Network Design - FreeRadius
Arran Cudbard-Bell
a.cudbardb at freeradius.org
Tue Mar 15 11:54:03 CET 2016
> On 15 Mar 2016, at 10:32, Richard J Palmer <richard at merula.net> wrote:
>
>
> Hi
>
> Currently I have a NAS device in a hosting centre and the SQL Server with the auth and accounting data in another data centre.
>
> There's a 1G link between the two and the ping time between them is ~9ms
>
> In time I am hoping to move the SQL server closer to the main NAS, but for now would the best option be to place the FR server closer to the NAS (with a higher latency to the SQL server) OR place the FR serve closer to the SQL box ?
FR closer to SQL. Latency between NAS and FR doesn't prevent requests being served, whereas latency between FR and SQL does (because of FR's blocking architecture). There's also likely to be more chatter between FR and SQL. RADIUS is a pretty simple protocol, just request/response.
You likely won't see a performance (or latency) difference until you put the system under load.
>
> Currently I have the FR server near the NAS and the SQL server remote - but wanted to check this was 'sensible'
>
> Moving to FR 3 (from an old server with 2.12) I am seeing more log messages like:
>
> Tue Mar 15 10:26:24 2016 : Error: (27774) Ignoring duplicate packet from client mer-fire11 port 3799 - ID: 181 due to unfinished request in component post-auth module sql
Yeah, SQL DB being slow.
-Arran
Arran Cudbard-Bell <a.cudbardb at freeradius.org>
FreeRADIUS development team
FD31 3077 42EC 7FCD 32FE 5EE2 56CF 27F9 30A8 CAA2
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 872 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20160315/8561c1ec/attachment.sig>
More information about the Freeradius-Users
mailing list