USG: IPSEC modeconfig and radius questons
Hello, I'm using USG40 as a server (=main office) with roaming customers,
- Can I use modeconfig pushing from server in any other scenario except "Remote Access" scenario? I want to allow users to access main office internal network and do not capture customers default route.
- I [can] use Radius for authentificating IPSEC users (tried with IKE1, but sure IKE2/EAP will work too). Can I pass IP address for modeconfig via radius? What can I pass from Raduis to IPSEC server as Authorization info at all? Is there a document that describes that (and raduis dictonary)?
Thanks.
- I [can] use Radius for authentificating IPSEC users (tried with IKE1, but sure IKE2/EAP will work too). Can I pass IP address for modeconfig via radius? What can I pass from Raduis to IPSEC server as Authorization info at all? Is there a document that describes that (and raduis dictonary)?
Thanks.
0
Accepted Solution
-
I have similar scenario on my environment.
As I know, the mode config only support when phase 2 select Remote Access. All VPN clients can access internal network. Not sure you mean do not capture customers default route.
The IP address are assigned from USG(Mode config) could not assign IP by Radius(authentication only)5
All Replies
-
I have similar scenario on my environment.
As I know, the mode config only support when phase 2 select Remote Access. All VPN clients can access internal network. Not sure you mean do not capture customers default route.
The IP address are assigned from USG(Mode config) could not assign IP by Radius(authentication only)5 -
Thanks. Very pity to hear that radius can be used for Authentification but not for Authorization...
0
Categories
- All Categories
- 415 Beta Program
- 2.3K Nebula
- 141 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.6K Security
- 218 USG FLEX H Series
- 262 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1K Wireless
- 39 Wireless Ideas
- 6.3K Consumer Product
- 245 Service & License
- 382 News and Release
- 81 Security Advisories
- 27 Education Center
- 8 [Campaign] Zyxel Network Detective
- 3.1K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight