On 5/23/07, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: > Hello list ! > > It may sound noobish but is there a way to filter traffic based on regular > expression matching ?
This is not a shorewall issue. The only way to block any of these applications (IM/P2P) etc. is to run a transparent proxy on each of the open ports, and to block all other outgoing traffic. For instance, run squid, clamsmtp, et al. Disallow connections to raw IP's in squid, and so on. With squid allow outbound access only to a white-list of sites. If possible, user education is a better choice. If you have control of the desktops, administrative policies to prevent installation would be useful. On top of this you'd have to block Meebo and other sites which proxy IM. In short, it's a very tough war :-).. One in which you can win short battles, and never win the war, unless you're absolutely ruthless in what you block and allow. Prasanna. ------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
