Basic filtering on IPCOP

[KADIN]

I would like to block internet access to a machine. But I give the right for it to connect to "one" website in particular. Can basic filtering be done on IPCOP? or is there an addon that satisfies this need? I have looked at the documentation of BOT, but it's starting to filter protocols.

[Steve123]

The ideal way to do such things is to use an addon based on squidguard and to redirect all to your site. Whatever the ip address or the user will be, everything will be going to the site.

[Big Fish]

Quote:

Originally Posted by KADIN

Can basic filtering be done on IPCOP?

A little reflection combined with a minimal knowledge of the protocols give the answer immediately. Let the elements. Ipcop is a firewall that works primarily on layers 3 and 4, ie IP and UDP / TCP from the principal. As you probably know http is the protocol that allows, among other things, access to a website. Where is http in the protocol stack? Above tcp. It's easy to understand that IPCop is not the tool for that.

Quote:

Originally Posted by KADIN

I have looked at the documentation of BOT, but it's starting to filter protocols.

Finding reckless and inaccurate. Http is not a protocol?

[KADIN]

Quote:

Finding reckless and inaccurate. Http is not a protocol?

Yes but didn't understood what you want to convey?

Bot blocks (may), from what I understand the HTTP protocol as a whole. But it does not set a filter: a particular site is available.

[Big Fish]

Http is a protocol for application level. We can not write that BOT can filter the protocol level. If I remember correctly BOT does not knows how to block the HTTP protocol. He knows how to block TCP port to 80. This is not really the same thing. Safe to use a familiar expression, the problem is in the details. Although this is not at this stage really a detailed.

The real solution is a proxy with authentication.

Then it is probably possible to cobble together using the ip (but there may not be that ...) the authorized site.

[Lemog]

Precisely, BOT is filtering level 3. To filter a website or do redirection as you wish, we must deal with Layer 7 protocols (http in your case). Except with Squid (and an addon appropriate), IPCop is not capable.