Re: Restricting IP to shell users
At 1031875063s since epoch (09/12/02 04:57:43 -0400 UTC), Dathi Oxencroft wrote:
> The immediate goal is to bind user X's processes to Y IP. Additionally
> allowing user X to only login via Y IP would be an advantage, but not an
> issue at this stage.
It sounds like you want the ipt_owner module of iptables. Check the
FAQ at:
http://www.netfilter.org/documentation/HOWTO/packet-filtering-HOWTO-7.html
and search for the "owner" matching rules (--uid-owner). Using this
rule, you should be able to route packets origniated by a specific
user out on a specific interface.
Jason
--
Jason Healy
http://www.logn.net/
Reply to: