Thank you for the quick response.
I haven't heard of FWBuilder, I appreciate the heads up.
I don't think the logging in iptables is comprehensive enough to gather the type of information I'm looking for, but then again, I haven't done a vast amount of research from that perspective.
"Why should you care?"
Well, in my environment, the Internet is a privilege and not a right. With all of the spyware, viruses, information harvesting software, key loggers, etc. that can be unwillingly installed through malicious web pages, I want to be aware of where my user's are going.
In terms of money and labor, I also want to know how much time someone spends with their browser open. In my environment, the browser open means that the person is surfing and possibly not working which is obviously another problem because we don't have any other purpose for the browser to be open (no web apps, etc.).
I've had all-in-one boxes that have recorded this type of information. IMHO there is nothing wrong with this protocol. The user's are made well aware of it as soon as they step through the door because I don't want them to do it. In a sense, it's a scare tactic, but I want it to have some rational also.
Once again, thank you. I'm going to look into the FWBuilder right now.