{
	#
	#  The tunneled EAP session needs a default EAP type
	#  which is separate from the one for the non-tunneled
	#  EAP module.  Inside of the TLS/PEAP tunnel, we
	#  recommend using EAP-MS-CHAPv2.
	#
	#  The PEAP module needs the TLS module to be installed
	#  and configured, in order to use the TLS tunnel
	#  inside of the EAP packet.  You will still need to 
	#  configure the TLS module, even if you do not want
	#  to deploy EAP-TLS in your network.  Users will not
	#  be able to request EAP-TLS, as it requires them to
	#  have a client certificate.  EAP-PEAP does not
	#  require a client certificate.
	#
}
	peap \{
                tls = tls-common
		virtual_server = "inner-tunnel"
{			#  The tunneled EAP session needs a default
		#  EAP type which is separate from the one for
		#  the non-tunneled EAP module.  Inside of the
		#  PEAP tunnel, we recommend using MS-CHAPv2,
		#  as that is the default type supported by
		#  Windows clients.
}		default_eap_type = mschapv2


                copy_request_to_tunnel = no
                use_tunneled_reply = no

	\}
