Hello Jim, Monday, September 24, 2001, 8:10:06 PM, you wrote" > http://www.ISAserver.org > Inline... > Jim Harrison > MCP(2K), A+, Network+, PCG > ----- Original Message ----- > From: "Robby Sirwaturai" <robby@xxxxxxxxxxxxx> > To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx> > Sent: Monday, September 24, 2001 3:33 AM > Subject: [isalist] RADIUS and ISA Server > http://www.ISAserver.org > My ISA Server is used to connect 2 network, private, and public. > My private users use RADIUS authentication to get permission for > accessing Interent. My RADIUS is located in public network. > The question is, > 1. how to "pass" the RADIUS information through ISA Server? > * To where, for what, in what form? ISA supports passthrough authentication > for web requests. How the client got his credentials is (almost) irrelevant > to ISA From my dial-up users. The authentication request is sent from the RAS (Modem Pool) to the RADIUS. Here is the scheme. I use Patton 2960 as the RAS. ----------- ------- ---------- | Dial-Up |-------------| RAS |------------| ISA | | User |(10.1.x.x) | | (10.1.0.1)| Server | ----------- ------- ---------- (2xx.x.x.2)| | ------------ --------------|----------| Internet | | ------------ (2xx.x.x.3)| ---------- | RADIUS | | Server | ---------- > 2. How to test that SecureNAT is working? > * Try to "ping <IPAddress>" from a secureNAT client. > NB : My private network use 10.x.x.x IP addresses. And my public one, > use Class C IP Address > * That sounds fine. > ------------------------------------------------------ > You are currently subscribed to this ISAserver.org Discussion List as: > jim@xxxxxxxxxxxx > To unsubscribe send a blank email to $subst('Email.Unsub') > ------------------------------------------------------ > You are currently subscribed to this ISAserver.org Discussion List as: > robby@xxxxxxxxxxxxx > To unsubscribe send a blank email to $subst('Email.Unsub') --- Best regards, Robby Sirwaturai robby@xxxxxxxxxxxxx