Re: [fw-wiz] Firewalling at the domain users level instead of network level
From: Devdas Bhagat (devdas_at_dvb.homelinux.org)
Date: 07/19/04
- Previous message: Chad Thomsen: "RE: [fw-wiz] Syslog montioring and usage."
- In reply to: Santos: "[fw-wiz] Firewalling at the domain users level instead of network level"
- Next in thread: Paul D. Robertson: "Re: [fw-wiz] Firewalling at the domain users level instead of network level"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: firewall-wizards@honor.icsalabs.com Date: Mon, 19 Jul 2004 23:26:22 +0530
On 18/07/04 07:41 +0100, Santos wrote:
> I'm implementing a "Windows clients, Linux servers" kind of network.
> Some users may login at different machines, therefore, ip level is not
> enough. I wonder if it's possible to control the access at the "domain
> users" level instead of network or ip level. I could implement some
> proxies, but each client machine had to be configured and that would
Proxies for what protocols? For things done via a browser, Squid can
authenticate off a Samba server. Browsers can be autoconfigured, and
IIRC, even the autconfiguration URL can be passed on via DHCP.
I don't know if this is doable, but 802.1q with separate VLANs
configured via the radius profile should do the trick.
Devdas Bhagat
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
- Previous message: Chad Thomsen: "RE: [fw-wiz] Syslog montioring and usage."
- In reply to: Santos: "[fw-wiz] Firewalling at the domain users level instead of network level"
- Next in thread: Paul D. Robertson: "Re: [fw-wiz] Firewalling at the domain users level instead of network level"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
