From owner-freebsd-questions Mon Jun 17 2:50:27 2002 Delivered-To: freebsd-questions@freebsd.org Received: from spork.pantherdragon.org (spork.pantherdragon.org [206.29.168.146]) by hub.freebsd.org (Postfix) with ESMTP id B6C9437B404 for ; Mon, 17 Jun 2002 02:50:21 -0700 (PDT) Received: from spark.techno.pagans (spark.techno.pagans [4.61.202.145]) by spork.pantherdragon.org (Postfix) with ESMTP id 9BAE1471DA for ; Mon, 17 Jun 2002 02:50:21 -0700 (PDT) Received: from pantherdragon.org (speck.techno.pagans [172.21.42.2]) by spark.techno.pagans (Postfix) with ESMTP id 486FCFEBE for ; Mon, 17 Jun 2002 02:50:20 -0700 (PDT) Message-ID: <3D0DB0DC.2A7F8E1E@pantherdragon.org> Date: Mon, 17 Jun 2002 02:50:20 -0700 From: Darren Pilgrim X-Mailer: Mozilla 4.76 [en] (Win98; U) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-questions@freebsd.org Subject: "Login for services" ipf/ipfw rule creation? Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG I have this idea to let people gain access to my server. The idea is to have a web-page where they enter their username and password, and select which services they want access to and for how long. The script would then create a stateful firewall rule for the IP address the user logged in from that would be removed after the period specified. I know ipfw doesn't have the ability to flush the static and dynamic rules seperately, but that ipf does. Can I use both ipfw and ipf simutaneously, or is it an either/or deal? Is there any functionality in ipf to remove a rule after a period of time, or would I need to add cron jobs to remove the rule? Is there anything already existing to do this? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message