Eric, I looked into NuFW, but it seems more complex that what I need. The biggest drawback to it is the requirement for each client to be running authentication software. All I really need are a few specific rules, if traffic is coming in on this interface from this IP and mac, allow it, otherwise redirect ts localhost if destination port is 80. -Josh On Wed, 2004-10-20 at 13:12, Eric Leblond wrote: > Hi, > > It really looks like you want to distinguish between well know users and > a set of mobile users. > NuFW (http://www.nufw.org) is done to distinguish between users because > it's an authentication firewall. It authenticates connection in a secure > manner, so you're sure of the identity of users that you let go accross > your firewall. > > You can easily manage to build a solution comparable to the one you > describe below with NuFW. With more flexibility and more security. > BR,
