radiusd -X

Paul Ryszka paul at webangel.ie
Wed Dec 16 11:41:59 CET 2009


Hi,

Get yourself hardware SSL accelerator card supported by openssl
libraries or increase cpu speed.


On Wed, 2009-12-16 at 15:38 +0530, kachin Agarwal wrote:
> Hi,
>      After a lot of investigation, i have found the reason for my low
> auth-rate.
> The auth-rate i m gettin now is 3/sec. so approx. 330 ms per
> authentication.
> 
> this is a radiusd -X :
> 
> eap] processing type peap
> [peap] processing EAP-TLS
> [peap] eaptls_verify returned 7 
> [peap] Done initial handshake
> [peap]     (other): before/accept initialization 
> [peap]     TLS_accept: before/accept initialization 
> [peap] <<< TLS 1.0 Handshake [length 005f], ClientHello  
> [peap]     TLS_accept: SSLv3 read client hello A 
> [peap] >>> TLS 1.0 Handshake [length 002a], ServerHello  
> [peap]     TLS_accept: SSLv3 write server hello A 
> [peap] >>> TLS 1.0 Handshake [length 0278], Certificate  
> [peap]     TLS_accept: SSLv3 write certificate A 
> [peap] >>> TLS 1.0 Handshake [length 018d], ServerKeyExchange  
> [peap]     TLS_accept: SSLv3 write key exchange A 
> [peap] >>> TLS 1.0 Handshake [length 0004], ServerHelloDone  
> [peap]     TLS_accept: SSLv3 write server done A 
> [peap]     TLS_accept: SSLv3 flush data 
> [peap]     TLS_accept: Need to read more data: SSLv3 read client
> certificate A
> In SSL Handshake Phase 
> In SSL Accept mode  
> [peap] eaptls_process returned 13 
> [peap] EAPTLS_HANDLED
> ++[eap] returns handled
> 
> 
> But in this 300 millisec, 200 ms is taken up by the above SSL
> operation. why does this take more time? how can i reduce this time
> consumed by SSL?
> 
> Thanks & Regards,
> Kachin
> 
> 
> 
> ______________________________________________________________________
> The INTERNET now has a personality. YOURS! See your Yahoo! Homepage.
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html





More information about the Freeradius-Users mailing list