Firewall Wizards mailing list archives
Re: Blocking MSN (and any other service for that matter)
From: Jean Paul López <jplopez () netthink es>
Date: Fri, 23 Apr 2004 11:27:05 +0200
Hi, If an intern leaves, we assign his old computer to the new person. We have interns come and go all the time. These IP's are the IP's in use for the segment of the network assigned to interns. The laptop could be a problem, but here in Spain there are few interns who can actually afford a laptop, so I'm not too worried. I'd have to look into your proposition regarding the use of the DHCP list. I did the quickfix the way I did becuase it had to be fast and had to work, so it is quite straight-ahead. Regards, JPL ----- Original Message ----- From: "Chuck Vose" <vosechu () roman-fleuve com> To: "Jean Paul López" <jplopez () netthink es> Cc: <firewall-wizards () honor icsalabs com> Sent: Thursday, April 22, 2004 7:56 PM Subject: Re: [fw-wiz] Blocking MSN (and any other service for that matter)
# table IM not permitted table <NoIM> { 192.168.1.210 192.168.1.211 192.168.1.212 192.168.1.213 192.168.1.214 192.168.1.215 192.168.1.216 192.168.1.217 192.168.1.218 192.168.1.219 192.168.1.220 192.168.1.221 192.168.1.222 192.168.1.223 192.168.1.224 192.168.1.225 }I wonder if there isn't a better way to do this. Seems like every time you add an intern or lose one you have to adjust this table unless they're using the same mac address. What if they bring in a laptop? The method my school uses is to allow all people access to a subnet of wounded IP's, these can't do anything interesting other than contact the registration http server. Once registered it gives the computer a permanent IP and writes their info in a file so that the firewall can decide what to allow through. Instead: table <NoIM> { hash:/var/dhcp-intern-hosts } Or whatever the equivalent is. Would this be feasible / useful in this case?
_______________________________________________ firewall-wizards mailing list firewall-wizards () honor icsalabs com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- Blocking MSN (and any other service for that matter) Jean Paul López (Apr 22)
- Re: Blocking MSN (and any other service for that matter) Chuck Vose (Apr 22)
- Re: Blocking MSN (and any other service for that matter) Carric Dooley (Apr 23)
- Re: Blocking MSN (and any other service for that matter) Chuck Vose (Apr 23)
- Re: Blocking MSN (and any other service for that matter) Paul D. Robertson (Apr 23)
- Re: Blocking MSN (and any other service for that matter) Carric Dooley (Apr 23)
- Re: Blocking MSN (and any other service for that matter) Jean Paul López (Apr 23)
- Re: Blocking MSN (and any other service for that matter) Chuck Vose (Apr 22)
- <Possible follow-ups>
- RE: Blocking MSN (and any other service for that matter) MHawkins (Apr 23)
- RE: Blocking MSN (and any other service for that matter) Chuck Vose (Apr 24)