Its actually fairly simple. In RadiusNT ODBC mode you build an
accounttype (typically called Email or Email only) and for the
default attributed you associate:
User-Service = Framed-User
Framed-Protocol = PPP
Framed-Filter = mailonly
Session-Timeout = 900
Then you create a filter in your Portmasters (or use choicenet)
which only allows:
1. DNS resolution to your DNS server
2. SMTP and POP3 to your MAIL server
With Livingston's RADIUS, you have to give the mailonly filter to each
user you want to limit. With RadiusNT ODBC, you just make their
AccountType the one with the filter. The nice thing about the later
is when you want to change the session-limit, or other features you
only change it once, not for each user. You could probably get away
from something like suffix = ".mail" in Livingston's 2.0, though.
-- Dale E. Reed Jr. (daler@iea.com) _________________________________________________________________ IEA Software, Inc. | RadiusNT, Emerald, and NT FAQs Internet Solutions for Today | http://www.emerald.iea.com