>>>>> "ED" == Edward Dekkers <[EMAIL PROTECTED]> writes:
ED> I may be a bit late on this, as you already have viable answers to
ED> what you want to do, but you may like to read the transparent proxy
ED> howto on the LDP, as from memory, this showed you how to FORCE
ED> HTTP/FTP requests via Squid, and the users will never
ED> know. i.e. outgoing port 80 will transparently re-direct through
ED> squid's default of 3128.
Transparent redirection to squid works fine unless you are proxy
authorization. In that case you must explicitly point your browser to port
3128.
Jamin Collins <[EMAIL PROTECTED]> (check out www.asgardsrealm.net for
a greap iptables-based firewall script) provided me with the following
command to block access to port 80 for iptables:
iptables -t nat -I PREROUTING -p tcp -s <int-network> --destination-port
80 -j DROP
where <int-network> is your internal network address (e.g., 192.168.0.0/24).
This blocks outgoing access to port 80 and prevents the browser from doing
anything. I the user reconfigures the browser to point to pot 3128, they are
back in business.
--
Jake Colman
Principia Partners LLC Phone: (201) 946-0300
Harborside Financial Center Fax: (201) 946-0320
902 Plaza Two E-mail: [EMAIL PROTECTED]
Jersey City, NJ 07311 www.principiapartners.com
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
