[ILUG] Alternative to Cisco's Authentication Proxy
bobb
bobb at redbrick.dcu.ie
Fri Feb 27 14:51:05 GMT 2004
max power hath declared on Friday the 27 day of February 2004 :-:
> Hello,
>
> Does anyone know of a similar system to cisco's authtentication proxy
> (http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121cgcr/secur_c/scprt3/scdauthp.htm#1001067)
> for linux? We want to allow roaming users at customer sites to access an
> internal webserver. We do not want to allow direct access to this
> webserver from the outside.
> We are using iptables on our firewall..
Don't think netfilter can do per user authentication (yet?)...
I would probably come from the other angle and usd squid with proxy_auth
Just have to let squid be externally accessable though the firewall...
http://www.squid-cache.org/Doc/FAQ/FAQ-19.html#configuring-proxy-auth
- bobb
--
Mr. Rogers could explain shoe-tying and make it seem like the coolest
thing in the world. He was our Uncle and older brother. He told us we
were special, and we knew he'd be there for us.
A cult leader, right down to the sneakers.
More information about the ILUG
mailing list