Ok, I give up. Stop moving the goal posts.
You said 44net isn't Internet, now you say to use basic techniques used by business for Internet.
Src IP is insufficient for this. Lots more needed. Lookup stateful firewall. Also, think about multiple users per IP. Friendly advice.
Cliff K6CLS CM87
On February 17, 2021 2:03:59 AM PST, Toussaint OTTAVI via 44Net 44net@mailman.ampr.org wrote:
Le 16/02/2021 à 14:02, Cliff Sojourner via 44Net a écrit :
User authentication and user authorization belong in application
layer, there is no place for those in any network layer.
I don't know on which layer you could put it, but filtering access by source IP is a commonly used technique in business networks for restricting access.
Of course, it's different from user authentication. But it can be useful as a simple pre-authentication for a group of users : all users coming from a 44net IP are licensed operators. Then, a simple firewall rule can grant them access to the private parts of the network.
73 de TK1BI
44Net mailing list 44Net@mailman.ampr.org https://mailman.ampr.org/mailman/listinfo/44net