Solved

Blocking Access to the Net through Squid

Posted on 2004-10-09
9
196 Views
Last Modified: 2013-12-15
I have installed squid and dhcpd in my linux box 8.0 its working fine, now I am interested to block some user to block internet access, I know there is some authintication tool for squid proxy, pls help.
0
Comment
Question by:ranadastidar
  • 3
  • 2
  • 2
9 Comments
 
LVL 34

Expert Comment

by:PsiCop
Comment Utility
I wouldn't bother - I'd just set up an ACL on the router to the Internet and not let any port 80 traffic out except from the Squid server. That way people HAVE to go thru Squid to gte to the Internet.
0
 
LVL 5

Author Comment

by:ranadastidar
Comment Utility
But I don't have any router, anyone idea about ncsa configuration?
0
 
LVL 34

Expert Comment

by:PsiCop
Comment Utility
How do you reach the Internet if you don't have a router?
0
Get up to 2TB FREE CLOUD per backup license!

An exclusive Black Friday offer just for Expert Exchange audience! Buy any of our top-rated backup solutions & get up to 2TB free cloud per system! Perform local & cloud backup in the same step, and restore instantly—anytime, anywhere. Grab this deal now before it disappears!

 
LVL 5

Author Comment

by:ranadastidar
Comment Utility
Actually I am using DSL connection and use my isp's DNS server as well as router.
0
 
LVL 34

Accepted Solution

by:
PsiCop earned 100 total points
Comment Utility
Your DSL connection is a router. Just because it doesn't say "router" on the case doesn't mean its not a router.

Unfortunately, its not a router you probably have control over. And that's what you're trying to get here, isn't it? Control over the connection and how its used.

If your DSL provider cannot give the level of control you want to you, then you needs to:

a) Find a new DSL provider who CAN give you the level of control you want

OR

b) Add the necessary network infrastructure needed to give you the control you want.
0
 
LVL 7

Expert Comment

by:wesbird
Comment Utility
Possible way of doing PsiCop's b is to add a second NIC to the linux box and only connecter the router to the Linux box, so that everybody has to use the Linux box as a proxy server.

Then you will probably want to also investigate something like squidGuard which allows you to implement blacklisting of millions of sites: http://www.squidguard.org/

It's not so important to authenticate if you can simply stop people going to the sites you don't want them at.




0
 
LVL 7

Expert Comment

by:wesbird
Comment Utility
PS, what type of DSL router do you have?

Sometimes you can achieve some level of configuration by pointing your web browser at the default gateway address.  You'll almost certainly have to use the command line interface to do anything sophisticated though.
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

Introduction We as admins face situation where we need to redirect websites to another. This may be required as a part of an upgrade keeping the old URL but website should be served from new URL. This document would brief you on different ways ca…
It’s 2016. Password authentication should be dead — or at least close to dying. But, unfortunately, it has not traversed Quagga stage yet. Using password authentication is like laundering hotel guest linens with a washboard — it’s Passé.
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now