firewall
A.L.M.Buxey at lboro.ac.uk
A.L.M.Buxey at lboro.ac.uk
Tue Jun 2 21:59:37 CEST 2009
Hi,
> Is that because freeradius is kind of like apache, as in that only certain
> ips' are allowed to hit the freeradius server? So it is pretty secure as
> soon as you install it right?
unless you have a firewall in place then anything could talk
UDP to ports 1812, 1813 and 1814 - but then if their IP isnt known
as a client...and their secrets dont match, the server rejects them
that said, best practice says only open ports to systems you want
talking to you - otherwise some fool could write a nice little
program that constantly hammers your RADIUS UDP ports and DoS's you
alan
More information about the Freeradius-Users
mailing list