[70666] in North American Network Operators' Group
RE: Filtering network content (rev.)
daemon@ATHENA.MIT.EDU (Steve Birnbaum)
Fri May 21 00:25:41 2004
From: "Steve Birnbaum" <steve.birnbaum@sky-vision.net>
To: "'Eastgard, Tom'" <tom.eastgard@boeing.com>, <nanog@merit.edu>
Date: Fri, 21 May 2004 05:20:56 +0100
In-Reply-To: <67B3A7DA6591BE439001F2736233351202A2A205@xch-nw-28.nw.nos.boeing.com>
Errors-To: owner-nanog-outgoing@merit.edu
> Is content filtering something ISPs are looking at or already
> doing? I'm assuming this question would mostly apply to
I did this for a customer back in 1996 or 1997, before transparent devices
were around. The users dialed in, and their tacacs/radius profile
restricted them to an ACL which blocked traffic should they accidentally
have removed their browser proxy config. A Squid proxy was set up with a
URL filter list, which was snarfed periodically (I think I automated this
somehow) from a list the customer maintained.
During black-out times, a time-based rule blocked everything.
Worked great, though faded away from lack of interest. I haven't seen
similar requests come up since.
regards,
Steve
----
Steve Birnbaum SkyVision Global Networks
Phone: +44 20 83871750 Email: steve.birnbaum@sky-vision.net
Experience is something you don't get until just after you need it.
