Re: [LUG] Level 7 firewalling

To: list@xxxxxxxxxxxx
Subject: Re: [LUG] Level 7 firewalling
From: Neil Stone <Neil@xxxxxxxxxxxxxx>
Date: Fri, 24 Oct 2003 08:11:56 +0100
Reply-to: list@xxxxxxxxxxxx

Paul Weaver wrote:

I almost threw up at work today - I was told how much a box cost that filtered everything going to a network except XML packets to a given port. We're talking *tens* of thousands, and my employer is willing to part with that money. This is the same employer that allows admins to log into root on *broadcast critical* equipment via telnet. No, not ssh, telnet.

Long story semi-short, is there an iptables style thingee that can drop packets based on their application layer content?

Blocking a data stream or packet based upon the content of the actual packet... This was brought up in discussion in a meeting I was in on Tuesday. I know that Smoothwall, at the moment, is unable to do this... It is somthing that is being looked in to

Smoothwall can be setup to block/allow access to specific ports based upon the source or destination port number eg block access to port 6667 -> 7000 (irc). Doesn't really help in this case if he wants it to block based upon content types.

Just out of interest... why ?

Neil


--
The Mailing List for the Devon & Cornwall LUG
Mail majordomo@xxxxxxxxxxxx with "unsubscribe list" in the
message body to unsubscribe.

Re: [LUG] Level 7 firewalling
- From: Paul Weaver

References:
- [LUG] Level 7 firewalling
  - From: Paul Weaver

Prev by Date: Re: [LUG] Debian 3.0r1 on Alpha AXP - where now?
Next by Date: Re: [LUG] centralised management tools
Previous by thread: [LUG] Level 7 firewalling
Next by thread: Re: [LUG] Level 7 firewalling
Index(es):
- Date
- Thread

Lynx friendly