[RADIATOR] more memory leakage?
pettai at nordu.net
Tue Sep 27 10:54:17 CDT 2016
> On 27 Sep 2016, at 11:32, Heikki Vatiainen <hvn at open.com.au> wrote:
> On 26.9.2016 16.40, Fredrik Pettai wrote:
>> (A rough guestimate of the number of radius authentications handled
>> by these servers is ~500.000 Accepts/Rejects per day, RADSEC is
>> enabled/running too...)
> If you are using EAP and have not disabled session resumption, can you
> try setting EAPTLS_SessionResumptionLimit to a non-default value, for
> example 3600 or 7200 (1 hour or 2 hours)?
> This would go to AuthBy(s) where the other EAPTLS_* parameters are. Now
> that the limit is no longer smaller of the EAP context timeout and this
> value, the default value might be too high for sites that do a lot of
> tunnelled EAP and end up caching a lot of sessions.
Sorry, then I wrote authentication handled, I meant by proxying requests…
These Radiators are just doing proxying inbetween all our IdP’s in .se
(they are the FLRS's for .SE), and the eduroam ETLR’s (root) servers…
More information about the radiator