[K12OSN] Re: Limit Network Access by time
Joe Guenther
jguenther at chinooksedge.ab.ca
Fri Feb 27 10:45:01 UTC 2004
Jim,
We ran a similar setup in a private school boy's dorm in Germany. In order
to deal with this ... what if the boys sit up all night and check out porn
... we just turned off the router at night. The router was in the office.
The office was locked for night. For staff that had a key, they could stay
up and do their email or IM to their friends in the States, but the students
were "off line" as their ltsp terminals were in other parts of the dorm.
Another very low-tech solution would be to install a digital timer on the
power plug for your switch or router. Lock those in a cabinet. and at 22:00
the router or switch goes off line ... not very techie but effective. No
fooling with IPTABLES & cron jobs.... just a simple "pull the plug" type
solution.
...hey it worked
greetings
Joe Guenther
-----Original Message-----
From: k12osn-admin at redhat.com [mailto:k12osn-admin at redhat.com]On Behalf
Of Jim Kronebusch
Sent: Thursday, February 26, 2004 6:55 AM
To: k12osn at redhat.com
Subject: RE: [K12OSN] Re: Limit Network Access by time
Thanks everyone, I think I have more than enough suggestions to achieve
what I want. This list is awesome.
Thanks again.
-----Original Message-----
From: k12osn-admin at redhat.com [mailto:k12osn-admin at redhat.com] On Behalf
Of rob focus
Sent: Wednesday, February 25, 2004 5:40 PM
To: k12osn at redhat.com
Subject: [K12OSN] Re: Limit Network Access by time
another way is to add an iptables rule blocking
the red interface(external) and toggle it
on/off using crontab.
--
#crontab -e (on one line)
0 22 * * * /sbin/iptables -A CUSTOMINPUT -i $RED_DEV -s 192.168.1.0 -j
REJECT 0 6 * * * /sbin/iptables -D CUSTOMINPUT -i $RED_DEV -s
192.168.1.0 -j REJECT
--
or Block everything except the above network by replacing REJECT with
ACCEPT and adding -A CUSTOMINPUT -i $RED_DEV -j REJECT , first. if your
directors are on the same network use a subnet mask to limit the ip's to
the addresses you want to block.
http://www.troubleshooters.com/lpm/200305/200305.htm#_Blocking_a_Subnet
http://www.mkssoftware.com/docs/man1/crontab.1.asp
robert
_______________________________________________
K12OSN mailing list
K12OSN at redhat.com https://www.redhat.com/mailman/listinfo/k12osn
For more info see <http://www.k12os.org>
---
Incoming mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.595 / Virus Database: 378 - Release Date: 2/25/2004
---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.595 / Virus Database: 378 - Release Date: 2/25/2004
_______________________________________________
K12OSN mailing list
K12OSN at redhat.com
https://www.redhat.com/mailman/listinfo/k12osn
For more info see <http://www.k12os.org>
More information about the K12OSN
mailing list