A coworker recently showed me a host file he downloaded from the Internet that redirects some 100+ adtracking and popup sites to the workstation loopback address. I was wondering if it would be wise to implement this using something like NBAR and a policy map to send the traffic to Null0 (like the Code Red example)
Has anyone ever done something like this? Is it doable or is there a better way?
Yes that's the one. Unfortunately I don't have the funds available to implement Websense, although I'd like to for a number of reasons. I realize it will increase my processor load, but by how much I don't know. Thanks for the suggestion though.
Jim, you dont really need a Websense or N2H2 server to do URL filtering. You can do limited URL filtering using the Cisco IOS software itself. You can define static entries to deny URLs. Its effectiveness to block Popups is something which I have not personally tried...