Date: Fri, 19 Oct 2001 21:02:49 +0300 From: Giorgos Keramidas <charon@labs.gr> To: Andrew Dean <ferni@shafted.com.au> Cc: security@freebsd.org Subject: Re: Files downloaded logging? Message-ID: <20011019210249.B21519@hades.hell.gr> In-Reply-To: <005c01c156a2$855622f0$240aa8c0@ltpr.local> References: <005c01c156a2$855622f0$240aa8c0@ltpr.local>
next in thread | previous in thread | raw e-mail | index | archive | help
Andrew Dean <ferni@shafted.com.au> wrote: > Is there a way to log files that are downloaded through a freeBSD firewall > ... i'm using ppp -nat to connect and ipf rules... Not by looking at the packets that pass through the firewall, if that's what you're asking. You can set up a web/ftp proxy in the internal network, and only NAT packets from that machine at the firewall, with everyone using that proxy to download files. This way anyone not using the proxy will not have any way to download files, and the logs of the proxy will tell you what you want to know. But this creates one more single-point of failure, since if the proxy fails, down goes your Internet connectivity through the firewall too, so you might not like this `solution'. -giorgos BTW, this is only marginally related to FreeBSD security, and you should really post such questions to freebsd-questions. (The Reply-To header has been set appropriately.) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20011019210249.B21519>