"Gabriele Chervatin" <[EMAIL PROTECTED]> wrote: > Then freeradius A proxies the request to a remote (over WAN) > freeradius B. The system works great and I'm able to authenticate user > on firewall FW by freeradius B (which is the only who have the user > accounts).
That's pretty standard. > Now to increment the security, I'm trying to use EAP-TLS or EAP-TTLS > between the two freeradius server, but with no luck, RADIUS doesn't work that way. EAP-TLS runs inside of RADIUS, not the other way around. If you want security between the two machines, run ipsec, or some other VPN system. Alan DeKok. -- http://deployingradius.com - The web site of the book http://deployingradius.com/blog/ - The blog - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
