www.zeroshell.org Forum Index www.zeroshell.org
Linux Distribution for server and embedded devices
 
 SearchSearch  RegisterRegister  UsergroupsUsergroups 
 ProfileProfile  Log inLog in  Log in to check your private messagesPrivate Message 

Specific Route for User

 
Post new topic   Reply to topic    www.zeroshell.org Forum Index -> ZeroShell
View previous topic :: View next topic  
Author Message
irdetokey



Joined: 01 Feb 2013
Posts: 2

PostPosted: Fri Feb 01, 2013 4:30 pm    Post subject: Specific Route for User Reply with quote

Hi All,
I'm using zeroshell to manage wi-fi traffic by multiple access point and it works like a charm.
What i need is to assign to a specific local user a specific gateway.
More in details, I've 2 gateway, one on a fast internet access for privileged user, the second on an basic adsl for guest users.
Is it possible to route guest users to the second gateway?
Thanks
Alex.
Back to top
View user's profile Send private message
ewaite



Joined: 05 Feb 2013
Posts: 2

PostPosted: Wed Feb 06, 2013 6:46 am    Post subject: VLAN and Firewall Reply with quote

I haven't done this, but you should be able to create VLAN(s) to a managed/smart switch which would go to the wi-fi access points then use the Firewall to forward/masquerade the VLAN to the respective gateway.

iptables -t mangle -A FORWARD -i eth0 -o eth1.11 -j MARK --set-mark 4

If needed you can put the 2 gateways on their own VLANs and create chains to pass the packets to and from the two VLANs

This is probably the simplest way to go about it. You will have to write the firewall chain to fit. It obviously depends on your network configuration and needs.
Back to top
View user's profile Send private message
irdetokey



Joined: 01 Feb 2013
Posts: 2

PostPosted: Thu Jun 27, 2013 2:27 pm    Post subject: Reply with quote

Thanks ewaite for your reply.
Honestly i've not understand your suggestion, that's not so easy for not firewall specialist like me.
The be more clear on what i need, i forgot to say that i have only one access point with radius authentication. Than i have two users, one need to access the lan on the principal gateway. The second (like a guest) need to exit directly on internet trough the second gateway.
Is there a way to route a radius user to a specific gateway?
thanks again
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    www.zeroshell.org Forum Index -> ZeroShell All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


Powered by phpBB © 2001, 2005 phpBB Group