[Efw-user] Disable file sharing

Hi, How could I disable file sharing programs on my green zone, without turning on outgoing firewall (mostly dc++)? Are there specific ports, or is there an application-level filtering possibility? Thanks in advance, Akos -- Üdvözlettel, Gábriel Ákos -=E-Mail :[EMAIL PROTECTED]|Web: http://w

[Efw-user] SIP Proxy

Will the SIP Proxy work in both directions? I am intending to have multiple SIP phones on the RED side connecting to our internal asterisk server. I also need the asterisk server to be able to register out to a VOIP vendor. -- -- Steven http://www.glimasoutheast.org -

[Efw-user] Supported Hardware

Hello Everyone,  I was looking for a link to supported hardware and have been unable to find it.  Is there SATA support in 2.x?  What nics are supported?  Anyone point me in the right direction?Thanks,J- Take Surveys. Earn Cash

[Efw-user] DHCPD and DNSMASQ

Somewhere in my reading on IPcop and Endian FW I got the idea stuck in my mind that the DHCP service will update the information served by DNSMASQ so that dynamically assigned hosts will show up in the green zone DNS while their lease is valid. Now that I have actually installed EFW, I can't find

Re: [Efw-user] OpenDNS with Squid

Interesting blog about OpenDNShttp://www.techcrunch.com/2006/07/18/opendns-wants-to-watch-the-web-for-you On 7/19/06, Adam Pavelec <[EMAIL PROTECTED]> wrote: When I configure my EFW to use OpenDNS' nameservers[1] for both the Redinterface and DCHP, the tests at http://welcome.opendns.com/ all seem

Re: [Efw-user] Hosting sites on the GREEN interface

My suggestion was the proxy and not the firewall, since I won't be able to open the same ports to two different machines.Thanks,On 7/19/06, dayne_lucas <[EMAIL PROTECTED]> wrote:Port forwarding is just that, forwarding requests to an internal host given a certain port. The firewall does not inspec

[Efw-user] OpenDNS with Squid

When I configure my EFW to use OpenDNS' nameservers[1] for both the Red interface and DCHP, the tests at http://welcome.opendns.com/ all seem to pass as long as I have not enabled Squid. Once I do enable Squid (I use Transparent mode), all of the tests fail. John Roberts, VP of Product Develop

Re: [Efw-user] Multiple RED Interface

1) First you will need to access the console via ssh. 2)Then cp /var/efw/uplinks/main /var/efw/uplinks/link2 3)Modify the /var/efw/uplinks/link2/settings file in vi to reflect the other ISP connection. Make sure to change the RTABLE=200 to RTABLE=201. "This value is used as name of the l

Re: [Efw-user] Questions on HTTP content filter

wnpaul said the following on 7/19/2006 7:41 AM: > Thank you. Does anyone have an answer to the question: What software is the > content-filtering based on? Content filtering, IIRC, is done by Dan's Guardian . -

Re: [Efw-user] Questions on HTTP content filter

dayne_lucas wrote: > > 1. Yes you may, it is a free world. > Thank you. Does anyone have an answer to the question: What software is the content-filtering based on? dayne_lucas wrote: > > 2. Not that difficult > a. Yes they can by adding these clients IP's to Proxy > HTTP > Network > Base

Re: [Efw-user] Hosting sites on the GREEN interface

Port forwarding is just that, forwarding requests to an internal host given a certain port. The firewall does not inspect the URL that the client is searching for, this is a DNS or HTTP application issue. I don't believe it should be the firewall's job to do such a thing, it should rather be done

Re: [Efw-user] Questions on HTTP content filter

1. Yes you may, it is a free world. 2. Not that difficult a. Yes the can by adding these clients IP's to Proxy > HTTP > Network Based Access Control > Unrestricted IP addresses. Bear in mind that these computers will bypass the entire proxy including Antivirus scanning. b and c. At the present

Re: [Efw-user] http antivirus scan

This is done be design. SQUID is a more robust proxy with ACL's. I can see using HAVP on its own in a small home network, but for a more robust handling of HTTP traffic it is recommended to use HAVP in conjunction with SQUID, and let HAVP just handle the scanning. Best regards, Dayne -- View t