[vox-tech] alternative on linux authentication approach
Milver S. Nisay
mnisay at aim-consultants.com
Thu Aug 5 13:17:44 PDT 2004
+----------+ +----------+ +---------+
+ Internet +<==========>| (linux)|<===========>|Windows workstations
+----------+ +----------+ +---------+
anybody can provide ideas with this scenario. under linux :a. has 2 NICs b.
has dhcp leasing 192.168.1.X c. has iptables allowing 192.168.0.X to
browse workstations:a. windows OS b. after booting up, all
workstations have dynamic IP of 192.168.1.x (not allowed to
browse)scenario:some windows workstations needs to browse, using linux box
as gateway. but i need thoseworkstations to be authenticated first from
linux box before they can browse. when authenticated from linux box,they get
the 192.168.0.X IP (which is allowed to browse).i would like to implement
this without squid authentication, but with freeradius + proxy.can it be
done? is certificates advisable here? i believe proxy would be helpful on
this. but for the authentication part, certificates? can it be done by
apache? anyone pls. advise.thanks in advance.milver nisay
More information about the vox-tech
mailing list