| Re: Ordered delivery of EAP messages | <– Date –> <– Thread –> |
From: Jouni Malinen (j w1.fi)
|
|
| Date: Fri, 9 Mar 2007 07:42:45 -0800 (PST) | |
On Thu, Mar 08, 2007 at 02:46:34PM -0800, Bernard Aboba wrote: > Alper Yegin said: > "RADIUS does not talk about 1, does not properly mandate 2a... > If we decide to go with 2a, we need to fix RADIUS spec. Meanwhile, can we > assume all of the current RADIUS implementations are already supporting 2a, > so that in the absence of 1 and 2b EAP works well?" > > [BA] Yes, I think we can assume this. Alan's proposed language will mandate > 2a. I hit this issue in testing couple of years ago when EAP-SIM tests were failing if NAS re-transmitted the Access-Request quickly. In other words, the RADIUS server was not doing duplicate detection.. Since then, this particular implementation has added support for duplicate detection, but I believe it can be disabled in configuration and there has been discussion on some deployments doing that in order to avoid issues with large number of requests (more than 256 per the duplicate window of couple of seconds, i.e., more than the number of unique Identifiers..). -- Jouni Malinen PGP id EFC895FA
- Re: Ordered delivery of EAP messages, (continued)
- Re: Ordered delivery of EAP messages Alper Yegin, March 7 2007
- Re: Ordered delivery of EAP messages Glen Zorn (gwz), March 7 2007
- Re: Ordered delivery of EAP messages Alper Yegin, March 8 2007
- Re: Ordered delivery of EAP messages Bernard Aboba, March 8 2007
- Re: Ordered delivery of EAP messages Jouni Malinen, March 9 2007
- Re: Simultaneous session limits and duplicate detection Bernard Aboba, March 11 2007
- Re: Ordered delivery of EAP messages Glen Zorn (gwz), March 8 2007
- Message not available
- Re: Ordered delivery of EAP messages Glen Zorn (gwz), March 7 2007
- Re: Ordered delivery of EAP messages Glen Zorn (gwz), March 6 2007
Results generated by Tiger Technologies using MHonArc.