Date: Sun, 6 Jul 2008 16:34:40 -0300 From: Agus <agus.262@gmail.com> To: RW <mlt01@mlists.homeunix.com> Cc: freebsd-questions@freebsd.org Subject: Re: Deny access from localhost to internet..... Message-ID: <fda61bb50807061234y12581895lb3bd06bba0f16089@mail.gmail.com> In-Reply-To: <20070930032804.6123c175@gumby.homeunix.com.> References: <fda61bb50709281051j4953c79bi295138355edc9ad0@mail.gmail.com> <46FEEC52.1050705@gmail.com> <20070930032804.6123c175@gumby.homeunix.com.>
next in thread | previous in thread | raw e-mail | index | archive | help
2007/9/29 RW <mlt01@mlists.homeunix.com>: > On Sun, 30 Sep 2007 02:22:42 +0200 > Sten Daniel Soersdal <netslists@gmail.com> wrote: > > > Agus wrote: > > > Hi guys, > > > > > > How are you today? > > > The question is this..I want to restrict external access, that is > > > from my BSD to the internet, to some groups of users. Other groups > > > i want to access internet normally. I dont want this group of users > > > to be able to establish connections to the internet but yes to the > > > internal systems on the LAN... > > > > > > Is this possible without hacking the kernel? > > > > > > Thanks and salutes for all > > > > > > > You want to restrict internet, but not LAN, access for certain users > > logged into your BSD box? > > > > man ipfw ( look for "uid" and "gid" ) > > man pf ( look for "user" and "group" ) > > > > Danger Will Robinson! > > Don't do that unless you've read the bugs sections of the ipfw > and pf.conf man pages. > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to " > freebsd-questions-unsubscribe@freebsd.org" > OK...cool...i am using pf as firewall...arent any issues in using both? i mean pf and ipfw? Cheers, Agustin
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?fda61bb50807061234y12581895lb3bd06bba0f16089>