FreeBSD Mail Archives

Date:      Tue, 26 Jun 2001 21:33:38 -0400
From:      James Housley <jim@thehousleys.net>
To:        Andrew Reid <andrew.reid@plug.cx>
Cc:        freebsd-isp@freebsd.org
Subject:   Re: Username-based Routing/Filtering
Message-ID:  <3B3937F2.BD942A74@thehousleys.net>
References:  <993602477.1681.11.camel@percible.alfred.cx>

index | next in thread | previous in thread | raw e-mail


[-- Attachment #1 --]
Andrew Reid wrote:
> 
> Hello All,
> 
> I'm a bit of a FreeBSD convert after using Linux for years, so I'm a bit
> unclear of the capabilities of FreeBSD in some circumstances.
> 
> A feature of Linux 2.4 is that you can route/firewall/filter based on
> the username.
> 
> For example, if I log in as 'andrew' to my machine, I get to go out to
> the wide-world via the Microwave link with no restrictions. If I log on
> as 'someotheruser' I'm shunted out a modem link.
> 
> My question:
> 
> Can FreeBSD route based on a username?
> Will IPFW/IPF filter based on username?
> 

man 8 ipfw

IPFW can do routing based on UID or GID.  What you do from there is up
to you, but it is able to be done.

Jim

-- 
/"\   ASCII Ribbon Campaign  .
\ / - NO HTML/RTF in e-mail  .
 X  - NO Word docs in e-mail .
/ \ -----------------------------------------------------------------
jeh@FreeBSD.org      http://www.FreeBSD.org     The Power to Serve
jim@TheHousleys.Net  http://www.TheHousleys.net
---------------------------------------------------------------------
Unix is very user-friendly.  It's just picky who its friends are.
[-- Attachment #2 --]
0�	*�H��
���0��10	+0	*�H��
���0��0�%�L"0
	*�H��
0��10	UZA10UWestern Cape10UDurbanville10
U
Thawte10UCertificate Services1(0&UPersonal Freemail RSA 1999.9.160
000921154029Z
010921154029Z0^10UHousley10U*James10U
James Housley1"0 	*�H��
	jim@thehousleys.net0��0
	*�H��
��0���������+�����hvȦi;�s������b�&[ŔGF�[0㩌��O#��j�d�Fo�C��s������:X0�IZzm��&�,��' ��'��L�#˦�xA0���c�<B�����A<�"3m��k� ��
�Q0O0U0�jim@thehousleys.net0U�00U#0����`�fU��X�F�a�#�Ì0
	*�H��
��U��e|�̕��^����.3�.��on%j�{�-���3��7��vD���kx^��o9h��sIJTV���j���cG�.�j߄@~�І�U�!)ȷKE�+QKf����n�ɵ����B#�庝��o0�0�}�0
	*�H��
0��10	UZA10UWestern Cape10U	Cape Town10U
Thawte Consulting1(0&UCertification Services Division1$0"UThawte Personal Freemail CA1+0)	*�H��
	personal-freemail@thawte.com0
990916140140Z
010915140140Z0��10	UZA10UWestern Cape10UDurbanville10
U
Thawte10UCertificate Services1(0&UPersonal Freemail RSA 1999.9.160��0
	*�H��
��0�����iZ���z��]�!�#r�LK�~����r$�BR�W��{az���r98����e��^��e���yvL>�hpu��t�,O	1��A�rƦ]�D��.�M��օ>l�x�~@�эW��s�0�F�O�7050U�0�0U#0�rI�s4�U�vr�~w��Ʋ0
	*�H��
��k�Y�1�����rr��`H��U�{�g��ap�m¥7؝�(V��\uoƑ��lfq�|k�o��!6-���	��-mƃR����������t��\���~��
orzg,ks�����n�Ν��c)�	~U�1��0��0��0��10	UZA10UWestern Cape10UDurbanville10
U
Thawte10UCertificate Services1(0&UPersonal Freemail RSA 1999.9.16L"0	+���0	*�H��
	1	*�H��
0	*�H��
	1
010627013341Z0#	*�H��
	1�� ��~��!����1��	�|`0R	*�H��
	1E0C0
*�H��
0*�H��
�0+0
*�H��
@0
*�H��
(0
	*�H��
���ܥd��D�%�愉xŝ�3v�N$CD��+Ѫַ{��L�[�;���?����*Е��a���T����/���6}�֫�1��f`�Rdnf�Nn�V��	W3��]�I���n�+�^�oYq

help

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3B3937F2.BD942A74>

Header And Logo

Peripheral Links

Site Navigation

Header And Logo

Peripheral Links

Search

Site Navigation