19 Jun
2013
19 Jun
'13
10:32 a.m.
On 19.06.2013 16:02, A.L.M.Buxey@lboro.ac.uk wrote:
Hi,
Some other comments -
Upgrade from 2.1.12 to 2.2.x, as there are security issues pre 2.2.x.
Save yourself some round trip packets by setting default_eap_type = ttls in eap.conf
Save yourself some LDAP lookups by removing ldap from the outer.
..and save some more hits to LDAP by wrapping the call to it in the authorization stage to just the EAP Identity packet :-)
That's pretty interesting, what's the if() you're doing to achieve that? -- Olivier Beytrison Network & Security Engineer, HES-SO Fribourg Mail: olivier@heliosnet.org