From mboxrd@z Thu Jan  1 00:00:00 1970
From: "Gustavo Castro Puig" <gcastro@gcp.com.uy>
Subject: SMB auth and Iptables...
Date: Thu, 29 Jul 2004 17:51:17 -0300
Sender: netfilter-admin@lists.netfilter.org
Message-ID: <001301c475ae$2fc4c340$0200a8c0@marduk>
Mime-Version: 1.0
Content-Type: multipart/alternative;
	boundary="----=_NextPart_000_0009_01C47594.A65340A0"
Return-path: <netfilter-admin@lists.netfilter.org>
Errors-To: netfilter-admin@lists.netfilter.org
List-Help: <mailto:netfilter-request@lists.netfilter.org?subject=help>
List-Post: <mailto:netfilter@lists.netfilter.org>
List-Subscribe: <https://lists.netfilter.org/mailman/listinfo/netfilter>,
	<mailto:netfilter-request@lists.netfilter.org?subject=subscribe>
List-Id: <netfilter.vger.kernel.org>
List-Unsubscribe: <https://lists.netfilter.org/mailman/listinfo/netfilter>,
	<mailto:netfilter-request@lists.netfilter.org?subject=unsubscribe>
List-Archive: <https://lists.netfilter.org/pipermail/netfilter/>
To: netfilter@lists.netfilter.org

This is a multi-part message in MIME format.

------=_NextPart_000_0009_01C47594.A65340A0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

Hi, guys:

    One customer asked me about the possibility of install in an =
iptables based firewall some sort of solution (perhaps a proxy) it could =
add/delete rules based on users login into a SMB(Samba/NT) server. He =
want to grant or deny access to Internet (TCP/IP) based on authenticated =
users, not the IP or MAC. It's not a bad idea, but I don't know if it =
even exists... I've googled and found nothing about this kind of =
solution. Anyway, I told him I could check it out, and... here I am. :-)
    Do you have any idea about a solution like this using iptables and =
"something" else?=20
    Any info will be highly appreciated.
    Thanks!

Cheers,
    Gustavo.

------=_NextPart_000_0009_01C47594.A65340A0
Content-Type: text/html;
	charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META content=3D"text/html; charset=3Diso-8859-1" =
http-equiv=3DContent-Type>
<META content=3D"MSHTML 5.00.2614.3500" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV><FONT face=3DArial size=3D2>Hi, guys:</FONT></DIV>
<DIV>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>&nbsp;&nbsp;&nbsp;&nbsp;One customer =
asked me about=20
the possibility of install in an iptables based firewall some&nbsp;sort=20
of&nbsp;solution (perhaps a proxy) it could add/delete rules based on =
users=20
login&nbsp;into a SMB(Samba/NT) server. He want to grant or deny access =
to=20
Internet (TCP/IP) based on&nbsp;authenticated users, not the IP or MAC. =
It's not=20
a bad idea, but I don't&nbsp;know if it even exists...&nbsp;I've googled =
and=20
found nothing about this kind of solution.&nbsp;</FONT><FONT =
face=3DArial=20
size=3D2>Anyway, </FONT><FONT face=3DArial size=3D2>I told him =
I&nbsp;could check it=20
out, and... here I am. :-)</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>&nbsp;&nbsp;&nbsp;&nbsp;Do you have =
any&nbsp;idea=20
about a solution like this&nbsp;using iptables and "something" else?=20
</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>&nbsp;&nbsp;&nbsp; Any info will be =
highly=20
appreciated.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>&nbsp;&nbsp;&nbsp; Thanks!</FONT></DIV>
<DIV>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>Cheers,</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>&nbsp;&nbsp;&nbsp;=20
Gustavo.</FONT></DIV></BODY></HTML>

------=_NextPart_000_0009_01C47594.A65340A0--