Date: Thu, 17 Jun 2010 14:13:00 -0700 (PDT) From: Valerian Galeru <valerian_ro@yahoo.com> To: freebsd-questions@freebsd.org Subject: Re: FreeBSD router (IPFW-based): how to block an URL (all IPs of an A-like HOSTNAME) Message-ID: <668660.67477.qm@web30703.mail.mud.yahoo.com> In-Reply-To: <D9B37353831173459FDAA836D3B434994BEEDA38@WADPMBXV0.waddell.com>
next in thread | previous in thread | raw e-mail | index | archive | help
The idea with the DNS server is wonderful, but the problem is, that in my n= etwork the DNS server is the one in Internet [i dont run a DNS server and a= ll local/LAN computers are configured manually to use a public DNS server ]= . --- On Fri, 6/18/10, Gary Gatten <Ggatten@waddell.com> wrote: From: Gary Gatten <Ggatten@waddell.com> Subject: Re: FreeBSD router (IPFW-based): how to block an URL (all IPs of a= n A-like HOSTNAME) To: "'valerian_ro@yahoo.com'" <valerian_ro@yahoo.com>, "'freebsd-questions@= freebsd.org'" <freebsd-questions@freebsd.org> Date: Friday, June 18, 2010, 12:08 AM What about an entry in your local DNS (what your hosts use) that gives a bo= gus ip (127.0.0.1?) for *.badhost.com?=A0 Then users can never connect to b= adhost.com.=20 I don't know too many FW's that allow you to use a URL in a rule.=A0 IIRC, = CheckPoint-FW1 did/does, but they recommend against it due to overhead. As pointed out, Squid or other light weight white/blacklist thingy might be= in order. ----- Original Message ----- From: owner-freebsd-questions@freebsd.org <owner-freebsd-questions@freebsd.= org> To: freebsd-questions@freebsd.org <freebsd-questions@freebsd.org> Sent: Thu Jun 17 15:56:23 2010 Subject: Re: FreeBSD router (IPFW-based): how to block an URL (all IPs of a= n=A0=A0=A0 A-like HOSTNAME) Ok, very simple put: To do this without shell scripting, but this could avoid filter future IP a= ddresses: 1. DIG HOSTNAMEs and add ipfw block rules for those IPs 2. DIG HOSTNAMEs and add a null rule To block all *.hostname and future IP addresses of any of *.hostname, there= must be written a shell script, that analyzes all requests [have no idea h= ow to execute a shell script LIVE!!!, any idea on this topic?]. --- On Thu, 6/17/10, Bernt Hansson <bernt@bah.homeip.net> wrote: From: Bernt Hansson <bernt@bah.homeip.net> Subject: Re: FreeBSD router (IPFW-based): how to block an URL (all IPs of a= n A-like HOSTNAME) To: "Valerian Galeru" <valerian_ro@yahoo.com> Cc: freebsd-questions@freebsd.org Date: Thursday, June 17, 2010, 11:47 PM Valerian Galeru said the following on 2010-06-17 22:01: > Hello, >=20 > Does anyone have any ideas how to block all requests using an IPFW-based = router > (FreeBSD 6.4) to and from a HOSTNAME (which has more DNS A entries) or be= tter, from any *.HOSTNAME.COM ???? Do a whois hostname.com taking note of their ip-address range. Then, for ip= f, put this in your rules file. ### EXAMPLE ### block in quick on fxp0 from 192.168.0.0/16 to any block out quick on fxp0 from any to 192.168.0.0/16 =A0 =A0 =A0=20 _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions=0A To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org= " -----Inline Attachment Follows----- _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org= "=0A=0A=0A
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?668660.67477.qm>