summaryrefslogtreecommitdiff
path: root/conf
diff options
context:
space:
mode:
Diffstat (limited to 'conf')
-rw-r--r--conf/plugins/eap-radius.conf9
-rw-r--r--conf/plugins/eap-radius.opt13
-rw-r--r--conf/strongswan.conf.5.main20
3 files changed, 40 insertions, 2 deletions
diff --git a/conf/plugins/eap-radius.conf b/conf/plugins/eap-radius.conf
index e81041b25..8858f3fc5 100644
--- a/conf/plugins/eap-radius.conf
+++ b/conf/plugins/eap-radius.conf
@@ -43,6 +43,15 @@ eap-radius {
# Port of RADIUS server (authentication).
# port = 1812
+ # Base to use for calculating exponential back off.
+ # retransmit_base = 1.4
+
+ # Timeout in seconds before sending first retransmit.
+ # retransmit_timeout = 2.0
+
+ # Number of times to retransmit a packet before giving up.
+ # retransmit_tries = 4
+
# Shared secret between RADIUS and NAS. If set, make sure to adjust the
# permissions of the config file accordingly.
# secret =
diff --git a/conf/plugins/eap-radius.opt b/conf/plugins/eap-radius.opt
index 929931a28..c3668ec06 100644
--- a/conf/plugins/eap-radius.opt
+++ b/conf/plugins/eap-radius.opt
@@ -80,6 +80,15 @@ charon.plugins.eap-radius.secret =
charon.plugins.eap-radius.server =
IP/Hostname of RADIUS server.
+charon.plugins.eap-radius.retransmit_base = 1.4
+ Base to use for calculating exponential back off.
+
+charon.plugins.eap-radius.retransmit_timeout = 2.0
+ Timeout in seconds before sending first retransmit.
+
+charon.plugins.eap-radius.retransmit_tries = 4
+ Number of times to retransmit a packet before giving up.
+
charon.plugins.eap-radius.servers {}
Section to specify multiple RADIUS servers.
@@ -88,7 +97,9 @@ charon.plugins.eap-radius.servers {}
specified for each server. A server's IP/Hostname can be configured using
the **address** option. The **acct_port** [1813] option can be used to
specify the port used for RADIUS accounting. For each RADIUS server a
- priority can be specified using the **preference** [0] option.
+ priority can be specified using the **preference** [0] option. The
+ retransmission time for each server can set set using **retransmit_base**,
+ **retransmit_timeout** and **retransmit_tries**.
charon.plugins.eap-radius.sockets = 1
Number of sockets (ports) to use, increase for high load.
diff --git a/conf/strongswan.conf.5.main b/conf/strongswan.conf.5.main
index 7fc421c60..633588325 100644
--- a/conf/strongswan.conf.5.main
+++ b/conf/strongswan.conf.5.main
@@ -645,6 +645,18 @@ NAS\-Identifier to include in RADIUS messages.
Port of RADIUS server (authentication).
.TP
+.BR charon.plugins.eap-radius.retransmit_base " [1.4]"
+Base to use for calculating exponential back off.
+
+.TP
+.BR charon.plugins.eap-radius.retransmit_timeout " [2.0]"
+Timeout in seconds before sending first retransmit.
+
+.TP
+.BR charon.plugins.eap-radius.retransmit_tries " [4]"
+Number of times to retransmit a packet before giving up.
+
+.TP
.BR charon.plugins.eap-radius.secret " []"
Shared secret between RADIUS and NAS. If set, make sure to adjust the
permissions of the config file accordingly.
@@ -673,7 +685,13 @@ The
[1813] option can be used to specify the port used for RADIUS
accounting. For each RADIUS server a priority can be specified using the
.RB "" "preference" ""
-[0] option.
+[0] option. The retransmission time for each server can set set
+using
+.RB "" "retransmit_base" ","
+.RB "" "retransmit_timeout" ""
+and
+.RB "" "retransmit_tries" "."
+
.TP
.BR charon.plugins.eap-radius.sockets " [1]"