Realm: candi.nhs.uk Full
candi.nhs.uk/candi-nhs-uk-0/roaming0.govroam.uk/
Ping
- Output
- PING OK - Packet loss = 0%, RTA = 5.07 ms
- Last State Change
- Fri Mar 21 13:42:36 2025
- Last Check
- Mon Mar 24 03:42:25 2025
- Next Check
- Mon Mar 24 03:52:25 2025
candi.nhs.uk/candi-nhs-uk-0/roaming0.govroam.uk/
RADIUS Port
- Output
- OK: Port 1812 is probably open, unless there's a DROP firewall
- Last State Change
- Fri Mar 21 13:43:13 2025
- Last Check
- Mon Mar 24 03:43:12 2025
- Next Check
- Mon Mar 24 03:53:12 2025
candi.nhs.uk/candi-nhs-uk-0/roaming0.govroam.uk/
Server Shared Secret
- Output
- OK: Good shared secret over last day
- Last State Change
- Fri Mar 21 13:43:36 2025
- Last Check
- Mon Mar 24 03:43:34 2025
- Next Check
- Mon Mar 24 03:53:34 2025
candi.nhs.uk/candi-nhs-uk-0/roaming0.govroam.uk/
Simple Authentication
- Output
- OK: Return code is as expected, Access-Reject
- Last State Change
- Fri Mar 21 13:46:24 2025
- Last Check
- Mon Mar 24 03:46:22 2025
- Next Check
- Mon Mar 24 03:56:22 2025
candi.nhs.uk/candi-nhs-uk-0/roaming0.govroam.uk/
Zombie
- Output
- UNKNOWN: No Data. No data but not marked as down within the last week
- Last State Change
- Fri Mar 21 13:44:20 2025
- Last Check
- Mon Mar 24 03:42:19 2025
- Next Check
- Mon Mar 24 03:52:19 2025
candi.nhs.uk/candi-nhs-uk-0/roaming1.govroam.uk/
Ping
- Output
- PING OK - Packet loss = 0%, RTA = 5.59 ms
- Last State Change
- Fri Mar 21 13:48:24 2025
- Last Check
- Mon Mar 24 03:38:13 2025
- Next Check
- Mon Mar 24 03:48:13 2025
candi.nhs.uk/candi-nhs-uk-0/roaming1.govroam.uk/
RADIUS Port
- Output
- OK: Port 1812 is probably open, unless there's a DROP firewall
- Last State Change
- Fri Mar 21 13:48:48 2025
- Last Check
- Mon Mar 24 03:38:47 2025
- Next Check
- Mon Mar 24 03:48:47 2025
candi.nhs.uk/candi-nhs-uk-0/roaming1.govroam.uk/
Server Shared Secret
- Output
- OK: Good shared secret over last day
- Last State Change
- Fri Mar 21 13:47:12 2025
- Last Check
- Mon Mar 24 03:37:11 2025
- Next Check
- Mon Mar 24 03:47:11 2025
candi.nhs.uk/candi-nhs-uk-0/roaming1.govroam.uk/
Simple Authentication
- Output
- OK: Return code is as expected, Access-Reject
- Last State Change
- Fri Mar 21 13:45:15 2025
- Last Check
- Mon Mar 24 03:45:14 2025
- Next Check
- Mon Mar 24 03:55:14 2025
candi.nhs.uk/candi-nhs-uk-0/roaming1.govroam.uk/
Zombie
- Output
- UNKNOWN: No Data. No data but not marked as down within the last week
- Last State Change
- Sat Mar 22 17:24:31 2025
- Last Check
- Mon Mar 24 03:44:29 2025
- Next Check
- Mon Mar 24 03:54:29 2025
candi.nhs.uk/candi-nhs-uk-0/roaming2.govroam.uk/
Ping
- Output
- PING OK - Packet loss = 0%, RTA = 10.98 ms
- Last State Change
- Fri Mar 21 13:48:24 2025
- Last Check
- Mon Mar 24 03:38:14 2025
- Next Check
- Mon Mar 24 03:48:13 2025
candi.nhs.uk/candi-nhs-uk-0/roaming2.govroam.uk/
RADIUS Port
- Output
- OK: Port 1812 is probably open, unless there's a DROP firewall
- Last State Change
- Fri Mar 21 13:45:42 2025
- Last Check
- Mon Mar 24 03:45:41 2025
- Next Check
- Mon Mar 24 03:55:41 2025
candi.nhs.uk/candi-nhs-uk-0/roaming2.govroam.uk/
Server Shared Secret
- Output
- OK: Good shared secret over last day
- Last State Change
- Fri Mar 21 13:44:53 2025
- Last Check
- Mon Mar 24 03:44:51 2025
- Next Check
- Mon Mar 24 03:54:51 2025
candi.nhs.uk/candi-nhs-uk-0/roaming2.govroam.uk/
Simple Authentication
- Output
- OK: Return code is as expected, Access-Reject
- Last State Change
- Fri Mar 21 13:45:26 2025
- Last Check
- Mon Mar 24 03:45:24 2025
- Next Check
- Mon Mar 24 03:55:24 2025
candi.nhs.uk/candi-nhs-uk-0/roaming2.govroam.uk/
Zombie
- Output
- UNKNOWN: No Data. No data but not marked as down within the last week
- Last State Change
- Fri Mar 21 13:47:57 2025
- Last Check
- Mon Mar 24 03:45:56 2025
- Next Check
- Mon Mar 24 03:55:56 2025
candi.nhs.uk/candi-nhs-uk-0/roaming3.govroam.uk/
Ping
- Output
- PING OK - Packet loss = 0%, RTA = 11.10 ms
- Last State Change
- Fri Mar 21 13:47:43 2025
- Last Check
- Mon Mar 24 03:37:33 2025
- Next Check
- Mon Mar 24 03:47:33 2025
candi.nhs.uk/candi-nhs-uk-0/roaming3.govroam.uk/
RADIUS Port
- Output
- OK: Port 1812 is probably open, unless there's a DROP firewall
- Last State Change
- Fri Mar 21 13:49:08 2025
- Last Check
- Mon Mar 24 03:39:06 2025
- Next Check
- Mon Mar 24 03:49:06 2025
candi.nhs.uk/candi-nhs-uk-0/roaming3.govroam.uk/
Server Shared Secret
- Output
- OK: Good shared secret over last day
- Last State Change
- Fri Mar 21 13:47:59 2025
- Last Check
- Mon Mar 24 03:37:58 2025
- Next Check
- Mon Mar 24 03:47:58 2025
candi.nhs.uk/candi-nhs-uk-0/roaming3.govroam.uk/
Simple Authentication
- Output
- OK: Return code is as expected, Access-Reject
- Last State Change
- Fri Mar 21 13:48:33 2025
- Last Check
- Mon Mar 24 03:38:31 2025
- Next Check
- Mon Mar 24 03:48:31 2025
candi.nhs.uk/candi-nhs-uk-0/roaming3.govroam.uk/
Zombie
- Output
- UNKNOWN: No Data. No data but not marked as down within the last week
- Last State Change
- Fri Mar 21 13:46:33 2025
- Last Check
- Mon Mar 24 03:44:32 2025
- Next Check
- Mon Mar 24 03:54:32 2025
candi.nhs.uk/candi-nhs-uk-1/roaming0.govroam.uk/
Ping
- Output
- PING OK - Packet loss = 0%, RTA = 7.72 ms
- Last State Change
- Fri Mar 21 13:42:53 2025
- Last Check
- Mon Mar 24 03:42:43 2025
- Next Check
- Mon Mar 24 03:52:43 2025
candi.nhs.uk/candi-nhs-uk-1/roaming0.govroam.uk/
RADIUS Port
- Output
- OK: Port 1812 is probably open, unless there's a DROP firewall
- Last State Change
- Fri Mar 21 13:44:21 2025
- Last Check
- Mon Mar 24 03:44:20 2025
- Next Check
- Mon Mar 24 03:54:20 2025
candi.nhs.uk/candi-nhs-uk-1/roaming0.govroam.uk/
Server Shared Secret
- Output
- UNKNOWN: No Data. No logs to check for last day
- Last State Change
- Sat Mar 22 16:45:09 2025
- Last Check
- Mon Mar 24 03:43:07 2025
- Next Check
- Mon Mar 24 03:53:07 2025
candi.nhs.uk/candi-nhs-uk-1/roaming0.govroam.uk/
Simple Authentication
- Output
- OK: Return code is as expected, Access-Reject
- Last State Change
- Fri Mar 21 13:42:39 2025
- Last Check
- Mon Mar 24 03:42:38 2025
- Next Check
- Mon Mar 24 03:52:37 2025
candi.nhs.uk/candi-nhs-uk-1/roaming0.govroam.uk/
Zombie
- Output
- UNKNOWN: No Data. No data but not marked as down within the last week
- Last State Change
- Fri Mar 21 13:47:03 2025
- Last Check
- Mon Mar 24 03:45:01 2025
- Next Check
- Mon Mar 24 03:55:01 2025
candi.nhs.uk/candi-nhs-uk-1/roaming1.govroam.uk/
Ping
- Output
- PING OK - Packet loss = 0%, RTA = 7.65 ms
- Last State Change
- Fri Mar 21 13:47:11 2025
- Last Check
- Mon Mar 24 03:37:01 2025
- Next Check
- Mon Mar 24 03:47:01 2025
candi.nhs.uk/candi-nhs-uk-1/roaming1.govroam.uk/
RADIUS Port
- Output
- OK: Port 1812 is probably open, unless there's a DROP firewall
- Last State Change
- Fri Mar 21 13:47:32 2025
- Last Check
- Mon Mar 24 03:37:30 2025
- Next Check
- Mon Mar 24 03:47:30 2025
candi.nhs.uk/candi-nhs-uk-1/roaming1.govroam.uk/
Server Shared Secret
- Output
- UNKNOWN: No Data. No logs to check for last day
- Last State Change
- Sat Mar 22 16:46:40 2025
- Last Check
- Mon Mar 24 03:44:38 2025
- Next Check
- Mon Mar 24 03:54:38 2025
candi.nhs.uk/candi-nhs-uk-1/roaming1.govroam.uk/
Simple Authentication
- Output
- OK: Return code is as expected, Access-Reject
- Last State Change
- Fri Mar 21 13:46:42 2025
- Last Check
- Mon Mar 24 03:36:41 2025
- Next Check
- Mon Mar 24 03:46:40 2025
candi.nhs.uk/candi-nhs-uk-1/roaming1.govroam.uk/
Zombie
- Output
- UNKNOWN: No Data. No data but not marked as down within the last week
- Last State Change
- Fri Mar 21 13:44:11 2025
- Last Check
- Mon Mar 24 03:42:10 2025
- Next Check
- Mon Mar 24 03:52:10 2025
candi.nhs.uk/candi-nhs-uk-1/roaming2.govroam.uk/
Ping
- Output
- PING OK - Packet loss = 0%, RTA = 13.88 ms
- Last State Change
- Fri Mar 21 13:46:09 2025
- Last Check
- Mon Mar 24 03:45:59 2025
- Next Check
- Mon Mar 24 03:55:59 2025
candi.nhs.uk/candi-nhs-uk-1/roaming2.govroam.uk/
RADIUS Port
- Output
- OK: Port 1812 is probably open, unless there's a DROP firewall
- Last State Change
- Fri Mar 21 13:44:18 2025
- Last Check
- Mon Mar 24 03:44:16 2025
- Next Check
- Mon Mar 24 03:54:16 2025
candi.nhs.uk/candi-nhs-uk-1/roaming2.govroam.uk/
Server Shared Secret
- Output
- UNKNOWN: No Data. No logs to check for last day
- Last State Change
- Sat Mar 22 16:48:33 2025
- Last Check
- Mon Mar 24 03:46:31 2025
- Next Check
- Mon Mar 24 03:56:31 2025
candi.nhs.uk/candi-nhs-uk-1/roaming2.govroam.uk/
Simple Authentication
- Output
- OK: Return code is as expected, Access-Reject
- Last State Change
- Fri Mar 21 13:49:06 2025
- Last Check
- Mon Mar 24 03:39:04 2025
- Next Check
- Mon Mar 24 03:49:04 2025
candi.nhs.uk/candi-nhs-uk-1/roaming2.govroam.uk/
Zombie
- Output
- UNKNOWN: No Data. No data but not marked as down within the last week
- Last State Change
- Fri Mar 21 13:48:32 2025
- Last Check
- Mon Mar 24 03:46:30 2025
- Next Check
- Mon Mar 24 03:56:30 2025
candi.nhs.uk/candi-nhs-uk-1/roaming3.govroam.uk/
Ping
- Output
- PING OK - Packet loss = 0%, RTA = 12.90 ms
- Last State Change
- Fri Mar 21 13:49:12 2025
- Last Check
- Mon Mar 24 03:39:01 2025
- Next Check
- Mon Mar 24 03:49:01 2025
candi.nhs.uk/candi-nhs-uk-1/roaming3.govroam.uk/
RADIUS Port
- Output
- OK: Port 1812 is probably open, unless there's a DROP firewall
- Last State Change
- Fri Mar 21 13:48:59 2025
- Last Check
- Mon Mar 24 03:38:57 2025
- Next Check
- Mon Mar 24 03:48:57 2025
candi.nhs.uk/candi-nhs-uk-1/roaming3.govroam.uk/
Server Shared Secret
- Output
- UNKNOWN: No Data. No logs to check for last day
- Last State Change
- Sat Mar 22 16:47:41 2025
- Last Check
- Mon Mar 24 03:45:40 2025
- Next Check
- Mon Mar 24 03:55:40 2025
candi.nhs.uk/candi-nhs-uk-1/roaming3.govroam.uk/
Simple Authentication
- Output
- OK: Return code is as expected, Access-Reject
- Last State Change
- Fri Mar 21 13:45:44 2025
- Last Check
- Mon Mar 24 03:45:42 2025
- Next Check
- Mon Mar 24 03:55:42 2025
candi.nhs.uk/candi-nhs-uk-1/roaming3.govroam.uk/
Zombie
- Output
- UNKNOWN: No Data. No data but not marked as down within the last week
- Last State Change
- Fri Mar 21 13:46:23 2025
- Last Check
- Mon Mar 24 03:44:23 2025
- Next Check
- Mon Mar 24 03:54:22 2025
Called Station ID Check
- Output
- WARNING: 100% Lower case characters in MAC (last: 2025-03-23 20:14:52)
- Last State Change
- Fri Mar 21 13:46:33 2025
- Last Check
- Mon Mar 24 03:41:30 2025
- Next Check
- Mon Mar 24 03:56:29 2025
- Meaning:
- The Called-Station-ID contains the MAC address of the device the client connects to as well as, potentially, the SSID of the wireless network it connected to. The format of the MAC address is specified in RFC 3580 as 'XX-XX-XX-XX-XX-XX:SSID' with '-' being the only valid separator and all upper case. The SSID should be appended.
- Solution:
- Configure your wireless system to provide the CSI in the RFC3580 format.
Calling Station ID Check
- Output
- WARNING: 100% MAC format wrong, contains lower case (last: 2025-03-23 20:14:52)
- Last State Change
- Fri Mar 21 13:47:46 2025
- Last Check
- Mon Mar 24 03:42:44 2025
- Next Check
- Mon Mar 24 03:57:44 2025
- Meaning:
- Calling Station ID identifies the device making the connection and RFC 3580 states that the format should be XX-XX-XX-XX-XX-XX (i.e. '-' separated and upper case).
- Solution:
- Configure your wireless system to use upper case and '-' separated pairs.
Operator Check
- Output
- OK: 100% Operator-Name present (last: 2025-03-23 20:14:52)
- Last State Change
- Fri Mar 21 13:49:00 2025
- Last Check
- Mon Mar 24 03:34:00 2025
- Next Check
- Mon Mar 24 03:48:58 2025
Realm Syntax Check
- Output
- OK: 100.0% Good syntax (last: 2025-03-23 20:14:52)
- Last State Change
- Sun Mar 23 00:16:26 2025
- Last Check
- Mon Mar 24 03:46:25 2025
- Next Check
- Mon Mar 24 04:01:24 2025
VLAN Check
- Output
- CRITICAL: 100% Tunnel-Type attr present (last: 2025-03-23 20:14:52). 100% Tunnel-Medium-Type attr present (last: 2025-03-23 20:14:52). 100% Tunnel-Private-Group-ID (last: 2025-03-23 20:14:52)
- Last State Change
- Fri Mar 21 13:46:06 2025
- Last Check
- Mon Mar 24 03:41:05 2025
- Next Check
- Mon Mar 24 03:56:04 2025
- Meaning:
- Various attributes such as Tunnel-Type, Tunnel-Medium-Type and Tunnel-Private-Group-ID being sent out in responses. The 'Tunnel' attributes are commonly used to instruct wireless controllers which VLAN to place a client in. Thus if these attributes aren't filtered out then one site might be sending these attributes to another site. At best users won't be connected, at worst they'll be placed on an inappropriate VLAN.
- Solution:
- Apply filters on the RADIUS servers to restrict the attributes to just the set as specified in the Tech Spec. Both outgoing AND incoming packets need the filters applied to them for everyone's protection