Koozali.org: home of the SME Server
  1. Koozali.org: home of the SME Server
  2. Legacy Forums
  3. General Discussion (Legacy)
  4. Topic: firewall rules
« previous next »
Pages: [1]   Go Down

firewall rules

  • 8 Replies
  • 1713 Views

yscheung

firewall rules
« on: January 09, 2005, 04:55:17 AM »
Hello,
I want to setup a sme server as company gateway/firewall . for the company policy, only few people can access internet , how can i setup the iptables rules in SME server 6.0.1-01??


thanks,
Jack.
Logged

Offline allun

  • ***
  • 46
  • +0/-0
    • http://www.protechnz.com
firewall rules
« Reply #1 on: January 09, 2005, 05:07:55 AM »
Hey dude,

so you want to restrict who can and cannot access the internet from behind your server?

Try this contrib:

http://vanhees.homeip.net/modules.php?op=modload&name=Downloads&file=index&req=viewdownloaddetails&lid=136&ttitle=e-smith-squid-restrict-ip-0.1-1.noarch.rpm

Works great for me!
Logged
...

Offline raem

  • *
  • 3,972
  • +4/-0
firewall rules
« Reply #2 on: January 09, 2005, 07:12:54 AM »
Logged
...

yscheung

firewall rules
« Reply #3 on: January 09, 2005, 11:35:40 AM »
Hello,

Thank you for your suggestion . The squid modules is very useful for me , but when the user disable the proxy setiing in their internet brower, they still can access the internet.. :-?

For example : my local network is 192.168.0.0/24
the IP range from 192.168.0.1-10 can fully access the internet , the IP range 192.168.0.11-20 can only use the ftp protocal, and the 192.168.0.21-30 can access the 216.109.127.60 (mail.yahoo.com) only .

It's easy when use a iptables scrip . Is that has a iptables modules like squid modules can do this setting?

Thanks,
Jack.
Logged

Offline p-jones

  • *
  • 594
  • +0/-0
firewall rules
« Reply #4 on: January 10, 2005, 09:18:47 AM »
You need to set a policy for your users so they cannot modify the browser settings !!!!
Logged
...

yscheung

firewall rules
« Reply #5 on: January 10, 2005, 09:49:54 AM »
Hi
I know . I want to setup in the fireall and in the server-manager page.

Thanks,
Jack.
Logged

Offline p-jones

  • *
  • 594
  • +0/-0
firewall rules
« Reply #6 on: January 10, 2005, 09:59:15 AM »
You cannot setup a browser policy in the server and firewall page. If you are using IE6 you need to look at the IE6 admin kit then work out how you are going to push the policy out to your users.
Logged
...

Offline dmac

  • ****
  • 143
  • +0/-0
    • http://www.rylar.ca
firewall rules
« Reply #7 on: January 10, 2005, 09:17:18 PM »
Have you tried the IP BLock by ALoveless?

http://mirror.contribs.org/smeserver/contribs/aloveless/contribs/ipblock_inet/

It will set up a link on your Server-Manager web page and will allow you to block based on IP Address.  You can set the time frame to block or just block all the time.

I have been using for about 6 months and it works well.

The interface is a bit clunky, as you will need to set a  block for an IP for each day or time frame you are interested in.

THT,

Darin
Logged
"In a world without Fences, why do we need Gates and Windows"

yscheung

firewall rules
« Reply #8 on: January 11, 2005, 04:04:18 PM »
Thank very much

Regards,
Jack
Logged
Pages: [1]   Go Up
« previous next »
  1. Koozali.org: home of the SME Server
  2. Legacy Forums
  3. General Discussion (Legacy)
  4. Topic: firewall rules