[SunRay-Users] separate the users traffic
John Francis
john.francis at gmail.com
Fri May 29 06:24:08 EEST 2009
2009/5/29 Mudasar Yasin <myasin at i2cinc.com>:
> Hi,
>
> Thanks for your reply
>>Define "users' traffic" :) Is that traffic between server and
>>DTU, or traffic originated by users' applications on the server
>>(say, browsers)?
>
> Browsers/ssh/ftp traffic
>
You may be able to use iptables to achieve this. From the man page:
owner
This module attempts to match various characteristics of the packet
creator, for locally-generated packets. It is only valid in the OUTPUT
chain, and even this some packets (such as ICMP ping responses) may
have no owner, and hence never match.
--uid-owner userid
Matches if the packet was created by a process with the given
effective user id.
--gid-owner groupid
Matches if the packet was created by a process with the given
effective group id.
--pid-owner processid
Matches if the packet was created by a process with the given
process id.
--sid-owner sessionid
Matches if the packet was created by a process in the given ses-
sion group.
--cmd-owner name
Matches if the packet was created by a process with the given
command name. (this option is present only if iptables was com-
piled under a kernel supporting this feature)
--
Kind regards,
John Francis
More information about the SunRay-Users
mailing list