Re: Content Filtering Firewall in Linux..
From: ben creitz (benjaminworthcreitz_at_yahoo.com)
Date: 08/19/05
- Previous message: pejman.gohari_at_gmail.com: "SMB : TCP/445 impossible to sniff a document sent to be printed to a MS Spooler Server"
- In reply to: Tucker: "Re: Content Filtering Firewall in Linux.."
- Next in thread: Chris Mason: "Re: Content Filtering Firewall in Linux.."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 18 Aug 2005 17:31:08 -0700 (PDT) To: Tucker <gtucker@google.com>, Andrew Rucker Jones <arjones@simultan.dyndns.org>
Look at DansGuardian. I went with iptables +
dansguardian + squid for a school network instead of a
commercial product, I am EXTREMELY pleased with it,
and I saved the school a couple thousand a year.
Dansguardian comes with great black and gray lists,
and can filter on URL, phrases in the page, regular
expressions in URL or page data, mime type, extansion,
and more.
Poke around for instructions on setting it all up as a
transparent proxy so that no client browser config is
necessary. iptables listens for packets with
destination port TCP 80, redirects them to whatever
port squid listens on, etc.
On the network of about 60 PCs, the proxy runs on a
bargain basement E-Machines box, Celeron 1.8 GHz or
so, with 512 MB RAM. The connection feels just as
fast as it did before, maybe faster with the caching.
-Ben
____________________________________________________
Start your day with Yahoo! - make it your home page
http://www.yahoo.com/r/hs
- Previous message: pejman.gohari_at_gmail.com: "SMB : TCP/445 impossible to sniff a document sent to be printed to a MS Spooler Server"
- In reply to: Tucker: "Re: Content Filtering Firewall in Linux.."
- Next in thread: Chris Mason: "Re: Content Filtering Firewall in Linux.."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
