FreeRADIUS Accounting Logging to Two Separate Locations Simultaneously

Alan Buxey A.L.M.Buxey at lboro.ac.uk
Thu Sep 5 23:44:18 CEST 2013


The default install comes with a few accounting virtual servers that you can use.  I'd strongly advise one of the or of band asynchronous ones.

If you use UDP syslog is not blocking. .. it is fire and forget. .. so if you might lose packets if you have congested links or a disruption between source and destination.  For security throw a VPN tunnel between the hosts.

At the end is whatever floats your boat and is maintainable. . you had a big list some of which seem prone to issues and overworked. And why not think of it the other way around? Let security have all the logs and then give ops access to the data via their system. ..ops then no longer need to worry about data retention, the legal issues, disk space etc. ..they just run a radius daemon ;)

alan

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20130905/29e884e5/attachment.html>


More information about the Freeradius-Users mailing list