PF: block out port 80 so that not allow clients in LAN to
browse Internet via port 80
RW
mlt01 at mlists.homeunix.com
Tue Sep 25 18:53:24 PDT 2007
On Wed, 26 Sep 2007 00:15:36 +0200
Mel <fbsd.questions at rachie.is-a-geek.net> wrote:
> Well, he could block, but transparently doing it without annoying
> users is better(tm).
It depends.
If they are doing a lot of ftp downloading, you may want to force it to
go though squid, so it can be cached. And you can't really do that in
combination with http interception.
There is also the issue with interception that https will bypass squid,
which is a loophole if you want to want monitor access, or block sites.
More information about the freebsd-questions
mailing list