Date: Fri, 04 May 2007 17:18:58 +0000 From: "Ricardo Benq" <rbenq@hotmail.com> To: freebsd-pf@freebsd.org Subject: Re: PF and AD Message-ID: <BAY114-F365394C9F95BA357613A91A5400@phx.gbl> In-Reply-To: <463AF437.3020108@bestnet.kharkov.ua>
next in thread | previous in thread | raw e-mail | index | archive | help
Ok, Gregory, here it goes: In our network, all users are AD domain users that have access to services/networks restricted by AD groups. We already have a SQUID/Dansguardian that filter internet access for AD user/groups via ACLs for radio, video, messenger, etc. All Active Diretory users are authenticated on SQUID , using SAMBA/Winbind. What we want is to use PF to filter access to, say, DMZ servers and internet from internal network, based on user names and AD groups. Regards, Ben. Ricardo Benq wrote: >Hello. >Is it possible to make filter rules that are based on Microsoft Active >Directory users? >Do I have to install samba/winbind? Are there tutorials? > Short answer: no. Longer answer: Not that I can really think off an example where that would be of use. Can you provide more details as of your network setup and what do you want to achieve? The moon is too cloudy today, and so is our spiritual possibilities. -- With best regards, Gregory Edigarov _________________________________________________________________ MSN Messenger: instale grátis e converse com seus amigos. http://messenger.msn.com.br
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?BAY114-F365394C9F95BA357613A91A5400>