Date: Sun, 30 Sep 2007 03:28:04 +0100 From: RW <mlt01@mlists.homeunix.com> To: freebsd-questions@freebsd.org Subject: Re: Deny access from localhost to internet..... Message-ID: <20070930032804.6123c175@gumby.homeunix.com.> In-Reply-To: <46FEEC52.1050705@gmail.com> References: <fda61bb50709281051j4953c79bi295138355edc9ad0@mail.gmail.com> <46FEEC52.1050705@gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, 30 Sep 2007 02:22:42 +0200 Sten Daniel Soersdal <netslists@gmail.com> wrote: > Agus wrote: > > Hi guys, > > > > How are you today? > > The question is this..I want to restrict external access, that is > > from my BSD to the internet, to some groups of users. Other groups > > i want to access internet normally. I dont want this group of users > > to be able to establish connections to the internet but yes to the > > internal systems on the LAN... > > > > Is this possible without hacking the kernel? > > > > Thanks and salutes for all > > > > You want to restrict internet, but not LAN, access for certain users > logged into your BSD box? > > man ipfw ( look for "uid" and "gid" ) > man pf ( look for "user" and "group" ) > Danger Will Robinson! Don't do that unless you've read the bugs sections of the ipfw and pf.conf man pages.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20070930032804.6123c175>