Hello,
I have a problem with 802.1x authentication for Windows clients. The topology is:
VLAN 10 - includes Windows clients
VLAN 30 - includes RADIUS server on Linux server
VLAN 99 - management, which includes switch from Cisco
MikroTik router (version 6.28) - 802.1Q TRUNK
The router provide DHCP Relay to the same server, which provide RADIUS also. On router there is a firewall, which allows communicates between VLAN 99 and port 1812 on Linux server. The RADIUS server communicates with switch and than are the ports allows.
My problem is that when the authenticate fails when the clients want to be authenticate. But every second authenticate the authentication is OK. So for the first time it falls, but for the second time it’s ok and the clients are authenticate. We watch what is happen for the second time and we found out that for the second time the packets go through established, related rule in the firewall. Also for the first time the authentication falls when the server should send Hello to client.
The server is OK. The authentication was functional before we replaced the original Cisco router for MikroTik router. The DHCP relay is configured right. Me and the administrator are confused and we don’t know where is the problem.
Have somebody similar problem and know how to repair that?
Thanks for responses.
Roman Š.