PF and AD
Ricardo Benq
rbenq at hotmail.com
Fri May 4 17:18:59 UTC 2007
Ok, Gregory, here it goes:
In our network, all users are AD domain users that have access to
services/networks restricted by AD groups.
We already have a SQUID/Dansguardian that filter internet access for AD
user/groups via ACLs for radio, video, messenger, etc. All Active Diretory
users are authenticated on SQUID , using SAMBA/Winbind.
What we want is to use PF to filter access to, say, DMZ servers and internet
from internal network, based on user names and AD groups.
Regards, Ben.
Ricardo Benq wrote:
>Hello.
>Is it possible to make filter rules that are based on Microsoft Active
>Directory users?
>Do I have to install samba/winbind? Are there tutorials?
>
Short answer: no.
Longer answer: Not that I can really think off an example where that would
be of use. Can you provide more details as of your network setup and what do
you want to achieve? The moon is too cloudy today, and so is our spiritual
possibilities.
--
With best regards,
Gregory Edigarov
_________________________________________________________________
MSN Messenger: instale grátis e converse com seus amigos.
http://messenger.msn.com.br
More information about the freebsd-pf
mailing list