I made a firewall object, a host with the "adclick.g.doubleclick.net" ip address ( today is the "adclick.g.doubleclick.net" the problem...)
Take a look at this pic:
At the to the "G1 portal, the Globo site news", with the banner adclick
at the bottom right the ping
at the bottom, the firewall rule...
I made a firewall rule to drop all from adclick to "any"
And I still have the adclick banner,
the ping continue to have reply...
Edit: and yes, it's really difficult to make a proof of concept cause of adclick.g.doucle.net is not only a unique address, but a "grap" of address.
I still thinking the adsgooglescricpt is here to dribble the proxy...
@filippo_carletti, the shorewall master, what do you think?