A.L.M.Buxey at A.L.M.Buxey at
Tue Jun 2 21:59:37 CEST 2009

> Is that because freeradius is kind of like apache, as in that only certain
> ips' are allowed to hit the freeradius server? So it is pretty secure as
> soon as you install it right?

unless you have a firewall in place then anything could talk
UDP to ports 1812, 1813 and 1814 - but then if their IP isnt known
as a client...and their secrets dont match, the server rejects them

that said, best practice says only open ports to systems you want
talking to you - otherwise some fool could write a nice little
program that constantly hammers your RADIUS UDP ports and DoS's you


More information about the Freeradius-Users mailing list