[RADIATOR] more memory leakage?
Fredrik Pettai
pettai at nordu.net
Tue Sep 27 10:54:17 CDT 2016
> On 27 Sep 2016, at 11:32, Heikki Vatiainen <hvn at open.com.au> wrote:
>
> On 26.9.2016 16.40, Fredrik Pettai wrote:
>
>> (A rough guestimate of the number of radius authentications handled
>> by these servers is ~500.000 Accepts/Rejects per day, RADSEC is
>> enabled/running too...)
>
> If you are using EAP and have not disabled session resumption, can you
> try setting EAPTLS_SessionResumptionLimit to a non-default value, for
> example 3600 or 7200 (1 hour or 2 hours)?
>
> This would go to AuthBy(s) where the other EAPTLS_* parameters are. Now
> that the limit is no longer smaller of the EAP context timeout and this
> value, the default value might be too high for sites that do a lot of
> tunnelled EAP and end up caching a lot of sessions.
Sorry, then I wrote authentication handled, I meant by proxying requests…
These Radiators are just doing proxying inbetween all our IdP’s in .se
(they are the FLRS's for .SE), and the eduroam ETLR’s (root) servers…
Re,
/P
More information about the radiator
mailing list