Dropping a specific Owner from a certain IP
Scott Mayo
sgmayo at mail.bloomfield.k12.mo.us
Tue Sep 7 21:46:12 CEST 2004
I have my filter set up with 1 internal nic and 1 external nic. My
workstations are addressed 10.0.0.1-10.0.255.255 with a subnet of
255.255.0.0. My filter 10.0.0.1 has Dansguardian and Squid/Squidguard
which authenticates through my Samba server 10.0.0.5.
I have a generic user 'user' that I give to a lab in the elementary
(10.0.8.1-10.0.8.255). Is there some way that I can stop that generic
login from being used from anywhere else? I tried the following, but it
did not do anything.
iptables -A OUTPUT -m owner --uid-owner 10000 -s ! 10.0.8.0/24 -j DROP
10000 is the uid of 'user' on my samba server. Is the uid actually
pulled from the filter server? If so then I guess that I cannot do this.
Thanks for any info.
--
Scott Mayo
Technology Coordinator
Bloomfield Schools
PH: 573-568-4564
FA: 573-568-4565
Pager: 800-264-2535 X2549
WindowS
LinUX!
Duct tape is like the force, it has a light side and a dark side and it
holds the universe together.
More information about the netfilter
mailing list