Date: Tue, 28 Mar 2000 20:18:25 -0800 (PST) From: Kris Kennaway <kris@FreeBSD.org> To: Chuck Rock <carock@epctech.com> Cc: "'Freebsd-Ipfw" <freebsd-ipfw@FreeBSD.ORG> Subject: Re: blocking web access selectively using ipfw? Message-ID: <Pine.BSF.4.21.0003282016450.38375-100000@freefall.freebsd.org> In-Reply-To: <003101bf95e2$2f8ed2e0$0200000a@epconline.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, 24 Mar 2000, Chuck Rock wrote:
> We're running multiple FreeBSD boxes as firewall/proxy solutions for some of
> our customers. I would like to know if there's a way to block web traffic
> from one interface to the other using a web address rather than IP? I didn't
> want to run Squid and try and set up that way if possible.
ipfw doesnt know what DNS name the http request was made under..it only
knows about the IP address. This is something your web server (if you're
serving up pages) or http proxy (for outgoing web requests) would have to
take care of via an appropriate ACL on who can access what.
Kris
----
In God we Trust -- all others must submit an X.509 certificate.
-- Charles Forsythe <forsythe@alum.mit.edu>
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ipfw" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0003282016450.38375-100000>