udpfromto (Was: problem with radclient)
Phil Mayers
p.mayers at imperial.ac.uk
Thu Oct 18 11:21:18 CEST 2012
On 18/10/12 07:18, Vladimir Grujić wrote:
> The scenario is that radius is behind load balancer which advertizes
> it's public ip address and forward packets to another ip address on
> radius (which has different ip) . Advertized public ip address on
> radius is binded to lo:0 interface. Hence the need for udpfromto.
> This is a setup to have HA cluster of radius servers and only one
> advertized ip for the NAS.
We run a virtually identical setup, and don't need udpfromto.
Instead, we bind the "listen" section to the virtual IP. Replies are
always sent out of the socket they came in on, so the source IP "just
works".
More information about the Freeradius-Devel
mailing list