George, I was recently monitoring some testing of my own radius server the other day. I'm using the CVS release (not a daily snapshot) from 2004-12-15 on RedHat 7.2. While briefly testing my setup, I noticed there was a reject delay for failed authentications. I didn't time anything, but your comment about two seconds plus the config paramater sounds accurate. However, I have not experienced any excessive delays like the 31 second ballpark you mention.
If you're not making any progress with this, I'd suggest investigating the source code, to see where this is handled. I would then, either enable extra debugging (if logging is already present for this section), or add some debug messages of your own (including the current time+millisecond timestamp). Good luck, Scott Edwards Daxal Communications http://www.daxal.com/ On Friday 17 December 2004 11:39 am, George C. Kaplan wrote: > In troubleshooting some oddities with rejected connection attempts on > freeradius 1.0.1 (on FreeBSD 5.3) I noticed that the 'reject_delay' > parameter appears not to be working as advertised. > > In debug mode (-X) reject replies are delayed by 'reject_delay' > seconds, as expected. (It's actually about 2 + reject_delay, but I > guess that's due to some timer granularity). > > But in normal daemon mode, any non-zero value of 'reject_delay' causes > the rejects to be delayed by about 31 seconds. Practically speaking, > it means that they're delayed until the client retransmits. > > Is this a known issue? > > -- > George C. Kaplan [EMAIL PROTECTED] > Communication & Network Services 510-643-0496 > University of California at Berkeley - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
