cat-users AT lists.geant.org
Subject: The mailing list for users of the eduroam Configuration Assistant Tool (CAT)
List archive
Re: [[cat-users]] Request for verification of authentication issues via cat.eduroam.org
- From: Tomasz Wolniewicz <twoln AT umk.pl>
- To: Andre Luis Forigato <andre.forigato AT rnp.br>, "cat-users AT lists.geant.org" <cat-users AT lists.geant.org>
- Cc: Willian Cardoso <willian.cardoso AT terceiro.rnp.br>
- Subject: Re: [[cat-users]] Request for verification of authentication issues via cat.eduroam.org
- Date: Mon, 7 Jul 2025 23:02:45 +0200
Hi,
CAT tests have been designed to catch problems like UDP fragmentation, therefore CAT is sending artificially enlarged RADIUS packets. It could be that a firewall in front of your national RADIUS servers is rejecting UDP fragments, thus causing the communication to fail. Large packets typically appear with EAP-TLS packets containing large user certificates, but for users authenticating with PEAP or TTLS typically this does not happen.
If it is indeed true that packets are dropped on the firewall then your RADIUS might not record anything.
Yours
Tomasz Wolniewicz
André Luis Forigato | Analista de TI
Gerência de Tecnologia da Informação (GTI) Diretoria Adj. de Tecnologia da Informação (DATI) Tel.: +55 19 3787-3300 | Teams: andre.forigato AT rnp.br
www.rnp.br
To unsubscribe, send this message: mailto:sympa AT lists.geant.org?subject=unsubscribe%20cat-users
Or use the following link: https://lists.geant.org/sympa/sigrequest/cat-users
-- Tomasz Wolniewicz
Attachment:
smime.p7s
Description: Kryptograficzna sygnatura S/MIME
-
[[cat-users]] Request for verification of authentication issues via cat.eduroam.org,
Andre Luis Forigato, 07/07/2025
- Re: [[cat-users]] Request for verification of authentication issues via cat.eduroam.org, Tomasz Wolniewicz, 07/07/2025
Archive powered by MHonArc 2.6.24.