cannot build a dedicated teacher-segment.
On a single, physical student-segment, I could have a shared-network,
comprising a student-net and a teacher-net.
However, I need to build some four different student-segments due to the
organizational structure and access policies.
My Q: Is it possible to 'superimpose' a single logical teacher-net to
span the four physical student-segments in a shared-network?
The net topology itself will have to be possible and dhcp will have
work.
I already see a problem in which IP# will be default gateway for
teachers.
This arrangement should neatly make it possible to implement firewall
rules discriminating teacher access from student access.
Yes, I know they would still share physical nets, thus not separating
them completely.
Otherwise, I can scatter teachers on the four student-segments, give
them fixed IP#'s belonging to the subnet they're on using dhcp, and have
multiple firewall rules, one set for each teacher-per-subnet-IP-range.
Using ipchains, is it possible to implement authentication for a group
of users, here the teachers?
--
Regards,
Mogens Valentin
Networking - Security - Programming
Linux configuration and troubleshooting
http://www.danbbs.dk/~monz - monz@danbbs.dk
-
: send the line "unsubscribe linux-net" in
the body of a message to majordomo@vger.kernel.org
