Hi, After a lot of investigation, i have found the reason for my low auth-rate. The auth-rate i m gettin now is 3/sec. so approx. 330 ms per authentication. this is a radiusd -X : eap] processing type peap [peap] processing EAP-TLS [peap] eaptls_verify returned 7 [peap] Done initial handshake [peap] (other): before/accept initialization [peap] TLS_accept: before/accept initialization [peap] <<< TLS 1.0 Handshake [length 005f], ClientHello [peap] TLS_accept: SSLv3 read client hello A [peap] >>> TLS 1.0 Handshake [length 002a], ServerHello [peap] TLS_accept: SSLv3 write server hello A [peap] >>> TLS 1.0 Handshake [length 0278], Certificate [peap] TLS_accept: SSLv3 write certificate A [peap] >>> TLS 1.0 Handshake [length 018d], ServerKeyExchange [peap] TLS_accept: SSLv3 write key exchange A [peap] >>> TLS 1.0 Handshake [length 0004], ServerHelloDone [peap] TLS_accept: SSLv3 write server done A [peap] TLS_accept: SSLv3 flush data [peap] TLS_accept: Need to read more data: SSLv3 read client certificate A In SSL Handshake Phase In SSL Accept mode [peap] eaptls_process returned 13 [peap] EAPTLS_HANDLED ++[eap] returns handled But in this 300 millisec, 200 ms is taken up by the above SSL operation. why does this take more time? how can i reduce this time consumed by SSL? Thanks & Regards, Kachin The INTERNET now has a personality. YOURS! See your Yahoo! Homepage. http://in.yahoo.com/
Hi, Get yourself hardware SSL accelerator card supported by openssl libraries or increase cpu speed. On Wed, 2009-12-16 at 15:38 +0530, kachin Agarwal wrote:
Hi, After a lot of investigation, i have found the reason for my low auth-rate. The auth-rate i m gettin now is 3/sec. so approx. 330 ms per authentication.
this is a radiusd -X :
eap] processing type peap [peap] processing EAP-TLS [peap] eaptls_verify returned 7 [peap] Done initial handshake [peap] (other): before/accept initialization [peap] TLS_accept: before/accept initialization [peap] <<< TLS 1.0 Handshake [length 005f], ClientHello [peap] TLS_accept: SSLv3 read client hello A [peap] >>> TLS 1.0 Handshake [length 002a], ServerHello [peap] TLS_accept: SSLv3 write server hello A [peap] >>> TLS 1.0 Handshake [length 0278], Certificate [peap] TLS_accept: SSLv3 write certificate A [peap] >>> TLS 1.0 Handshake [length 018d], ServerKeyExchange [peap] TLS_accept: SSLv3 write key exchange A [peap] >>> TLS 1.0 Handshake [length 0004], ServerHelloDone [peap] TLS_accept: SSLv3 write server done A [peap] TLS_accept: SSLv3 flush data [peap] TLS_accept: Need to read more data: SSLv3 read client certificate A In SSL Handshake Phase In SSL Accept mode [peap] eaptls_process returned 13 [peap] EAPTLS_HANDLED ++[eap] returns handled
But in this 300 millisec, 200 ms is taken up by the above SSL operation. why does this take more time? how can i reduce this time consumed by SSL?
Thanks & Regards, Kachin
______________________________________________________________________ The INTERNET now has a personality. YOURS! See your Yahoo! Homepage. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
participants (2)
-
kachin Agarwal -
Paul Ryszka