Hi if i understand right you would give Clients on the lan access to only 15 Sites and nothing more? so you have two options, a) create allow rules for dns, smtp pop3,imap, or what else is required, create also pass rules that aloow access to this 15 sites hint this sites can be hacked in an alias so you should only define one rule caveats: the ipadress ist required, and if this addresses changes the site could not be accessed
b) my preferred solution install squid, enable transparent proxying, create access rules in the squid-configuration that allows access to the sites that are required and deny acces to any other, optionally you can create black- and whitle lists that are loaded by squid. The acls and lists can contain regular expression on all subcomponents of a request. if you need samples, contact me i can you give a full configuration that are a perfect example for this techniques. optionally you can create local users on the firewall for limiting access to authenticated users, or user an radius server to authenticate ( i think pfSense suppirt this)..... hope this helps you cheers michael 2007/3/15, Sloan Miller <[EMAIL PROTECTED]>:
I need to limit http access to all sites but 15 on the internet. Is this possible? If so how would I do this. thanks
-- === michael-schuh.net === Michael Schuh Preußenstr. 13 66111 Saarbrücken phone: 0681/8319664 mobil: 0177/9738644 @: [EMAIL PROTECTED] === Ust-ID: DE251072318 ===