Date: Sun, 13 Aug 2000 16:38:44 -0700 (PDT) From: "Eric J. Schwertfeger" <ejs@bfd.com> To: Evren Yurtesen <yurtesen@ispro.net.tr> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: allowing a user to bind a specific IP only? Message-ID: <Pine.BSF.4.21.0008131634310.72220-100000@harlie.bfd.com> In-Reply-To: <Pine.BSF.4.21.0008131905470.41423-100000@finland.ispro.net.tr>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, 13 Aug 2000, Evren Yurtesen wrote: > Is it possible to allow a user's processes to be able > to bind a specific IP only? (assuming the machine has multiple > IP addresses) I've never tried it, but it is at least theoritically possible to use ipfw to filter based on the owner of the local process, so you could reject any packets that the user sends or receives, unless they're to the one allowed IP address. This isn't the exact mechanism you're looking for, so I don't know if it will solve the problem you're running into. It would take two ipfw rules, the first being a skipto skipping past the second rule, matching if it is the allowed IP address, the second denying if it is the restricted user. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0008131634310.72220-100000>