IIRC home server state is tracked on a per homeserver basis (irrespective of
pool), and proxy-to-realm and replicate-to-realm will only replicate to the
first alive server in a given pool. So the above *may* do exactly what you
want, with the caveat that the replicated packets won't be
Hi Arran.
You could also use rlm_replicate to duplicate the packet, but there's currently
no way of checking the aliveness of a realm at runtime, so you'd end up sending
duplicate requests to whatever the primary OTP server was.
and that wouldn't help if you were actually wanting to
Hi Arran.
You could also use rlm_replicate to duplicate the packet, but there's currently
no way of checking the aliveness of a realm at runtime, so you'd end up sending
duplicate requests to whatever the primary OTP server was.
and that wouldn't help if you were actually wanting to
On 29 Nov 2012, at 09:21, Stefan Kuegler freerad...@kuegler.org wrote:
Hi Arran.
You could also use rlm_replicate to duplicate the packet, but there's
currently no way of checking the aliveness of a realm at runtime, so you'd
end up sending duplicate requests to whatever the primary OTP
Hello.
I have a short question:
Is it possible to send an authentication-request from a client to
multiple servers simultaneously ?
+--+
/-| radius A |
+++--+ / +--+
|
Stefan Kuegler wrote:
Is it possible to send an authentication-request from a client to
multiple servers simultaneously ?
Not really, no.
We now authenticate with HMAC-based One Time Password Token (aka
event-based token) from a Cisco ASA via radius to only one
freeradius-server. But we
Some NASes can successfully use several servers. If the first one
doesn't respond, the request will be sent to the next RADIUS server
On 11/28/2012 4:07 PM, Alan DeKok wrote:
Stefan Kuegler wrote:
Is it possible to send an authentication-request from a client to
multiple servers
On 28 Nov 2012, at 14:02, Stefan Kuegler freerad...@kuegler.org wrote:
Hello.
I have a short question:
Is it possible to send an authentication-request from a client to multiple
servers simultaneously ?
+--+
You could also use rlm_replicate to duplicate the packet, but there's
currently no way of checking the aliveness of a realm at runtime, so you'd
end up sending duplicate requests to whatever the primary OTP server was.
and that wouldn't help if you were actually wanting to authenticate the
9 matches
Mail list logo