GithubHelp home page GithubHelp logo

longbeachhxc / freeradius-k8s Goto Github PK

View Code? Open in Web Editor NEW

This project forked from stanislaspiron/freeradius-k8s

0.0 0.0 0.0 37 KB

This replository contains Yaml Files to deploy freeradius in Kubernetes cluster.

License: MIT License

freeradius-k8s's Introduction

Deploy FreeRadius server in kubernetes

Description

This replository contains Yaml Files to deploy freeradius in Kubernetes cluster. This repository is not certified to work in a production environment.

Config Files

This freeradius deployment uses following files:

  • radiusd.conf : contains the radius configuration. this file was edited to stdout to see authentication logs with kubectl logs command. This file is stored in a configmap object.
  • clients.conf : contains the RADIUS clients with shared secrets. This file is stored in a secret object as it contains sensitive data.
  • authorize : contains usernames, passwords and attributes for each users. This file is stored in a secret object as it contains sensitive data.

All other configuration files are inherited from docker image, including EAP certificates and trusted CA.

Requirements

This deployment requires following configuration:

Install

Update the service file with expected Metallb IP address.

Deploy RADIUS deployment and service

kubectl create ns radius
kubectl create configmap -n radius freeradius-files --from-file radiusd.conf
kubectl create secret generic -n radius freeradius-secrets --from-file authorize --from-file clients.conf 
kubectl apply -f freeradius.yml

Update configuration files

Update configmap with new files and reload deployment

kubectl delete configmaps -n radius freeradius-files 
kubectl create configmap -n radius freeradius-files --from-file radiusd.conf
kubectl rollout restart deployment -n radius freeradius

Update configuration files with sensitive data (secret)

Update secret with new files and reload deployment

kubectl delete secret -n radius freeradius-secrets 
kubectl create secret generic -n radius freeradius-secrets --from-file authorize --from-file clients.conf 
kubectl rollout restart deployment -n radius freeradius

Use kubernetes service name from other deployments in same cluster

To allow other deployments within the same kubernetes cluster, use following name:

lb-freeradius.radius.svc.cluster.local
  • lb-freeradius : service name
  • radius : namespace name
  • svc.cluster.local : internal kubernetes dns suffix

freeradius-k8s's People

Contributors

stanislaspiron avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.