[1642] in linux-net channel archive
Re: Linux Router
daemon@ATHENA.MIT.EDU (Wolfgang Jung)
Wed Jan 17 17:45:33 1996
From: woju@keep.in-berlin.de (Wolfgang Jung)
To: linux-net@vger.rutgers.edu
Date: Wed, 17 Jan 1996 22:06:39 +0100 (MET)
In-Reply-To: <Pine.A32.3.91.960116230737.21780B-100000@sierra_madre> from "Manuel M. E. Garcia Jr." at Jan 16, 96 11:22:14 pm
#
#
#Hello. Our office is using a PC running Linux 1.2.13 which serves as a
#router connecting our LAN to the Internet. I was just wondering if there
#is a way to control what addresses (PC) within our LAN could use the
#router. I was thinking of something like a Tcp wrapper where you could
#easily define addresses which can avail of the machine's services
#(hosts.allow, hosts.deny).
Since as a router you donot need to let anyone access the internel
features of the router..
But hosts.allow & hosts.deny will allow you allow/disallow almost each
service, which is seated at the router (ie telnetd, rlogind, etc)
Also you can use the firewalling of Linux to restrict Internetaccess
to a few PC's IP Numbers... If you use static arp tables (loaded at
boottime you can also prevent PC's from faking other IP Numbers of
your LAN
Gruss
Wolfgang
PS: Maybe it helps.
