Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Firewalling at the domain users level instead of network level

From: Devdas Bhagat <devdas () dvb homelinux org>
Date: Mon, 19 Jul 2004 23:26:22 +0530
On 18/07/04 07:41 +0100, Santos wrote:

I'm implementing a "Windows clients, Linux servers" kind of network. 
Some users may login at different machines, therefore, ip level is not 
enough. I wonder if it's possible to control the access at the "domain 
users" level instead of network or ip level.  I could implement some 
proxies, but each client machine had to be configured  and that would


Proxies for what protocols? For things done via a browser, Squid can
authenticate off a Samba server. Browsers can be autoconfigured, and
IIRC, even the autconfiguration URL can be passed on via DHCP.

I don't know if this is doable, but 802.1q with separate VLANs
configured via the radius profile should do the trick.

Devdas Bhagat
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: