hello Troy!
see comments inline, please
Troy Davis wrote:
>
> Are you saying if I uncommented both udp addresses in /etc/services then
> radius is able to listen on both ports, I would have thought I would have
huh? what makes you think that? i've never ever mentioned this
particular file. what i was saying is, that you could copy the data from
one udp-socket (i.e. ip+port) to another, namely with the help of the
mentioned simple program.
you said that your device (portmaster 2E) supposes the radius-server to
be on port x which can't be reconfigured. if i understand well, your
radius server runs at port y (with x != y). i proposed to you - as one
possible solution - to copy the packets sent by the portmaster to the
port x to the port y and vice versa. the ip can certainly be configured
in this portmaster device, and the program which will copy the packets
can be started wherever you want.
basically it would work e.g. like this:
src:srcport proxy:srcport
proxy:x (fix!) radius:y
portmaster ---------------------> proxy ------------------------>
radius-server
where proxy is the address of the machine which proxy runs at. it _can_
be the radius-server itself. the proxy will of course do the vice versa
in the opposite direction.
the advantage of this setup is that you don't need to touch your running
radius server nor to install another one. if you want to re-send the
accounting packets you would start two instances of qudproxy, the second
one working on x+1, y+1 ports.
there is NO setup at all for the qudproxy program, you just have to
start it, possibly in a while ( true; ) loop to avoid problems.
regards,
artur
> had to have 2 radius's running.
> More information would be nice.
> Thanks Troy
>
> ----- Original Message -----
> From: "Artur Hecker" <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Sent: Friday, May 10, 2002 7:15 PM
> Subject: Re: [Oz-ISP] Portmaster 2E
>
> > hmmm,
> >
> > if it is important to you to keep your current configuration and for
> > some reasons you don't want radius to listen on two ports, you could
> > simply use a udp-proxy, i.e. a small simple programm which will copy
> > ongoing packets from one udp-socket to another and vice versa... just
> > search the net for "qudproxy" (those were the days ;-)) or ask me... you
> > could start it on the same machine or on every intermediate you want.
> >
> > greetings
> >
> > art
> >
--
Artur Hecker Groupe Accès et Mobilité
hecker[at]enst.fr Département Informatique et Réseaux
+33 1 45 81 7507 46, rue Barrault 75634 Paris cedex 13
http://www.infres.enst.fr ENST Paris
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
