You could do this using firewalling, but I suspect the easiest option is to
configure the webserver to do it instead, adding access controls for each host
You could proably then look at providing some more broad control over traffic
using the firewall as a second layer if necessary.(i.e anything on the internal
ranges, which one would think were a fairly small set, vs everything else)
I don't know if the web server used is Apache or how much you know about it, but
looking at the following might be useful as a first point of contact:
http://httpd.apache.org/docs/1.3/howto/auth.html, particularly the section on
Access Control.
Apache 2 uses a similar system and servers like IIS certainly have something
conceptually fairly similar too.
================================
Darren Stephens BSc MSc MBCS
Centre for Internet Computing
University of Hull
http://www.cic.hull.ac.uk/
mail: darren.stephens@hull.ac.uk
================================
-----Original Message-----
From: mrmogenahalli@hotmail.com [mailto:mrmogenahalli@hotmail.com]
Sent: Saturday, August 20, 2005 5:10 PM
To: firewalls@securityfocus.com
Subject: Web Site Blooking
Hi,
I am new to firewalls and request a any suggestions about the
following,
We have a client who needs us to block a few of his web sites
from the external world while access to the others are are
not. The internal users should be able to access all the pages.
I am not sure if this can be done on a Firewall, the client
has a PIX running 7.0 and uses Websense for URL filtering,
but from what I concluded this setup will url filter traffic
travelling from a more secure network to a less secure network.
Any suggestions is appreciated.
Thank you,
TJ
Content-Type: text/plain;
Checked by Hu-fw-scar
