James B. Byrne wrote: > Without debating the merits of such claims, how would one proceed to > block internal network access to specific domain names using CentOS? As others have mentioned using a proxy would work.. Other ways would be using iptables to block access to those domain's name servers so the names do not resolve at all(they could still access via IP..) Also hosting the domains on your internal name server and pointing them to some internal address so that they can't be resolved as well could work. Often times client side antivirus/spyware programs can be configured to block things on the client side as well. nate