<html><head><style type="text/css"><!-- DIV {margin:0px;} --></style></head><body><div style="font-family:times new roman, new york, times, serif;font-size:12pt"><div style="font-family: times new roman,new york,times,serif; font-size: 12pt;">Thank you very much for your feedback, everyone! I was hoping to find a ¨router project¨ where they have a ¨remote interface¨ that would make it easy for inexperienced users to control the gateway machine from any workstation. Ideally, the GUI interface would allow the user to just click on an icon, representing each currently turned on workstation, in order to ¨toggle¨ the internet access. An incidental need (that I just discovered today) is for the gateway machine to also act as a WINS server.<br><br>Arthur<br><br><div style="font-family: times new roman,new york,times,serif; font-size: 12pt;">----- Original Message ----<br>From: Sean O'Donnell <sean@seanodonnell.com><br>To: SGVLUG
Discussion List. <sgvlug@sgvlug.net><br>Sent: Monday, November 5, 2007 4:13:33 PM<br>Subject: Re: [SGVLUG] Preventing certain Machines from Internet<br><br>
dhcpd (or dnsmasq) + iptables + ip_forward = done;<br><br>I have some pretty old notes here on my site about setting up such a<br>configuration, although it really needs to be updated/rewritten. The<br>examples should work though, despite et all.<br><br>Configuring a NAT Firewall/Router<br><a href="http://seanodonnell.com/code/?id=44" target="_blank">http://seanodonnell.com/code/?id=44</a><br><br>Configuring a DHCP Server w/ Multiple Subnets on Linux<br><a href="http://www.seanodonnell.com/code/?id=43" target="_blank">http://www.seanodonnell.com/code/?id=43</a><br><br>These are very dated and poorly written. You'll also need to configure<br>'ifconfig' properly, which I don't think is mentioned in there either.<br><br>I know I need to revise these, but that should give you simple example.<br>Think of it more as a kick in the right direction, rather than an<br>all-inclusive answer to your question. You'll of coarse need to make<br>modifications so that it
works to your requirements.<br><br>PS: I would suggest using switches, rather than hubs.<br><br>-Sean<br><br>Arthur Baldwin wrote:<br>> I was wondering if anyone knows of an existing project where the<br>> following can be acheived:<br>> <br>> List of hardware:<br>> <br>> two 8 port hubs<br>> one fairly new IBM compatible PC with two NICs (acting as filter)<br>> one DSL Modem and connection<br>> 8 IBM compatible workstations<br>> <br>> Notes: From one of the workstations, be able to limit the access on
any<br>> number of the 8 workstations so that Internet access would be
completely<br>> excluded. All this without affecting the browse-ability of other<br>> workstations on the LAN (with File sharing and Printer sharing). The<br>> machine names and IP Addresses would be known.<br>> <br>> I think that this type of software would fill a very common need in
very<br>> small businesses (less than 10 employees).<br>> <br>> Any ideas?<br>> <br>> Arthur<br>> <br>> __________________________________________________<br>> Do You Yahoo!?<br>> Tired of spam? Yahoo! Mail has the best spam protection around<br>> <a href="http://mail.yahoo.com" target="_blank">http://mail.yahoo.com</a><br><br><br><br></div><br></div></div><br>__________________________________________________<br>Do You Yahoo!?<br>Tired of spam? Yahoo! Mail has the best spam protection around <br>http://mail.yahoo.com </body></html>