17 Jun
2008
17 Jun
'08
6:56 a.m.
Thanks Alan. This works. On Thu, Jun 12, 2008 at 11:02 AM, Alan DeKok <aland@deployingradius.com> wrote:
Gopinath Reddy N wrote:
But by way of hack if user knows some other valid user name in the system he can use that as outer identity and get the policy setting of that user. So to avoid that Iam just thinking is there a way I can come out of this situation in freeradius
Yes. That's why the inner and outer sessions are in different virtual servers. Put the policy into the virtual server for the inner tunnel, and not for the outer session.
Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html