[fw-wiz] Possibly unusual proxy/filter

John Deeny asland@rapidnet.com
Wed, 20 Sep 2000 01:38:35 -0600

Squid can do this. www.squid-cache.org


At 04:50 PM 9/18/00 -0600, you wrote:
>I manage a system that provides a web service.  We serve port 80 on one
>machine (call it "A") and some ports on other machines that are not an
>issue.  What I'd like to do is to put an inbound ("reverse") proxy in
>front of the web server such that the proxy can allow access only to
>specified pages and scripts.  (Sort of a reverse "content filter".)  I
>know that through proper Apache configuration I can clearly limit
>access, but I'm looking for another layer of "depth" in the protection. 
>It'd be nice if I could even validate the arguments to cgi-scripts, but
>that may be asking too much.
>Right now we have a system running FW-1, but "it doesn't seem to be able
>to do what I want" and management is looking for something less
>expensive...  A solution that could use Linux would be great as
>everything else in our environment is Linux.
>I saw the note about zorp, but it looks to be pretty early in its life
>Any other ideas?