5 Sep
2006
5 Sep
'06
11:04 a.m.
"Gabriele Chervatin" <gabriele.chervatin@gmail.com> wrote:
Then freeradius A proxies the request to a remote (over WAN) freeradius B. The system works great and I'm able to authenticate user on firewall FW by freeradius B (which is the only who have the user accounts).
That's pretty standard.
Now to increment the security, I'm trying to use EAP-TLS or EAP-TTLS between the two freeradius server, but with no luck,
RADIUS doesn't work that way. EAP-TLS runs inside of RADIUS, not the other way around. If you want security between the two machines, run ipsec, or some other VPN system. Alan DeKok. -- http://deployingradius.com - The web site of the book http://deployingradius.com/blog/ - The blog