On Wed, 2004-10-20 at 13:28 -0600, jgalvez@xxxxxxxxxxx wrote: > Eric, > > I looked into NuFW, but it seems more complex that what I need. The > biggest drawback to it is the requirement for each client to be running > authentication software. Well, it seems the new no client mode was really awaited ;-) NuFW 0.9.5 was released today bringing the possibility to do authentication without client. The main problem is that for the moment, only an ident module is provided ... If you only use Linux on your PC, it can be a solution. If it is not the case, then it will only be a solution when the work on "microsoft" module will be finished. BR, > > All I really need are a few specific rules, if traffic is coming in on > this interface from this IP and mac, allow it, otherwise redirect ts > localhost if destination port is 80. > > -Josh > > On Wed, 2004-10-20 at 13:12, Eric Leblond wrote: > > Hi, > > > > It really looks like you want to distinguish between well know users and > > a set of mobile users. > > NuFW (http://www.nufw.org) is done to distinguish between users because > > it's an authentication firewall. It authenticates connection in a secure > > manner, so you're sure of the identity of users that you let go accross > > your firewall. > > > > You can easily manage to build a solution comparable to the one you > > describe below with NuFW. With more flexibility and more security. > > > BR, > -- Eric Leblond <eric@xxxxxxxxx> NuFW, Now User Filtering Works : http://www.nufw.org
Attachment:
signature.asc
Description: This is a digitally signed message part
