> What would be the best way to tackle this kind of > application? I've got two groups of users: group A > is behind NAT, and needs to use an authentication > that isn't by IP. Group B is on a Citrix server and > some users need different access restrictions. Is it > possible to accomplish both? Can it be done from a > windows/IE client using implicit authentication?
By setting up authentication in Squid, you can track and control access by authenticated usernames and possibly by groups (depending on the helper you use). Check the FAQ and the archives for authentication and the proxy_auth and proxy_auth_regex directives. Adam
