firewall authentication problem

• From: Mohsen A. Momeni
• Date: Sat Feb 04 04:19:30 2006

• Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=m0lS6CbmLc4MeTFdSqCTrogs8DbASxtLKkeo/5COUPOr4XGPPa/+37AgyfQnJ/bMkT/Att+B6Ctd6DyHMq2zvrMgP2cuBlk+OrBU+hCEOvIWbrkOvhen/Kcmrz03IaiyUQzoO4f1Bm4JOusV0vWjtgSzNNo2Tq0zH3wTXRMjtnk=

Hi,

I have two group of users connected to internet through a firewall for
traffic control. Both should be authenticated by firewall through an
AAA server before connecting to internet and there are different user
policies for different users in firewall.

1) LAN users.
2) Dial-up users which are connected to a router, and are
authenticated by an AAA server (for logging in)
The problem is that I don't want a second authentication. I want the
users logged in, can be automatically authenticated by the firewall.
Firewall should somehow know their username to apply the policies.
There should be a mapping from IP to username in AAA server. I think
it should be a function of the router to send the IP to AAA server
after successful authentication. AAA server can be a RADIUS or LDAP
server.

Is this possible? If yes, please tell me how.

Regards,

• Prev by Date: Re: flow -> web
• Next by Date: RE: Anyone heard of INOC-DBA?
• Date Index
• Thread Index
• Author Index
• Historical