In replacing my pix, I was hoping to migrate to a vpn setup that allowed me to continue to use radius from our Windows AD setup.
My requirements are explicitly set such that I must filter traffic for groups of users to certain ports/hosts. I like the idea of using PPTP as I can use radius and the client is native to all windows platforms we support. Although not opposed to using OpenVPN, the lack of filtering ability is a deal breaker. On that note, could one not dump all incoming connections into a virtual interface/vlan, then write rules from that vlan into the production network? If that is possible, is there any way to integrate radius and setup different groups destined to different vlans all with different filtering options? Any advice from people currently supporting vpn's for their windows segment would be appreciated! Thanks, jlc --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected] Commercial support available - https://portal.pfsense.org
