(RADIATOR) Multiple hosts for RADSEC?
Hugh Irvine
hugh at open.com.au
Fri Jan 6 03:31:27 CST 2006
Hello Jan -
Mike has multiple host support for AuthBy RADSEC on his list of
things to do, but it is summer here and time for holidays.....
:-)
regards
Hugh
On 6 Jan 2006, at 20:15, Jan Tomasek wrote:
> Hi Hugh,
>
>> Set up multiple instances of Radiator on your host - say three in
>> total
>> (on different ports of course).
>>
>> The first instance will use an AuthBy LOADBALANCE clause (or
>> ROUNDROBIN
>> or VOLUMEBALANCE), or you could just use a normal AuthBy RADIUS
>> clause.
>> In either case you would have the other two instances as targets,
>> and
>> each of these targets would have AuthBy RADSEC clauses pointing to
>> wherever. In this way you achieve the failover and so on with the
>> AuthBy RADIUS (or LOADBALANCE ...) and the other instances just run
>> simple AuthBy RADSEC configurations.
>
> thanks for sugestion, but that is very very complicated. I've four
> hosts. Two of them are NREN level radiuses for eduroam and other
> two are
> institution level (CESNET). With your way I will have to mantain 4*3 =
> 12 instances of Radiator. That is prety much, debuging this mess might
> nightmare. Not speaking that we have bought license only for 7servers.
>
>> I agree it would be better to have multiple Host support in AuthBy
>> RADSEC, but the above will work well in the meantime.
>
> You are speaking by meantime, does that mean that you are planing
> implement muliple hosts in RADSEC? When you are planing to release it?
>
>
> In that meantime I will try to stabilizate my IPSec solution running
> mostly on racoon or switch to other solution. Only few institutions
> here
> have Radiator so I will need this anyway.
>
> Best regards
> --
> --------------------------------------------------------------
> Jan Tomasek aka Semik work: CESNET, z.s.p.o.
> http://www.tomasek.cz/ Zikova 4, 160 00 Praha 6
> Czech Republic
> phone(work): +420 2 2435 5279 http://www.cesnet.cz/
NB:
Have you read the reference manual ("doc/ref.html")?
Have you searched the mailing list archive (www.open.com.au/archives/
radiator)?
Have you had a quick look on Google (www.google.com)?
Have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.
--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list