|
||||||||
On Thu, 9 Sep 2004, Chris Buechler wrote: > On Thu, 9 Sep 2004 08:01:15 -0700, Mr Paul J Ogilvie <support at stmc dot bc dot ca> wrote: > > Does anyone know if there is some sort of web filter that can be added to > > m0n0wall? We are looking to add in the ability to deny access to certain > > websites based on either name or content, to the all already rock solid > > abilities of the m0n0wall. Any ideas or suggestions? > > This has been asked on the list several times in the past, so I've > created a FAQ entry for it. > > I committed it to the m0n0wall users guide, but won't be available on > the site until the daily update runs. For now, you can view at > http://livebsd.com/m0n0wall/faq-webfilter.html > > I'd appreciate any additional suggestions or suggested changes. I'd recommend using "reject" rather than "block" in any firewall rules used for this purpose, to avoid making the poor slob wait for a 30-second timeout. Similarly, I wouldn't recommend redirecting to a nonexistent IP unless there's a "reject" firewall rule for it. Fred Wright |