Radius with 2 network interface

Radius with 2 network interface

Post by groov » Thu, 24 Jun 2004 17:32:01


Hello,

We run Radius Service in a machine with 2 ethernet interfaces, and
we'd want to assign one of these to the Radius service.


In our current configuration, our machine with Windows 2003 Server
have 2 interfaces, everyone attached to a different Cisco Router, one
used for incomming data where clients authenticate with our radius
service, and the other to outcomming data (web surfing). When we surf
with I. Explorer, Windows automatically sets the default gateway of
the machine to the 'outcomming interface' and then, Radius Services
doesn't works because it tries to connect to nas (during negotiation
process) using the outcomming interface (the default gateway) which is
the incorrect interface.

How can i force the radius service to use a particular interface,
ignoring system default gateway ?

thanks and best regards,
Raul Truco
 
 
 

Radius with 2 network interface

Post by Tony » Sat, 26 Jun 2004 10:29:57

We do this all the time. You need to adjust the "ports" your IAS server
listens on. Go to IAS properties dialog. Select the ports tab. Put your
curser inside one of the fields and press F1, you see syntax for listening
on a particular IP. By default IAS listens on the ports listed on ALL
interfaces/IPs.

Don't quote me on this, but I think it is something like
"10.1.2.3:1812,10.1.2.3:1645" (I don't remember if you use a comma or a
semi-colon as the separator).

You may also have to tinker with your routing table. If you are *NOT*
running RRAS on the same box your route cmd-line tool to add routes using
the -p option so they will be "permanent".

--
Tony

 
 
 

Radius with 2 network interface

Post by groov » Sat, 26 Jun 2004 18:35:36

Great Tony!, this have solved our problem. We added permanent routes,
as you say too, but we prefer configuring IAS.

thanks!,
Raul Truco