> On 27 Sep 2016, at 11:32, Heikki Vatiainen <[email protected]> wrote: > > On 26.9.2016 16.40, Fredrik Pettai wrote: > >> (A rough guestimate of the number of radius authentications handled >> by these servers is ~500.000 Accepts/Rejects per day, RADSEC is >> enabled/running too...) > > If you are using EAP and have not disabled session resumption, can you > try setting EAPTLS_SessionResumptionLimit to a non-default value, for > example 3600 or 7200 (1 hour or 2 hours)? > > This would go to AuthBy(s) where the other EAPTLS_* parameters are. Now > that the limit is no longer smaller of the EAP context timeout and this > value, the default value might be too high for sites that do a lot of > tunnelled EAP and end up caching a lot of sessions.
Sorry, then I wrote authentication handled, I meant by proxying requests… These Radiators are just doing proxying inbetween all our IdP’s in .se (they are the FLRS's for .SE), and the eduroam ETLR’s (root) servers… Re, /P _______________________________________________ radiator mailing list [email protected] http://www.open.com.au/mailman/listinfo/radiator
