Wondering about is it possible with any debug command to check on which interface are RADIUS packets going out really?
I would like to send them out from OOB interface, so I used "ip radius source-interface g0/0 vrf Mgmt-vrf" command. I enabled some radius debug commands, but didn't find any that show from which interface packets going out from switch. I suspect they are going in the wrong direction because requests are timed out on the switch and on the server side they don't even arrive based on tcpdump. (OOB IP address and RADIUS servers IP address is in the same vlan/subnet, no firewall or any filter happens between them.)
It's a remote lab environment with FreeRADIUS, and only the OOB interface was connected to the network. I was lucky that one of my colleagues was on site today and I asked him to patch a normal port. I changed the configuration (removed the "ip radius source interface" command) and it worked immediately.
This confirmed that the packages really didn’t go in the right direction, but I don’t know why.
if still an issue can you post the config, because if you patched to different port it worked, it should be work as expected in mgmt VRF, make sure it reaches the GRT table and able to reach Freeraidius.
Listen: https://smarturl.it/CCRS9E25 Follow us: twitter.com/ciscochampions
With applications and users everywhere, the networks are now, more than ever, being tasked with delivering consistent protection while providing an exceptional user exper...
Listen: https://smarturl.it/CCRS9E24 Follow us: https://twitter.com/CiscoChampion
Cisco Radio Aware Routing addresses several of the challenges faced when merging IP routing and radio communications in mobile networks, especially those exhibiti...
Listen: https://smarturl.it/CCRS9E23 Follow us: https://twitter.com/CiscoChampion The Wi-Fi 6E Catalyst 9136 access point takes advantage of the 6-GHz band to produce a network that is more reliable and secure, with higher throughput, more ...
When moving from OSPFv2 to OSPFv3, there are many changes in the format of the LSAs Type, but the most known changes are: IP prefix informations are no longer carried in Type-1 LSA and Type-2 LSA, new LSAs Type 8 and 9 are added to carry these prefixes.