB-1.9.2\]# > > \[root@centos7_radiu > > \[root@centos7_radius DB-1.9.2\]# > > \[root@centos7_radiu > > \[root@centos7_radius DB-1.9.2\]# # 检查 daloRADIUS > > \[root@centos7_radius DB-1.9.2\]# cat /var/www/html/d > > $configValues\['CONFIG_DB_HOST'\] = 'localhost'; > > $con > > $configValues\['CONFIG_DB_PASS'\] = 'radiuspassword'; > > $configValues\['CONFIG_DB_NAME'

$configValues['CONFIG_DB_PASSWORD_ENCRYPTION'] = 'cleartext';

root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# # 测试数据库连接 \[root@centos7_radius DB-1.9.2\]# mysql -u radius -p'radiuspassword' -e "USE radius; SHOW TABLES;" ±-----------------------+ \| Tables_in_radius \| ±-----------------------+ \| batch_history \| \| billing_history \| \| billing_merchant \| \| billing_paypal \| \| billing_plans \| \| billing_plans_profiles \| \| billing_rates \| \| cui \| \| dictionary \| \| hotspots \| \| invoice \| \| invoice_items \| \| invoice_statu \| invoice_type \| \| nas \| \| node \| \| operators \| operators_acl \| \| operators_acl_files \| \| payment \| \| payment_type \| \| proxys \| radacct \| \| radcheck \| \| radgroupcheck \| \| radgroupreply \| \| radhuntgroup \| \| radippool \| \| radpostauth \| \| radreply \| \| radusergroup \| \| realms \| \| userbillinfo \| \| userinfo \| \| wimax \| ±-----------------------+ \[root@centos7_radius DB-1.9.2\]# （3）脚本4执行过程中，找到关键错误 PHP Warning: include_once(/usr/share/pear/DB.php): failed to open stream: Permission denied in /var/www/html/daloradius/library/opendb.php on line 84 PHP Fatal error: Class 'DB' not found in /var/www/html/daloradius/library/opendb.php on line 86 权限问题！ Apache 用户无法读取 /usr/share/pear/DB.php 9、修复权限问题 （1）脚本5，快速修复脚本： #!/bin/bash #修复 DB.php 权限 chmod 644 /usr/share/pear/DB.php 2\>/dev/null \|\| true chmod -R 755 /usr/share/pear/DB 2\>/dev/null \|\| true #确保文件存在 ls -la /usr/share/pear/DB.php ls -la /usr/share/pear/DB/ \| head -3 #测试 PHP 加载 php -r "require_once 'DB.php'; echo 'DB.php loaded OK\\n';" #重启 Apache systemctl restart httpd #测试 daloRADIUS echo "" echo "=== 测试 daloRADIUS =" curl -I http://localhost/daloradius/dologin.php 2\>/dev/null \| head -5 （2）脚本5执行，快速修复脚本结果如下： \[root@centos7_radius DB-1.9.2\]# #!/bin/bash \[root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# # 修复 DB.php 权限 \[root@centos7_radius DB-1.9.2\]# chmod 644 /usr/share/pear/DB.php 2\>/dev/null \|\| true #测试 PHP 加载 php -r "require_once 'DB.php'; echo 'DB.php loaded OK\\n';" #重启 Apache systemctl restart httpd #测试 daloRADIUS echo "" echo "=\[root@centos7_radius DB-1.9.2\]# chmod -R 755 /usr/share/pear/DB 2\>/dev/null \|\| true 测试 daloRADIUS =" curl -I http://localhost/daloradius/dologin.php 2\>/dev/null \| head -5 \[root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# # 确保文件存在 \[root@centos7_radius DB-1.9.2\]# ls -la /usr/share/pear/DB.php -rw-r--r-- 1 root root 43451 4月 21 10:50 /usr/share/pear/DB.php \[root@centos7_radius DB-1.9.2\]# ls -la /usr/share/pear/DB/ \| head -3 总用量 484 drwxr-xr-x 2 root root 262 4月 21 10:48 . drwxr-xr-x 9 root root 200 4月 21 10:50 ... \[root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# # 测试 PHP 加载 \[root@centos7_radius DB-1.9.2\]# php -r "require_once 'DB.php'; echo 'DB.php loaded OK\\n';" DB.php loaded OK\\n\[root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# # 重启 Apache \[root@centos7_radius DB-1.9.2\]# systemctl restart httpd \[root@centos7_radius DB-1.9.2\]# \[root@centos7_radius DB-1.9.2\]# # 测试 daloRADIUS \[root@centos7_radius DB-1.9.2\]# echo "" \[root@centos7_radius DB-1.9.2\]# echo "= 测试 daloRADIUS ===" === 测试 daloRADIUS === \[root@centos7_radius DB-1.9.2\]# curl -I http://localhost/daloradius/dologin.php 2\>/dev/null \| head -5 HTTP/1.1 302 Found Date: Tue, 21 Apr 2026 02:57:05 GMT Server: Apache/2.4.6 (CentOS) mod_auth_gssapi/1.5.1 mod_nss/1.0.14 NSS/3.28.4 PHP/5.4.16 mod_wsgi/3.4 Python/2.7.5 X-Powered-By: PHP/5.4.16 Set-Cookie: PHPSESSID=5837ec5754f503cfaf9ce1895abbdd3e; path=/ \[root@centos7_radius DB-1.9.2\]# （3）HTTP 302 Found 表示成功了！不再是 500 错误了！ 302 Found是重定向响应，说明 PHP 代码执行成功，正在重定向到另一个页面（通常是登录后的首页或错误页面）。 10、此时再登录正常： 

五、页面汉化

1、进入daloradius 文件目录，修改config-lang.php，添加中文的选项：

cd /var/www/html/daloradius

vim config-lang.php

2、增加一行中文的配置
Simplified Chinese 

<select name="config_lang" class='form'>
                    <option value="en"> English </option>
                    <option value="zh"> Simplified Chinese </option>
                    <option value="ru"> Russian </option>
                    <option value="hu"> Hungarian </option>
                    <option value="it"> Italian </option>
                    <option value="es_VE"> Spanish - Venezuelan </option>
                    <option value="pt_br"> Portuguese - Brazilian </option>
                    <option value="ja"> Japanese </option>
            </select>

3、进入lang目录，修改main.php,增加简体中文文件

cd lang/

vim main.php

switch($configValues['CONFIG_LANG']) {
            case "en":
                    include (dirname(__FILE__)."/en.php");
                    break;
            case "ru":
                    include (dirname(__FILE__)."/ru.php");
                    break;
            case "hu":
                    include (dirname(__FILE__)."/hu.php");
                    break;
            case "it":
                    include (dirname(__FILE__)."/it.php");
                    break;
            case "es_VE":
                    include (dirname(__FILE__)."/es_VE.php");
                    break;
            /*
             * file is currently broken and needs a fix...
            case "ro":
                    include (dirname(__FILE__)."/ro.php");
                    break;
            */
            case "pt_br":
                    include (dirname(__FILE__)."/pt_br.php");
                    break;
            case "ja":
                    include (dirname(__FILE__)."/ja.php");
                    break;
            case "zh":
                    include (dirname(__FILE__)."/zh.php");
                    break;
            default:
                    include (dirname(__FILE__)."/zh.php");
                    break;
    }

zh.php下载链接：

链接: https://pan.baidu.com/s/10NdJuIUAyecvE7wdHbIJPg?pwd=9g3b 提取码: 9g3b

4、返回lang目录，将zh.php文件放入lang目录

5、刷新页面，修改Config里面的的语言设置为Simplified Chinese

6、点应用后，可以看到菜单和选项已汉化

7、设置可以远程访问数据库：

（1）编辑/etc/my.cnf.d/server.cnf文件

vi /etc/my.cnf.d/server.cnf

（2）修改内容如下：

在 [mysqld]下添加

bind-address = 0.0.0.0

skip-networking = 0

保存

六、DaloRadius的功能：

1、查看服务器的状态：

2、查看服务的状态

3、新建组

4、新建单用户

5、新建批量用户

6、通过excel的csv格式导入导出用户

7、生成流量报告

8、账单------计费

9、新用户信息

10、新用户的记账信息

11、图表展示流量情况

12、配置用户、数据库、语言、日志、接口、邮件

13、数据库表

本文至此结束，通过安装开源版本的apache、php、mariadb、freeradius、daloradius管理、pear-db后，WEB运行及登录均正常，后期再结合CoovaChilli/OpenNDS（Portal 网关）+NAS网络访问服务（华为802.1X），以实现认证、授权访问、计费统计功能。不足之处敬请批评指正。