When the Radius server reply is received, the fastPCRF sends user properties to the fastDPI, which in turn set the authorization status either to **"authorized" (Accept-Accept)** or **"unauthorized" (Accept-Reject) state**.
When the Radius server reply is received, the fastPCRF sends user properties to the fastDPI, which in turn set the authorization status either to **"authorized" (Accept-Accept)** or **"unauthorized" (Accept-Reject) state**.
-
<note important>If a subscriber resides in "unauthorized" state, the Stingray Service Gateway itself doesn't limit subscriber's traffic. In order to limit traffic the special parameters should be received within the Access-Reject, they are the following: special policing [[en:dpi:dpi_options:opt_capture:capt_portal:start|(highly truncated bandwidth)]] and [[en:dpi:dpi_options:opt_capture:start|service 5 (Allow list)]] specifying the sites an unauthorized user is allowed to access - usually it is the [[en:dpi:dpi_options:opt_capture:capt_description:start|captive portal]].</note>
+
<note important>If a subscriber resides in "unauthorized" state, the Stingray Service Gateway itself doesn't limit subscriber's traffic. In order to limit traffic the special parameters should be received within the Access-Reject, they are the following: special policing [[en:dpi:dpi_options:opt_capture:capt_portal|(highly truncated bandwidth)]] and [[en:dpi:dpi_options:opt_capture|service 5 (Allow list)]] specifying the sites an unauthorized user is allowed to access - usually it is the [[en:dpi:dpi_options:opt_capture:capt_description|captive portal]].</note>
