Quoting Andrei Antonelli <andrei@xxxxxxxxxxxxxxxx>:
Hi ,
I 'm having some problems with users that bypass proxy with Webs
tunnel ! Today i m blocking each site that i know, i would like to
know with someone knows some way to block tunnel without be by
each site that has this features !
I try through iptables but also i cant !
Someone can help me ?
i don't think you can ..
what i did was :
1. only allow CONNECT method for several port (by default squid does
this)
2. use delay_pool to slow any connection that are using CONNECT so
slow that it will discourage any one who want to tunnel trough it :p