Configuring RADIUS Relay Server Support

[Contents] [Prev] [Next] [Index] [Report an Error] [No Frames]

JUNOSe 9.1.x Broadband Access Configuration Guide > Configuring RADIUS Relay Server > Configuring RADIUS Relay Server Support
Configuring RADIUS Relay Server Support

To configure the RADIUS relay server feature, you enable support for the feature on the E-series router and identify the key (secret) used for the connection between the WAP and the RADIUS relay server. The following example configures a RADIUS relay authentication server. Use similar steps to configure a RADIUS relay accounting server.

NOTE: The E-series router supports one instance of the RADIUS relay server per virtual router. The instance can provide authentication, authorization, and accounting support.
Enable RADIUS relay server support on the E-series router, and enter RADIUS Relay Configuration mode.
host1(config)#radius relay authentication server
host1(config-radius-relay)#
Specify the IP address and mask of the network that will use the relay authentication server, and the secret used during exchanges between the relay authentication server and clients (the WAPs).
host1(config-radius-relay)#key 192.168.25.9 255.255.255.255 mysecret 
Specify the router's User Datagram Protocol (UDP) port on which the RADIUS relay server listens.
host1(config-radius-relay)#udp-port 1812
(Optional) Verify the configuration.
host1(config-radius-relay)#exit
host1(config)#exit
host1#show radius relay servers
RADIUS Relay Authentication Server Configuration
------------------------------------------------
 IP Address         IP Mask        Secret
-------------   ---------------   ---------
10.10.15.0      255.255.255.0     secret
10.10.8.15      255.255.255.255   newsecret
192.168.25.9    255.255.255.255   mysecret
192.168.102.5   255.255.255.255   999Y2K
Udp Port: 1812
RADIUS Relay Accounting Server Configuration
--------------------------------------------
 IP Address         IP Mask       Secret
-------------   ---------------   -------
10.10.1.0       255.255.255.0     NO8pxq
192.168.102.5   255.255.255.255   12BE$56
Udp Port: 1813 
key
Use to enter the IP address and mask of the network that will use the RADIUS relay server, and to specify the key (secret) used during exchanges between the RADIUS relay server and client.

Example
host1(config-radius-relay)#key 10.10.15.25 255.255.255.0 Secret3Clientkey 
Use the no version to delete the secret.
radius relay server
Use to configure a RADIUS relay authentication or accounting server and enter RADIUS Relay Configuration mode.

Example
host1(config)#radius relay authentication server 
host1(config-radius-relay)#
Use the no version to unconfigure the RADIUS relay server.
radius relay udp-checksum
Use to enable or disable UDP checksum for RADIUS relay packets.

Example
host1(config)#radius relay udp-checksum enable 
Use the no version to restore the default, enable.
udp-port
Use to specify the router's UDP port on which the RADIUS relay server resides.

Example
host1(config-radius-relay)#udp-port 1850
Use the no version to return to the default, port 1812 for authentication servers or port 1813 for accounting servers.

[Contents] [Prev] [Next] [Index] [Report an Error] [No Frames]