[VOPRadius] Vopradius behind firewall

[Suneel Jhangiani]

Yup, should be as simple as that.   Steps to follow:   1). Login to SonicWall via Web Interface as Admin 2). Click Access 3). Click Add Service 4). Check to see if you have a Radius Service already listed, and if so ensure it shows 1645,17 and 1646,17. If not add a Radius Service with these two ports (if your Radius server is using the older ports 1812 and 1813 or another pair off ports replace the figures accordingly) The 17 after the comma represents UDP protocol type. 5). Click Rules 6). Add a new rule allowing everything from the WAN (can be everything ‘*’ if required) to the relevant IP off your Radius Servers for the Service created in step 4.   You should note that to add both Authentication and Accounting (default 1645 and 1646 ports) you would need to make two entries in the SonicWall Services. If these two are named the same then they will both be applicable when selected in Rule creation. This is a good way to create access to servers as if you host multiple servers with similar configurations you can create a single set Services which defines all the ports for those servers and then apply them to the relevant servers (makes sense if you sell pre-configured dedicated servers whereby you can have entries in the services matching the plans you supply).   If things still do not work after doing this check that the sonicwall can see your Radius server and ensure that your router or other equipment is not restricting the packets in anyway (a Cisco router might have access lists blocking UDP traffic).   ----- The wages of sin are eternal damnation. (the hours are good though)  (--------------------------------)         {(((((((     Suneel Jhangiani           )        /_  _  )(    Technical Director          )       ( .  .   )( Inter-Computer Technology Ltd. )        ( /   )(----------------------------------oOOo------------oOOo----)( 40 James Street                Tel: +44 (0) 20 7486 9601 ) ( London W1U 1EU                 Fax: +44 (0) 7050 678 978 )( United Kingdom               Email: [EMAIL PROTECTED]     )(             Website: http://www.inctech.com              ) (----------------------------------------------------------) From: Terry Trumbo [mailto:[EMAIL PROTECTED] Sent: 20 February 2004 12:13 To: [EMAIL PROTECTED] Subject: [VOPRadius] Vopradius behind firewall   Allowing those ports and using UDP should be all you need if I am not mistaken. Suneel correct me if I am wrong.     Terry Trumbo