Zombie Infestation of Log file

Alan DeKok aland at deployingradius.com
Thu Apr 22 15:57:56 CEST 2010

Josip Rodin wrote:
> One thing that we talked I believe in private mail is good to point out on
> the mailing list as well - the current request cleaning up logic isn't
> really being kind to proxy settings and how the admins might interpret them
> - meaning there is nothing in the proxying code that will avoid having
> individual requests silently dropped on the floor if the timeouts expire.

  The intent is to always call "post-proxy fail", but there are cases
where that doesn't happen.

> Indeed the only way to get the FR 2.x proxy code to retry and move on to a
> second home server in a pool is for its original *client* to retry too,
> within max_request_time, which can then trigger a fail-over in the proxying
> logic.

  Yes.  The server does *not* originate packets itself.  It proxies
packets only when the NAS sends it packets.

  This should be explained more clearly in proxy.conf.

  Alan DeKok.

More information about the Freeradius-Users mailing list