Dropping a specific Owner from a certain IP

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

I have my filter set up with 1 internal nic and 1 external nic. My workstations are addressed 10.0.0.1-10.0.255.255 with a subnet of 255.255.0.0. My filter 10.0.0.1 has Dansguardian and Squid/Squidguard which authenticates through my Samba server 10.0.0.5.

I have a generic user 'user' that I give to a lab in the elementary (10.0.8.1-10.0.8.255). Is there some way that I can stop that generic login from being used from anywhere else? I tried the following, but it did not do anything.

iptables -A OUTPUT -m owner --uid-owner 10000 -s ! 10.0.8.0/24 -j DROP

10000 is the uid of 'user' on my samba server. Is the uid actually pulled from the filter server? If so then I guess that I cannot do this.
Thanks for any info.

--
Scott Mayo
Technology Coordinator
Bloomfield Schools
PH: 573-568-4564
FA: 573-568-4565
Pager: 800-264-2535 X2549

WindowS
    LinUX!

Duct tape is like the force, it has a light side and a dark side and it
holds the universe together.

[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux