(RADIATOR) Multiple hosts for RADSEC?

Hugh Irvine hugh at open.com.au
Fri Jan 6 03:31:27 CST 2006


Hello Jan -

Mike has multiple host support for AuthBy RADSEC on his list of  
things to do, but it is summer here and time for holidays.....

:-)

regards

Hugh


On 6 Jan 2006, at 20:15, Jan Tomasek wrote:

> Hi Hugh,
>
>> Set up multiple instances of Radiator on your host - say three in   
>> total
>> (on different ports of course).
>>
>> The first instance will use an AuthBy LOADBALANCE clause (or   
>> ROUNDROBIN
>> or VOLUMEBALANCE), or you could just use a normal AuthBy  RADIUS  
>> clause.
>> In either case you would have the other two instances  as targets,  
>> and
>> each of these targets would have AuthBy RADSEC  clauses pointing to
>> wherever. In this way you achieve the failover  and so on with the
>> AuthBy RADIUS (or LOADBALANCE ...) and the other  instances just run
>> simple AuthBy RADSEC configurations.
>
> thanks for sugestion, but that is very very complicated. I've four
> hosts. Two of them are NREN level radiuses for eduroam and other  
> two are
> institution level (CESNET). With your way I will have to mantain 4*3 =
> 12 instances of Radiator. That is prety much, debuging this mess might
> nightmare. Not speaking that we have bought license only for 7servers.
>
>> I agree it would be better to have multiple Host support in AuthBy
>> RADSEC, but the above will work well in the meantime.
>
> You are speaking by meantime, does that mean that you are planing
> implement muliple hosts in RADSEC? When you are planing to release it?
>
>
> In that meantime I will try to stabilizate my IPSec solution running
> mostly on racoon or switch to other solution. Only few institutions  
> here
> have Radiator so I will need this anyway.
>
> Best regards
> -- 
> --------------------------------------------------------------
> Jan Tomasek aka Semik           work: CESNET, z.s.p.o.
> http://www.tomasek.cz/                Zikova 4, 160 00 Praha 6
>                                       Czech Republic
> phone(work): +420 2 2435 5279         http://www.cesnet.cz/


NB:

Have you read the reference manual ("doc/ref.html")?
Have you searched the mailing list archive (www.open.com.au/archives/ 
radiator)?
Have you had a quick look on Google (www.google.com)?
Have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.


--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.


More information about the radiator mailing list