(RADIATOR) Lease expiry and NAS reboots
Hugh Irvine
hugh at open.com.au
Sat Sep 4 18:20:37 CDT 2004
Hello Andrew -
You are correct - there is no automatic mechanism for reclaiming IP
addresses on NAS reboot.
This is because the standard IP address pool table does not contain
enough information to do it.
You could easily extend the table definition and use a hook to remove
the IP address allocations.
There are some example hooks in "goodies/hooks.txt".
regards
Hugh
On 4 Sep 2004, at 18:16, Andrew wrote:
>
> Hi again,
>
> For AuthBy DYNADDRESS with AddressAllocator SQL, is it necessary for
> any
> given dynamic IP pool to be double the size of its userbase? Reason I
> ask
> is that if pool usage was at 95%, then the NAS was reset, there doesn't
> appear to be any mechanism for reclaiming the unexpired leased
> addresses.
> In this example only 5% of the users can reauthenticate immediately
> after
> the reboot, which is obviously a problem.
>
> It seems doubling the size of the IP pool to ensure it rarely or never
> exceeds 50% utilised would be one way of working around this. However
> it
> isn't always an option.
>
> Radiator seems to do a good job of detecting NAS reboots. If I'm not
> missing something then it would be very useful to have a ClearNasQuery
> for
> AddressAllocator SQL. Combine this with a custom nasidentifier column
> in
> the pool table and a matching AllocateQuery and there could be
> efficient
> deallocation on NAS reboot, even in a multi-NAS environment.
>
> TIA,
> Andrew
>
>
> --
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
>
>
NB: have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.
--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list