realy nice Work on the Proxy, it seems to be faster and the new Web-AV Downloadpage now gives me the choice of "Save Target as...". And with .gif/.jpg excluded from AV i don´t have to fear picture heavy Sites, while the Cache deals with the re-visits [;)]
I am realy happy that Up2Date is not only about Bug- and Security-Fixing but adds good Features (and complete Redesigns -> Proxy?) as well [:)]
Hrmm That's evil, most things are working but co-workers are complaining that with the proxy enabled they're unable to listen to music from Launch.yahoo.com but do get the commercials, & a few other co-workers are stating housecall.trendmicro.com won't download the update pattern.
I'll try the next few patches & let everyone know how things go :-)
well all you need to do now is to see the exact domain the streams are coming from and allow that domain and not the whole yahoo.com (i did state that this was a test only to see if the "trusted domain" helps in this case).
[ QUOTE ] well all you need to do now is to see the exact domain the streams are coming from and allow that domain and not the whole yahoo.com (i did state that this was a test only to see if the "trusted domain" helps in this case).
[/ QUOTE ]
Tried that already and it does not seem to work. The streams come from radio.launch.yahoo.com.
Why not just open up the required ports for streaming in the packet filter and tell the streaming software to bypass the proxy?
Streaming has always been problematic for firewalls and proxy's even before content filters, but by using a content filter and a proxy you are making your life really difficult, just setup Windows Media player and RealPlayer and Quicktime to connect directly using the correct TCP/IP and UDP ports through the firewall and solve your headaches. The content filter isn't going to be able to do anything with the streams anyway.
looks like Yahoo is as helpful as always, I asked the exact url the music comes from & this is the responce I got about a day later.
Within your firewall you will need ports 80 (HTTP) or 1755 and 554 (UDP, TCP) opened and free of filters. You will also need to allow calls to the '63.250.215.*' range of IP addresses, and the below URL domains:
I added the posted domain, along with launch.yahoo.com & radio.launch.yahoo.com, but it wouldn't allow the stream to continue when I removed yahoo.com from the trusted domain.
we're listening to streams via the proxy with authentication. we're using winamp over sockscap for this. the socks is used, because you aren't able to define a service for streaming servers. the ports are to different.
btw: a pretty geeky think would be an option to manage outgoing ports for the socks and maybe to do this user based. (for user x allow irc; for user y allow icq; etc) is it generally possible to implement an option like explained above?
