Menu
▾
▴
Re: [Devil-Linux-discuss] [BULK] Re: Dual VPN Servers
|
From: Serge L. <fi...@in...> - 2007-02-02 16:04:31
|
Frank Weis wrote: >>> Do you ppl have any ideas for alternatives? >> May I suggest to try radius? As far as I know it's quite easy to implement. >> I did it several times (DL with pptp + MS AD with radius). If it's >> interesting for you I'll send config for poptop and MS IAS as well. >> > > Hmm, how will radius be different from samba/winbind? You can use login in user@realm form and set 2 radius servers. So, only one IAS be able to authenticate user. If you define static address ( Framed-IP-Address in radius terms) for remote users and tune firewall, theoretically it should work. > Do I get a chance to differenciate users from both domains on the firewall? Try to use Framed-IP-Address ( 'Assign Static IP address' in user properties, MS AD) from different networks. > It would already help a lot if I could hardwire dedicated IP addresses to a handful of users. > I have done a few tests, and I can't get a second instance op pptpd to run, > even if I specify a different config file, listen address, options file and > pid file on the command line .... Have you got a pppd log with debug level? Is there anything in the logs pointing to the problem? -- Serge |
