RE: Internet sharing authentication

2005-01-24 Thread Walker, Michael 

 Greetings,
 
 I have set up a FreeBSD gateway/firewall with ipf and ipnat in the
 past, but I am now confronted with a new challenge. I need to setup
 the firewall to only allow internet (www) access to users who
 successfully authenticate themselves with a username/password
 combination.
 
 Ideally, a user will open their web browser and be confronted with a
 authentication popup before gaining access to browse the web. Users
 should be able to access mail without authentication.
 
 Please advise on what I might use to do this.
 
 Thanks,
 Gareth

You could setup some kind of proxy server on the gateway machine, and
configure all the clients to use that as their primary proxy.

HTH
Mick


**
This email and any files transmitted with it are confidential, and may be 
subject to legal privilege, and are intended solely for the use of the 
individual or entity to whom they are addressed.  
If you have received this email in error or think you may have done so, you may 
not peruse, use, disseminate, distribute or copy this message. Please notify 
the sender immediately and delete the original e-mail from your system.

Computer viruses can be transmitted by e-mail. Recipients should check this 
e-mail for the presence of viruses. The Capita Group and its subsidiaries 
accept no liability for any damage caused by any virus transmitted by this 
e-mail.
***

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Internet sharing authentication

2005-01-24 Thread Erik Norgaard 
Gareth Bailey wrote:
Greetings,
I have set up a FreeBSD gateway/firewall with ipf and ipnat in the
past, but I am now confronted with a new challenge. I need to setup
the firewall to only allow internet (www) access to users who
successfully authenticate themselves with a username/password
combination.
Ideally, a user will open their web browser and be confronted with a
authentication popup before gaining access to browse the web. Users
should be able to access mail without authentication.
Squid seems to be your friend for www/ftp.
What do you mean by accessing mail without authenticatoin? hotmail or 
similar? If you want to provide mail service yourself, then users must 
authenticate in order not to be able to read others mail, also by 
authenticating smtp and only allow smtp to your server you prevent virus 
and spambots from spreading.

Cheers, Erik
--
Ph: +34.666334818   web: http://www.locolomo.org
S/MIME Certificate: http://www.locolomo.org/crt/2004071206.crt
Subject ID:  A9:76:7A:ED:06:95:2B:8D:48:97:CE:F2:3F:42:C8:F2:22:DE:4C:B9
Fingerprint: 4A:E8:63:38:46:F6:9A:5D:B4:DC:29:41:3F:62:D3:0A:73:25:67:C2
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]