News: This forum is now permanently frozen.
linktree m0n0wall Forum  >  m0n0wall Support (English)  >  VPN
linktree Topic: limit user to a specific IP address inside network
Pages: [1]
Topic: limit user to a specific IP address inside network  (Read 2461 times)
« on: September 19, 2011, 13:04:40 »
deki *
Posts: 2
Hi to all

I'm pretty new to monowall but I allready have a system running. I've made a PPTP and an IPsec connection with shrew client without trouble.

I need following. Some kind of user restriction. I need to be sure that userA can only connect to IP xxx, UserB to IP yyy etc.

Is it possible? If yes, can someone explain me how? PPTP or IPsec, it doesn't matter.

Thanks in advance

Dejan

System configuration:
Cable Internet
Alix Monowall with WAN=>DHCP
« Reply #1 on: September 19, 2011, 19:56:13 »
Hans Maulwurf **
Posts: 56
When you create a PPTP accoun (probably IPsec too?) you can specify the IP address the PPTP user gets assigned. You can then define  IPv4 rules for PPTP connections. Eg. one allows any traffic from the IP address of that user to the IP address you want them to connect to. You can do the same for another user.
« Reply #2 on: September 21, 2011, 09:41:11 »
deki *
Posts: 2
Thank you Hans, thats a great solution.

For this I need a little support in making rules for the fw. I think about this.
first rule: allow PPTP IP xxx to IP yyy
second rule: block any PPTP from IP xxx to any

Is it going to work that way?
« Reply #3 on: October 02, 2011, 04:01:59 »
Hans Maulwurf **
Posts: 56
That should work, but you wouldn't even need the second rule, as the default is "block all", if no other rule applies.
 
Pages: [1]
 
 
Powered by SMF 1.1.20 | SMF © 2013, Simple Machines