Daryl Caudill wrote: > Hi all, > > I've been googling for hours, and can't find one link that even discusses > this. > > I'm trying to figure out how to prevent people from bypassing my firewall, by > using an SSH tunnel through the squid proxy server running on my firewall. > > I'm running Debian Etch 4.0 stable, shorewall 3.2.6-2, squid 2.6.5-6, > dansguardian 2.8.0.6. > > I've googled, and there are hundreds of sites that teach how to bypass the > proxy, but none explain how to prevent it. Squid doesn't appear to be able > to stop them. I'm thinking a shorewall/iptables rule to recognize the SSH > tunnel via proxy attempt, and drop it. If not shorewall directly, then maybe > snort or fwsnort? >
Try rate-limiting port 443 connections so that they are so slow that people only use them when they absolutely have to. I found this was quite useful for blocking skype. T > I'm open to suggestions. Also, I've documented my firewall, wrote this > how-to: www.abazaba.org/debian/firewall.html > > Thanks > > > > > > ------------------------------------------------------------------------- > Check out the new SourceForge.net Marketplace. > It's the best place to buy or sell services for > just about anything Open Source. > http://sourceforge.net/services/buy/index.php > _______________________________________________ > Shorewall-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/shorewall-users > > ------------------------------------------------------------------------- Check out the new SourceForge.net Marketplace. It's the best place to buy or sell services for just about anything Open Source. http://sourceforge.net/services/buy/index.php _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
