Access Control

Questions, comments, or suggestions on how to improve the EnGarde Secure Linux community.

Moderators: scrumpy, Dave, leihog

Access Control

Postby LastCaress on Thu Feb 07, 2008 4:31 am

Being a network engineer by trade the Access Control syntax is bugging me. Is it possible to make it so we can add say 192.168.0.8/29 or even 192.168.0.8 255.255.255.248 ?

Trying to add several /27's by hand isn't gonna be fun!!! I'd really prefer to not add the entire /24 since they are broken down by customer and not all in my over-bearing control.
LastCaress
 
Posts: 3
Joined: Thu Feb 07, 2008 4:23 am

Re: Access Control

Postby wkeys on Thu Feb 07, 2008 8:49 am

hi
Are you trying to do this in the WebTool if not I recommend that you do. It provides a easy to use interface.
Code: Select all
System-> Access Control


~bill
wkeys
 
Posts: 283
Joined: Thu Feb 01, 2007 5:43 pm

Re: Access Control

Postby LastCaress on Thu Feb 07, 2008 8:03 pm

That's one of the place's I've tried. There isn't even enough space to put in a net block notation let alone it be valid syntax.

I'm sure fixing/modifying the code to do netblocks isn't high on anyone's list of fun things to do!!!!
LastCaress
 
Posts: 3
Joined: Thu Feb 07, 2008 4:23 am

Re: Access Control

Postby wkeys on Fri Feb 08, 2008 11:45 am

hi

The access control that we are using behind the scenes is TCP Wrappers. So the WebTool Access Control Interface
does not allow IP syntax like 192.168.0.8/29 because TCP Wrappers don't support that syntax. But I would see
that it would be nice to allow that syntax.

~bill
wkeys
 
Posts: 283
Joined: Thu Feb 01, 2007 5:43 pm

Re: Access Control

Postby LastCaress on Mon Feb 11, 2008 12:55 pm

but subnet type syntax is allowed such as

ALL : 192.168.0.8/255.255.255.248

essentially that is the same thing as 192.168.0.8/29 just not the short notation
LastCaress
 
Posts: 3
Joined: Thu Feb 07, 2008 4:23 am

Re: Access Control

Postby wkeys on Thu Feb 14, 2008 10:25 pm

hi
Good point
~bill
wkeys
 
Posts: 283
Joined: Thu Feb 01, 2007 5:43 pm


Return to Suggestions

Who is online

Users browsing this forum: No registered users and 1 guest

cron