At 1:33 PM 6/13/94 -0700, Dan Sweeney wrote:
>Text item: Text_1
>Does anyone know if there is a way to configure the CERN proxy services to
>restict users on the inside of the firewall. We know we could do this with our
>internal routers but it seems that this would be a whole bunch of work on a
>large network. Particulary we are interested in limiting httpd (Mosaic).
What do you mean by restrict? Do you want to keep them from accessing an
HTTP servers outside the firewall? The CERN server allows you to restrict
outgoing traffic by protocol, protocol methods (GET, PUT, POST, HEAD,
DELETE for HTTP), IP, host, or domain, plus specific sites can be blocked
out, for example if you didn't want anyone visiting the Microsoft site :)
This is all done with rules and supports some wildcarding.