Firewalling at the domain users level instead of network level

To: debian-firewall@lists.debian.org
Subject: Firewalling at the domain users level instead of network level
From: Santos <casd@netvisao.pt>
Date: Sun, 18 Jul 2004 07:51:18 +0100
Message-id: <[🔎] 40FA1DE6.7070100@netvisao.pt>

Hi all.


I'm implementing a "Windows clients, Linux servers" kind of network.
Some users may login at different machines, therefore, ip level is not
enough. I wonder if it's possible to control the access at the "domain
users" level instead of network or ip level.  I could implement some
proxies, but each client machine had to be configured  and that would
mean extra work. IPtables can filter at the user level, but only with
local users. Is there a way to configure iptables and kerberos working
together or something like that?  Is this doable with PAM? I have read
that SAMBA authenticated gateway HOWTO, but it doesn't look very
reliable. Well, so basically what i want, is a firewall similar to a ISA
Server firewall

Any ideas about this would be apreciated, thanks in advance.


Santos

Reply to:

Follow-Ups:
- Re: Firewalling at the domain users level instead of network level
  - From: Mike Mestnik <cheako911@yahoo.com>
- Re: Firewalling at the domain users level instead of network level
  - From: Daniel Pittman <daniel@rimspace.net>
- Re: Firewalling at the domain users level instead of network level
  - From: Carlos Sousa <csousa@tvtel.pt>

Prev by Date: Randy Spence/FtMill/NSPRINGS is out of the office.
Next by Date: Re: Firewalling at the domain users level instead of network level
Previous by thread: Randy Spence/FtMill/NSPRINGS is out of the office.
Next by thread: Re: Firewalling at the domain users level instead of network level
Index(es):
- Date
- Thread