On Tue, 2002-03-19 at 14:33, St John Tech Support wrote: > Hi, here is what I have, I have a internel network 192.168.1.* I have about > 16 students that need to by collage policey use the Squid / SquidGard Server > to access the internet, My proxy server also acting as a NAT box between the > internet and local network any suggestions would be great
You don't mention the OS being used on the squidGuard box but I do this all the time. What I do is have the squid & squidGuard combination running on an OpenBSD gateway. Clients *must* traverse this gateway to get outside of their own subnet. Then I use a NAT rule to force all outbound port 80 traffic on protocol TCP to be redirected to the squid port. Squid must also be configured to act as a transparent proxy. Clients never know they are being proxied until they get blocked trying to go to a site that squidGuard doesn't like. There are no changes to make on the client, and this should work regardless of the client operating systems being used. Since the squid box in your environment is already the gateway, you're already halfway there. Now you just need to set up squid as a transparent proxy, and add a NAT rule to your configuration (depends on what OS you are using) and let 'er rip.
