will it filter out HTTP tunneling also ?
--- Rob Sterenborg <rob@xxxxxxxxxxxxxxx> wrote:
>
> On Wed, March 1, 2006 12:45, S t i n g r a y wrote:
> > Is it possible to filter HTTP signatures/headers
> with
> > Iptables ? or is there addon for it ?
>
> You may be able to use the String match but you can
> only filter the payload of
> 1 packet at a time : if a signature/header spans
> multiple packets then it
> won't work.
>
> Netfilter is not meant to do content filtering.
> Perhaps you can use Squid.
>
>
> Gr,
> Rob
>
>
>
>
*º¤., ¸¸,.¤º*¨¨¨*¤ Stingray *º¤., ¸¸,.¤º*¨¨*¤
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
