On 11 Dec 2012, at 03:14, Mike Diggins mike.digg...@mcmaster.ca
wrote:
On Sun, 9 Dec 2012, Alan Buxey wrote:
Hi,
This looks like something I should be doing but I have no idea where
to insert this section. Is it in proxy.conf or somewhere else? And
in the authorize section of your
On 11 December 2012 03:14, Mike Diggins mike.digg...@mcmaster.ca wrote:
ok, both the default and inner-tunnel, I assume?
default only - you don't want to proxy the inner bit - if the inner
realm doesn't match blank or yours, you need to reject.
I added the section to authorize, but the DEBUG
On Sun, 9 Dec 2012, Alan Buxey wrote:
Hi,
This looks like something I should be doing but I have no idea where
to insert this section. Is it in proxy.conf or somewhere else? And
in the authorize section of your virtual server, straight after the
preprocess/suffix/realm
module calls (ie
On Thu, 6 Dec 2012, Phil Mayers wrote:
On 12/06/2012 10:16 AM, Alan Buxey wrote:
Hi,
home_server_pool EDUROAM-FTLR {
type= fail-over
home_server = proxy1
home_server = proxy2
}
I would use:
type = client-port-balance
Hi,
This looks like something I should be doing but I have no idea where
to insert this section. Is it in proxy.conf or somewhere else? And
in the authorize section of your virtual server, straight after the
preprocess/suffix/realm
module calls (ie before any real authorization action)
With
Hi,
I have a valid current subscription and yum reports no updates for
my freeradius install, so I'm assuming it's okay. I didn't want to
dwell on the version though as I just upgraded from a much older
release which didn't help with my problem.
2.1.12-4 appears to have the required TLS fix
On 12/06/2012 10:16 AM, Alan Buxey wrote:
Hi,
home_server_pool EDUROAM-FTLR {
type= fail-over
home_server = proxy1
home_server = proxy2
}
I would use:
type = client-port-balance
to balance between the 2. (that method
Hi,
home_server_pool EDUROAM-FTLR {
type= fail-over
home_server = proxy1
home_server = proxy2
}
I would use:
type = client-port-balance
to balance between the 2. (that method ensures the EAP goes to one remote
server)
In the first instance, upgrade. There is a major security problem with 2.1.x
release. Get 2.2.x onto your system asap.
What are your NAS (cisco controllers) timeouts? Is this box a pure proxy or
does it do authentication too? Have you enabled ciscos status-check system so
it knows the RADIUS
On Wed, 5 Dec 2012, Alan Buxey wrote:
In the first instance, upgrade. There is a major security problem with 2.1.x
release. Get 2.2.x onto your system asap.
This is the RedHat RPM which I believe are maintained by RedHat. Hopefully
they've back ported any major security issues!
What
Hi,
This is the RedHat RPM which I believe are maintained by RedHat.
Hopefully they've back ported any major security issues!
got the changelog for the 2.1.12 RPM release you are running?
It does both autentication and proxy and I do have status-check
enabled. On the contraller I increased
On 12/05/2012 12:02 PM, Mike Diggins wrote:
On Wed, 5 Dec 2012, Alan Buxey wrote:
In the first instance, upgrade. There is a major security problem
with 2.1.x release. Get 2.2.x onto your system asap.
This is the RedHat RPM which I believe are maintained by RedHat.
Hopefully they've back
On Wed, 5 Dec 2012, John Dennis wrote:
On 12/05/2012 12:02 PM, Mike Diggins wrote:
On Wed, 5 Dec 2012, Alan Buxey wrote:
In the first instance, upgrade. There is a major security problem
with 2.1.x release. Get 2.2.x onto your system asap.
This is the RedHat RPM which I believe are
This is my proxy.conf. The only value I've adjusted so far is response
window (from 20 down to 5). Otherwise, I believe it's configured correctly
to failover between the two home servers. I'll have to work on the debugs.
proxy server {
default_fallback= yes
}
home_server
I'm running FreeRadius 2.1.12 on RedHat 6 as an Eduroam proxy server and
having problems. My cisco wireless controllers are constantly failing back
and forth between the primary and secondary systems. My logs show these
errors when it happens:
Dec 4 19:12:18 server radiusd[32588]: Internal
15 matches
Mail list logo