From owner-freebsd-current@FreeBSD.ORG Tue Aug 30 16:10:00 2005 Return-Path: X-Original-To: freebsd-current@freebsd.org Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 24B2316A41F for ; Tue, 30 Aug 2005 16:10:00 +0000 (GMT) (envelope-from dandee@volny.cz) Received: from pipa.profix.cz (server1.pcsvet.net [82.208.25.157]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6DD5C43D5A for ; Tue, 30 Aug 2005 16:09:58 +0000 (GMT) (envelope-from dandee@volny.cz) Received: from localhost (localhost [127.0.0.1]) by pipa.profix.cz (Postfix) with ESMTP id 861DA4E706 for ; Tue, 30 Aug 2005 18:10:01 +0200 (CEST) Received: from pipa.profix.cz ([127.0.0.1]) by localhost (pipa [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 13501-08 for ; Tue, 30 Aug 2005 18:10:01 +0200 (CEST) Received: from gandalf (unknown [80.95.121.105]) (using TLSv1 with cipher RC4-MD5 (128/128 bits)) (No client certificate requested) by pipa.profix.cz (Postfix) with ESMTP id 343DD4E704 for ; Tue, 30 Aug 2005 18:10:01 +0200 (CEST) From: "Stay d" To: Date: Tue, 30 Aug 2005 18:09:55 +0200 MIME-Version: 1.0 X-Mailer: Microsoft Office Outlook, Build 11.0.6353 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2527 Thread-Index: AcWtfUMc7cc2FNbMSRaeidfduLD57g== Message-Id: <20050830161001.343DD4E704@pipa.profix.cz> X-Virus-Scanned: by amavisd-new-20030616-p10 (Debian) at profix.cz X-Mailman-Approved-At: Wed, 31 Aug 2005 12:24:24 +0000 Content-Type: text/plain; charset="iso-8859-2" Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Application layer firewall on FreeBSD, is it possible ? X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: dandee@volny.cz List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Aug 2005 16:10:00 -0000 Hi all, =20 let me ask you for task "how to control p2p applications and their = traffic with dynamic ports from user=B4s commputers on gateway". =20 We are small wireless community and have shared access to internet for = all members. Core members decided to control p2p traffic by default and to = allow each person in individual way, after showing their knowledge of authorial low. :) =20 But since many dc hubs, edonkey servers, bittorents web trackers and so = on use dynamic not standard ports, how to control it ? =20 Linux use l7-filter http://sourceforge.net/projects/l7-filter = sourceforge freeware and , it is based on iptables, defination application protocols like ethereal project do. =20 So, is there any way to do same application layer osi model firewall = with FreeBSD gateway ? =20 Of course, I tried to find on web, I have not been successful in = searching so far. =20 If my question is not right in this mailing list, if my question is = annoying here, so I am sorry. =20 Dan =20 =20