I have pushed Openvpn through a bluecoat successfully,
Do you know if it is a configuration option or does it kill the
connection irrespective of configuration?
Wade B
On 10/4/06, Bill Marquette <[EMAIL PROTECTED]> wrote:
On 10/4/06, BenoƮt Beaujault <[EMAIL PROTECTED]> wrote:
> Hello,
> More and more applications, due to firewall filtering, move to HTTP, is
> it in the roadmap of pfsense to propose a fonctionnality to filter some
> applications over HTTP (peer-to-peer, MSN, ICQ and so on) ?
Start by forcing all your users through a proxy; enforce the use of a
proxy with firewall rules (and policy - technology can't stop
everything, but firing people will). Then figure out what proxies are
"better". One of my neighbors is always telling me that anything can
be accomplished with either time or money...you need to spend the
time, or the money to solve your problem. Squid is free, but will
cost you time (and won't solve all your problems), commercial proxies
such as Bluecoat can make use of commercial blacklists (for better or
worse), but will cost you money. I can attest first hand that
Bluecoat stops OpenVPN, BTW.
--Bill
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
--
"Integrity is more important than perception management"
"There are two kinds of pain, the pain of change and the pain of never changing"
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
