New FreeRADIUS Deployment

Julson, Jim jjulson at MARKETRON.COM
Thu Aug 16 23:29:35 CEST 2012


#######
Q:  RADIUS Server:  any CPU, 4 GB RAM, any disk space / any Linux
A:  A reasonable amount of Disk space, something like 30GB should be more than sufficient, particularly if your SAN is housing your databases.  As for distro, I'm a fan of CentOS 6.2/6.3 or Ubuntu 12.04.  I actually have both in production behind load balancers.
#######

#######
Q:  Database Server:  any CPU, RAM (???), disk space (???), MySQL / any Linux
A:  This is just me, but I'd suggest running both MySQL and FreeRADIUS on the same servers if you can keep the actually data off of the server, and on a SAN.  This is because in terms of processor, RAM, and Network IO, MySQL won't peg the system very hard at all.  Of course, if budget is of no consequence, then of course separating out services is always fine.  But I like to keep all my DB queries local where I can, especially for network intensive operations.  This will have to be looked at and integrated into your environment based upon your current variables.  There are just too many ways to go, and there is no 1 particulary "right way". (Though some may disagree)

To touch on this further though, RAM is cheap, and if you house them on the same servers, I'd probably make sure you had 6GB to dedicate to MySQL, and about 2-4GB to the OS.  Getting 12GB of RAM on a system nowadays is nothing, so if you can, I'd do that.
#######

#######
Q:  Additional:  SAN to enable database cluster (any tip?)
A:  If you have a SAN Available, it's pretty straight forward.  You will create a volume,  carve out a LUN, assign it to the Linux Servers, and then mount the partition to begin using it.  Both of your FreeRADIUS MySQL Servers servers will point to the same data, thereby giving you good speed, a single point of management, as well as great redundancy with the SAN.
#######



From: freeradius-users-bounces+jjulson=marketron.com at lists.freeradius.org [mailto:freeradius-users-bounces+jjulson=marketron.com at lists.freeradius.org] On Behalf Of Mauricio Harley
Sent: Thursday, August 16, 2012 3:15 PM
To: FreeRadius users mailing list
Subject: RES: New FreeRADIUS Deployment

Ok, friends,

Thank you very much for start discussing.  Let's get that more objective.

RADIUS Server:  any CPU, 4 GB RAM, any disk space / any Linux
Database Server:  any CPU, RAM (???), disk space (???), MySQL / any Linux
Additional:  SAN to enable database cluster (any tip?)

Am I right?  What would be answers to the question marks?

Kind regards,

Maurício Harley
Suporte Técnico
Cisco IP Phone:  +55 (85) 3133-7910
Auriga Tecnologia & Negócios

Cisco SILVER Certified Partner
IBM Business Partner

De: freeradius-users-bounces+mauricio.brito=auriga.com.br at lists.freeradius.org<mailto:freeradius-users-bounces+mauricio.brito=auriga.com.br at lists.freeradius.org> [mailto:freeradius-users-bounces+mauricio.brito=auriga.com.br at lists.freeradius.org]<mailto:[mailto:freeradius-users-bounces+mauricio.brito=auriga.com.br at lists.freeradius.org]> Em nome de Julson, Jim
Enviada em: quinta-feira, 16 de agosto de 2012 17:53
Para: FreeRadius users mailing list
Assunto: RE: New FreeRADIUS Deployment

My message was truncated somehow...

For point 1, I was going to just say, the more spindles for the hard drives the better, and a normal amount of RAM, like 4GB or so.  You will have a decent amount of IOPS, especially if you go with MySQL.  However, point 2 might take care of that.

From: freeradius-users-bounces+jjulson=marketron.com at lists.freeradius.org<mailto:freeradius-users-bounces+jjulson=marketron.com at lists.freeradius.org> [mailto:freeradius-users-bounces+jjulson=marketron.com at lists.freeradius.org]<mailto:[mailto:freeradius-users-bounces+jjulson=marketron.com at lists.freeradius.org]> On Behalf Of Julson, Jim
Sent: Thursday, August 16, 2012 2:24 PM
To: FreeRadius users mailing list
Subject: RE: New FreeRADIUS Deployment



1.       What would be recommended server hardware (memory, disk, CPU, ...) and software (Linux distribution, kernel version, ...)?

Anything standard and new will do the trick here.  You don't need "Pie in the sky", just make sure you have


2.       How could I synchronize both servers' users?  I mean, in the beginning, I'd have two separate /etc/shadow files but this is not scalable.  I need to share a single file between both servers.  Is it possible?  How?

Do you have a SAN that you could utilize?  For performance, I'd suggest a MySQL Cluster running on something with quite a few spindles.  The SAN provides great performance in that arena.  Otherwise, you are looking at having to do a Master/Slave scenario for MySQL DB Replication


3.       Any recommendations to the backup policy?

Just your standard nightly full backups to disk, then to either tape, SAN or offsite storage of some kind.

Best regards,

Maurício Harley
Suporte Técnico
Cisco IP Phone:  +55 (85) 3133-7910
Auriga Tecnologia & Negócios

Cisco SILVER Certified Partner
IBM Business Partner


The information contained in this e-mail message may be confidential and

protected from disclosure.  If you are not the intended recipient, any

dissemination, distribution or copying is strictly prohibited. If you

think that you have received this e-mail message in error, please notify

the sender immediately by replying to this message and then delete it

from your system.



The information contained in this e-mail message may be confidential and

protected from disclosure.  If you are not the intended recipient, any

dissemination, distribution or copying is strictly prohibited. If you

think that you have received this e-mail message in error, please notify

the sender immediately by replying to this message and then delete it

from your system.



The information contained in this e-mail message may be confidential and
protected from disclosure.  If you are not the intended recipient, any
dissemination, distribution or copying is strictly prohibited. If you
think that you have received this e-mail message in error, please notify
the sender immediately by replying to this message and then delete it
from your system.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20120816/357335df/attachment-0001.html>


More information about the Freeradius-Users mailing list