Internet Related/Filtering/Firewall Thread, EMBC Filtering Inadequacies in Technical; We are embc and use smoothwall just for banned students to force them on to a restricted list of sites.
3rd December 2009, 09:50 AM #16
We are embc and use smoothwall just for banned students to force them on to a restricted list of sites.
The only thing putting me off using smoothwall for whole school is supposed reduction in speed by forcing everyone through the smoothwall box rather than direct to embc's proxy servers.
This is according to embc but as anyone experience of this? We have 1500 students so could be an issue.
3rd December 2009, 10:09 AM #17
Have done that - spoke to the guy in charge of IT Services for schools commenting about the lack of dynamic content filtering, and the response I got was a sort of "it does the job well enough" type response and that it's Becta accredited so it must be good enough filtering. It may be purely something to do with our LA and their relationship with EMBC, but I have no way of telling.
Originally Posted by GrumbleDook
3rd December 2009, 10:20 AM #18
Originally Posted by tom_newton
Tom, we recently had an issue with users using TOR portable with Firefox to bypass filtering both Smoothwall and EMBC, I tried it and could get on anything. I've since used software restriction policy to ban all exes which has stopped this.
Am I right in thinking that if a student can use a TOR program that initiates an SSL connection from the client that Smoothwall cannot filter as it can't analyse the packets.
If this is the case is there a way to ban SSL connections that aren't opened by the Smoothwall?
3rd December 2009, 10:48 AM #19
What's your current setup?
Transparent proxying or nay? Are we using certificate checking and/or SSL MITM?
Is this UTM firewalled, or other setup?
Me and rob_f will find out what the problem is. These tunneling apps are an affront to my very being!
3rd December 2009, 10:58 AM #20
Originally Posted by nile_c
The device is a Smoothwall UTM rack box. I didn't actually set it up it was don't by another member of staff and smoothie support. No rush but if you can tell me where to check those settings I'll let you know.
I can tell you that it's not transparent traffic could potentially bypass the smoothwall if it knew the ISP proxy address, but students are blocked from making those changes and I can't see how the TOR app could find it out.
By kaphc in forum East Midlands Broadband Consortium (EMBC)
Last Post: 27th November 2009, 03:57 PM
By peterv5 in forum Windows
Last Post: 13th May 2008, 12:10 AM
By Modey in forum Wireless Networks
Last Post: 23rd April 2008, 12:28 PM
By TheCrust in forum Wireless Networks
Last Post: 30th January 2008, 09:58 AM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)