Freeradius 3.0.16 behind NAT

Bassem Mettichi mettichi at gmail.com
Wed May 2 17:03:36 CEST 2018


Hello,

i am running freeradius 3.0.16 on Redhat 7.1 behind NAT, i have two servers
keepalived + ipvsadm ande two servers freerdius, on keepalived iam using NAT

when i test an accounting from a NAS i send request to the VIP but i get
response directly from the radius server so recieved packet comes with
source IP of freerdaius server and not the VIP, the nas rejected the packet:

radclient: Received reply to request we did not send. (id=185 socket 3)


the problem is i have the same architecture with freerdaius 3.0.4 and
radclient same version and the NAS accepted the packet inspite source IP is
for freeradius server and is not the VIP
is there any difference between the two version on checking source IP
packet?

i would like the nas to ignore checking the source IP address of the packet
is thsre any solution?


Thanks in advance
Mettichi Bassem


More information about the Freeradius-Users mailing list