how to block internet access for particular user on FC3
peter kostov
fedora at light-bg.com
Tue Jun 27 14:21:39 UTC 2006
On Mon, 2006-06-26 at 23:24 +0100, Paul Ward wrote:
> If you use iptables remember to use the iptables-save to keep your
> changes when you are happy it works.
Yes, today I noticed that the changes I made yesterday are not saved
after the computer was shut down. I made the same changes again and
changed the line:
IPTABLES_SAVE_ON_STOP="no"
to
IPTABLES_SAVE_ON_STOP="yes"
in /etc/sysconfig/iptables-config
The other way to do the same, I think is:
services iptables save
I think, iptables-save does only a backup, that if written to a file
can be used with iptables-restore to get to the saved state again.
> if your changes do not do as expected you can use iptables -F to flush
> them out of memory.
> When you are happy it works use either ntsysv to make sure iptables
> always starts from boot up
> or use chkconfig --levels 345 iptables on
Thanks, Paul!
>
> On 26/06/06, gb spam <gbofspam at gmail.com> wrote:
> On 6/26/06, peter kostov <fedora at light-bg.com> wrote:
> > Hi, I use FC3 and want to disable internet access for a
> certain user.
> > How should I do that?
>
> This would be a good place to start:
>
> iptables -D OUTPUT -m owner --uid-owner ??? --jump DROP
>
> replace ??? with the user id (as opposed to the user name) of
> the target user.
>
> --
> fedora-list mailing list
> fedora-list at redhat.com
> To unsubscribe:
> https://www.redhat.com/mailman/listinfo/fedora-list
>
> --
> fedora-list mailing list
> fedora-list at redhat.com
> To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
--
Peter Kostov
Sofia, Bulgaria
Photographer, web designer,
3D modeling, informational services
Home site: http://www.light-bg.com
More information about the fedora-list
mailing list