We also produce a Layer-7 filtering solution but it'll cost money also. But I can guarantee that is less than BlueCoat
-----Mensagem original----- De: Bill Marquette [mailto:[EMAIL PROTECTED] Enviada em: quarta-feira, 4 de outubro de 2006 13:59 Para: support@pfsense.com Assunto: Re: [pfSense Support] Application filtering over HTTP On 10/4/06, BenoƮt Beaujault <[EMAIL PROTECTED]> wrote: > Hello, > More and more applications, due to firewall filtering, move to HTTP, is > it in the roadmap of pfsense to propose a fonctionnality to filter some > applications over HTTP (peer-to-peer, MSN, ICQ and so on) ? Start by forcing all your users through a proxy; enforce the use of a proxy with firewall rules (and policy - technology can't stop everything, but firing people will). Then figure out what proxies are "better". One of my neighbors is always telling me that anything can be accomplished with either time or money...you need to spend the time, or the money to solve your problem. Squid is free, but will cost you time (and won't solve all your problems), commercial proxies such as Bluecoat can make use of commercial blacklists (for better or worse), but will cost you money. I can attest first hand that Bluecoat stops OpenVPN, BTW. --Bill --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- Internal Virus Database is out-of-date. Checked by AVG Free Edition. Version: 7.1.405 / Virus Database: 268.11.4/424 - Release Date: 21/8/2006 --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]