On 24 Dec 2001, Jake Colman wrote: > > I'd like to run squid under RH 7.2. The primary purpose is to force all web > access through squid so that I can squid's proxy authorization and the squid > access.log to track where my user's have gone on the web. > > Some questions: > > 1) Using iptables, how can I disable outgoing access to port 80. This is > necessary to ensure that the browser is configured to use the proxy port > at 3128. Otherwise, they can bypass squid and I'd never know.
You could set the default policies to DROP for forward. After which you only allow those ports you want to work. > 2) Is there a way to disable all squid accesss, on per user or machine basis, > during certain hours? Yes. Look at squidGuard at www.squidGuard.org. Its a filter for those sites you don't want people using but it also does the time limit and machine access that you require. > 3) Rather than maintain a seperate user/password file for squid, is there to > have it simply use the unix user/password? Or, better yet, since I also > have a samba server, automatically have it authenticate using the same > user/password? Even better, have this authentication happen automatically > so that they never even enter a user/password for squid at all? I don't use passwords for my http proxy. I am sorry. I have not looked into password protection for squid. Stephen _______________________________________________ Redhat-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
