From owner-freebsd-net@FreeBSD.ORG Sat Sep 6 01:01:39 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 902DC16A4BF for ; Sat, 6 Sep 2003 01:01:39 -0700 (PDT) Received: from smtp2.volja.net (smtp.volja.net [217.72.64.60]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2F0C243FDD for ; Sat, 6 Sep 2003 01:01:37 -0700 (PDT) (envelope-from jaka@schalab.net) Received: from schalab.net (moj.schalab.net [217.72.84.4]) by smtp2.volja.net (Postfix) with ESMTP id 2F63E103CB for ; Sat, 6 Sep 2003 10:01:35 +0200 (CEST) Message-ID: <3F5994CF.10802@schalab.net> Date: Sat, 06 Sep 2003 10:03:27 +0200 From: jakae User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.4) Gecko/20030624 Netscape/7.1 (ax) X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-net@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: network blocking per system (local) user X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 06 Sep 2003 08:01:39 -0000 Hello, I am wondering if there is a way for rejecting some system (shell account) users to access some networks and hosts. For example: I have a freebsd box which is connected to two different networks (public and private). I would like to give to somebody a shell account on this box, but allow him just to see, trace,.. the public network. The best would be if he could not even see that this box is connected to some private network Thank you. Jaka