> 1. Invent a simple way to encapsulate RADIUS requests on a
> TCP connection, and build a simple app that will receive UDP Radius,
> and proxy it out on a TCP connection. Modify Radiator so it can
> received these proxied requests by TCP

Nice idea. That would also make it easier to pipe the data through a
secure channel as well (ssh will do port forwarding, but only for tcp 
not udp). Bearing in mind things like usernames and calling-station-id
are transmitted in the clear, I think there are many people outsourcing
their modem ports that could see the value in it. Even without a secure
pipe, tcp is a better bet from a security/spoofing point of view than 
udp. Those with everything in one location or who own all their POPs
probably won't see much advantage (surely if udp isn't working locally
then syslog will also being lost, and you can't have that :-) but where 
the radius data has to travel over the public internet it could be
very helpful.

Kind regards

Archive at http://www.thesite.com.au/~radiator/
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

Reply via email to