> sikko@igr.nl wrote:
> >
> > hello dale
> >
> > I got this code from xstop company for using the xstop with pm3.
> >
> > Am I right that I only have to give my users a framed filter attribute
> > xstop.sec to get this thing working a little bit, Wating for an other
> > solution from emerald an xstop 8-)
>
> Unfortunately, I don't know. I was out sick all last week and haven't had
> a chance to get back together with XStop on this. The below doesn't look
> familiar to me. :(
>
it has nothing to do with xstop, but is a filter wich can be setup in a
portmaster 3 and then tunneled to the r2000 xstop server. In this
way it is a kind tunnelled gateway I think ..
Would it be working if I put the radius attribute framed filter the
name of the filter?
> > -------------------------------
> > > >add filter xstop.sec
> > > >set filter xstop.sec 1 permit 0.0.0.0/0 0.0.0.0/0 tcp dst eq 20
> > > >set filter xstop.sec 2 permit 0.0.0.0/0 0.0.0.0/0 tcp dst eq 21
> > > >set filter xstop.sec 3 permit 0.0.0.0/0 0.0.0.0/0 tcp dst eq 80
> > > >set filter xstop.sec 4 permit 0.0.0.0/0 0.0.0.0/0 tcp dst eq 119 add
> > > >sa xstop set sa xstop mode ipip-tunnel set sa xstop peer-identifier
> > > >[IP ADDRESS of R2000] add sec-prof xstop set sec-prof xstop 1
> > > >policy-filter xstop.sec set sec-prof xstop 1 static-sa xstop
>
> --
>
> Dale E. Reed Jr. Emerald and RadiusNT
> __________________________________________
> IEA Software, Inc. www.iea-software.com
>
> For more information about this list (including removal) go to:
> http://www.iea-software.com/support/maillists/liststart
======================================================
S.K. de Graaf
Alg. Directeur
IGR Internetdiensten bv
Tel 010-5010505
Fax 010-5014748
IGR Your partner in Cyberspace
For more information about this list (including removal) go to:
http://www.iea-software.com/support/maillists/liststart