Re: RadiusNT .60, Access & No Logins

Dale E. Reed Jr. ( (no email) )
Tue, 8 Jul 1997 10:16:19 -0700 ()

On Wed, 9 Jul 1997, Glen Harvy wrote:

> This could be the cause of my current problems. I have the "primary"
> address as the RadiusNT IP address so shouldn't this overcome the problem?

Not necessarily. Let me give an example of a problem we recently
ran into. It is a simple fix, but not an obvious one.

RadiusNT #1 NAS #1 NAS #2
----------- -------------- -------------- Auth: Auth:

Both and are on the same phsyical
wire, with a Cisco router ethernet interface having as its primary and as its secondary.

Now, the problem here is when we setup the second NAS
we just be default set its auth server to, which
is the primary address of the RadiusNT server. What
was happening is that the request would come into RadiusNT
at, and go out (makes sense) and since the
response came from a DIFFERENT IP address than the request
was sent to, the response is ignored.

Fixing the problem is easy. Just send the request to the
first listed address in the network for the RadiusNT
machine and everything started working again.

So in our case, it wasn't the primary address of the RadiusNT
machine we needed, but the primary address in the same subnet
as the NAS.