Firewall w/ content filtering?
Lyle Scully
my @Home connection. Setting up the firewall shouldn't be a problem,
but I am looking for site filtering, but without having to type up a
list that says what sites I don't want the users to have access to.
I just added kids to my family and would like to restrict them to
either specific sites (disney or cartoon network or such things), and
keep them off of any and all adult sites, hate sites, whatever.
Is there anything out there that would help me meet this problem? They
have their own computers and I would prefer that they didn't use mine
every time they needed to do homework.
Thanks
Lyle
Rob Kouwenberg
> I just added kids to my family and would like to restrict them to
> either specific sites (disney or cartoon network or such things), and
> keep them off of any and all adult sites, hate sites, whatever.
Squid can be your friend.
squid.nlanr.net if I'm not mistaken for more info, look for
documentation on ACL's
Lyle Scully
I use Squid here at the office, and it works great as a proxy. What I
was hoping for would be something that can not be gotten around. When
they get a little more computer savvy, or one of their friends, what
is to stop them from removing the proxy setting under
IE/Netscape/Opera?
Short of threats that is.
Thanks for your reply. I had thought of squid, but I am concerned
about something that can be bypassed.
Lyle
Rob Kouwenberg
> Thanks for your reply. I had thought of squid, but I am concerned
> about something that can be bypassed.
It depends on what your children are able to. If they can bypass the
proxy settings of your favorite browser you're into a different level of
managaging access : you need to put filters on your router to only allow
the proxy server access to the outside.
Simples method btw is to remove the default route on the router and only
define route entries to allowed web servers. But you'r into trouble if
the pink meat server is next to the big ears & long nose server.
Peter da Silva
Lyle Scully <b...@startide.com> wrote:
> I use Squid here at the office, and it works great as a proxy. What I
> was hoping for would be something that can not be gotten around. When
> they get a little more computer savvy, or one of their friends, what
> is to stop them from removing the proxy setting under
> IE/Netscape/Opera?
> Short of threats that is.
Ideally, the squid proxy is part of your application level firewall, but
if you're using something less restrictive you can always block port 80
for anything but the proxy at your firewall.
If you don't have a firewall at all, then you should probably be concerned
more about *that*.
--
`-_-' In hoc signo hack, Peter da Silva.
'U` "A well-rounded geek should be able to geek about anything."
-- nic...@esperi.org
Disclaimer: WWFD?
pe...@icke-reklam.ipsec.nu.invalid
> I would like to replace a Linksys router with a BSD based firewall on
> my @Home connection. Setting up the firewall shouldn't be a problem,
> but I am looking for site filtering, but without having to type up a
> list that says what sites I don't want the users to have access to.
squid ?
> I just added kids to my family and would like to restrict them to
> either specific sites (disney or cartoon network or such things), and
> keep them off of any and all adult sites, hate sites, whatever.
> Is there anything out there that would help me meet this problem? They
> have their own computers and I would prefer that they didn't use mine
> every time they needed to do homework.
> Thanks
> Lyle
--
Peter Håkanson
IPSec Sverige (At the Riverside of Gothenburg, home of Volvo)
Sorry about my e-mail address, but i'm trying to keep spam out.
Remove "icke-reklam"and "invalid" and it works.
Arnaud DACOSTA
transparent proxy on you BSD machines.
This way, you won't have to configure any proxy setting anywhere, all
HTTP packets will be redirected to Squid.
The nice companion to squid is squidguard (www.squidguard.org) which can
handle sophisticated lists of allowed/denied
sites (even within specifical hours).
I have set such a system, and it's really great!
Arnaud DA COSTA