Source: openvpn-auth-radius Version: 2.1-6 Severity: normal Hello,
We have been having packet lossage due to one of the radius server being down and the radius openvpn plugin using synchronous authentication, thus preventing openvpn from processing traffic while the plugin waits for some timeout before trying the other radius server. Digging in the source etc. showed that this option needs to be enabled to get asynchronous authentication: # Allows the plugin to use auth control files if OpenVPN (>= 2.1 rc8) provides them. useauthcontrolfile=true Is there really a reason for not just enabling it by default? I don't see any drawback, while I do see very good reasons to enable it by default :) At the very least, the example configuration file should emphasize loudly that the consequence of not enabling it is traffic loss then the radius server doesn't answer. Without reading the source, I would have had no idea that I had to enable that to avoid the issue... Samuel -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
