Blocking DNS is good, not sure why I hadn't thought of that :)
We don't restrict our users so I never think to restrict basics outbound.
So many legit sites now have bad ads or have been compromised and contain web bugs and such I want to minimize my clean up when they visit these places.
I also...
Too easy for a user to simply change their DNS server. Trying to block malware and do some basic filtering without having to install, maintain, and pay for a websense server.
There free services that get updated daily with new hosts lists to block all known unwanted sites.
I have already a PHP...
Will this cause too much CPU utilization on my PIX 515e if I take my HOSTS file and just make 15000 static routes to nowhere?
I would much rather update one firewall than hundreds of PC's :)
ie
ip host badsite.com 127.0.0.1
Simple enough to make script to read the domains from hosts file and...
Actualy after thinking about it, puttin both T1's on one router doesn't solve anything except maybe a little wasted net bandwidth. The router is outside the firewall so it would still go out and come back in....
Anybody got any ideas on this? This can't be that odd is it?
I'm just a newby when...
We have 2 ISP's with a T1 coming in from each.
Each T1 has it's own router (supplied by the ISP) one is an intel router the other is a Cisco 2620.
Those each feed seperate firewall boxes.
Which in turn each feeds a summit 48 switch.
The summits are interconnectd via Gigabit Fiber.
Here's where...
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.