Since he is trying to allow logmein, I don't think this is all that helpful. ;-)
Chris -----Original Message----- From: Christoph Hanle [mailto:[EMAIL PROTECTED] Sent: Tuesday, April 08, 2008 3:32 PM To: support@pfsense.com Subject: Re: [pfSense Support] LogMe In Block!! Sebastián Veloso Varas wrote: > Hello, I am new in this list so from already my greetings to all. I have the following doubt: how can I leak LogMeIn in pfsense? > > Should I leak only everything what it avenges from *.logmein.com? Hi, there are some possibilities to deny access from and to peer to peer services like logmein.com. - have a policy within your network, which denies the installing of the logmein client and the visiting of logmein pages. But if you need technical solutions, i will you show some: - install a client on a testmachine and find out the IPs of the logmein.com servers the clients connect to, use wireshark or the logs of pfsense. Block (https) access to these IPs + - Block (http(s)) access to www.logmein.com, secure.logmein.com and whatever will be after the login at secure.logmein.com. These settings must be checked periodicly. - And/or use the DNS forwarder of pfsense or your own DNS to manipulate the proper nameresolution, but the browsercache and the possibility to use IPs instead of names are leaks of the solution. - Use a proxy server, maybe with content filter, there you will have other possibilities to filter. hope this helps bye Christoph --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
