Proxy listens to TCP home server on UDP port

Alan DeKok aland at deployingradius.com
Sat Aug 2 11:56:03 CEST 2014


Nikolai Kondrashov wrote:
> Red Hat QA has noticed that a FreeRADIUS v3.0.1 server set up to use TCP
> with a
> home server still listens for replies on UDP.

  No.  It still opens a *port* on UDP.  It only listens for replies on
the same port that it sends packets from.

  In this case, since you only have TCP home servers, packets will be
sent ONLY with TCP.  The UDP proxy port will not be used for anything.

> Could this have been done to simplify handling of mixed-protocol server
> pools?

  No.  It happens because the server doesn't notice that it has no UDP
traffic.  So it still opens a proxy UDP port.

  The only downside to the proxy UDP port is that you have another port
open.  The server will never use the port for anything.

  Alan DeKok.


More information about the Freeradius-Users mailing list