Firewall rules based on user/group



  • Hey, I'm trying to duplicate the functionality of a Sonicwall. Is there a way to create firewall rules that are based upon local or remote users or groups? Haven't found much info in my searching. Thanks.



  • Also, just in case that was too vague of a question: Once someone has been authenticated by the Captive Portal or Squid, how can I use that session in a firewall rule as a source or destination? As an example, if I want to allow all accounting users to access a specific zone and block it for everyone else (and not base it off of IP/MAC/etc, but actually user session), is that functionality built in? If not, would it be hard to write a custom thing for it? Thanks.


  • Banned

    Behind things like assigning IP via RADIUS and creating FW rules based on that IP, no…