hi,
I have configured a LTSP server based on Redhat 7.3 with 40 disless desktop and are working fine with openoffice,printer and more... now i have configured sendmail & internet on it it works fine... also squid works fine... but now the problem is for some userligin i dont want them to access the internet while for some i want to allow access how can i do this as all have X from server , so they have the server IP so how to configure this One server for allowing and disallowing the connectivity of amsn , yahoo gaim ,emai lhttp for some user.
I just have an idea which I did not try out myself. You probably need to compile your own server kernel for that....
Let's assume your boxes sit in 192.168.0.*.
There is an iptables ruleset expansion that allows for "owner match", so one can treat packets differently depending on the user who sends them.
Now you could go like this (details: please RTFM):
Make an entry that sends all packets that head to internet through a user defined queue, let's call it GUARD.
Then you could enter one rule per user that may use the internet (do NOT forget to enter root, and all those system users) and set one rule to the end of GUARD that rejects all other packets.
I'm not able to outline this correctly from memory, so you will need the firewall/iptables howto from www.tldp.org.
HTH,
Anselm
------------------------------------------------------- This SF.net email is sponsored by OSDN's Audience Survey. Help shape OSDN's sites and tell us what you think. Take this five minute survey and you could win a $250 Gift Certificate. http://www.wrgsurveys.com/2003/osdntech03.php?site=8 _____________________________________________________________________ Ltsp-discuss mailing list. To un-subscribe, or change prefs, goto: https://lists.sourceforge.net/lists/listinfo/ltsp-discuss For additional LTSP help, try #ltsp channel on irc.freenode.net
