Thank you. How can i configure my firewall to accept all outgoing web traffic only from my proxy server
may i add below lines in my iptables .... iptables -t nat -A PREROUTING -i eth1 -p tcp --dport 80 -j DNAT --to 192.168.x.x.3128 iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT --to-port 3128 what i have to do more...... (my proxy server is running in my gateway ssystem,i am using only one system for both) with thanks Asir On Mon, Mar 12, 2012 at 7:43 PM, Raja Subramanian <[email protected]>wrote: > On Mon, Mar 12, 2012 at 6:01 PM, rmariya sagaya asirvatham > <[email protected]> wrote: > > We are in the need of proxy authentication mode for all users ,So we are > > unable to implement transparent mode. > > Good network security implementation should work regardless > of the desktop/browser settings. > > If you configure your firewall to accept outgoing web traffic > only from your proxy server IP, then even if users change the > browser proxy configuration they cannot cannot bypass your > proxy and gain web access. Worst case is without the correct > proxy config users will not have web access. > > - Raja > _______________________________________________ > ILUGC Mailing List: > http://www.ae.iitm.ac.in/mailman/listinfo/ilugc > _______________________________________________ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
