(RADIATOR) Radiator hanging on LDAP
Hugh Irvine
hugh at open.com.au
Tue Dec 12 17:05:51 CST 2006
Hello Chris -
This is very strange - can you send me a bit more information please?
Specifically, what hardware/software platform, what version of Perl,
what version of Radiator, and a copy of the configuration file and a
trace 4 debug showing what is happening? Of course any additional
information that you can think of would also be useful.
BTW - do you have a firewall between the Radiator host and the LDAP
server? We sometimes see problems like this when a firewall has
dropped a session and Radiator never gets an error.
regards
Hugh
On 12 Dec 2006, at 22:35, Chris Hills wrote:
> Hi
>
> We are using Radiator mainly to authenticate wireless users with
> 802.1x
> and EAP-PEAP with an LDAP backend. Recently I have noticed that on
> occassion the server gets "stuck" and no longer processes
> authentications until radiusd is restarted. The log file shows
> dozens of
> binding messages every second, for example:-
>
> Tue Dec 12 11:27:44 2006: INFO: Connecting to
> ldap-red.svc.ne-worcs.ac.uk, port 389
> Tue Dec 12 11:27:44 2006: INFO: Attempting to bind to LDAP server
> ldap-red.svc.ne-worcs.ac.uk:389
> Tue Dec 12 11:27:44 2006: INFO: Connecting to
> ldap-red.svc.ne-worcs.ac.uk, port 389
> Tue Dec 12 11:27:44 2006: INFO: Attempting to bind to LDAP server
> ldap-red.svc.ne-worcs.ac.uk:389
> Tue Dec 12 11:27:44 2006: INFO: Connecting to
> ldap-red.svc.ne-worcs.ac.uk, port 389
> Tue Dec 12 11:27:44 2006: INFO: Attempting to bind to LDAP server
> ldap-red.svc.ne-worcs.ac.uk:389
> Tue Dec 12 11:27:44 2006: INFO: Connecting to
> ldap-red.svc.ne-worcs.ac.uk, port 389
> Tue Dec 12 11:27:44 2006: INFO: Attempting to bind to LDAP server
> ldap-red.svc.ne-worcs.ac.uk:389
> Tue Dec 12 11:27:44 2006: INFO: Connecting to
> ldap-red.svc.ne-worcs.ac.uk, port 389
> Tue Dec 12 11:27:44 2006: INFO: Attempting to bind to LDAP server
> ldap-red.svc.ne-worcs.ac.uk:389
> Tue Dec 12 11:27:44 2006: INFO: Connecting to
> ldap-red.svc.ne-worcs.ac.uk, port 389
> Tue Dec 12 11:27:44 2006: INFO: Attempting to bind to LDAP server
> ldap-red.svc.ne-worcs.ac.uk:389
> Tue Dec 12 11:27:44 2006: INFO: Connecting to
> ldap-red.svc.ne-worcs.ac.uk, port 389
> Tue Dec 12 11:27:44 2006: INFO: Attempting to bind to LDAP server
> ldap-red.svc.ne-worcs.ac.uk:389
> Tue Dec 12 11:27:44 2006: INFO: Connecting to
> ldap-red.svc.ne-worcs.ac.uk, port 389
> Tue Dec 12 11:27:44 2006: INFO: Attempting to bind to LDAP server
> ldap-red.svc.ne-worcs.ac.uk:389
> Tue Dec 12 11:27:44 2006: INFO: Connecting to
> ldap-red.svc.ne-worcs.ac.uk, port 389
> Tue Dec 12 11:27:44 2006: INFO: Attempting to bind to LDAP server
> ldap-red.svc.ne-worcs.ac.uk:389
> Tue Dec 12 11:27:44 2006: INFO: Connecting to
> ldap-red.svc.ne-worcs.ac.uk, port 389
> Tue Dec 12 11:27:44 2006: INFO: Attempting to bind to LDAP server
> ldap-red.svc.ne-worcs.ac.uk:389
> Tue Dec 12 11:27:44 2006: INFO: Connecting to
> ldap-red.svc.ne-worcs.ac.uk, port 389
> Tue Dec 12 11:27:44 2006: INFO: Attempting to bind to LDAP server
> ldap-red.svc.ne-worcs.ac.uk:389
> Tue Dec 12 11:27:44 2006: INFO: Connecting to
> ldap-red.svc.ne-worcs.ac.uk, port 389
> Tue Dec 12 11:27:44 2006: INFO: Attempting to bind to LDAP server
> ldap-red.svc.ne-worcs.ac.uk:389
> Tue Dec 12 11:27:44 2006: INFO: Connecting to
> ldap-red.svc.ne-worcs.ac.uk, port 389
> Tue Dec 12 11:27:44 2006: INFO: Attempting to bind to LDAP server
> ldap-red.svc.ne-worcs.ac.uk:389
> Tue Dec 12 11:27:44 2006: INFO: Connecting to
> ldap-red.svc.ne-worcs.ac.uk, port 389
> Tue Dec 12 11:27:44 2006: INFO: Attempting to bind to LDAP server
> ldap-red.svc.ne-worcs.ac.uk:389
> Tue Dec 12 11:27:44 2006: INFO: Connecting to
> ldap-red.svc.ne-worcs.ac.uk, port 389
> Tue Dec 12 11:27:44 2006: INFO: Attempting to bind to LDAP server
> ldap-red.svc.ne-worcs.ac.uk:389
> Tue Dec 12 11:27:44 2006: INFO: Connecting to
> ldap-red.svc.ne-worcs.ac.uk, port 389
> Tue Dec 12 11:27:44 2006: INFO: Attempting to bind to LDAP server
> ldap-red.svc.ne-worcs.ac.uk:389
> Tue Dec 12 11:27:44 2006: INFO: Connecting to
> ldap-red.svc.ne-worcs.ac.uk, port 389
> Tue Dec 12 11:27:44 2006: INFO: Attempting to bind to LDAP server
> ldap-red.svc.ne-worcs.ac.uk:389
> Tue Dec 12 11:27:44 2006: INFO: Connecting to
> ldap-red.svc.ne-worcs.ac.uk, port 389
> Tue Dec 12 11:27:44 2006: INFO: Attempting to bind to LDAP server
> ldap-red.svc.ne-worcs.ac.uk:389
> Tue Dec 12 11:27:44 2006: INFO: Connecting to
> ldap-red.svc.ne-worcs.ac.uk, port 389
> Tue Dec 12 11:27:44 2006: INFO: Attempting to bind to LDAP server
> ldap-red.svc.ne-worcs.ac.uk:389
> Tue Dec 12 11:27:44 2006: INFO: Connecting to
> ldap-red.svc.ne-worcs.ac.uk, port 389
> Tue Dec 12 11:27:44 2006: INFO: Attempting to bind to LDAP server
> ldap-red.svc.ne-worcs.ac.uk:389
> Tue Dec 12 11:27:44 2006: INFO: Connecting to
> ldap-red.svc.ne-worcs.ac.uk, port 389
>
> Any idea on what could be happening?
>
> P.S. I emailed OSC a couple of weeks ago to get a quote to extend our
> now expired support contract and have heard nothing since.
>
> --
> Chris Hills | Tel: +44 (0)1527 572754
> IT Services | Fax: +44 (0)1527 572901
> North East Worcestershire College | Web: http://www.ne-worcs.ac.uk/
>
> --
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
NB:
Have you read the reference manual ("doc/ref.html")?
Have you searched the mailing list archive (www.open.com.au/archives/
radiator)?
Have you had a quick look on Google (www.google.com)?
Have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
Includes support for reliable RADIUS transport (RadSec),
and DIAMETER translation agent.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.
--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list