Hello, Yes, as someone mentioned, you should look into shorewall, which is an (excellent) iptables front end. http://www.shorewall.net This is included with bering.
Using shorewall you can create zones of hosts based on mac addresses and set up a policy to deny all traffic except for those in your control zone which you control through rules. What is a little confusing (for the new shorewall user) in your case is that your gateway box will be filtering on what is usually a trusted zone (by standard topology in the documentation), but this can be easily accomodated for. I would start with the two interface guide, at: http://www.shorewall.net/two-interface.htm I imagine that you would remove the masquerading for the wireless interface. You may have more interfaces you would like to firewall on your bering box, but again this can be easily accomodated for. Please take a moment to look through the documentation, I am sure all the answers you need are there. I will follow this thread, if you need help getting shorewall going or are confused about anything related I am happy to help. Alex Martin http://www.rettc.com ----- Original Message ----- From: "Joey Officer" <[EMAIL PROTECTED]> To: "Leaf-User" <[EMAIL PROTECTED]> Sent: Thursday, December 04, 2003 7:45 AM Subject: [leaf-user] DNS Redirection > I am setting up a wireless card under Bering and I wanted to provide limited > access to it. But because I know that eventually the WEP will be cracked > and someone will get an IP address from the DHCPd server, I want to know if > I can redirect all traffic from (example) 192.168.2.0 except 192.168.2.205 > to goatse.cx > > Basically, I'm setting up a gateway for a friend or two, who I'll assign IP > addresses to via MAC address. Anyone else I want to be able to only get to > a single point. Has anyone done anything like this? > > Joey > > > > ------------------------------------------------------- > This SF.net email is sponsored by: IBM Linux Tutorials. > Become an expert in LINUX or just sharpen your skills. Sign up for IBM's > Free Linux Tutorials. Learn everything from the bash shell to sys admin. > Click now! http://ads.osdn.com/?ad_id=1278&alloc_id=3371&op=click > ------------------------------------------------------------------------ > leaf-user mailing list: [EMAIL PROTECTED] > https://lists.sourceforge.net/lists/listinfo/leaf-user > SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html > ------------------------------------------------------- This SF.net email is sponsored by: IBM Linux Tutorials. Become an expert in LINUX or just sharpen your skills. Sign up for IBM's Free Linux Tutorials. Learn everything from the bash shell to sys admin. Click now! http://ads.osdn.com/?ad_id=1278&alloc_id=3371&op=click ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
