Server :: Internet Filtering With Squid?
Aug 2, 2010I want filter some sites on my network by squid .
My Distribution is suse server 11 squid 2.7
ADVERTISEMENT
Networking :: Iptables + Squid + Dansguardian - Boxes Will Act As A INTERNET Firewall + Filtering?
Jan 14, 2011is this possible on 2 Linux boxes will act as a INTERNET Firewall + Filtering: 1st PC = CENTOS 5.5 functions as a firewall using iptables with two NICS 1=ETH0 connected to internet with a public ip and 1=ETH1 with ip address of 10.0.0.1 connected to the 2nd PC Centos 5.5 with squid/dansguardian with ip address of 10.0.0.2
2nd PC = Centos 5.5 functions as a squid + dansguardian internet filtering with 2 NICS 1=ETH0 with ip address of 10.0.0.2 connected to the ETH1 of the 1st PC with ip address of 10.0.0.1 and 2nd ETH1=connected to LAN (172.16.1.0/24)
does this make sense? this might be confusing but I just want to try this, to protect incoming ssh from our previous Sys admins who intended to enter the LAN 172.16.1.0/24 network. And also to confuse them that they have to pass through 10.0.0.1 - 2.
Ubuntu Servers :: Server For Internet Logging And Filtering
Jun 16, 2010I'm in charge of a church computer lab which is open to children ages 6 to 16 for about 3 hours a week. We try to have adult supervision but don't have 100% coverage.
The lab has a maximum of 8 computers, a mixture of MACs, Windows XP, and Linux machines, depending on their state of repair.
The church's current internet connection is Verizon residential speed DSL to a 4 port wired plus wireless router in a locked office which also houses our Windows XP office computer and is adjacent to our locked pastor's office.
Internet access for the lab is by a single CAT5 cable passing through a small hole in a wall to a network switch on the other side. All of the lab computers are connected to the switch by CAT5 cable.
I would like to add a server in the locked office to log internet usage and block access to certain websites as needed. I think logging internet activity will be a good antidote in case one of the older ones wants to try to get sneaky and cover their tracks.
I envision building a computer from donated parts, including 2 NICs.
I have never done things from the server end, but think the server edition of Ubuntu would be a good starting point.
My goal is to be able to manage internet access with an easy to use GUI system so I could teach the basics to a couple of youth leaders to use it when I'm not there.
Networking :: Configuring Squid Proxy For Content Filtering?
Oct 6, 2010My network is:
ISP --> SonicWALL--> Proxy --> LAN
Currently Sonicwall is running VPN, DHCP, port forwarding etc.. in a range of 10.0.0.0/24 and I have tried to configure Squid Proxy for content filtering (using squid 3 Transparent mode on Fedora 10 and Iptables). Now I need to implement the proxy over my network without changing the SonicWALL current settings (VPN, Port forwarding and DHCP).
Networking :: Squid Server With Two Internet Connections?
Feb 3, 2010I have to configure squid server which will have two internet connections on two separate lan cards and both will run simultaneously.I know how to configure squid server with one internet connection
View 4 Replies View RelatedServer :: Internet Access Via Squid Proxy
Apr 28, 2010Centos 5.4 distro using on remote machine. I have remote site where internet access given via squid proxy. So when we enter in browser it start working internet fine. But on command line (bash shell prompt terminal) like wget, ping, nslookup, traceroute etc., these commands does not work.
View 6 Replies View RelatedServer :: Squid Internet Access Getting Slower?
Jul 24, 2010I've a SQUID proxy server installed in SUSE 9.0 ES server. I've created cache dirs on seperate partitions for better caching. Its working fine. But since last 15-20 days, i've experienced very slow net access to clients. I've gone through the /var/log/messeges file, it generates a two line error messeges
client read request fd602 invalid request
parse http request: unsupported method;HET
This messege increases as the number of clients increates (for internet access). The apperance of error messege lowering down as soon as the number of clients reduces.
As the count of clients increases error messeges increases, internet access getting slower and slower.
Server :: Slow Access To Web Site Using Squid And Internet Explorer.
Apr 4, 2010Slow access to web site using squid and Internet explorer.I am trying to troubleshoot an issue I am stuck on. We have a website that is loading .htm documents extremely slow when using Internet Explorer 8 behind Squid. When we bypass the proxy and go directly out to the internet all is fast and pages load fine.But when the proxy is on documents will take sometimes up to 6 minutes to load.This issue is only apparent using Internet explorer 8.I do not see the issue when using firefox with Squid.I have tried to use the no_cache directive thinking it may have been the cache but that didn't work either.I am attaching our access.log, store.log and squid.conf.
View 2 Replies View RelatedServer :: Delay Pools - Managing Internet Bandwidth Thru Squid Proxy
Jan 2, 2010I have configured a normal squid & now I want to manage internet bandwidth thru. "squid" proxy only.
Squid proxy server ip is :- 192.168.17.30
Client PC ip addres is 192.168.17.25
Total bandwidth avaialable :- 2 Mbps
Now, I want to limit bandwith of 400 kbps for the ip address 192.168.17.25 pc only. So, is there any method available for bandwidth limiting for a single pc?
Networking :: Squid With Iptables - Make Clients To Browse Internet Only From Proxy Server?
Jun 14, 2010i have the following ip assignments
fedora (iptables)
eth0 -private :192.168.1.1
eth1 -public : 186.117.50.6
squid proxy
192.168.1.10:3128
my clients range
192.168.2.0/24
how can i make my clients to browse internet only from proxy server my network is NAT 'ed. Please specify a iptable rule to allow internet access for my clients to browse ONLY if they come through proxy server.
Server :: Squid - Not Working Though Proxy And The Internet Explorer Is Getting Very Slow And Freezing The Computer
Nov 6, 2010I have configured a squid proxy server with @2 eth in different network subnet and with site blocking and extn file download blocking. One eth0 for office wired network and another eth1 is for office wireless network for laptop use for guest and visitors.
The problem is [URL] is an Indian government website, which is not working though this proxy server and the Internet Explorer is getting very slow and freezing the computer. In alternate I have configured a another test server with squid proxy with out any security and test the same. the problem is still with the all the computer in the network. The above website is perfectly working with Gateway configuration in TCP/IP properties in Network Configuration in MS Windows XP computers but through squid proxy its not working.
Server :: Tools - Squid Accounts - To Create - Change - Modify Users Of Squid And To View Their Logs
May 23, 2010My squid server works fine in fedora 11 system . Is there any web like interface for admins to create,change,modify users of squid and to view their logs.
View 1 Replies View RelatedCentOS 5 Server :: Squid Proxy Configuration SQUID 2.6.STABLE21
Jan 17, 2011I would like to ask some help and tutorial for setting up and how to configure squid proxy server in my (Home PC Server). I am a newbie in Linux Centos. I already installed in my system the CentOS 5.5 . Now, I want to configure it as my internet server, all of my 4 system running in Windows including the laptop I want to connect through my CentOS pc with username authentication. I assign all IP address by static. see tthe attachement in my set up. [url] I just want to know what I need to change and add in my squid config file. And how can I configure properly my CentOS with 2 LAN card as internet server.
View 1 Replies View RelatedServer :: LVM 8e - Device Not Found Or Ignored By Filtering
Feb 3, 2010I have made linux raid array, named it md1 and it can be found under /dev/md1. I have created single partition (whole disk) of type LVM (8e) and it can be found under /dev/md1/md1p1.
When I run: pvcreate /dev/md1/md1p1
I get this message: Device /dev/md1/md1p1 not found (or ignored by filtering).
But if I run pvcreate /dev/md1
Everything went OK. I can create volume group and logical groups after that.
I haven't found anything specifically on net, except that partition for LVM to work should be of type 8e. Does this doesn't have to be true when we use whole disk as a VG? Should I expect any problems since this is going to be iSCSI target disk?
Server :: Server Side Spam Filtering
Feb 4, 2010I have a mail server (dovecot+postfix) on Centos with amavis/clamav installed and working. It correctly identifies spam as such and puts it in the headers. I want it to move those suspected spam messages into a spam folder. I do have this working on an older debian server that I didn't setup. If someone could point me in the direction if where that config might be. I can't find it in any of the mail config files.Could there be a seperate package doing this?
View 3 Replies View RelatedServer :: Enabling Transparent Spam Filtering?
Jun 2, 2010I need to implement a form of filtering. Current topology is like so:
Internet -> Smoothwall -> MS Exchange server (w/ OWA) -> Clients
So I need to enable transparent spam filtering on the smoothwall system, which is a full fledged Linux system. There are no 'free' modules available for smoothwall that enable spam filtering. And due to the monetary constraints of the project I'm working on, something free is required.
I don't have any experience with this - I've done a couple of searches and came up with "SpamAssasin", but I can't find any relevant guides that allow transparent scanning - they all assume the mail is stored on THAT server.
So I'm here to ask the more experienced people what sort of packages will enable this functionality? Would like something that has a WebUI, but that's not absolutely necessary.
Ubuntu Networking :: Squid And Request From Internet?
Oct 9, 2010I try use Squid as my proxy server. When I set my firefox to use my proxy server (squid), all is ok, but when I set firefox on another pc (from internet, not local network), all request returned time out turn off my router and connect PC to internet (without router), but still don't work.In iptables is all ok, I think. Where is problem? I think, It isn't problem with squid (because squid don't show error page), but I don't know how fix it
iptables:
Code:
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Edit: SSH from remote pc work fine.
General :: Share Internet Connection Through Squid?
Aug 24, 2009I have one Squid server which was configured to share internet on our networks192.168.20.0) PCs Serrver:192.168.20.25:8080It is working smoothly.Now my problem is that I has to configure one sub server that should allow internet to our 192.168.22.0 network with 3128 port. The sub server will get the connection from main server and it share the inter net to the internal network.
View 3 Replies View RelatedGeneral :: Internet Access Restrictions With Squid?
Dec 30, 2010I am using internet web control through squid... All is working fine only some little bit issues.
(1) Sometime when i tried to open google.com or any site I got message (The requested URL could not be retrieved) Screen Shot Attached.) but again after sometimes same websites will open.
url
(2) I would like to block word 'sex'.. So I have edit squid.conf with the following acl
acl Blockword url_regex sex
http_access deny Blockword
but problem occur in some websites where 'sensex' word found in url. Then squid block 'sensex' url content website also..
Networking :: Tunneling Internet Through PPTP Using Poptop And Squid?
Jun 20, 2010I'm looking for a way to tunnel the internet connection of my Ubuntu VPN server to the remote client.The server is running Ubuntu Server 9.04 64-bit, and has a fully functional installation of Poptop and Squid. Is there a way I can get internet requests from the VPN client to tunnel over the VPN and be connected through Squid? I'd think this would be a iptables thing, but I'm not sure.
View 5 Replies View RelatedDebian :: Computers On Network Cannot Access Internet Via Squid Cache / Reolve This?
Jun 16, 2009I have installed debian to run Squid cache as a caching proxy.
Ive been bashing away now for 2 days and i have managed to install squid (i first tried manually, but that did not work so i used synaptic software packager to install it (from Administration menu)
That went well, thereafter i installed webamin to work with squid in a GUI
I have managed to start squid and added my range of IP addresses to the ACL list
I have added the proxy restriction too.
Now, i tried to test it.
I opened Iceweasel Web browser (on the same machine) and setit to use the Proxy server: localhost and port:3128
That works fine.
But when i try to change the proxy setting to my machines ip (where squid is installed) :
Proxy server: 10.0.0.35 and port:3128
That does not work.
Am i missing something, please help
I then tried to set another windows PC on the network to:
Proxy server: 10.0.0.35 and port:3128
That also does not work.
I also edited the conf file to http_access allow all, but i do not know if i have doen it correctly, but maybe there is another problem?
General :: Error In Squid Proxy Access - Internet Explorer Cannot Display The Webpage
May 31, 2011I am using Squid Server from last 5years. There is a site "http://www.firstflight.net", which was accessible before few days but now I am unable to access this site. If I use IE8 then getting below error:
"Internet Explorer cannot display the webpage"
Or using Google chrome getting error:
"This webpage is not available The webpage at http://www.firstflight.net/ might be temporarily down or it may have moved permanently to a new web address. Error 330 (net::ERR_CONTENT_DECODING_FAILED): Unknown error."
But other sites are working fine..
Server :: Squid Accepts Only HTTP Requests But Speaks FTP On The Server Side?
Apr 26, 2011Here is my query:
Squid document says that Squid accepts only HTTP requests but speaks FTP on the server side when FTP object are requested.
We call Squid HTTP and FTP caching proxy server. Does it also caches FTP contents? Is it possible to configure FTP clients to use Squid cache? When we make an FTP request to an FTP site via Squid will it be bypassed?
Server :: Make Squid 2.6 Stable As Transparent Proxy Server?
Dec 22, 2010I want to make a transparent squid proxy server in centos. The squid proxy version is 2.6 stable. I made a normal squid server but want to make it transparent so that users do not need to enter the proxy settings in web browser. Even i searched about this on google but not getting it properly.I have two lan cards on centos system. ETH1 used for LAN and ETH2 used for WAN. And in this squid.conf i written "http_port 172.16.31.1:3128 transparent" and i also added a rule in iptables which is "iptables -t nat -A PREROUTING -i eth1 -p tcp --dport 80 -j REDIRECT --to-port 3128" but still i have to enter proxy settings at client's web browser to use internet
View 4 Replies View RelatedServer :: Installing And Configuring Transparent Squid Server On Centos5.4?
Sep 17, 2010I would like to install and configure Transparent squid proxy on a gateway server ,but i dont have a local OR intranet DNS server.I am facing issues do that ,regard .My IP series is 192.168.1.1/24
View 5 Replies View RelatedServer :: Installing Squid On A CPanel Server - URI::URL Dependency Already Installed?
Jan 12, 2010I know this seems obvious but i'm stuck. I'm trying to install squid via the command "yum install squid" and here is the output:Quote:
Setting up Install Process
Setting up repositories
update 100% |=========================| 951 B 00:00
[code]....
Server :: Squid Reverse Proxy Server ?
Jul 22, 2011I have done configuration of webserver and i want it to pick some information from application server,but i don want people to see that application server,please can someone tell me in detail on how to setup squid reverse proxy server so that each time people want to access my servers they can just see one server,i mean one server must act as a loadbalancer to other servers,let say a sum of up to three servers.I am using redhat 5 servers with apache 2,and squid version that i have is 2.6.
View 5 Replies View RelatedGeneral :: Squid Access / Permission Denied Error From Squid Occur?
Dec 29, 2010I am using squid to controlling access to the internet all is working fine expect one of the user who is using outside organization portal to connect internet. But whenever he tries to enter in the portal by typing (EXAMPLE)url. Permission denied error from squid occur.
How can i allow this portal in squid. So squid will allow this to access.
Software :: Squid 3.0 Access List / Remove Redirect Statement From Iptables All Internet Access Is Blocked?
Jun 11, 2010I have an old FC2 box running Squid version 2.5. It has been running since 2003 so I am in the process of replacing it. I have a new machine with FC11, iptables, and Squid 3.0 installed.
On the old machine I use iptables to intercept Port 80 traffic and send it to Squid. By default I block all internet access and allow only sites that are in an Allowed_Sites.txt file. Within Squid I also have statements to allow certain users to bypass Squid based on their IP address.
I have set up the same thing on the new box. I have iptables intercepting the Port 80 traffic and sending it to Squid. That is working because if I remove the redirect statement from iptables all internet access is blocked.
The problem I am having is that Squid is not blocking any websites. It acts like the ACL is set to http_access allow all. I have worked on this for several hours and am stumped.
These are my Squid rules:
acl allowed_sites url_regex "/etc/squid/Allowed_Sites.txt"
acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8 0.0.0.0/32
acl SSL_ports port 443
acl CONNECT method CONNECT
http_access allow manager localhost
http_access deny manager
http_access allow Bypass_Users
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
acl our_networks src 192.168.1.0/24
http_access allow allowed_sites
http_access allow our_networks
http_access deny all
icp_access deny all
htcp_access deny all
http_port 192.168.1.254:3128 transparent
hierarchy_stoplist cgi-bin ?
access_log /var/log/squid/access.log squid
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern -i (/cgi-bin/|?) 0 0% 0
refresh_pattern . 0 20% 4320
visible_hostname FC11.proxybox
icp_port 3130
coredump_dir /var/spool/squid
Ubuntu :: Looking To Set-up A Squid Server?
Feb 7, 2010I'm looking to set-up a squid server. Are there any good tutorials out there for this?
View 1 Replies View Related