On 20/11/12 17:50, Panagiotis Georgopoulos wrote:
91 0d
501 03
4848 15
7540 01
35801 19
So, about 75% PEAP, 10% TTLS, 15% identity packets, less than 0.2% TLS.
Thanks a lot for this specific results. Essentially you are proving my point :-)
At first you said that 99.9% is PEAP and practise says that 75% is PEAP (even
in just 4
hours). Essentially this is what I am after, to see whether what I am reading
online is
also what happens in practice (in terms of deployment and usage) (and then
search why).
Sorry, but you're misunderstanding the stats, or reading too much into them.
These are EAP types from EAP *packets*, not sessions. And, as I said, it
excludes our *own* users (i.e. it's just visitors) which removed several
hundred thousand PEAP packets from the count.
EAP-Identity doesn't count as an auth type; there is one EAP packet for
every session, at the start.
If you exclude the Identity packets (type 1) and NAK packets (type 3)
you have:
91 0d
4848 15
35801 19
This is 87% PEAP. However, this is still *packets*. It takes no account
of sessions, of the client re-auth times, TLS session resumption, and so
forth, and is still just for visitors.
I'm afraid I don't have time to do more detailed processing. But really,
you would want to "unique" any stats by client (Calling-Station-Id) and
EAP-type, and measure "EAP type client days" or something.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
