Lars Jensen wrote: >How do I configure shorewall so a user (my child) can make outgoing >connections to specific IPs only through a web browser, and the rest of >the internet is off limits.
Put a rule in 'rules', or set the policy in 'policy', to block all traffic from your local zone (or the FW zone if the user is on the firewall machine) to the net zone. Add a rule to allow the specific traffic you want to allow. Take a look at the documentation for those two files, and if you still need help come back and ask again. Whether you set the policy, or create a rule to drop all traffic depends on what else is happening on the network. If it's just the one machine but you want other machines to have free access, then set the policy to allow and use a rule to block access for that one machine. The alternative is you block all outbound traffic and selectively allow it for the various devices that need it. ------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
