CheckPoint's FW1 is available for Linux, though RedHat is the only flavor supported. I have the full version running on Solaris and plan to give it a test run on SuSE near January. If you are only concerned about web traffic, you can set up Squid in proxy mode with authentication. Unfortunately you cannot use authentication in transparent mode and this only works for http traffic. I, too, wish there were a clean solution that could tap into the stock Linux firewall. At 01:29 PM 11/20/00 +0100, you wrote:
Hi, I am looking for a solution to authenticate routing.
IPSEC CLient (Mostly WinXX boxes) connects to firewall. Firewall untunnels packets (FreeS/WAN) Firewall authenticates user ???????? Successful authentication enables routing of the clients Packets into the internal net.
Commercial FWs like FW1 have that feature, but I'd rather run it on Linux.
Thanks for any pointers afx
-- atsec information security GmbH Phone: +49-89-44249830 Steinstrasse 68 Fax: +49-89-44249831 D-81667 Muenchen, Germany WWW: www.atsec.com May the Source be with you!
--------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
-- brandon@2i.com