|
|
Focus on Linux
Content Filtering Firewall in Linux.. Aug 17 2005 10:46AM Soi, Dhruv (dsoi ipolicynetworks com) (4 replies) Re: Content Filtering Firewall in Linux.. Aug 18 2005 06:59PM Glennie Vignarajah (glenny nephthys org) Re: Content Filtering Firewall in Linux.. Aug 18 2005 04:59PM Kyle Wheeler (kyle-focus-linux memoryhole net) Re: Content Filtering Firewall in Linux.. Aug 18 2005 04:33PM Hrvoje Spoljar (hrvoje spoljar x pbf hr) |
|
Privacy Statement |
Hash: RIPEMD160
Dhruv,
Using iptables/Netfilter for this is the wrong idea for sure. It breaks
the TCP connection, leaving both ends hanging. It is also very
susceptible to false positives. You want a real content filter. I use
DansGuardian (http://www.dansguardian.org/) with DansGuardian Antivirus
(http://sourceforge.net/projects/dgav/) and ClamAV
(http://www.clamav.net/) and am happy. The setup is not the easiest, but
the product works well. Please note that DansGuardian is free for
non-commercial use, but requires an inexpensive license for businesses.
Read the licence if in doubt.
-&
Soi, Dhruv wrote:
> Is anyone aware of such firewall in linux. I have used ipcop, iptables, shorewall and have read that applying netfilter patch to kernel for HEX search can provide such capability. Would anyone of you like to put your thoughts over it?
>
> Thanks
> Dhruv
- --
GPG key / Schlüssel -- http://simultan.dyndns.org/~arjones/gpgkey.txt
Encrypt everything. / Alles verschlüsseln.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iD8DBQFDBMjOoI7tqy5bNGMRA2KBAJ9uml8iWu6OKndladaELMkHHHeUVwCaA9ii
Ofg+kysO7AxgKI6X1LKlJKM=
=hhPv
-----END PGP SIGNATURE-----
[ reply ]