Menu
▾
▴
Re: [Devil-Linux-discuss] Dual VPN Servers
|
From: Serge L. <fi...@in...> - 2007-02-04 14:38:19
|
Matthew, you are absolutely right! I felt I missed something important ! :-) So, it looks like it's able to use 1 pptpd for 2 MS AD with DL. The scheme is the following: poptop --> Free Radius (proxy mode for 2 realms) --> MS IAS 1,2 http://wiki.freeradius.org/Proxy Frank, does it resolve you problem? -- Serge Matthew Hattersley wrote: > Surely you could set the Radius to proxy requests for the other domains > to the other radius. That way there would only be one radius, but > handling two domains. This is quite possible with a L2TP style setup, we > have 1 Primary Radius clusters which proxies requests for multiple > domains to several back end Radius servers. > > Cheers > > Mat > > -----Original Message----- > From: dev...@li... > [mailto:dev...@li...] On Behalf Of > Serge Leschinsky > Sent: 02 February 2007 16:30 > To: dev...@li... > Subject: Re: [Devil-Linux-discuss] [BULK] Re: Dual VPN Servers > > Serge Leschinsky wrote: >>> Hmm, how will radius be different from samba/winbind? >> You can use login in user@realm form and set 2 radius servers. So, >> only one IAS be able to authenticate user. If you define static address ( >> Framed-IP-Address in radius terms) for remote users and tune firewall, theoretically it >> should work. > After some thinking I believe that it _would_ _not_ work because the > first radius server will send "auth fail" and the second will not be queried. > > Sorry for confusing |
