Date: Fri, 7 Nov 1997 00:11:38 -0800 From: Ben Pepa <webmaster@nwss.sd40.bc.ca> To: Brian Weber <brian@cbiowa.com> Cc: freebsd-isp@FreeBSD.ORG Subject: Re: User name authentication through firewalls Message-ID: <l03110704b0887b8d3976@[24.112.126.210]> In-Reply-To: <Pine.BSF.3.95q.971107131922.485A-100000@student.unpar.ac.id> References: <345E51BB.5739DD57@cbiowa.com>
index | next in thread | previous in thread | raw e-mail
> Here is what I am up against. I am asked to install a firewall that > will allow traffice on different ports. So far pretty standard. They > want that access given through user name not ip address. That is were > the problem is. I have been told that NT can do this through there > proxy server. Is this possible through freebsd or linux or should I > just go with the nt solution. > Please tell me there is a way to make unix do this!!!! > What I had implemented for our high school lan was to use my FreeBSD box as a gateway using ipfw and natd. The clients were Novell & Macintosh computers running Netscape. Netscape would boot to a user login screen. They would submit their login name & password to the local server (as local packets didn't need exterior routing - our intranet). It would then, if authenticated, add a route from the client machine so they could get onto the internet. And, I set the server to logoff clients after 30 minutes using crontab (by flushing the ipfw rules). This limited students to 30 minutes per login. Benhome | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?l03110704b0887b8d3976>