Toolpack: Enabling and Configuring RADIUS

From TBwiki
Revision as of 12:43, 30 October 2012 by Allyntree (Talk | contribs)
Jump to: navigation, search

Applies to version(s): v2.6

This page describes how to enable and configure a TMG system to capture CDRs, using a RADIUS server.

Enabling RADIUS

1- Select Gateway -> Configurations from the navigation panel.

RADIUS v2 5 gw menu configurations.png


2- Verify that the box Use CDR behavior is checked.

RADIUS v2 5 gw cdr check.png


3- Configure the CDR behavior in the CDR Options section:

  • Enable periodic CDR update will add one entry in the CDR per Periodic CDR update time, in minutes.
  • Select the CDR Mode:
    • Text CDR only: Will store the CDRs in a flat file. See Text CDR
    • Radius CDR only: Will send the CDR to an external Radius Server. See Radius CDR
    • Text and Radius CDR: Will store the CDRs in a flat file and send the CDR to an external Radius Server.
    • Radius CDR with Text CDR Fallback: Will send the CDR to an external Radius Server and if the Radius server cannot handle the load of CDRs, they will be stored in a flat file.
  • Click Save to save your changes.

CDR Mode 2 6.jpg

4- Verify that the Gateway configuration was successfully updated. message appears.

RADIUS v2 5 gw cfg success.png



Configuring RADIUS

  • Radius requests will be sent from the TMG management port (mgmt0) or from the Virtual IP Interfaces if they are configured.


1- Select RADIUS from the navigation panel.

Radius Config left panel.jpg


2- In the Editing RADIUS client configuration page, you can modify some general parameters:

  • Timezone will use the local timezone or the GMT timezone in the CDR records
  • Time format describes how to display the time in human readable format in the CDR records. This is based on the strftime function
  • In Advanced Parameters you have:
    • Maximum accounting concurrent records is the maximum number of simultaneous accounting records to be sent to the Radius servers. This improves the Radius performance of the system: it allows the RADIUS client to deal with servers that have high latency relative to the number of request/responses per second to be achieved. Default value is 10 records.
    • Maximum accounting queued records is the maximum number of accounting records to queue when the maximum number of pending records has been reached. When the maximum number of queued messages is reached, CDR records will be dropped. To prevent this, make sure the system supports CDR redundancy. Default value is 12000 records.
    • Click Save to save your changes.

Radius client configuration empty.jpg



Configuring Redundant RADIUS Servers

Multiple redundant RADIUS servers can be configured.

2- Select Create New Radius Server to add additional Radius servers.

  • Configure the Radius server with these parameters:
    • Name to recognize the server
    • Radius server address and port is the IP address and port of the RADIUS server we want to access. The format is x.x.x.x for the IP and you can add the port with a colon if it is different than the default port 1813 (for example 10.10.10.10:12345)
    • Radius timeout is the request timeout in milliseconds for each request to this server.
    • Radius retries is the number of retries the Radius client will try before falling back to other methods. See full details on functionality here: CDR redundancy
    • Server secret is the passphrase to authenticate the TMG on the Radius server.

Radius client configuration.jpg


3- You can configure multiple Radius servers to have Radius redundancy. Each entry can have different timeouts and retries.

Radius Configuration 2 6.jpg

Retrieved from "https://docs.telcobridges.com/mediawiki/index.php?title=Toolpack:Enabling_RADIUS_A&oldid=12303"
Personal tools