<html> <head> <style> .hmmessage P { margin:0px; padding:0px } body.hmmessage { font-size: 10pt; font-family:Verdana } </style> </head> <body class='hmmessage'> Try "smoothwall" ... > Date: Thu, 22 Jan 2009 07:46:03 -0600 > From: bruno@wolff.to > To: ignored_mailbox@yahoo.com.au > CC: fedora-list@redhat.com > Subject: Re: firewall url filter > > On Fri, Jan 23, 2009 at 00:08:28 +1030, > Tim <ignored_mailbox@yahoo.com.au> wrote: > > On Thu, 2009-01-22 at 09:38 +0100, roland wrote: > > > The client wants to prevent users to connect to sex sites. > > > > > > Can I use the fedora-box as a firewall, filtering several url's or > > > filtering several keywords? > > > > You can do that sort of thing. A simplistic overview of how is: > > > > Use the firewall to block direct the browsers directly connecting to any > > website (i.e. all outgoing connections to port 80). That'll stop nearly > > all web browsing, other than sites on other unusual ports. It's not a > > 100% catchall, but probably 99%. > > That doesn't catch https connections. Of course the firewall wouldn't > be able to check URLs in that case anyways. > > Depending on the requirements it may be best to block all direct access > to the outside from the clients machines and only allow access through > a proxy. > > If there is a know set of web pages they should have access to then they > can use a whitelist to only allow connections to those web sites. If not, > trying to block undesirable sites isn't an easy problem to solve in > general. > > -- > fedora-list mailing list > fedora-list@redhat.com > To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list > Guidelines: http://fedoraproject.org/wiki/Communicate/MailingListGuidelines <hr />Windows Live™: E-mail. Chat. Share. Get more ways to connect. <a href='http://windowslive.com/explore?ocid=TXT_TAGLM_WL_t2_allup_explore_012009' target='_new'>Check it out.</a></body> </html>