hi Is this possible ... I have a IP-tables firewall on a machine "A". I have LDAP database on machine "B". And I want all the traffic going out of my firewall(A) to be authenticated against this LDAP server(B). Consider following scenario (network diagram)... ********************************FIGURE******************************** Internet <--> Router (realIP-X.X.X.254) <--> Linux FW (Bridge-No IP) | | | ------------------ switch--------------- | | | LDAP Server(X.X.X.100) | | server-1 server-2 (RealIP-X.X.X.10) (RealIP-X.X.X.3) (FakeIP-192.168.1.X) (FakeIP-192.168.2.X | | | Intranet ********************************************************************** The question is, can I keep log and count the traffic per user if he (from Intranet) uses any type of service (http,ssh,telnet,ftp) via the Linux firewall. And Can I authenticate this user against the LDAP server (which has a realIP) Please advice --yogesh
