realm and home_server

Stefan Paetow Stefan.Paetow at jisc.ac.uk
Fri Jan 9 11:57:33 CET 2015 

On 9 Jan 2015, at 09:44, Tevfik Ceydeliler <tevfik.ceydeliler at astron.yasar.com.tr> wrote:
> I have 4 realms grouped 2 and 2
> Each group (has 2 realm) workd as failover.

You don't use realms to fail over. Look at proxy.conf, Alan DeKok has already pointed to it. I quote from it (from line 514 onwards): 

#  This section defines a pool of home servers that is used
#  for fail-over and load-balancing.  In earlier versions of
#  FreeRADIUS, fail-over and load-balancing were defined per-realm.
#  As a result, if a server had 5 home servers, each of which served
#  the same 10 realms, you would need 50 "realm" entries.

> i dont misunderstand, "ldflag" is used for this.

Not anymore.

> How freeradius grouped two realms?
> by using @company.com side? But I can use IP address.

> and user is:
> tevfikceydeliler  Proxy-To-Realm := motp, Pool-Name := turkcell
>    Framed-Protocol := PPP

So, in version 3, you define this:

home_server motp_1 {
     type = auth+acct
     ipaddr = 10.1.1.52
     secret = test
}

home_server motp_2 {
    type = auth+acct
    ipaddr = 10.43.1.52
    secret = test
}

Then you define a home_server_pool for failover:

home_server_pool motp_failover {
    type = fail-over
    home_server = motp_1
    home_server = motp_2
}

Then you define the realm:

realm company.com {
    pool = motp_failover
    nostrip
}

realm motp {
    pool = motp_failover
    nostrip
}

This 'should' work (based on the little bit of information you've given us).

Stefan Paetow
Moonshot Industry & Research Liaison Coordinator

t: +44 (0)1235 822 125
gpg: 0x3FCE5142
xmpp: stefanp at jabber.dev.ja.net
skype: stefan.paetow.janet
Lumen House, Library Avenue, Harwell Oxford, Didcot, OX11 0SG

jisc.ac.uk
 
Jisc is a registered charity (number 1149740) and a company limited by guarantee which is registered in England under Company No. 5747339, VAT No. GB 197 0632 86. Jisc’s registered office is: One Castlepark, Tower Hill, Bristol, BS2 0JA. T 0203 697 5800.
Jisc Collections and Janet Ltd. is a wholly owned Jisc subsidiary and a company limited by guarantee which is registered in England under Company No. number 2881024, VAT No. GB 197 0632 86. The registered office is: Lumen House, Library Avenue, Harwell, Didcot, Oxfordshire, OX11 0SG. T 01235 822200.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 496 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20150109/280131bb/attachment.pgp>

More information about the Freeradius-Users mailing list