From owner-freebsd-net@FreeBSD.ORG Sat Sep 6 03:38:25 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C493116A4BF for ; Sat, 6 Sep 2003 03:38:25 -0700 (PDT) Received: from silver.he.iki.fi (helenius.fi [193.64.42.241]) by mx1.FreeBSD.org (Postfix) with ESMTP id B035A43FF7 for ; Sat, 6 Sep 2003 03:38:23 -0700 (PDT) (envelope-from pete@he.iki.fi) Received: from he.iki.fi (localhost.he.iki.fi [127.0.0.1]) by silver.he.iki.fi (8.12.9/8.11.4) with ESMTP id h86AcKkO018409; Sat, 6 Sep 2003 13:38:21 +0300 (EEST) (envelope-from pete@he.iki.fi) Message-ID: <3F59B91C.2090207@he.iki.fi> Date: Sat, 06 Sep 2003 13:38:20 +0300 From: Petri Helenius User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.3) Gecko/20030501 X-Accept-Language: English [en],Finnish [fi] MIME-Version: 1.0 To: jakae References: <3F5994CF.10802@schalab.net> In-Reply-To: <3F5994CF.10802@schalab.net> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit cc: freebsd-net@freebsd.org Subject: Re: network blocking per system (local) user X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 06 Sep 2003 10:38:25 -0000 jakae wrote: > Hello, > > I am wondering if there is a way for rejecting some system (shell > account) users to access some networks and hosts. I wonder if the network virtualization patch would do it, if I remember correctly, it has separate interfaces for processes. Look in the list archives and see if it fits. Pete > > > For example: > I have a freebsd box which is connected to two different networks > (public and private). I would like to give to somebody a shell account > on this box, but allow him just to see, trace,.. the public network. > The best would be if he could not even see that this box is connected > to some private network > > Thank you. > > Jaka > > > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"