I would suggest that you rather look at what your firewall can do for
you. In our case, we can have firewall rules that block streaming
video/audio for all, or for some group of employee.
this way, all your access rules are in one place, the firewall where
they are suppsed to be.
Just my 2c
Denis Robitaille
Directeur services technique TI
819 363 6130
SUPPORT
Jour (EST) Daytime : 819-363-6134
En-dehors des heures (EST) After hour : 819-363-6158
Network Status : 819-363-6157
"Roger Vicker, CCP" <rv-tech@xxxxxxxxxx> 2008-09-02 11:03 >>>
I have some mid-level managers that have legitimate authority to
bypass
the firewall content filters. However, the logs are showing that
they
have been abusing it to play online streaming radio content. (Upper
management defines it as abuse due to the bandwidth consumption)
The streaming content comes from a specific sub-domain (abc.def.com)
and
I would like to change the configuration of the DNS (on the IBM i
V5R4)
to poison (point to 127.0.0.1) the sub-domain but have the rest of the
domain (def.com and *.def.com) still get resolved normally.
I can setup the poisoned sub-domain (new zone for the base domain...)
but I haven't figured out how to set that everything else in the
domain
continues to get forwarded for resolution.
Are there any FAQs or guides available for this? Especially ones that
can be followed with the IBM i GUI implementation of BIND
configuration?
Roger Vicker, CCP
midrange.com
