On 1/27/07, Wade Blackwell <[EMAIL PROTECTED]> wrote:
Hey guys good morning,
So I don't know how the rules might be subverted but since there is
always that chance i would like to have the option of putting yet another
road block up. This technique is used allot in large organizations, it
usually is done in a much fancier way, with netflow/Sflow and heuristics. I
am taking a more simple approach, I just want to take a blacklist, route all
the addresses on that blacklist to /dev/null in case my Dansguardian
solution is subverted. I am blocking all outbound http/https connections and
forcing the users through a proxy solution.
Bill, I tried routing to loopback but it just adds an extra hop in
the path (not what I expected). So I am sure that i could add an 8,000 line
route add to the rc.local script I was just wondering if there is a more
elegant way to do that. Thanks.
Wade B
On 1/27/07, Bill Marquette <[EMAIL PROTECTED]> wrote:
>
> On 1/26/07, Wade Blackwell <[EMAIL PROTECTED]> wrote:
> > Good afternoon all,
> > Can PF can support blackholing by routing to /dev/null? It
> doesn't
> > look like the web configurator will let me do that magic, how would
> one go
> > about adding and deleting routes for that purpose?
>
> Add a static route (System->Static Routes I think) to 127.0.0.1. That
> should drop it.
I usually use 0.0.0.0
