Deny access from localhost to internet.....
Agus
agus.262 at gmail.com
Sun Jul 6 19:34:41 UTC 2008
2007/9/29 RW <mlt01 at mlists.homeunix.com>:
> On Sun, 30 Sep 2007 02:22:42 +0200
> Sten Daniel Soersdal <netslists at gmail.com> wrote:
>
> > Agus wrote:
> > > Hi guys,
> > >
> > > How are you today?
> > > The question is this..I want to restrict external access, that is
> > > from my BSD to the internet, to some groups of users. Other groups
> > > i want to access internet normally. I dont want this group of users
> > > to be able to establish connections to the internet but yes to the
> > > internal systems on the LAN...
> > >
> > > Is this possible without hacking the kernel?
> > >
> > > Thanks and salutes for all
> > >
> >
> > You want to restrict internet, but not LAN, access for certain users
> > logged into your BSD box?
> >
> > man ipfw ( look for "uid" and "gid" )
> > man pf ( look for "user" and "group" )
> >
>
> Danger Will Robinson!
>
> Don't do that unless you've read the bugs sections of the ipfw
> and pf.conf man pages.
> _______________________________________________
> freebsd-questions at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "
> freebsd-questions-unsubscribe at freebsd.org"
>
OK...cool...i am using pf as firewall...arent any issues in using both? i
mean pf and ipfw?
Cheers,
Agustin
More information about the freebsd-questions
mailing list