siteadmin:freeradius_radsec_configuration
This is an old revision of the document!
clients.conf:
clients radsec {
client roaming0.govroam.uk {
ipaddr = 212.219.190.139
proto = tls
secret = radsec
}
client roaming1.govroam.uk {
ipaddr = 212.219.209.43
proto = tls
secret = radsec
}
client roaming2.govroam.uk {
ipaddr = 212.219.247.59
proto = tls
secret = radsec
}
client roaming3.govroam.uk {
ipaddr = 195.194.21.203
proto = tls
secret = radsec
}
}
listen {
ipaddr = *
port = 2083
type = auth
proto = tcp
clients = radsec
tls {
certdir = ${confdir}/certs
cadir = ${confdir}/certs
private_key_password = whatever
private_key_file = ${certdir}/radsec2/localorps1.localnet-key.pem
certificate_file = ${certdir}/radsec2/localorps1.localnet-server-cert.pem
ca_file = ${cadir}/radsecCA-2019.pem
dh_file = ${certdir}/dh
# random_file = ${certdir}/random
fragment_size = 1071
include_length = yes
cipher_list = "DEFAULT"
cache {
enable = yes
lifetime = 24 # hours
max_entries = 255
}
require_client_cert = yes
verify {
# tmpdir = /tmp/
}
}
}
siteadmin/freeradius_radsec_configuration.1551888241.txt.gz · Last modified: by admin