Internet Related/Filtering/Firewall Thread, Squid Transparent Proxy Issues in Technical; Originally Posted by robjcrowston
I was hoping for something more on the lines of a Server Side exception?
If eth0 ...
13th November 2012, 12:39 AM #16
If eth0 is your internal connection and eth1 your external connection, try something along the lines of:
Originally Posted by robjcrowston
iptables -t filter -A FORWARD -i eth0 -p tcp --dport 443 -j ACCEPT
That should forward any internal traffic on port 443 (HTTPS) to the Internet, i.e. any HTTPS request from your internal network gets passed out to the Internet with no questions asked.
13th November 2012, 08:50 PM #17
Originally Posted by dhicks
What's the purpose of having the proxy? The forwarding rule that dhicks listed will work, but will forward all HTTPS traffic, thus negating any content filtering you may have setup.
Last edited by Duke5A; 13th November 2012 at 08:53 PM.
14th November 2012, 11:29 AM #18
- Rep Power
The internet connection we are provided with comes in to the school ready proxied, we have to point machines to a proxy server at the local authority, there is no "transparent internet" so to speak, the purpose of the transparent proxy is to have a cache_peer setup to the proxy server further up in the chain, it also allows us to block certain sites we dont visitors accessing but do want authenticated users to. we currently dont really have a way of blocking https access anyway, so we are not really losing anything.
I think the answer is going to be your solution, to setup forwarding rules directly to exchange for the webmail, and not provide https. As there is no transparent internet on the WAN side of the proxy server anyway, I assume @dhicks solution wouldnt work.
Appologies if im missing anything, Im new to squid and ip tables.
By RabbieBurns in forum *nix
Last Post: 19th October 2012, 12:53 PM
Last Post: 4th June 2008, 12:26 PM
Last Post: 25th May 2008, 12:04 PM
By Jackd in forum Network and Classroom Management
Last Post: 25th July 2007, 07:54 PM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)
Tags for this Thread