[RADIATOR] Proxy'ing Client-Identifier to "slave" RADIUS processes

Johnson, Neil M neil-johnson at uiowa.edu
Mon Jan 28 12:31:45 CST 2013



Background:

With our current RADIUS configuration (which includes some custom hooks
with database calls) it seems that even on a 16-core box we start to have
RADIUS timeout issues when we push above 100 total requests per second
when running a single instance of RADIATOR.

Our current solution has been to add additional boxes, but we are almost
at the point that we have as many RADIUS boxes as we have wireless
controllers (16).

It's my theory that proxy'ing the requests to multiple RADIATOR processes
will allow us to handle more requests per second on one box, although it
does appear to increase the over all latency by quite a bit.

Thanks all! Back to the lab!



-Neil

-- 
Neil Johnson
Network Engineer
The University of Iowa
Phone: 319 384-0938
Fax: 319 335-2951
Mobile: 319 540-2081
E-Mail: neil-johnson at uiowa.edu






On 1/28/13 12:13 PM, "Heikki Vatiainen" <hvn at open.com.au> wrote:

>On 01/28/2013 07:42 PM, Johnson, Neil M wrote:
>
>> Is there a way to pass the "Client-Identifier" to another RADIATOR
>> process ? Perhaps as an RADIUS Attribute ?
>
>There were already a number of good ideas, so I'll just suggest one
>attribute you could use. OSC-Client-Identifier has been in the
>dictionary for years, so that might be the easiest to use. No dictionary
>modifications needed provided you use version 4.0 or later.
>
>Something like this should do it:
>
> AddToRequest OSC-Client-Identifier=%{Client:Identifier}
>
>Thanks,
>Heikki
>
>-- 
>Heikki Vatiainen <hvn at open.com.au>
>
>Radiator: the most portable, flexible and configurable RADIUS server
>anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
>Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
>TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP,
>DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS,
>NetWare etc.
>_______________________________________________
>radiator mailing list
>radiator at open.com.au
>http://www.open.com.au/mailman/listinfo/radiator



More information about the radiator mailing list