Zombie Infestation of Log file
Alan DeKok
aland at deployingradius.com
Thu Apr 22 15:57:56 CEST 2010
Josip Rodin wrote:
> One thing that we talked I believe in private mail is good to point out on
> the mailing list as well - the current request cleaning up logic isn't
> really being kind to proxy settings and how the admins might interpret them
> - meaning there is nothing in the proxying code that will avoid having
> individual requests silently dropped on the floor if the timeouts expire.
The intent is to always call "post-proxy fail", but there are cases
where that doesn't happen.
> Indeed the only way to get the FR 2.x proxy code to retry and move on to a
> second home server in a pool is for its original *client* to retry too,
> within max_request_time, which can then trigger a fail-over in the proxying
> logic.
Yes. The server does *not* originate packets itself. It proxies
packets only when the NAS sends it packets.
This should be explained more clearly in proxy.conf.
Alan DeKok.
More information about the Freeradius-Users
mailing list