Versions Compared

Old Version 7

changes.mady.by.user Stefan Winter

Saved on

compared with

New Version 8

changes.mady.by.user Dick Visser

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

VM requirementsWeb Frontend
RADIUS
OCSP Responder
Description of usageprovides the web frontend functionality including creation of keys, certificates and OCSP statements.

authenticates EAP sessions.

serves OCSP statements on request of RADIUS
Number of VMs with same specification 121
Hardware requirements (CPU, RAM, disk space) 2 CPU, 1G RAM, 30 GB disk 1 CPU, 512 MB RAM, 30 GB disk1 CPU, 512 MB RAM, 30 GB disk
Network connection requirements

incoming TCP/443 (from world)
outgoing TCP/25 (to world)

SSH to OCSP Responder VM

incoming TCP/2083 (from world)
TCP/80 to OCSP Responder

incoming TCP/80 (from world)
SSH from Web Frontend

IP addressing requirements (IPv4, IPv6, public routable) yes, yes, yesyes, yes, yesyes, yes, yes
IP addresses
  • 83.97.93.31
  • 2001:798:3::133
  • 83.97.93.56

  • 2001:798:3::14c

  • 83.97.93.57

  • 2001:798:3::14d

  • 83.97.93.32

  • 2001:798:3::134


Naming requirements1

DNS name: "hosted.eduroam.org" (A/AAAA, plus matching PTR)

DNS name: "auth-1/2.hosted.eduroam.org" (A/AAAA, plus matching PTR)

NAPTR: *.hosted.eduroam.org (wildcard!)
100 10 "s" "x-eduroam:radius.tls" "" _radsec._tcp.hosted.eduroam.org.

SRV: _radsec._tcp.hosted.eduroam.org.
0 0 2083 auth-1.hosted.eduroam.org.
10 0 2083 auth-2.hosted.eduroam.org.

DNS name: "ocsp.hosted.eduroam.org" (A/AAAA, plus matching PTR)

...