Date: Wed, 17 Mar 2004 12:21:25 -0500 From: Chuck Swiger <cswiger@mac.com> To: Thomas Vogt <turbo23@gmx.net> Cc: freebsd-ipfw@freebsd.org Subject: Re: layer7 filter? Message-ID: <40588915.1040905@mac.com> In-Reply-To: <4058710F.4060608@gmx.net> References: <4058710F.4060608@gmx.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Thomas Vogt wrote: > Any plans to implement a OSI layer7 filter into ipfw? Or is there > already a project for fbsd? I only know > http://l7-filter.sourceforge.net/ but it's linux only. The divert mechanism already present in IPFW can be used in conjuction with application-specific proxies to perform layer-7 filtering. For example, consider diverting outbound connections to port 80 to a Squid cache, for example, which might also perform authentication, filtering by URL, or other HTTP-protocol-specific stuff. -- -Chuck
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?40588915.1040905>