12 Jun
2008
12 Jun
'08
1:32 a.m.
Gopinath Reddy N wrote:
But by way of hack if user knows some other valid user name in the system he can use that as outer identity and get the policy setting of that user. So to avoid that Iam just thinking is there a way I can come out of this situation in freeradius
Yes. That's why the inner and outer sessions are in different virtual servers. Put the policy into the virtual server for the inner tunnel, and not for the outer session. Alan DeKok.