Andrew Suffield wrote: > On Thu, Jan 03, 2008 at 07:21:08AM -0800, Tom Eastep wrote: >>> Would it possible to or has anybody tried it for anything else? I have >>> the idea to try to use it to authenticate users. >> Most people do that by redirecting all attempts to connect to the web to >> a login server. Successful login causes the ruleset to be altered to >> remove the redirection (or preempt it with a different redirection). > > What a curious idea. I always use openvpn to authenticate network > endpoints (give each user or group of users a static IP address or > block, probably in 10.0.0.0/8, and the rest is easy). Goes well with > 802.11 - it's like a form of WEP that isn't idiotic.
I use OpenVPN that way also (see http://www1.shorewall.net/OPENVPN.html#Bridge). And there is certainly no reason why the OP couldn't also use OpenVPN. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
