From owner-freebsd-questions@FreeBSD.ORG  Mon Apr  3 07:34:55 2006
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 599EC16A420
	for <freebsd-questions@freebsd.org>;
	Mon,  3 Apr 2006 07:34:55 +0000 (UTC)
	(envelope-from jay2xra@yahoo.com)
Received: from web51602.mail.yahoo.com (web51602.mail.yahoo.com
	[206.190.38.207])
	by mx1.FreeBSD.org (Postfix) with SMTP id 68E7243D66
	for <freebsd-questions@freebsd.org>;
	Mon,  3 Apr 2006 07:34:50 +0000 (GMT)
	(envelope-from jay2xra@yahoo.com)
Received: (qmail 1240 invoked by uid 60001); 3 Apr 2006 07:34:50 -0000
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com;
	h=Message-ID:Received:Date:From:Subject:To:MIME-Version:Content-Type:Content-Transfer-Encoding;
	b=agauOdB9wUkWJAKcj7P9+rsdpmOi0noPMGu/wy3JqjvH3KfbpYoLQA8CksOsMNCfUix0EOKYbAiFccvgLZbjLc/kWpTSbx6mrGq+/w6KN1u+LmuQBZ8N61Wl//nuJH22exMkfIVGu8JJcnUSB4xQsaaanOVJ7tSkqZGrnWg+33k=
	; 
Message-ID: <20060403073449.1238.qmail@web51602.mail.yahoo.com>
Received: from [202.90.158.202] by web51602.mail.yahoo.com via HTTP;
	Mon, 03 Apr 2006 00:34:49 PDT
Date: Mon, 3 Apr 2006 00:34:49 -0700 (PDT)
From: Mark Jayson Alvarez <jay2xra@yahoo.com>
To: freebsd-questions@freebsd.org
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit
X-Content-Filtered-By: Mailman/MimeDel 2.1.5
Subject: ipfw plus authentication???
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 03 Apr 2006 07:34:55 -0000

Hi
 
 I am looking for ways to manage our LAN by having each user register their ipaddress, mac address, workstation os, etc. in our ldap directory. Now in our pcrouter, the users will first send his login credentials to the pcrouter, and then the pcrouter will check against ldap if this login is correct, and if it is, then it will now do an ldapsearch/compare operation to see if the source address (ip/mac) of the user trying to gain network access is indeed belongs to that user. Only then, the ipfw ruleset will be changed to allow traffic originating from this source address...
 
 Anyone have gone with this solution before??
 
 Thanks
 
		
---------------------------------
Blab-away for as little as 1¢/min. Make  PC-to-Phone Calls using Yahoo! Messenger with Voice.