How to block HTTP packets going to 0.0.0.0 via proxy
Greg Hennessy
Greg.Hennessy at nviz.net
Fri Oct 7 23:19:58 UTC 2011
If you have no access to the gateway system, the only other alternative is a client side configuration, either use a PAC file or browser exception or routing statement to send traffic elsewhere.
Greg
> -----Original Message-----
> From: owner-freebsd-pf at freebsd.org [mailto:owner-freebsd-
> pf at freebsd.org] On Behalf Of Spenst, Aleksej
> Sent: 08 October 2011 2:11 AM
> To: 'freebsd-pf at freebsd.org'
> Subject: How to block HTTP packets going to 0.0.0.0 via proxy
>
> Hi,
>
> my browser goes online via proxy.
> So, when I type http://0.0.0.0 in my browser I see in wireshark the following:
>
> Source Destination Protocol Info
> 172.16.102.100 172.16.2.17 HTTP GET http://0.0.0.0/ HTTP/1.1
>
> That is the http GET request with the 0.0.0.0 IP address is sent to my proxy
> 172.16.2.17.
> I do not want these requests to go to proxy. How can I block such requests
> with pf rules?
>
> I could easily write a rule to block all packets directly going to IP 0.0.0.0, but in
> case with proxy, I don't know how to block such requests.
>
> Thanks for any help.
>
> Regards,
> Aleks.
> _______________________________________________
> freebsd-pf at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-pf
> To unsubscribe, send any mail to "freebsd-pf-unsubscribe at freebsd.org"
More information about the freebsd-pf
mailing list