I started off with a filter that I thought would do what I wanted then =
changed it to one I thought would block everything except that =
permitted.
The filter has a simple name (gamer) and appears to be assigned to the =
port when I show Sxx (like gamer.in and gamer.out
(Pkt Filters: In:gamer.in Out:gamer.out)
My last version of the filter was just this:
1 permit 0.0.0.0/0 0.0.0.0/0 udp dst eq 53
2 permit 0.0.0.0/0 0.0.0.0/0 tcp dst eq 53
Wouldn't that only allow anyhost anyhost DNS querying, then (implied) =
deny everything else ?
It doesn't do anything. The dial up system has full access to anything =
as usual.
The users file has a few entries like this for the users:
Garchie Password =3D "xxxxxxx"
User-Service =3D Framed-User,
Framed-Protocol =3D PPP,
Framed-Filter =3D gamer
Thanks.
Mervyn Jack, Technical Director, Country Netlink Pty Ltd.
PO Box 529, Cobram, Vic. Australia, 3644
Ph +61 3 5871 1000 Fax +61 3 5871 1874
mailto:mervynj@cnl.com.au http://www.cnl.com.au ICQ 354419
-
To unsubscribe, email 'majordomo@livingston.com' with
'unsubscribe portmaster-users' in the body of the message.