[RADIATOR] L5 load balancers for Radius
Hugh Irvine
hugh at open.com.au
Tue Nov 30 18:35:31 CST 2010
Hi Mike -
This is quite strange - I would have expected the source IP address to be intact by default.
Otherwise you can use the value of the NAS-IP-Address attribute to rewrite the source IP address with a rule on the F5.
I did something similar a few years ago when there was a Radiator proxy interposed between the NAS equipment and the target Radiator server.
The rules were posted in an email to the list on February 13 2007.
I'll send you a copy of the mail separately.
regards
Hugh
On 1 Dec 2010, at 10:01, Mike McCauley wrote:
> Sorry, meant F5 load balancer not L5.
>
>
> On Wednesday 01 December 2010 08:52:49 am Mike McCauley wrote:
>> Hi,
>>
>> One of our customers wants to use an L5 load balancer to balance tacacs and
>> RADIUS requests, but their LB service provider seems to not understand how
>> to do this and still preserve the source address (so the radius server can
>> tell who the client really is)
>>
>> Does anyone have an L5 config that shows how to do this?
>>
>> Cheers.
>>
>> _______________________________________________
>> radiator mailing list
>> radiator at open.com.au
>> http://www.open.com.au/mailman/listinfo/radiator
>
> _______________________________________________
> radiator mailing list
> radiator at open.com.au
> http://www.open.com.au/mailman/listinfo/radiator
NB:
Have you read the reference manual ("doc/ref.html")?
Have you searched the mailing list archive (www.open.com.au/archives/radiator)?
Have you had a quick look on Google (www.google.com)?
Have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
Includes support for reliable RADIUS transport (RadSec),
and DIAMETER translation agent.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
More information about the radiator
mailing list