diff options
Diffstat (limited to 'conf')
-rw-r--r-- | conf/plugins/eap-radius.conf | 9 | ||||
-rw-r--r-- | conf/plugins/eap-radius.opt | 13 | ||||
-rw-r--r-- | conf/strongswan.conf.5.main | 20 |
3 files changed, 40 insertions, 2 deletions
diff --git a/conf/plugins/eap-radius.conf b/conf/plugins/eap-radius.conf index e81041b25..8858f3fc5 100644 --- a/conf/plugins/eap-radius.conf +++ b/conf/plugins/eap-radius.conf @@ -43,6 +43,15 @@ eap-radius { # Port of RADIUS server (authentication). # port = 1812 + # Base to use for calculating exponential back off. + # retransmit_base = 1.4 + + # Timeout in seconds before sending first retransmit. + # retransmit_timeout = 2.0 + + # Number of times to retransmit a packet before giving up. + # retransmit_tries = 4 + # Shared secret between RADIUS and NAS. If set, make sure to adjust the # permissions of the config file accordingly. # secret = diff --git a/conf/plugins/eap-radius.opt b/conf/plugins/eap-radius.opt index 929931a28..c3668ec06 100644 --- a/conf/plugins/eap-radius.opt +++ b/conf/plugins/eap-radius.opt @@ -80,6 +80,15 @@ charon.plugins.eap-radius.secret = charon.plugins.eap-radius.server = IP/Hostname of RADIUS server. +charon.plugins.eap-radius.retransmit_base = 1.4 + Base to use for calculating exponential back off. + +charon.plugins.eap-radius.retransmit_timeout = 2.0 + Timeout in seconds before sending first retransmit. + +charon.plugins.eap-radius.retransmit_tries = 4 + Number of times to retransmit a packet before giving up. + charon.plugins.eap-radius.servers {} Section to specify multiple RADIUS servers. @@ -88,7 +97,9 @@ charon.plugins.eap-radius.servers {} specified for each server. A server's IP/Hostname can be configured using the **address** option. The **acct_port** [1813] option can be used to specify the port used for RADIUS accounting. For each RADIUS server a - priority can be specified using the **preference** [0] option. + priority can be specified using the **preference** [0] option. The + retransmission time for each server can set set using **retransmit_base**, + **retransmit_timeout** and **retransmit_tries**. charon.plugins.eap-radius.sockets = 1 Number of sockets (ports) to use, increase for high load. diff --git a/conf/strongswan.conf.5.main b/conf/strongswan.conf.5.main index 7fc421c60..633588325 100644 --- a/conf/strongswan.conf.5.main +++ b/conf/strongswan.conf.5.main @@ -645,6 +645,18 @@ NAS\-Identifier to include in RADIUS messages. Port of RADIUS server (authentication). .TP +.BR charon.plugins.eap-radius.retransmit_base " [1.4]" +Base to use for calculating exponential back off. + +.TP +.BR charon.plugins.eap-radius.retransmit_timeout " [2.0]" +Timeout in seconds before sending first retransmit. + +.TP +.BR charon.plugins.eap-radius.retransmit_tries " [4]" +Number of times to retransmit a packet before giving up. + +.TP .BR charon.plugins.eap-radius.secret " []" Shared secret between RADIUS and NAS. If set, make sure to adjust the permissions of the config file accordingly. @@ -673,7 +685,13 @@ The [1813] option can be used to specify the port used for RADIUS accounting. For each RADIUS server a priority can be specified using the .RB "" "preference" "" -[0] option. +[0] option. The retransmission time for each server can set set +using +.RB "" "retransmit_base" "," +.RB "" "retransmit_timeout" "" +and +.RB "" "retransmit_tries" "." + .TP .BR charon.plugins.eap-radius.sockets " [1]" |