[RADIATOR] more memory leakage?

Fredrik Pettai pettai at nordu.net
Tue Sep 27 10:54:17 CDT 2016


> On 27 Sep 2016, at 11:32, Heikki Vatiainen <hvn at open.com.au> wrote:
> 
> On 26.9.2016 16.40, Fredrik Pettai wrote:
> 
>> (A rough guestimate of the number of radius authentications handled
>> by these servers is ~500.000 Accepts/Rejects per day, RADSEC is
>> enabled/running too...)
> 
> If you are using EAP and have not disabled session resumption, can you
> try setting EAPTLS_SessionResumptionLimit to a non-default value, for
> example 3600 or 7200 (1 hour or 2 hours)?
> 
> This would go to AuthBy(s) where the other EAPTLS_* parameters are. Now
> that the limit is no longer smaller of the EAP context timeout and this
> value, the default value might be too high for sites that do a lot of
> tunnelled EAP and end up caching a lot of sessions.

Sorry, then I wrote authentication handled, I meant by proxying requests…
 
These Radiators are just doing proxying inbetween all our IdP’s in .se 
(they are the FLRS's for .SE), and the eduroam ETLR’s (root) servers…

Re,
/P


More information about the radiator mailing list