From owner-freebsd-security@FreeBSD.ORG  Mon Apr  2 14:53:03 2007
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
X-Original-To: freebsd-security@freebsd.org
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 31B8F16A403
	for <freebsd-security@freebsd.org>;
	Mon,  2 Apr 2007 14:53:03 +0000 (UTC)
	(envelope-from marko.lerota@claresco.hr)
Received: from zid.claresco.hr (zid.claresco.hr [85.114.42.226])
	by mx1.freebsd.org (Postfix) with ESMTP id 81E2213C4BC
	for <freebsd-security@freebsd.org>;
	Mon,  2 Apr 2007 14:53:02 +0000 (UTC)
	(envelope-from marko.lerota@claresco.hr)
Received: (qmail 12146 invoked by uid 1001); 2 Apr 2007 14:26:13 -0000
To: freebsd-security@freebsd.org
Face: iVBORw0KGgoAAAANSUhEUgAAADAAAAAwBAMAAAClLOS0AAAAJFBMVEWgnbRLVpRNVY9jMRPh
	s21jSlEyNVX45Mv4zI+sbUclFAtMVpT8V0lFAAACZ0lEQVR4nG3Tv2vbQBQHcFMogWyeNeVK
	BLXGl5j6xnABOaNTuXFGmWpwtw519yj4soW6AatT4GKD3+aDZrl/rt/Tr9qlGiz7Pn7v3bsf
	HVc/NrIiSfElqH53GgijcCqzk/+AmBF5cN0DsFlIRGMh/oHuqxkTM6VlzB4EoZEs2aSZOASb
	EQJYZpweQshE697GTDndBXtgp9LIT9+OpDGHEfb9knk+nx+jfN1JCVZMCl6XwFm0a2EXztZD
	3s4fj47ZbKI2VeBmJImeEfGLJ+M9sDPilX7IB5rN6sdfcGhuoHU+LC4nxfnI7YOJtdb95Gb+
	fbgJ2uJ2ZgaA++f5ZzBqNCCYfMTd5q0BfBVNqm7I8gUjQ+YtXotRW6PH9AEj+dKs/KuNQAl5
	o/NY+QkonW8aQAl0oXMYPvRiXIM4pRJifbXytnhTA8alBx/jefG2ar3DBlt34/PXz9M+nMVN
	iNaPUdCApJc2ItejOmLGoK1qQLV9pJmXBnL10DYoBA5aHNfj8ZNwZa5O4CzgTJeilKJmrQJs
	IHIt1/7/Sg2p3iq/Hz0/5W05rq4M9aN2B5FLohUP4ylVyfxhEIjAs8J4PhIJ9U+CEroogib5
	BXAf7bB4vkfAzgPFt1tM9sJZAOH+lCexhwswuNtim4QTZdokqo4o89LkH7V6iFxICeqfp+Wh
	fmUuGPunLj2Meti6Cn4DjJ/UReROqR+aqawAi/JkfgKE64rrfkhjU8MtT8ivR4S5n6Yo08A7
	HvgAlHDWRSGlNSDxwK9HtXy4FS2I60EdUIJM+Ut9OZNJG4CpbEQW1VBQoQoPuBw2EVa4P0u0
	TgzQF+VoAAAAAElFTkSuQmCC
Organization: *BSD Users - Fanatics Dept.
From: Marko Lerota <mlerota@iskon.hr>
Date: Mon, 02 Apr 2007 16:26:13 +0200
Message-ID: <86lkha6eey.fsf@sparrow.local>
User-Agent: Gnus/5.1008 (Gnus v5.10.8) Emacs/21.3 (berkeley-unix)
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Subject: Stronger security with BSD Firewall and Freeradius 
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Security issues \[members-only posting\]"
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 02 Apr 2007 14:53:03 -0000

I've seen that is possible to use switch port blocking with freeradius
and cisco switches via 802.1X and EAP protocol. Here is more info:
http://wiki.freeradius.org/FreeRADIUS_Active_Directory_Integration_HOWTO

What if I don't have switch that supports 802.1X or I want that blocking 
is done by FreeBSD, not the switch. Because FreeBSD is the firewall or 
gateway to some networks. Is there any solution that implements freeradius
with PF or any other firewall/blocking feature? 

-- 
One cannot sell the earth upon which the people walk
                               			Tacunka Witco