Hi Geoff, pleased to help if I can.

I would add that iptables logging via LOG and ULOG will only log IP addresses:ports (and lots of other stuff, like TCP) flags of packets; it won't log an actual URL which is probably what you want.

What you might want to do is add Squid to your NAT box to provide proxying. This will have the added advantage of speeding up your local connection and providing logging of actual URLs. Squid can be complex to set up though.

Once I'm done getting ULOG and Squid working properly I'll post a HOW-TO; my project mandates that it be done by mid-June at the latest so it should be posted around then.

Hello Michael,

Thanks for the reply. Given our relative understanding of iptables stuff, I reckon I will wait until you have finished your project!

Just for your information, I am using Privoxy as a content filter and it seems to be working pretty well. The standard Privoxy setup is most concerned with blocking ads, bad javascript, window focus stealers and (to be frank) other pretty silly stuff. I used its ability to block by the strings/substrings in URLs and to filter/replace words on web pages, employing a heavily modified configuration.

I wrote in this LQ post how I have set it up.

Happy to answer (or at least try!) any questions.

Regards,

Geoff.