Can I use LMCE firewall to block the internet?

[skeptic]

I'd like to be able to block specific desktops (not MDs) from accessing the internet.  I realize I can do it on the desktop itself, but I'd really like to do it via LMCE.  I tried a couple things on the firewall page, and did a bit of searching that didn't turn up anything.  Is this possible?

[merkur2k]

it is quite possible, but not with the web admin. its linux running iptables underneath so it can do pretty much whatever you want, but youll hafta get dirty with config files and shell scripts.

[skeptic]

I did some searching before I posted the question.  Nothing really addressed the question of blocking an internal device from the Internet, but there were warnings not to go fiddling with iptables outside the LMCE firewall config page.

Sounds like I'll need to do this on the desktop itself (caught my 10 year old son playing runescape after I told him not to, he alt-tabbed when I walked in proving he knew he was doing something on the Internet he knew he wasn't supposed to).

[jimbodude]

Why not just set that one web browser to use a proxy?  That way, you might have more configuration options about what to allow, rather than "on" or "off".  Then just hope he's not quite technically savvy enough to figure out how to switch that back to normal...

[|eric|]

the iptable isnt that complicated
its only one line !
should look like :
iptables -A INPUT source  mask dest mask  -tcp -port portnumber
and delete is exacly the same execpt -D instead of -A

[skeptic]

Old topic but...  Docs say not to mess with iptables outside the web admin.  Not sure why, but generally when there is a warning in LMCE it's there for a reason - not following the warning can break stuff.