volcs0 Posted January 4, 2012 Posted January 4, 2012 I want to create a set of rules similar to the access restrictions on my router for internet access for my kids. I don't want them to be able to access anything on the unRAID media share after 6pm on school nights. Right now, on my router, I have it set to deny all internet access except for a white list that includes my computer, iPad, wife's computer, etc. Can I do something similar with unRAID? Would this be most easily done at the level of the server? Can I do this with httpd.conf? Can I do this at the level of the router? Thanks for the advice.
speeding_ant Posted January 4, 2012 Posted January 4, 2012 With your router, can you specify ports to block? For example, with your current setup did you specify port 80/443 to be blocked, or is it a tick box. Cheers
volcs0 Posted January 5, 2012 Author Posted January 5, 2012 I think it is pretty flexible (Tomato firmware). So, if I specify those ports to be blocked for those IP addresses - it will block them on my LAN as well? Thanks again for the help.
gabbott Posted January 5, 2012 Posted January 5, 2012 Traffic between clients on the same LAN won't necessarily go through the router, so firewalling from the router won't be of help.
caimakale Posted March 1, 2012 Posted March 1, 2012 This type of access restriction would work though if either the server or the devices connecting were on a separate vlan, right? I would like to enable this same type of setup to restrict my kids from watching their ATV when it's bedtime on a school night. Or if they're grounded, I can easily restrict access for the duration of their punishment right from my TomatoUSB based router. What type of adverse side effects would this have though? Crashplan should still work (LAN Backup) as should accessing the shares via an ATV device. This obviously adds an extra hop into the mix and puts the router controlling the two vlans through some additional work. Am I missing anything else? Like I said, I want to do this but have very limited experience setting up and maintaining vlans and would like to think/work through the potential hiccups before implementing something like this.
jamerson9 Posted March 1, 2012 Posted March 1, 2012 How about using hosts allow and hosts deny on smb shares with a cron script to work the schedule?
caimakale Posted March 1, 2012 Posted March 1, 2012 How about using hosts allow and hosts deny on smb shares with a cron script to work the schedule? This is a very viable option and could probably be made into a plugin to help manage it.
kizer Posted March 1, 2012 Posted March 1, 2012 As long as you can specify the intended connecting Ip address. Meaning I would highly recommend a static environment.
Compass Posted March 2, 2012 Posted March 2, 2012 Id really like this, I have 2 boys, it would be a great addition to unMenu, hint hint
Tophicles Posted October 25, 2012 Posted October 25, 2012 +1 on this, would be a great addition!! Would love to be able to restrict viewing after bedtime
marcusone Posted October 25, 2012 Posted October 25, 2012 Should be able to do with iptables and a cron script assuming iptables is installed. Sent from my SGH-I727R using Tapatalk 2
Recommended Posts
Archived
This topic is now archived and is closed to further replies.