Restricting access to a NAS
Laker Netman
laker_netman at yahoo.com
Tue Jan 24 17:24:54 CET 2006
I have a Cisco 3660 router configured for dialup AAA
through FR (1.0.5) to access our LAN. I also have the
login to the router itself, for admin, authenticating
through FR (MySQL backend).
The same DB is used for all auth, so currently anyone
with a dialup account could also telnet into the
router. This leaves only my 'enable' password to
prevent problems.
I want to configure FR to eliminate this ability for
all but a select group of users (admins). There are
other devices I would like to add to the list later.
I've been looking at huntgroups as the solution, but
was unsure how (or if) this could be handled via sql
rather than the users file.
Is anyone doing this and could provide a sample config
layout?
Thx,
Laker
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
More information about the Freeradius-Users
mailing list