Thanks, Chris! Unfortunately, I don't have access to this proxy and can't configure any rules on it. Hmm... then it seems that this is not possible with pf.
Regards, Aleks. ________________________________________ Von: Chris Buechler [[email protected]] Gesendet: Freitag, 7. Oktober 2011 17:24 An: Spenst, Aleksej Cc: [email protected] Betreff: Re: How to block HTTP packets going to 0.0.0.0 via proxy On Fri, Oct 7, 2011 at 5:11 PM, Spenst, Aleksej <[email protected]> wrote: > Hi, > > my browser goes online via proxy. > So, when I type http://0.0.0.0 in my browser I see in wireshark the following: > > Source Destination Protocol > Info > 172.16.102.100 172.16.2.17 HTTP GET > http://0.0.0.0/ HTTP/1.1 > > That is the http GET request with the 0.0.0.0 IP address is sent to my proxy > 172.16.2.17. > I do not want these requests to go to proxy. How can I block such requests > with pf rules? > > I could easily write a rule to block all packets directly going to IP > 0.0.0.0, but in case with proxy, I don't know how to block such requests. > Block them on the proxy. PF can't tell the difference between GET http://0.0.0.0 and GET http://google.com _______________________________________________ [email protected] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-pf To unsubscribe, send any mail to "[email protected]"
