Hi all,
IF, in a LAN all the PC's (workstations) have to connect to the internet via a s
erver (gateway), how do i configure content filtering for all the browsers on the workstations? Do I have to specify IP and port in the proxy settings of all the browsers? Also, if someone were to remove the proxy settings from their browsers then they'd be able to see the unwanted stuff correct?
thanks.
Content Filtering in a LAN
8 posts
• Page 1 of 1
Content Filtering in a LAN
by agent007 » Mon Jun 23, 2003 1:03 pm
- agent007
- administrator
- Posts: 254
- Joined: Wed Feb 12, 2003 11:26 pm
by Void Main » Mon Jun 23, 2003 1:15 pm
I have addressed this on my personal LAN. There are a couple of different ways you can handle this. First of all, I assume you have a firewall between you and the outside world. I have my firewall set up to block traffic destined for port 80 outside of my network, except from my proxy server. You may want to block more than just port 80. If any of my internal machines want to access the internet, they must go through the proxy server so yes all browsers on my network are configured to go through the proxy. If they remove the proxy from the browser configuration they just can't get to anywhere.
The other way to do it is to set up a transparent proxy, then the browser does not have to be configured to use a proxy. Basically you have a firewall rule that redirects outbound port 80 traffic to the proxy port on your proxy server. I would like to do this but then my authentication will not work which for me is critical. I want to be able to identify who is browsing where and possibly restrict access based on the proxy user.
The other way to do it is to set up a transparent proxy, then the browser does not have to be configured to use a proxy. Basically you have a firewall rule that redirects outbound port 80 traffic to the proxy port on your proxy server. I would like to do this but then my authentication will not work which for me is critical. I want to be able to identify who is browsing where and possibly restrict access based on the proxy user.
-
Void Main - Site Admin
- Posts: 5705
- Joined: Wed Jan 08, 2003 5:24 am
- Location: Tuxville, USA
by Void Main » Tue Jun 24, 2003 10:40 pm
Got this very good looking link:
http://squid.visolve.com/white_papers/trans_caching.htm
off of the main Squid site:
http://www.squid-cache.org/
But there are many documents out there on the net on how to do it. It's really pretty simple.
http://squid.visolve.com/white_papers/trans_caching.htm
off of the main Squid site:
http://www.squid-cache.org/
But there are many documents out there on the net on how to do it. It's really pretty simple.
-
Void Main - Site Admin
- Posts: 5705
- Joined: Wed Jan 08, 2003 5:24 am
- Location: Tuxville, USA
8 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 0 guests