[ale] L7 filtering in Netfilter
Raju
mr at 4securenet.com
Thu Nov 6 12:51:07 EST 2003
Anyone had success with this?
http://l7-filter.sourceforge.net/
Nowadays you can pretty much tunnel any protocol through standard
out-bound ports in Firewalls (most security policies obvisouly allow 80,
443, etc), differentiating HTTP from Gnutella, etc. can be difficult with
out L7 inspection. Although Checkpoint's FW-1 stateful-inspection claims
it can understand L7 information without taking a performance hit
(proxies), I was hoping for an Open Source solution without paying
ridiculous license fees :-) Try changing the IP address bound to an
interface with Check Point? Talk about a pain the a$$.....sheeez
--Raju
More information about the Ale
mailing list