[prev in list] [next in list] [prev in thread] [next in thread] 

List:       gnu-radius-help
Subject:    [Help-gnu-radius] radius ports
From:       Gerald <gcoon () inch ! com>
Date:       2002-09-30 20:37:51
[Download RAW message or body]

Here's a heads up to make sure no one else gets caught by this.

If your /etc/services has ports 1812 and 1813 uncommented (as freeBSD now
does) you will have gnu-radius listening on those ports. Most ISP's RAS
equipment have been setup in the past to authenticate off of 1645 and 1646
and the default for clients.conf on gnu-radius is still 1645/1646.

lsof will show radius listening on radius and radacct ports, but unless
you catch that it's translating /etc/services you may believe yourself to
be on a port you are not.

2 easy fixes for this.

1. Uncomment the 1645/1646 ports in /etc/services and comment out the
1812/1813 ports.
2. Modify your equipment and radius to use the "IANA approved" radius
ports 1812/1813.

G





[prev in list] [next in list] [prev in thread] [next in thread]