Checkrad behind the firewall
Robert Dalton
support@accesswest.com
Mon, 17 Sep 2001 19:16:14 -0600
Hi !
At bare minimum, udp port 161 needs to be allowed to
communicate between the radius server and the RAS for
this to work, & possibly tcp 161 as well. Also if
your running a NAT firewall it will be a lot more
difficult/impossible to configure for getting snmp
packets through. What type of firewall is installed ?
Thanks,
Robert Dalton
AccessWest.com
Angel Behar wrote:
>
> Hi.
>
> I needed to move the Radius server behind the firewall for security reasons,
> all the accounting and authorization works just perfect, but since the
> installation of the firewall checkrad stops work and now multiple users can
> login in to the server.
>
> SNMP is working fine, I'm running mrtg and snmpwalk, snmpget, etc.
>
> any ideas if I need to open rules in the firewall for checkrad ? ports ?
>
> Thanks for your help in advance.
>
> -
> List info/subscribe/unsubscribe? See http://www.radius.cistron.nl/list/