|
Posted by Leythos on August 17, 2006, 7:45 pm
If you were Registered and logged in, you could reply and use other advanced thread options
says...
> Hi folks
>
> Can anyone recommend a hardware firewall with reasonable content
> filtering to sit between my small home network (one or two wired
> machines and a wireless access point with one or two laptops) and the
> cable modem? If it did the wireless AP bit & router stuff in the same
> box that'd be most excellent! I'm in the UK, if that makes a
> difference to what is available.
>
> My current (Belkin 801.11b wireless AP and 4-port switch) does basic
> firewall stuff and NAT with only occasional, irritating crashes - but
> it doesn't do content filtering. We've got three children who are just
> discovering the joys of the CBBC website, Bamzooki, Google and the
> rest... It'd be great to be able to set policies along the lines of:
> filter these URLs for the whole network, this content for the whole
> network, these URLs only for the kids machines, only allow ports 25
> and 110 through to/from this machine, etc...
>
> Would almost certainly be wanting a web-based interface, as my main
> machine, and from which I'd want to do the admin, is a Linux box - so
> no Windows-only clients...
>
> Could do it manually on an old PC with IPCop, but that'd be noisy and
> take up too much space...
>
> The advertising for a number of routers or APs say something like:
> "Content filtering with URL blocking and scheduling" (this is from a
> D-Link DIR-635; http://www.dlink.co.uk) - but figuring out exactly
> what that means seems awfully hard!!
The D-Link DFL-700 will block websites by key words or allow them by key
words. As an example, we have one client, a medical office, and we block
all outbound HTTP access except to *.microsoft.com* and two other
locations.
This means they can get MS Updates (as well as browse the MS site) and
also get AV updates (via another key-word).
It also has the ability to strip/block http content, like *.EXE, so that
users in that rule can't download MP3 or EXE or anything you specify.
The nice thing is that you can limit the scope of the rule to an IP
Range and put your computer in another range that uses different rules -
so you can access everything while blocking access to people in the
other range.
Not wireless.
--
spam999free@rrohio.com
remove 999 in order to email me
| 
XML site map