> I have a problem that where people use to dial in to an access server with
> MS emulator and in radius specific users where created (once
> authenticated) radius would send the request (telnet) directly to the
> firewall and the firewall would ask for HOST: once they put it the
> destination host the S/KEY chalenge would appear and let them through. Now
> this is not working they are getting the tcp wrapers messages from the
> firewall not the authentication screen anymore. Does anyone know where I
> could look to resolve this issue?
>
The reason I need this to work is that some machines are on the same
segement as the dial-in server so by created the radius config below the fw
sees the connection and prompts for the s/key. If i remove it that they can
telnet as they please to the machine without and s/key authentication.
>
>
> RADIUS config (this hasen't changed)
>
> user Crypt-Password = "UE7reshg8eM"
> Service-Type = Login-User,
> Login-Service = Telnet,
> Login-IP-Host = 192.168.X.X (firewall IP)
>
>
> Thanks
>
> _______________________________________
> Michael Pires
> Security Analyst
>
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
