From mboxrd@z Thu Jan  1 00:00:00 1970
From: Patrick Coleman <pcoleman@iinet.net.au>
Date: Sat, 21 Aug 2004 13:14:05 +0000
Subject: [LARTC] Firewalling certain IP ranges
Message-Id: <41274A9D.8020002@iinet.net.au>
List-Id: <lartc.vger.kernel.org>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
To: lartc@vger.kernel.org

Hi,
I have a linux router which is connected to a local network and the internet (eth0 and eth1). My 
local network (eth0) consists of two IP ranges, which are assigned by a DHCP server on my router - 
10.0.0.2-10.0.0.19 for trusted clients (MAC addresses are known) and 10.0.0.20-10.0.0.254 for 
untrusted clients (MAC addresses are not known). These two ranges share the same physical network, 
which is partly wireless, hence the trusted/untrusted hosts setup.

Some trusted clients are on the wireless network, most are on wired. All untrusted clients are on 
the wireless network.

How can I provide some services, but no internet access to untrusted hosts, yet still allow trusted 
clients on wireless to access the internet (clearly I cant simply firewall off the access point)?

Thanks in advance,
Patrick
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/