Radius Load Balancing

Question

We use Radius authentication for our corporate wireless users.   I'm looking at load balancing our radius servers for our wireless controllers.   We had an issue recently where one of the radius servers went down, all clients connected on that wireless controller to that radius server, lost their authentication.  Hence, about 400 people dropped off the network.  The server was physically up, but the service was hung.   The controllers have both IP addresses of the Radius servers in their configuration.  But have no way of knowing if the service is up or not.  Only if the server was completely down.  &nbsp;
&nbsp;My idea is to use the BigiP, use one VIP the controllers point to, and do the health checks.  That way the controllers can send to one IP, and the BigIP manages the traffic.&nbsp;
&nbsp;Does anyone have experience with load balancing radius.  I have already created a VIP, a UDP profile specifying the Datagram LB option.  I also created a health monitor which checks radius the port.  I would really like to build a good health monitor to actually check authentication and make sure the radius server is online.   Any input is appreciated...&nbsp;
&nbsp;Thanks....&nbsp;

chris_miller · Answer

I've load balanced RADIUS before and it worked very well.  
&nbsp;  
&nbsp; From the "new monitor" page, you can select RADIUS and input the proper credentials. Simply associate your monitor with a RADIUS pool and you should be set.

jason_l_40779 · Answer

thanks chris as always...&nbsp;

iabhijit_184389 · Answer

Hi,&nbsp;
I am new to F5 and with an assignment to load balance the radius traffic using 2 number of f5 big ip ltm 2000s with multiple radius server.&nbsp;
Would be grateful if I can get help of IP design which we need to allocate on F5 to achieve it.&nbsp;
Thanks
AA&nbsp;

boneyard · Answer

it is always wiser to start your own question and not add to another one. it is quite difficult on a forum to design a whole IP network for you. do you have an F5 partner that can help you out?

stephanmanthey · Answer

Hi IAbhijit,&nbsp;
please check the F5 RADIUS Deployment Guide for details.&nbsp;
Thanks, Stephan&nbsp;

Forum Discussion

Radius Load Balancing

Recent Discussions

APM with EntraID as idP / request signed

Should config via cli rather than gui?

Background Tasks

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

Related Content

Active/Active load balancing examples with F5 BIG-IP and Azure load balancer

Load Balancing TCP TLS Encrypted Syslog Messages

Transparent load balancing in Azure, Part 2

NGINXaaS for Azure: Load Balancing

RADIUS Load Balancing

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS