[PLUG] time-based rule

mikeraz at patch.com mikeraz at patch.com
Tue Oct 1 15:30:55 UTC 2002


On Tue, Oct 01, 2002 at 02:53:00PM +0800, BMDimaculangan typed:
> hello to all folks,
> According to the rule, access to the Internet is made possible only during
> noontime break, from 12:00 noon to 1:00 in the afternoon only but corporate
> email exchange is available throughout the working day.  My problem is, how
> can I apply and implement this rule in our Linux Server. Any idea?

<rant>that rule sucks</rant>

>From the question, I'm assuming that "our Linux Server" is "our Linux Firewall".

You'll need to/could:

	segregate the people allowed full access and noon-time access into
	  differing IP address pools

	have a rule early in the FORWARD set that defines access for the 
	  group with limited access

	use cron to modify the rule at noon and 1:00pm


This could be as simple as

	iptables -R FORWARD <RULENUM> <RULESPEC> {-j ALLOW or DENY depending on time}

-- 
      Michael Rasmussen  aka  mikeraz
    Be appropriate && Follow your curiosity
 http://www.patch.com/ http://wiki.patch.com/
       http://blog.patch.com/sandbox/

   The fortune cookie says:
I have hardly ever known a mathematician who was capable of reasoning.
		-- Plato




More information about the PLUG mailing list