IPTABLES rule for separating users
Bruno Wolff III
bruno at wolff.to
Sat Mar 5 13:21:07 UTC 2011
On Sat, Mar 05, 2011 at 00:58:33 -0800,
erikmccaskey64 <erikmccaskey64 at zoho.com> wrote:
> I have an OpenWrt 10.03 router [ IP: 192.168.1.1 ], and it has a DHCP server pool: 192.168.1.0/24 - clients are using it through wireless/wired connection. Ok!
>
>
> Here's the catch: I need to separate the users from each other.
>
>
> How i need to do it: by IPTABLES rule [ /etc/firewall.user ]. Ok!
Probably not. Normally the router is set up as a bridge and those packets
are handled at a lower level than iptables affects. You can separate the
wired connections by not bridging them together. I am not sure if you can
actually separate the wireless users from each other.
Depending on what you are really trying to do, you might look at using a vpn
to isolate machines from each other.
More information about the users
mailing list