Proxy with TLS
Alan DeKok
aland at deployingradius.com
Tue Sep 5 17:04:52 CEST 2006
"Gabriele Chervatin" <gabriele.chervatin at gmail.com> wrote:
> Then freeradius A proxies the request to a remote (over WAN)
> freeradius B. The system works great and I'm able to authenticate user
> on firewall FW by freeradius B (which is the only who have the user
> accounts).
That's pretty standard.
> Now to increment the security, I'm trying to use EAP-TLS or EAP-TTLS
> between the two freeradius server, but with no luck,
RADIUS doesn't work that way. EAP-TLS runs inside of RADIUS, not
the other way around.
If you want security between the two machines, run ipsec, or some
other VPN system.
Alan DeKok.
--
http://deployingradius.com - The web site of the book
http://deployingradius.com/blog/ - The blog
More information about the Freeradius-Users
mailing list