[Shorewall-users] Only allowing certain users.

Tom Eastep teastep@shorewall.net
Fri, 26 Apr 2002 08:41:28 -0700 (PDT)


On Fri, 26 Apr 2002, Tom Eastep wrote:

> On Fri, 26 Apr 2002, Tom Eastep wrote:
> 
> > On Fri, 26 Apr 2002, Aaron Axelsen wrote:
> > 
> > > Is there a way within shorewall to only allow certina users to obtain
> > > internet access via ipaddress.  For example, if I have 5 computers, but
> > > I only want 3 to access the interent, but I still want them to be able
> > > to access all the other computers.
> > >
> > 
> > Sure -- just separate your local systems into two zones; one with internet 
> > access and one without.
> > 
> 
> Or, if there is just a small number of hosts that you want to block:
> 
> REJECT	loc	net:<ip1>,<ip2>,...	all
>

Duh -- should be:

REJECT	loc:<ip1>,<ip2>,...	net	all 

-Tom
-- 
Tom Eastep    \ Shorewall - iptables made easy
AIM: tmeastep  \ http://www.shorewall.net
ICQ: #60745924  \ teastep@shorewall.net