[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Questions on TCP port usage for RADIUS/TLS

To: Stefan Winter <stefan.winter@restena.lu>
Subject: Re: Questions on TCP port usage for RADIUS/TLS
From: Alan DeKok <aland@deployingradius.com>
Date: Mon, 20 Dec 2010 17:02:52 +0100
Cc: "radiusext@ops.ietf.org" <radiusext@ops.ietf.org>
In-reply-to: <4D0F518B.2020706@restena.lu>
References: <4D0F518B.2020706@restena.lu>
User-agent: Thunderbird 2.0.0.24 (Macintosh/20100228)

Stefan Winter wrote:
> So, there is a good reasoning on why three distinct ports would make
> sense. The only problem is: none of the existing implementations does it
> that way; so there is no running code yet. The question thus is:

  IIRC, the implementations are capable of listening on multiple ports
at the same time.  This allows then to listen on 3 ports, even if they
*also* accept all packet codes on each of those ports.

> ** As an implementor, do you think changing the spec towards three
> separate ports is reasonable, and do you think you would adapt your
> implementation? **

  I prefer fewer ports.  Adapting the implementation is easier than
adapting the spec. :)

> ** If you had to choose between the aforementioned decision points a) or
> b) , which one would you prefer as an implementor? **

  I'd prefer to re-use TCP/1812, TCP/1813, and TCP/3699 for TLS.

  Alan DeKok.

--
to unsubscribe send a message to radiusext-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/radiusext/>

Follow-Ups:
- Re: Questions on TCP port usage for RADIUS/TLS
  - From: Mike McCauley <mikem@open.com.au>

Prev by Date: Re: Review of draft-zorn-radius-keywrap
Next by Date: Re: Questions on TCP port usage for RADIUS/TLS
Previous by thread: Review of draft-zorn-radius-keywrap
Next by thread: Re: Questions on TCP port usage for RADIUS/TLS
Index(es):
- Date
- Thread