[MLUG] Squid/FW Configuration

Email address obfuscation in effect -- please click here to turn it off.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: <EMAIL:PROTECTED>
Subject: [MLUG] Squid/FW Configuration
From: "Nathan Odle" <EMAIL:PROTECTED>
Date: Thu, 1 Mar 2001 19:45:43 -0600
Importance: Normal
Reply-To: EMAIL:PROTECTED
Sender: EMAIL:PROTECTED

As I mentioned earlier last week, I'm setting up a dual-CPU Dell to do
FW/proxy cache/webserver/mailserver duty.  I will be using 2.4.2 and
netfilter, with Squid for the proxy.

I want to disallow web access to all but a certain set of domains for some
IPs, and am wondering the best way to do it.  I can see putting dest rules
in the firewall setup for this, but I could also see using Squid.  Any
suggestions/preferences?  Regardless of destination, I want all web access
attempts logged, if even for just the previous 24 hours.

If I go with the Squid route, I can't see a clear way to do it.  Would using
a delay class with the bandwidth set to 0 work?  I've already RTFM for Squid
and didn't see anything specific in there...

Also, is the standard operating procedure with a proxy cache to disable port
80 at the firewall for systems you want to force to use the proxy cache?

-n8

--
To manage your subscription, go to http://mlug.missouri.edu/members/edit.php

Archives are available at http://mlug.missouri.edu/list-archives/

Prev by Date: RE: [MLUG] network cables?
Next by Date: Re: [MLUG] deleting a file named '-'
Previous by thread: Re: [MLUG] Ancient Linux?
Next by thread: [MLUG] Squid/FW Configuration
Index(es):
- Date
- Thread