Date: Wed, 27 Mar 2002 06:27:45 -0500 From: Lord Raiden <raiden23@netzero.net> To: Gabriel =?iso-8859-1?Q?Le=F2n?= Leyva <gleon@socoada.com.mx>, questions@FreeBSD.org Subject: Re: block certain ips Message-ID: <4.2.0.58.20020327062142.009612a0@pop.netzero.net> In-Reply-To: <5.0.1.4.0.20020326180625.02dbd398@oficinas.socoada.com.mx>
next in thread | previous in thread | raw e-mail | index | archive | help
At 06:10 PM 3/26/02 -0700, Gabriel Le=F2n Leyva wrote:
> Is there a way to block certain on bsd, I have several pcs with=20
> 10.10.10.? ips
>I want them to be able to user microsoft messenger but for some of these=20
>ips I dont want
>them to access internet... Could this be posible.. Thanks in advance..
Yes, this is easy. But it depends. Are you referring to doing=20
this on each machine or via a firewall? I'd say it would be easier if it's=
=20
going through a firewall or a proxy because then you have less work and it=
=20
will be easier to actually block this and keep track of it at the same=20
time. IF your internet access is routed through a firewall, just setup=20
either a proxy so that only aproved IP's have net access, or in IPFW just=20
setup some rules that says something to the respect of "allow out for this=
=20
and this, but not for these if this and this are true, and block the rest=20
and only apply to these IP's." Also, don't forget to log this so you can=20
see who's still trying to break the rules. :)
As far as how to setup these rules, I'm probubly the last to ask=20
on that because I'm definately no expert on IPFW, but I know it can be done=
=20
cause I've done it. :)
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4.2.0.58.20020327062142.009612a0>