On Tue, 16 Sep 2003, Deepa D wrote: > Yes, we need to screen all the url requests even if > the client machines are not configured to use a proxy.
You could firewall port 80, blocking direct access not via the proxy. This can be done in such manner that if the user attempts to access port 80 he automatically receives instructions on how to reconfigure the browser to use the proxy. To return such page, simply set up things in the same manner as for transparent proxying, but instead of redirecting to Squid redirect to a web server with these instructions. Regards Henrik
