I have a remote machine which needs to serve as a proxy server (http), aswell as an http server. The part of the http server is taken care of and is working, but as far as setting proxy server – I’ve never done so. Every where I looked, I see php based web proxies, I want to create a transparent proxy, to be used in, let’s say firefox. Any leads? Asked by Itai Sagi Try [...]Continue Reading »
We have a squid proxy on the cloud with IP Address 50.x.y.z listening on tcp port 3128 and running in transparent mode. This proxy server is running Debian 6.0 and is located at a data center. In our office we have a Cisco router with Public IP 203.x.y.z/29 and private IP 192.168.1.1/24. The Local LAN network is 192.168.1.0/24. I have allowed the public IP 203.x.y.z/29 in the squid.conf file and hence the LAN users can [...]Continue Reading »
I’ve got a linux box set up with 2 network cards to inspect traffic going through port 80. One card is used to go out to the internet, the other one is hooked up to a networking switch. The point is to be able to inspect all HTTP and HTTPS traffic on devices hooked up to that switch for debugging purposes. I’ve written the following rules for iptables: nat-A PREROUTING -i eth1 -p tcp -m [...]Continue Reading »
Does anyone know the best way to configure Ubuntu to use a SOCKS5 proxy for all network traffic? Server is ubuntu server – all cli. So I cannot set via the Proxy Settings GUI. We want to push all outbound traffic through the proxy (apt-get, http, https, etc). I do need to separate ssh traffic so it stays locally. Everything else should hit the proxy server. not that it matters, but I’m using Squid for [...]Continue Reading »
I’m trying to transparently proxy HTTP requests in a LAN that is served by a pfSense router over SSH. So far, I’ve tried setting up an Ubuntu box outside that network and forwarding everything going outward that’s HTTP to redsocks on the outside Ubuntu box which is forwarding to RedSOCKS which then points to a SOCKS server provided by a SSH connection to a box that’s also outside the network. This does not work and [...]Continue Reading »
There are lots of programs that small businesses (libraries, internet cafes, etc) can install on local computers to enforce their rules and terms of service when using free resources. These aren’t ideal as they require constant updates, and can readily be circumvented. A lot of this stems from three intertwined requirements – preventing over-usage, decreasing liability (illegal internet activity, comply with gov’t regulation, etc), while enabling the greatest level of internet access possible. Assuming the [...]Continue Reading »
I Have a squid server (transparent) and I want to cahce youtube videos and windows updates. I know that someone has posted a similar question and I have looked at this post but I am configuring this with webmin and would like to know how to set it up so that I can add other dynamic content on other sites. YouTube has recently added support for caching their videos. This is specific for YouTube (ie. [...]Continue Reading »
I’m trying to transparently route traffic of one Xen VM through another, like so: ——- 192.168.250.4 192.168.250.3 ——— | VM1 | <—————–bridged—————-> | VM2 | <—–> Internet ——- | with | | squid | | proxy | ——— Don’t ask why, just experimenting with iptables. I’m able to successfully route HTTP traffic through VM2′s Squid proxy (transparent mode) with iptables -t nat -A PREROUTING -p tcp –dport 80 –s ! 192.168.250.3 -j REDIRECT –to-port 3128 [...]Continue Reading »
Am trying to compile squid to allow transparency using this command ./configure –enable-ipf-transparent on a MAC mini running 10.5.8 am getting a error WARNING: Cannot find necessary IP-Filter header files Transparent Proxy support WILL NOT be enabled How can i solve this, how can I install the IP headers file, I already have the installer (IP Filter 4.1.33) but which distribution do I use for a mac First Mac OS X uses ipfw and not [...]Continue Reading »
I am using the following rules in iptables in my network to use a transparent proxy * iptables -t nat -A PREROUTING -i eth0 -s ! squid-box -p tcp –dport 80 -j DNAT –to squid-box:3128 * iptables -t nat -A POSTROUTING -o eth0 -s local-network -d squid-box -j SNAT –to iptables-box * iptables -A FORWARD -s local-network -d squid-box -i eth0 -o eth0 -p tcp –dport 3128 -j ACCEPT But my squid log, always logs [...]Continue Reading »
- Is there a way for administrators to disable users from installing Firefox extensions?
- Is there research material on NTP accuracy available?
- How to create a limited “domain admin” that does not have access to domain controllers?
- Can Windows RDC admin users be immune from being kicked?
- Domain Administrators account policy (After PCI audit)