Re: 1.1.4 slow to respond
Andrew Long wrote: > I am getting slow response time from the server for authentication requests > (chap/mschap) that eventually fail (users submitting wrong password). The > problem is that the NAS is sending about 3 requests before getting a > response. By the time the deny arrives, it is out of order and the NAS logs > an unexpected packet (though it correctly denies the user). I am wondering if > disabling all authentication/authorization methods except chap/mschap would > solve this by speeding the response time. The server is not the speediest > machine... 1 GHZ processor/1GB ram, but is dedicated for freeradius except > for serving some static web pages. I have never seen system usage stats above > nominal levels. Edit "radiusd.conf". Set "reject_delay = 0". This is fixed in 2.0.0 Alan DeKok. -- http://deployingradius.com - The web site of the book http://deployingradius.com/blog/ - The blog - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: 1.1.4 slow to respond
On 6/12/07, Andrew Long <[EMAIL PROTECTED]> wrote: > > I am getting slow response time from the server for authentication requests > (chap/mschap) that eventually fail (users submitting wrong password). The > problem is that the NAS is sending about 3 requests before getting a > response. By the time the deny arrives, it is out of order and the NAS logs > an unexpected packet (though it correctly denies the user). I am wondering if > disabling all authentication/authorization methods except chap/mschap would > solve this by speeding the response time. The server is not the speediest > machine... I suggest you should upgrade to version 1.1.6. Also, try runninng the radiusd process with the -X option and post the output here. Other than that, are you checking the users against an sql or ldap server? If ldap, is the uid indexed? - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
1.1.4 slow to respond
I am getting slow response time from the server for authentication requests (chap/mschap) that eventually fail (users submitting wrong password). The problem is that the NAS is sending about 3 requests before getting a response. By the time the deny arrives, it is out of order and the NAS logs an unexpected packet (though it correctly denies the user). I am wondering if disabling all authentication/authorization methods except chap/mschap would solve this by speeding the response time. The server is not the speediest machine... 1 GHZ processor/1GB ram, but is dedicated for freeradius except for serving some static web pages. I have never seen system usage stats above nominal levels. Regards, Andrew - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
