Date: Tue, 14 Jan 2003 00:13:17 +0100 From: Alex <akruijff@dds.nl> To: "Steve Winnacott" <swinnacott@datasyrge.com> Cc: "Alex" <freebsd-reply@akruijff.dds.nl>, freebsd-questions@freebsd.org Subject: ipfw question (was: Re[2]: Question) Message-ID: <17930646176.20030114001317@dds.nl> In-Reply-To: <000601c2baa8$966579e0$0201a8c0@slipstream.datasyrge.net> References: <000601c2baa8$966579e0$0201a8c0@slipstream.datasyrge.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Dear/Beste Steve, Monday, January 13, 2003, 3:07:53 AM, you wrote: >>Dear/Beste Steve, >> >>Monday, January 13, 2003, 12:23:09 AM, you wrote: >> >>> Hey people, >> >>> I'm having trouble limiting users to certain services on my LAN. >> >>> Here's what im trying to do. >> >>> Based on group membership, allow or deny certain users access to certain >>> outgoing services (www, telnet, ftp, ssh, ping, traceroute, etc). Again > this >>> is not IP based, but based on group membership. Everyone can log into any > PC >>> on the LAN. I've seen something like this done in Novell, where based on > a >>> users group context, their access is limited to certain services. >> > Can it be done based on groups? These people don't have static ips Yes but you use the account on the server machine. Just check out the 'man ipfw'. I'm not an expert on this; just try it out. -- Best regards/Met vriendelijke groet, Alex To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?17930646176.20030114001317>