Question on dynamic home_server
Alan DeKok
aland at deployingradius.com
Wed Jun 15 00:41:01 UTC 2022
On Jun 14, 2022, at 7:37 PM, Yushu Shi (yusshi) <yusshi at cisco.com> wrote:
> Sadly this is what our customer demands.
It won't work. It won't do what they want. It's a terrible design.
> Their deployment has multiple regions. Each region has multiple RADIUS servers. For an individual NAS device, its primary and secondary region are resolved by DNS query based on the geographic location of the NAS. As NAS provider, we are required to do round-robin inside the primary region's server pool. When all servers in the primary region fail, we should fall back to the secondary region.
>
> Looks like we have to use a separate process to resolve the IP address of all servers then change the config files. But I tried changing ipaddr of the home_server in proxy.conf, sending HUP signal to freeradius, but freeradius still proxy to the previous IP address. Looks like changing ipaddr of the home server does not work. Is this true?
Yes. You can't change the IP of a home server while FreeRADIUS is running.
> Is there any way to fail-over between two home server pools?
No.
Alan DeKok.
More information about the Freeradius-Users
mailing list