I currently block a host of proxifier sites at my firewall using:
$IPC -t nat -A PREROUTING -p tcp -d apchemistry.info -j DROP
Not sure if this is the best practice, but it works fine. What I
would like to do, instead of dropping this traffic is have it sent to
an internal webserver that has our acceptable use policy on it. Is
there a REDIRECT command, or what would be the best way to accomplish
this. Most of this traffic is actually on port 443, and I cant funnel
this through my transparent proxy (squid).
thanks,
--
Dwayne Hottinger
Network Administrator
Harrisonburg City Public Schools
"rarely do people communicate, they just take turns talking"
-
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
