Best practice FreeRadius cluster?

D

Denis Sechin2019-09-10 15:37:35

linux

Denis Sechin, 2019-09-10 15:37:35

Hello. Given:
Backend: Pair of servers with Ldap user base;
Frontend: One server with freeradius;
Everything works on Debian8
Raise an identical freeradius server on a third-party site for fault tolerance and assemble a cluster from two.
The question is, what is the best way to do this? personally, I'm thinking:
haproxy (but here the question is will it proxy tls transparently or will it need SA from Radius?)
or vrrp between two nodes (but what if I have freeradius working via udp, won't this cause a problem with load-balancing?)
Mb anyone have better ideas and good experience please share it. Thanks in advance .

Reply

Answer the question

In order to leave comments, you need to log in

2 answer(s)

I

iddqda, 2019-09-10
@tamogavk

haproxy, vrrp, ... what is all this for?
radius it is from the same era where dns and smtp come from
when fault tolerance is achieved simply by specifying several servers on the client, just
make the second radius and set up rsync for the users file, sql-base replication, or whatever you have in the backend

T

Talyan, 2019-09-10
@flapflapjack

I only used proxmox, well, everything is stupidly done with a mouse in two clicks. With clusters the same beard.