OPNsense Forum
Archive => 17.1 Legacy Series => Topic started by: FloN on January 16, 2017, 02:00:37 pm
-
Hello together,
Initial state:
We have a network with Internet access. User should be able to get access, but it must be able to identify who uses the network at which time. (Let's call it a provider rule:) )
Idea:
A administrator creates an account for members and guest.
The user has to login with his account and is (only) able to allow his client for temporary network access.
Guest:
allow IP to access with a given port list to get access for his devices, for 1-10 hours
Member:
allow IP to access with no Port restriction or a Port list temporary or permanently (IP/MAC combination).
The username and the time of use should be logged in a permanent log file, maybe protocols or ports can be part of the log too.
Currently we use a second firewall and a web server with this functionality to reduce the complexity of the network it would be a cool feature for an upcoming release.