Hi all,
I've been googling for hours, and can't find one link that even discusses this.
I'm trying to figure out how to prevent people from bypassing my firewall, by
using an SSH tunnel through the squid proxy server running on my firewall.
I'm running Debian Etch 4.0 stable, shorewall 3.2.6-2, squid 2.6.5-6,
dansguardian 2.8.0.6.
I've googled, and there are hundreds of sites that teach how to bypass the
proxy, but none explain how to prevent it. Squid doesn't appear to be able to
stop them. I'm thinking a shorewall/iptables rule to recognize the SSH tunnel
via proxy attempt, and drop it. If not shorewall directly, then maybe snort or
fwsnort?
I'm open to suggestions. Also, I've documented my firewall, wrote this how-to:
www.abazaba.org/debian/firewall.html
Thanks
-------------------------------------------------------------------------
Check out the new SourceForge.net Marketplace.
It's the best place to buy or sell services for
just about anything Open Source.
http://sourceforge.net/services/buy/index.php
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
