The router-issue is not enough - you can bypass this by using an external
proxy WWW-server (such as www-cache.demon.co.uk) to make your request for
you...
Sigurd.
----------
From: Alex Pakter[SMTP:Alex .
Pakter @
omnitel .
it]
Sent: 23 February 1996 10:31
To: Firewalls @
GreatCircle .
COM
Subject: Re: CERN HTTPD Proxy Rules
> From: Philip Sloan <philip .
sloan @
shorts .
co .
uk>
> Date: Mon, 19 Feb 1996 12:21:57 +0000
> Subject: Httpd Proxy
>
> Hello,
>
> I'm running the cern_httpd proxy on my firewall to allow specific
> machines in the internal network to access the outside world.
>
> Is there any way that I can blacklist certain sites, so that the users
> in the internal network cannot gain access to them via the proxy server
Instead of doing this in the httpd proxy, why not do it at your router?
Have your router towards the internet block any INCOMING traffic from
sites that you don't like. As long as you have an external mail relay
you will still be able to get mail from those sites, because it will
pass through your external mail handler after your internal one times out.
It's true that this way you will have to block the entire site, and not
just one page, but at least it's sure.
Note: I heartily disapprove of blocking access to internet sites. I'm
sorry, but who the hell are you to tell another person what internet
sites (s)he can read? So you say you don't want it on the company net?
Since when is the company responsible for policing it's employee's
thoughts? As long as they are productive workers, what do you care?
Alex | Alex Pakter - UNIX systems analyst
---- | Omnitel Pronto Italia - Milano, Italy
| Internet Mail: Alex .
Pakter @
omnitel .
it
Have a day. | WWW Home Page: http://idiom.com/~alex (in progress)
|
|
