How would I know which 192.168.1.x ip has been authenticated so that I
can create a respective rule for, as the web server would be receving the ip
for eth0 which is the external interface for internet.
Also, need help with the rules as well.
Do
what I do and write a special php script which they authenticate and it
places entries into the database.
Then have a "root" process which continously runs (like a service)
and scans the database for flagged entries which represent new authenticated
users and it resets the flag and create a rule for them.
Then the rest is up to you how you want to keep/remove the rules..
ie. have the websession refresh every 30 seconds and it deletes the rules if
they close the browser etc..etc..
this is handy for wireless folks who don't really give a damn about
mac/ip spoofing but don't want ANYONE to just hop on
easily...
HI everybody,
I am new to iptables. Need to figure out a solution.
- Want to create an authentication based NAT.
- Have the gateway machine running DHCP server on eth1 that gives up
192.168.1.x ip addresses.
- eth0 on the gateway has a real ip.
- I have an web based authentication working at lets say www.abc.com on a remote web server.
- Now I have the Masquerading working at the gateway machine but I need
to restrict the internet access to ip addresses who can authenticate
themselves at www.abc.com. How do I
interface authentication from web server with Iptables NAT and what rules do
I use to get this done.
- Also I need that any port 80 request from address 192.168.1.x by
defaults goes to www.abc.com
I think it can be done using script, but I am not sure how to use
iptables for this.
Thanks in advance.
Zia
Do you Yahoo!?
Yahoo!
SiteBuilder - Free, easy-to-use web site design software
