Lars Jensen wrote:
>How do I configure shorewall so a user (my child) can make outgoing
>connections to specific IPs only through a web browser, and the rest of
>the internet is off limits.
Put a rule in ''rules'', or set the policy in
''policy'', to block all
traffic from your local zone (or the FW zone if the user is on the
firewall machine) to the net zone. Add a rule to allow the specific
traffic you want to allow.
Take a look at the documentation for those two files, and if you
still need help come back and ask again.
Whether you set the policy, or create a rule to drop all traffic
depends on what else is happening on the network. If it''s just the
one machine but you want other machines to have free access, then set
the policy to allow and use a rule to block access for that one
machine. The alternative is you block all outbound traffic and
selectively allow it for the various devices that need it.
-------------------------------------------------------------------------
This SF.net email is sponsored by DB2 Express
Download DB2 Express C - the FREE version of DB2 express and take
control of your XML. No limits. Just data. Click to get it now.
http://sourceforge.net/powerbar/db2/