Server :: Blocking Mac Based Address In Squid?

Apr 6, 2011

I need to block mac address in my network then i foolowed as below acl's but am getting output as follows I tried as in /etc/squid/squid.conf acl block arp aa:aa:yy:yy:xx:xx http_access deny block but it give me error as like: - (This is the output of # squid -k parse) aclParseAclLine: Invalid ACL type 'arp' FATAL: Bungled squid.conf line 1234: acl block arp aa:aa:yy:yy:xx:xx squid Cache (Version 2.5.STABLE6): Terminated abnormally.

View 7 Replies


ADVERTISEMENT

Server :: Blocking Dhcpd Address Lease For Specific MAC Address?

Sep 4, 2009

I hv Cent OS 5.3 installed as server. I hv a network of approx 100 desktops and laptops. For a security purpose i want to block certain laptops from gaining a the network access using dhcp. Can we block the ip address leasing if a specific MAC address request for a ip lease?

View 7 Replies View Related

Server :: Skype Blocking In Squid?

Jun 6, 2011

I configured squid in oracle enterprise linux 5.I want to block skype access.i configured the following to block skype.but it is not blocking.acl skype_blocking urlpath_regex [0-9]+.[0-9]+.[0-9]+.[0-9]+ http_access deny skype_blocking

View 3 Replies View Related

Server :: Website Blocking Through SQUID Proxy?

Aug 4, 2010

i am using squid proxy server to block some websites in my organization.now i was doing one testing that is, when i blocked Google. gmail automatically gets block.is there any method by which i could block google but gmail access is

View 1 Replies View Related

Server :: Hot To Block Gmail Without Blocking Https In SQUID?

Apr 8, 2010

My Problem is: I want to stop gmail access without blocking https. Yes in my squid proxy normal [URL].. is not accessible. But gmail recently started https service by which user can still get access to gmail. I DONT WANT TO STOP https CAUSE ITS BEING USING BY OTHER PROGRAMS.

View 1 Replies View Related

Server :: Dhcpd To Give A Certain Ip Address Based On Mac Address?

Nov 24, 2010

Im trying to setup dhcpd to put certain systems witch have mac address starting with 08:00:* in a certain ip class. How can this be done?So any system with mac address starting with 08:00 to get an ip from this range 192.168.12.2-192.168.12.99.

View 11 Replies View Related

Server :: Binding Of IP Address To Its Mac Address In Squid Proxy?

Jun 3, 2009

I want to know how to bind Ip addresses to its mac addresses in Squid Proxy

View 5 Replies View Related

Security :: Blocking A Specific IP Address From Server?

May 8, 2010

I would like to COMPLETELY block a specific IP address using iptables. I found this one:

Code:

iptables -A INPUT -p tcp -s xxx.xxx.xxx.xxx -j REJECT --reject-with tcp-reset

Will this work? How do I undo the changes later?

View 2 Replies View Related

Server :: Blocking IP Address For Fake Users?

Feb 4, 2011

How to block an ip address from mikrotik so that when a fake user use this ip he doesn't get internet but in the mean time real user gets internet. Real user will not harm if fake user trying to access.

View 3 Replies View Related

Server :: Bind IP Address With MAC Address In Squid 3?

Jan 13, 2010

i have followed web site [URL] for MAC to IP bind but it dont work on my system

Code:

acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8

[code].....

View 3 Replies View Related

Networking :: Unwanted Blocking Ip Address And Session Log Out In Ubuntu 10.04 Server

Jun 29, 2011

I have UBUNTU server 10.04 LTS with 3 NIC "eth0" local and eth1,2 as internet connection and it acts as firewall, http proxy and samba file server ,I installed Zentyal panel manager for my server for easier management I did not configure any specific rule for my firewall but I have some problem with my clients who wants to connect to my server as gateway or as file server even my self experienced these problems too. these problems are as follow:

1. some time for a few minutes (maximum 10 minutes) my server block some of my clients to access it or internet but just for minutes but it is very annoying.
2. all of my clients those who login to an https servers or login to their mail or those who has some software like team viewer say that they are logging out from their session randomly I mean some of them logging out from their mail(yahoomail or googlemail ) or disconnecting from teamviewer connection or as I saw team viewer disconnecting for a few seconds and then comes back again. but I did not set any thing in my firewall or other services. this is my complete iptable rules:

View 9 Replies View Related

Server :: User Name Based Access Control In Squid

Aug 20, 2010

I have configured squid proxy on centos 5.5 and some of my squid.conf file has following lines

Code:

http_access allow ncsa_users office

There are 3 users called "user034, user035 and user050" in the /etc/squid/squid_passwd file need to restricted access to internet except sites www.abc.com form anywhere in the lan. Once they logged in any ip, rule should apply.(that means no ip related acl, only user name related) How can I configure this in squid.

View 3 Replies View Related

Server :: Web Based Simple Page To Change Passwords Of Squid Users?

Jun 3, 2010

just now i have installed squid, it works fine with authentication . I created this authentication in a simple text file by using htpasswd . my question is that is there any web based simple page to change passwords of squid users, because each and every time i cant give direct access to server for my squid users .

View 1 Replies View Related

Server :: Allow Wireless Clients Access To Network Based On Their MAC Address?

Jan 11, 2011

Using CentOS 5.5, FreeRADIUS 2.1.7.

Objective is simply to be able to allow wireless clients access to my network based on their MAC address (I have about 10 WAPs around the country which I need to be able to manage user access centrally). Not interested in LDAP or dishing out keys/certificates etc.

I have been trying to follow the guide here. Sounds like it's exactly what I need but I'm not sure about a few things.

1) For each of the conf files am I supposed to be replacing everything currently existing in the respective file with what is suggested?

2) "raddb/modules/file" does not exist, so I assume I should use "raddb/modules/files"?

3) If I uncomment the line:

Code:
#rewrite_calling_station_id
under the "raddb/sites-available/default authorize{}" section, the radiusd startup gives me the following error:
/etc/raddb/sites-enabled/default[69]: Failed to find module "rewrite_calling_station_id".

If anyone familiar with FreeRADIUS 2 could answer these queries I might be on the right path

View 12 Replies View Related

Server :: Squid - Create A Exception For An IP Address To Pass Direct?

Feb 1, 2010

I need your help for a problem that it's happening in my customer. What I need is to change the configuration of a proxy, configured on Linux Cent OS v 4.3( explanation - see below) .My squid configuration's file it's like this:

[Code]...

View 3 Replies View Related

Server :: Squid Proxy Access List Configuration On MAC Address Basis?

Aug 24, 2010

I am using Redhat 5.3 , I configured well access list using IP address, but my customer want to access list on MAC address basis.

View 2 Replies View Related

Networking :: Blocking Sites With SQUID Proxy?

Feb 17, 2010

I need to block some of my sites with SQUID Proxy. I added following lines to my SQUID configuration file but still the site remains unblocked.How to block it?

acl blocksites url_regex yahoo http_access deny blocksites

I have also tried saving some url & filter content in a file and edited configuration as follows,

acl blocksites url_regex "/etc/squid/squid-block.acl" http_access deny blocksites

The squid-block.acl file contents are, .cricinfo.com mp3

View 4 Replies View Related

Software :: Blocking IPod Browsers On Squid?

Sep 1, 2010

Im trying to block iPod browsers or any similar mobile phones to access the internet.. I got this useragent.log entries"Mozilla/5.0 (iPod; U; CPU iPhone OS 3_1_2 like Mac OS X; en-us)AppleWebKit/528.18 (KHTML, like Gecko) Version/4.0 Mobile/7D11 Safari/528.16"I created an acl like acl mobile browser -i iPod to block all versions of iPod and deny it via http_access, but didn't block

View 1 Replies View Related

CentOS 5 :: Squid Is Not Blocking Video Stream?

Mar 26, 2011

My squid version is 2.6.STABLE21 installed via yum on CentOS release 5.4 (Final) 2.6.18-164.el5 x86_64. My configuration is as follows (truncated)

acl hrusers proxy_auth -i "/etc/squid/access/hr.dept"
acl hrsites url_regex -i "/etc/squid/access/hrsites"
acl r-sites url_regex -i "/etc/squid/access/restricted-sites"
acl stream req_mime_type -i "/etc/squid/access/stream"

[Code]...

But even then streaming is not getting blocked.

View 8 Replies View Related

Ubuntu Networking :: Blocking Sites With SQUID Proxy?

Feb 17, 2010

I need to block some of my sites with SQUID Proxy. I added following lines to my SQUID configuration file but still the site remains unblocked.How to block it?acl blocksites url_regex yahoohttp_access deny blocksitesI have also tried saving some url & filter content in a file and edited configuration as follows,acl blocksites url_regex "/etc/squid/squid-block.acl"http_access deny blocksitesThe squid-block.acl file contents are.cricinfo.commp3

View 2 Replies View Related

General :: Blocking And Disable Via Squid On The Base Of Words?

Apr 14, 2011

i am experimenting with my squid config . but i dont know how to make this confg to work.I wanted to Block the websites on term of the "words''like if any one is accessing to Porn site then the words that come out of porn is blocked. [ mostly used examples]note:i can blocked single site at a time.second if there is user 10.10.10.21 is downloading MP3,AVi,mpg how can i not allowed him to download that both ways via right clicking download and direct download.

View 1 Replies View Related

General :: Blocking Yahoo Web Chat Through Dansguardian (or Squid)

Jun 1, 2010

I want to block yahoo mail chat in dansguardian. I had google few thing I come to know that I need to do this. Locking DNS lookups to webcs.msg.yahoo and httpcs.msg.yahoo by returning 127.0.0.1. I haven't have dns configured. So what I need to do solve this problem. I had tried by making an entry in etc hosts file. but it didn't worked.

View 3 Replies View Related

Ubuntu Servers :: Blocking Https Site With Squid On Webmin ?

Dec 8, 2010

I blocked facebook and ..... but if any one change the http with https its open with him how can i mange https like http.

View 9 Replies View Related

Fedora Security :: Blocking And Allowing IP Address For FTP?

Jul 15, 2010

I want to ask about securing the FTP connection... I have one server that Installed with Redhat Linux Fedora 6.

And now, i want to securing the FTP access, so only the selected IP will be allowed to connect. Do anyone know how to do this?

Another thing is, my server using Webmin 1.3 to manage the server and there not installed / not configured yet with Frox FTP, ProFTPD Server, WU-FTP Server... even there is such thing in my Webmin...

Can i make use one of the three FTP i mention above, and if yes, will it be affecting the current FTP access?

View 1 Replies View Related

Fedora Security :: Blocking Ip Address Range?

Dec 31, 2010

I'm assuming that the following should block the complete 178.123.xxx.xxx address range.

Code:
iptables -I INPUT -s 178.123.0.0/24 -j DROP
Then I believe that I need to save this change.

Code:
service iptables save
iptables: Saving firewall rules to /etc/sysconfig/iptables:[ OK ]

However, I'm not so sure that it is actually working based on the fact that there continues to be access to my wiki from that address range. The following is after I made the firewall change.

Quote:

178.123.177.61 - - [31/Dec/2010:04:24:40 -0500] "GET /mywiki/Opera%20Web%20Browser?action=edit&editor=text HTTP/1.1" 200 6346 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)"
code....

Let me state that I'm new at this iptables thing. I did some reading and decided that I need to make the above change to the firewall but it doesn't seem to make a difference.

View 12 Replies View Related

Security :: Blocking An Ip Address Range Within Iptables?

Mar 30, 2009

I am setting up a iptables firewall on one of our servers, and I would like to block a range of addresses from getting into the system. I am using a script that does a BLACKIN and BLACKOUT methodology for specific addresses. One example is the following:

Code:

$IPTABLES -A BLACKIN -s 202.109.114.147 -j DROP
...
$IPTABLES -A BLACKOUT -d 202.109.114.117 -j DROP

What would be the correct syntax to use if I wanted to block an entire remote subnet from getting into the server?

View 4 Replies View Related

Software :: Does Blocking IP Address Saves Bandwidth?

Jun 18, 2010

I have one server that has Asterisk running.On front of that, I use DD-WRT router as gateway. As I have checked the log files, I saw that there is a specific IP Address that is continuously accessing the application and trying to authenticate to SIP with a series of extensions. This is like DoS attack for SIP. What I did was to block/drop the IP in DD-WRT using the iptables. I can see from the /proc/net/ip_conntrack that it is being "UNREPLIED". But my concern is that does it still uses a lot of bandwidth even though it is already being blocked?

View 14 Replies View Related

General :: Implement Squid With Quota Restriction Based On Username?

Jan 20, 2011

I want to implement squid with quota restriction based on username.

View 4 Replies View Related

Server :: Tools - Squid Accounts - To Create - Change - Modify Users Of Squid And To View Their Logs

May 23, 2010

My squid server works fine in fedora 11 system . Is there any web like interface for admins to create,change,modify users of squid and to view their logs.

View 1 Replies View Related

CentOS 5 Server :: Squid Proxy Configuration SQUID 2.6.STABLE21

Jan 17, 2011

I would like to ask some help and tutorial for setting up and how to configure squid proxy server in my (Home PC Server). I am a newbie in Linux Centos. I already installed in my system the CentOS 5.5 . Now, I want to configure it as my internet server, all of my 4 system running in Windows including the laptop I want to connect through my CentOS pc with username authentication. I assign all IP address by static. see tthe attachement in my set up. [url] I just want to know what I need to change and add in my squid config file. And how can I configure properly my CentOS with 2 LAN card as internet server.

View 1 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved