<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
<HEAD>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=us-ascii">
<META NAME="Generator" CONTENT="MS Exchange Server version 5.5.2658.2">
<TITLE>Issue with increasing the number of ACL's in users file</TITLE>
</HEAD>
<BODY>
<P><FONT SIZE=2 FACE="Arial">Hi</FONT>
</P>
<P><FONT SIZE=2 FACE="Arial"> I am having a problem with an apparent limit on ACL's on my freeradius servers. I have been running this servers for a number of years, and have always had the number of ACL's on the users file below 52, and have never had any problems.</FONT></P>
<P><FONT SIZE=2 FACE="Arial"> I noticed as soon as I increased the ACL's above 52 it appeared to authenticate in the logs, however the auth connection through Cisco VPN simply continued to try to authenticate and nothing happened. As soon as I removed the ACL's below 52 and restarted it works fine.</FONT></P>
<P><FONT SIZE=2 FACE="Arial">I dumped the logs </FONT>
</P>
<P><FONT SIZE=2 FACE="Arial"> /usr/local/freeradius/sbin/radiusd -p 1647 -sfxxyz -l stdout</FONT>
</P>
<P><FONT SIZE=2 FACE="Arial"> When I then auth'd and viewed the stdout logs, they are identical for <52 and then >52 (when compared). The only difference is that the ACL's after the magic 52 mark do not show in the stout, and this causes my timeout to fail. When I revert to <52 I can see the last ACL's and all works fine.</FONT></P>
<P><FONT SIZE=2 FACE="Arial"> I have checked through the configs including radiusd.conf however I cannot find a hard coded limitation on ACL's anywhere.</FONT></P>
<P><FONT SIZE=2 FACE="Arial"> Is anyone aware of how to resolve this ?</FONT>
</P>
<P><FONT SIZE=2 FACE="Arial">Thanks in advance,</FONT>
<BR><FONT SIZE=2 FACE="Arial"> Niall</FONT>
<BR><FONT SIZE=2 FACE="Arial"> </FONT>
</P>
<BR>
</BODY>
</HTML>