> But RADIUS uses DNS to check on the authentification requests. It checks
> name to IP and IP to name. So if your DNS goes away, RADIUS will stop
> authenticating. I'm rather surprised you would rely solely on external
> DNS - you have no DNS server on site?
May I assume that the portmaster has no such dependancy on a DNS
server for authentication of received RADIUS packets? Please, please? :)
In that case, there's a very easy solution to the problem: Add your
portmsters to the /etc/hosts file on your authentication host, and then
have your server look there first for host-ip mapping. Not necessary a
bad idea in any case to prevent corruption of the data about your
important servers.
-Dave andersen
-- angio@aros.net Complete virtual hosting and business-oriented system administration Internet services. (WWW, FTP, email) http://www.aros.net/ http://www.aros.net/about/virtual "There are only two industries that refer to thier customers as 'users'."