-   Linux - Networking (
-   -   Granting selected user access to selected network interface (

dexen 10-03-2009 10:16 AM

Granting selected user access to selected network interface
I have a multi-user machine with several network interfaces (Ethernet, if that matters). I wish to grant selected users, or groups, full access to selected network interfaces (including ability to adjust IP address and to bind to low ports, but *only* on those interfaces). It is important to me that an user/group does not such full control over other interfaces. Granting partial, or temporary, root permissions is OK; it's a friendly environment.

How do I go about it?

System: Linux 2.6.recent; usual Debian setup (can be adjusted if needed).

Thank you in advance :)

jhcaiced 10-03-2009 01:28 PM


I don't see a way to do what you want but I think it should be
possible to setup for example virtual machines for each user and
give them control of the interfaces in the virtual machine.

Perhaps if you can give more details on what the users are suppose
to do with the interfaces, are they developers ?

Best regards,

dexen 10-04-2009 03:51 AM

Yeah, those are developers that need to generate and/or capture various forms of traffic. Both with standard client/server utils and some scripting and stuff.

Virtual machines are out of the question; the overhead of maintaining stuff would be higher than gains from this separation in the first place. We have got too many OS instances to manage already...

Why is there no network interface device file in Linux anyway?

All times are GMT -5. The time now is 01:22 AM.