Was just curious.. since SSL inspection is more or less relegated to proprietary solutions, squid hacks to compile old versions, and L7 firewalls, etc.. I was considering a cloud based DNS filter service.. cheaper and I don't have the data privacy issue to worry about.
Seems super easy to implement as well.
My question is.. is it possible that despite my outbound traffic being nat'd to one external IP that certain internal clients can be exempted from the filter policy?
I imagine I could do it with an on premise list subscription but I was curious to get people's thoughts on the matter...
I was thinking of DNS filter.com as an example.
Cheers, M
No comments:
Post a Comment