On 2009-07-31, Marcello Cruz <marcello.c...@globo.com> wrote: > Thanks Chris! Thanks everybody! I was not clear, my mistake. I'm sorry. > > The idea is to allow traffic from a computer on the inside network to pass > the traffic to the outside network (Internet) using some directory service > based on LDAP (Active Directory). > > Users in the LAN sometimes need to use other PCs than usual or the PC should > be used by lots of users. I should be good if the firewall rules could be > created to allow/deny based on the user of the PC instead of the IP Address.
looks like a job for authpf + ypldap, with some ssh app on the client machines.
