Re: [Emerald] Revelation

Dale E. Reed Jr. ( (no email) )
Mon, 21 Dec 1998 10:00:37 -0800

Kurt Schafer wrote:
> Your MAX isn't broken. Every Radius server I've ever seen performs that way.
> I would even go so far as to hazard a guess that the Radius spec outlines it
> that way.

(BTW: The MAX isn't a RADIUS server, its a RADIUS client).

The RFC says:

The Access-Request is submitted to the RADIUS server via the network.
If no response is returned within a length of time, the request is
re-sent a number of times. The client can also forward requests to
an alternate server or servers in the event that the primary server
is down or unreachable. An alternate server can be used either after
a number of tries to the primary server fail, or in a round-robin
fashion. Retry and fallback algorithms are the topic of current
research and are not specified in detail in this document.

> Imagine if your 'primary' server was down. Each authentication/accounting
> request would have to 'double-dip' to get responded to in the event of a
> prolonged outage.

Yes and unless you are not monitoring your system, you should be able
to manually switch over to a backup fairly quickly.

-- Dale E. Reed Jr.  (       IEA Software, Inc.      |  RadiusNT, Emerald, and NT FAQs Internet Solutions for Today  |

For more information about this list, including removal,please see