On Fri, 28 Jun 2013, Ricardo Klein wrote: > I think someone is already working in a ipset module for that. > We need that here too... I'd be fairly surprised at such a module... > On Fri, Jun 28, 2013 at 12:01 PM, Nick Khamis <symack@xxxxxxxxx> wrote: > > > > Is it possible to have a MySQL backed IPTables? What we are trying to > > accomplish is having our clients supply us with a mac address (or ip), > > and we would let them through our core network. This would be done > > automatically on our website i.e.: > > > > * User logs into the website, and provides mac address > > * We insert the record in the database as an allow rule... > > * Restart iptables? That's pretty similar to a captive portal, which is quite simple to setup: you need a small webpage written say in PHP (IP and MAC can be gathered directly if the webserver is on the same LAN) and a bitmap:ip,mac type of set with timeout, and some static iptables rules. It's almost trivial if the things run on the gateway. Best regards, Jozsef - E-mail : kadlec@xxxxxxxxxxxxxxxxx, kadlecsik.jozsef@xxxxxxxxxxxxx PGP key : http://www.kfki.hu/~kadlec/pgp_public_key.txt Address : Wigner Research Centre for Physics, Hungarian Academy of Sciences H-1525 Budapest 114, POB. 49, Hungary -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
