IP Cleanup and re-use
Nitin Pande
npande at xnet.com
Wed Feb 1 21:52:30 CET 2006
Simon Byrnand wrote:
> At 06:12 2/02/2006, you wrote:
>
>> Hi All,
>> We've got a Cistron 1.6.1 server. Right now, we are trying give
>> access to another set of users in different realm (proxying to
>> another RADIUS server). We have tested the realm part and it seems
>> to work. However, we have a couple of issues:
>> Is there a way to easily assign a different pool of IP address to the
>> new users?
>> Also, does Cistron cleans up the IP and re-uses them? If so, how
>> will TNT know when the IP was reused and user logged out?
>> Our biggest challenge to stay with the 1.6.1 version, well we really
>> don't want to do any upgrades, and allow access to new users with
>> minimal downtime and effort.
>>
>> Any suggestions and conf settings will be greatly appreciated.
>
>
> Unfortunately I don't have any suggestions on the proxy issue as I
> havn't used it as a proxy, but, 1.6.1 is VERY old now and has a lot of
> bugs that have been fixed in recent versions, including a few denial
> of service bugs that can cause the radius server to crash if sent
> malformed packets.
>
> Why can't you upgrade to 1.6.7 ? One of the advantages of the newest
> versions is 'radrelay' which we use to do full bidirectional
> replication between primary and backup radius servers.
>
> Staying with such an old version that has many known bugs, some very
> serious is a bit crazy IMHO :-)
>
> Regards,
> Simon
>
> - List info/subscribe/unsubscribe? See http://www.radius.cistron.nl/list/
>
Thanks Simon for replying back.
Well, we have had this radius box for quite some time now, running
perfectly and does it's little job. I think it has an uptime of almost
three years now. Upgrading would just mean more downtime, figuring out
new kinks. The whole thing came up cause we have to now give access to
another set of users at a remote site. But if we have to upgrade then I
guess we will do it. We were just trying to figure out a quick and easy
fix, and I'm sure that there are solutions out there.
Nitin
More information about the Cistron-radius
mailing list