First steps towards RadSec support
Arran Cudbard-Bell
A.Cudbard-Bell at sussex.ac.uk
Fri Sep 18 14:00:07 CEST 2009
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 17/09/2009 20:11, Alan DeKok wrote:
> Alexander Clouter wrote:
>> Just thinking out loud, but RADIUS over SCTP I would have thought would
>> be been more appropriate than TCP (as RFC3436 describes SCTP with TLS)
>> with the multiplexing of sessions being built in?
>
> Yes. But that's even more work....
>
>> Would mean your ID field limitation could be removed...
>
> We could do that with RADIUS over TCP. But that's another story...
Wasn't one of the points in the RFC that TCP is mature and implemented properly in most modern operating systems...
- --
Arran Cudbard-Bell <A.Cudbard-Bell at sussex.ac.uk>,
Systems Administrator (AAA),
Infrastructure Services (IT Services),
E1-1-08, Engineering 1, University Of Sussex, Brighton, BN1 9QT
DDI+FAX: +44 1273 873900 | INT: 3900
GPG: 86FF A285 1AA1 EE40 D228 7C2E 71A9 25BB 1E68 54A2
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iEYEARECAAYFAkqzdkcACgkQcaklux5oVKIqQwCfUw9ghYeL+exfrdeWIHDePvXH
RYEAn37h17mwPvV//FKTvQsE5KklfU4R
=8nkg
-----END PGP SIGNATURE-----
More information about the Freeradius-Users
mailing list