Nicolas Baradakis wrote: > From the LVS server point of view, I think the test (c) is the most > useful, because there's no point to send traffic to a node if it > fails to authorize a user, whatever the reason is.
Yes. > The tests (a) and (b) are useful to the administrators, but I don't > think they're to be run by the load balancing server. They could > be run by general purpose supervision tools like Nagios. Yes. My main objection to using Access-Request is when those packets are sent from *outside* of the local network. Inside of the local network, it's much less of an issue. Alan DeKok. -- http://deployingradius.com - The web site of the book http://deployingradius.com/blog/ - The blog - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
