...
#" - Enabling SNAT (IPMASQ) functionality on $external_int"
$IPTABLES -t nat -A POSTROUTING -o $external_int -s 192.168.1.2/32 -j MASQUERADE
$IPTABLES -t nat -A POSTROUTING -o $external_int -s 192.168.1.8/32 -j MASQUERADE
....
but of course i need to setup first the rules for accepting http port/ftp port, etc.
so before going to proxy server, those machines who aren't in the rules, they will be block, at least it works on our environment.
/msl
Francis D. Dimzon wrote:
Users configure proxy on their browser, btw i get it now, just kind of panic kanina when i saw students browsing the internet where they're not supposed to.
here are my rules, not so sure of this, any comments on this
iptables -A PREROUTING -t nat -i $local_interface -s $intranet -p tcp --dport 80 -j DNAT --to $squid_ip:8080
thanks!
How do you currently implement your proxy. is it via configuration on the
clients browser or via default gateway of the clients machine. these are
two
different scenario and implementation.
-- Philippine Linux Users' Group (PLUG) Mailing List [EMAIL PROTECTED] (#PLUG @ irc.free.net.ph) Official Website: http://plug.linux.org.ph Searchable Archives: http://marc.free.net.ph . To leave, go to http://lists.q-linux.com/mailman/listinfo/plug . Are you a Linux newbie? To join the newbie list, go to http://lists.q-linux.com/mailman/listinfo/ph-linux-newbie
-- Philippine Linux Users' Group (PLUG) Mailing List [EMAIL PROTECTED] (#PLUG @ irc.free.net.ph) Official Website: http://plug.linux.org.ph Searchable Archives: http://marc.free.net.ph . To leave, go to http://lists.q-linux.com/mailman/listinfo/plug . Are you a Linux newbie? To join the newbie list, go to http://lists.q-linux.com/mailman/listinfo/ph-linux-newbie
