Huawei Quidway S3900 Series Operation Manual page 507
Hide thumbs
Also See for Quidway S3900 Series:
- Specifications (9 pages) ,
- Installation manual (95 pages) ,
- Command manual (1159 pages)
Table of Contents
Advertisement
Operation Manual – AAA & RADIUS & HWTACACS & EAD
Quidway S3900 Series Ethernet Switches-Release 1510
Operation
Set the maximum
number
real-time
accounting request
attempts
Caution:
In an actual network environment, you can either specify two RADIUS servers as
the primary and secondary accounting servers respectively, or specify only one
server as both the primary and secondary accounting servers. In addition, because
RADIUS adopts different UDP ports to transceive authentication/authorization
packets and the accounting packets, you must set a port number for accounting
different from that set for authentication/authorization.
Stop-accounting requests are critical to billing and will eventually affect the charges
of the users; they are important for both the users and the ISP. Therefore, the switch
should do its best to transmit them to the RADIUS accounting server. If the RADIUS
server does not respond to such a request, the switch should first buffer the request
on itself, and then retransmit the request to the RADIUS accounting server until it
gets a response, or the maximum number of transmission attempts is reached (in
this case, it discards the request).
You can set the maximum number of real-time accounting request attempts in the
case that the accounting fails. If the switch makes all the allowed real-time
accounting request attempts but fails to perform accounting, it cuts down the
connection of the user.
The IP address and the port number of the default primary accounting server
"system" are 127.0.0.1 and 1646.
Currently, RADIUS does not support the accounting of FTP users.
1.4.4 Configuring Shared Keys for RADIUS Packets
The RADIUS client and server adopt MD5 algorithm to encrypt the RADIUS packets
exchanged with each other. The two parties verify the validity of the exchanged packets
by using the shared keys that have been set on them, and can accept and respond to
the packets sent from each other only if both of them have the same shared keys.
Table 1-15 Configure shared keys for RADIUS packets
Operation
Enter system view
Command
of
retry
realtime-accounting
retry-times
Command
system-view
Huawei Technologies Proprietary
1-26
Chapter 1 AAA & RADIUS & HWTACACS
Description
Optional
By default, the maximum number
of real-time accounting request
attempts is 5. After that, the user
connection is cut down.
Description
—
Configuration
- Quick Links:
- Switch Models
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
