On 10/31/07 19:57, dhottinger@xxxxxxxxxxxxxxxxxxxxxx wrote:
WOW. Quite a lot of information. Its been my goal to get my proxy
server and firewall on the same box. Havent got there yet. My firewall
is running on an old pII ibm workstation with 3 nics, doing routing, nat
etc. and has worked very well. Hardly ever breaks a sweat, so it hasnt
been a priority like mail, etc. The main reason I used the url is
because the ip addresses of the sites change quite a bit also. Im just
about ready to throw the towel in, there is just to many proxiifier
sites for people to use to circumvent my filter. I guess the best way
to do this would not run a transparent proxy, which maybe what I end up
doing sometime in the future. As always thanks for the advise.
*nod*
That is why I have found a liking of the unix way of thinking where you
lock down everything and just open up what is needed.
Good luck with your problem(s). If you are curious, you could probably
come up with a chain and sub-chain structure that only part of the
sub-chain(s) were updated via cron jobs when things change.
Grant. . . .
-
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
