[PLUG] Linux Based Proxy Firewall solution

Kulkarni Shantanu linux at shantanukulkarni.org
Thu Mar 19 10:20:15 IST 2009

* Pranav Peshwe <pranavpeshwe at gmail.com> [090319 10:11]:
> However, an issue in introducing a proxy server is, all the browsers for all
> the users on all the machines have to be updated to use the proxy, lest some
> user might get a surprise. But, this is not too much work if the deployment
> is small or the users themselves are techy.

not necesarily, use in transparent proxy mode with iptables redirecting
outgoing port 80 (and all required) to local squid cache transparently
to users.

> I guess, if he has a firewall setup at the gateway, then he can block
> internet traffic to other websites without having to put a proxy. That will
> do away the browser and proxy configuration.

not a good idea to block by IP, plus with squid you get caching and fine
control too.


More information about the Plug-mail mailing list