• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 268
  • Last Modified:

Using SQUID to manage a Linux Internet Gateway

Hello,
   I use a redhat linux box to manage my LAN which has 30 windows XP systems. The linux box has a firewall installed/configured "GUARDDOG". Presently i am having 2 problems that i really need to solve.

1.    I  do not want to make my IP shown to the public. This is a security risk cos i use the 30 windows XP systems to run a public internet cafe. I suppose squid should be able to do this for me and I have squid installed but not yet fully configured. Any suggestion on how to get it properly configured will be appreciated.

2.   The main issue that i will like to solve is setting a bandwidth limit (upload/download)  for users and also how to get some sites restricted. I have read quite a number of post on the site and found a bit of information on using squid to limit bandwidth. I wiould like to know how to configure this as i am new to squid entirely (an intermediate expert in linux).

   Any other advice on how to limit bandwidth usage apart from squid is gladly welcome.

A quick reply will be greatly appreciated.

Thanx
0
deepsee34
Asked:
deepsee34
  • 2
1 Solution
 
Gabriel OrozcoSolution ArchitectCommented:
1.- You cannot hide external IP addess. to hide internal ip address you can use a proxy (squid) or NAT (iptables).

2.- To use squid to give less priority to large downloads (p2p, etc) you can use delay pools:
http://www.squid-cache.org/Doc/FAQ/FAQ-19.html
http://quark.humbug.org.au/publications/squid/aclsquid.html

2.b.- for restricting sites, use ACLs like this:
acl bannedurls url_regex "/usr/local/squid/etc/banned_urls"
acl bannedips  dst       "/usr/local/squid/etc/banned_ips"

(I have these files, banned_urls and banned_ips and just need to enter the full ip or a part of the URL. be careful since if you put .com then all .com will be filtered)
0
 
deepsee34Author Commented:
Thanx Redimido,
   I read throgh the links u gave me and was quite helpful but i seem not to understand how to get around it cos i dont want to tamper with my linux box since i havent fully grabbed the explanation. I hv just installed squid on the linux box and every thing set at default.
   I will need a quick jumpstart on proper config so that i can get it up and running. Again, is there anyway in squid that i can specify bandwidth limit (upload and download) for client computers?


Thanks
0
 
Gabriel OrozcoSolution ArchitectCommented:
the answer with squid: no.

another answer: download wonder shaper. this is an easy script that you need to study, since it makes easy to control bandwidth:

http://lartc.org/wondershaper/
0

Featured Post

Become an Android App Developer

Ready to kick start your career in 2018? Learn how to build an Android app in January’s Course of the Month and open the door to new opportunities.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now