From owner-freebsd-isp Thu May 25 5:28:57 2000 Delivered-To: freebsd-isp@freebsd.org Received: from ns0.sitesnow.com (ns0.sitesnow.com [63.166.182.130]) by hub.freebsd.org (Postfix) with ESMTP id 3C5C037BF94 for ; Thu, 25 May 2000 05:28:53 -0700 (PDT) (envelope-from gskouby@ns0.sitesnow.com) Received: from gskouby (helo=localhost) by ns0.sitesnow.com with local-esmtp (Exim 2.12 #1) id 12uwkm-000E7j-00; Thu, 25 May 2000 08:28:44 -0400 Date: Thu, 25 May 2000 08:28:44 -0400 (EDT) From: Greg Skouby To: Tim Priebe Cc: lures@mozcom.com, freebsd-isp@freebsd.org Subject: Re: Need advice on software for ISP startup using FreeBDS 4.0 In-Reply-To: <392CF252.2AF4E9F1@polytechnic.edu.na> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > > > 3. No PAP or CHAP Authentication. > > > > What kind of authentication are you going to use then? Are you just going > > to use the user list on the access server? I would strongly suggest using > > either PAP or CHAP coupled with RADIUS auth. Both of them have their > > advantages and disadvantages. > > The Cisco can be configured to let the dialup connection choose, and I > rembember from when Windows95 came out that it insisted that it authenticate > with pap. You want to make it as easy a possible for your clients, or they > will go elsewhere. > I was just saying that their are advantages and disadvantages to using either CHAP or PAP with the radius. With current radius if you use PAP then you can go off the password file but if you use CHAP then you need a line in your users file for every person that wants to dialin. Again, I am not claiming to be an expert so if I am wrong let me know. Thanks..bye To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message