load balanced freeradius

Andrew Meyer andrewm659 at yahoo.com
Mon Jul 3 20:31:25 CEST 2017

I'm looking to setup FreeRADIUS to work with FreeIPA (AD replacement) and have my network gear authenticate to it.  I am doing all the testing in my home lab and writing my own instructions.  So I can really create a VIP, but I can use HAProxy.
And I did have this setup about 3 weeks ago.  But I tore it all down to do it the right way and document the procedure for all steps required. 

    On Monday, July 3, 2017 1:20 PM, Brendan Kearney <bpk678 at gmail.com> wrote:

 On 07/03/2017 01:51 PM, Andrew Meyer via Freeradius-Users wrote:
> Is there a way to setup FreeRADIUS with HAProxy?
> I know that FreeRADIUS can do TCP.  But is it worth it to set it up like this or just setup the mysql backend?
> Also can I do mysql backend with LDAP?
> Thank you!
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

why not continue using UDP, for the speed/performance, and setup anycast 
to share load between your FR instances? i do, and have no issues at all.

not sure what you mean about mysql and ldap?  i point to mysql (actually 
mariadb) for audit, etc, and that is a load balanced VIP of 3 instances 
behind HAProxy.  I also point to Kerberos/LDAP for AuthN/AuthZ 
respectively.  what are you looking to do?

List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


More information about the Freeradius-Users mailing list