+ Post New Thread
Page 2 of 4 FirstFirst 1234 LastLast
Results 16 to 30 of 47
*nix Thread, Squid transparent proxying in Technical; i'll go with the server and ebox for now. it was me who suggested this whole solution so i guess ...
  1. #16

    MK-2's Avatar
    Join Date
    Oct 2006
    Location
    Nottingham
    Posts
    3,237
    Thank Post
    149
    Thanked 581 Times in 307 Posts
    Blog Entries
    8
    Rep Power
    199
    i'll go with the server and ebox for now. it was me who suggested this whole solution so i guess its only fair i do the admin for it for now.
    but thanks for ebox/webmin idea, i guess i could always do an smb share to the whitelist folder and let people update it themselves
    cheers guys

  2. #17

    Join Date
    Feb 2006
    Location
    Derbyshire
    Posts
    1,381
    Thank Post
    181
    Thanked 211 Times in 171 Posts
    Rep Power
    65
    Quote Originally Posted by Geoff View Post
    Webmin doesn't work properly on Ubuntu, the filesystem layout is non-redhat.
    Oops Hands up who lost forgot to pay attention to the OPs finer details and just repeated what they used on their CentOS box!

  3. #18
    ICT_GUY's Avatar
    Join Date
    Feb 2007
    Location
    Weymouth
    Posts
    2,261
    Thank Post
    646
    Thanked 283 Times in 204 Posts
    Rep Power
    104
    Ok a bit of a break in replying.

    After a lot of thinking, playing around with stuff and talking to the local top geeks in the area. I have decided to go with ISA server on Server 2008.

    Total licence cost is around the 90 mark (love education licences, got to confirm this btw) and it just works. Not even that difficult to set up.

    Its certainly easier to get working than squid was and so far has not caused any issues.

  4. #19
    mitcheln's Avatar
    Join Date
    Dec 2005
    Posts
    54
    Thank Post
    1
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    Quote Originally Posted by MK-2 View Post
    Geoff that's the thing. I don't want to adopt the 'f**k you, learn it' attitude because all that will happen is that nobody does as I can, meaning more work for me.
    Hi,
    Editing dansguardian whitelists is not terribly difficult though. Your colleagues need to know which are the appropriate files, how to navigate to them and how to edit them correctly. I use mc sometimes and nano sometimes via ssh. mc is great for this kind of thing, because it's visual. I'm sure your colleagues will get the hang of it quickly. How will they restart the dansguardian service to reload the new lists? I don't know what gui service controls there are for Ubuntu, but typing /etc/init.d/dansguardian restart on the cli is pretty quick imo.
    Anyway, hope you have great success with your project.

  5. #20

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,803
    Thank Post
    110
    Thanked 583 Times in 504 Posts
    Blog Entries
    1
    Rep Power
    224
    /etc/init.d/dansguardian restart
    Try this instead if your just updating the white/black/grey lists.

    Code:
    dansguardian -g
    This way, current connections don't get dropped on the floor.

  6. #21
    mitcheln's Avatar
    Join Date
    Dec 2005
    Posts
    54
    Thank Post
    1
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    Quote Originally Posted by Geoff View Post
    Try this instead if your just updating the white/black/grey lists.

    Code:
    dansguardian -g
    This way, current connections don't get dropped on the floor.
    I see my plan to avoid reading the manual worked. Seriously though, thanks, I'll give that a whirl next time I have to.

  7. #22

    MK-2's Avatar
    Join Date
    Oct 2006
    Location
    Nottingham
    Posts
    3,237
    Thank Post
    149
    Thanked 581 Times in 307 Posts
    Blog Entries
    8
    Rep Power
    199
    me again

    ok i got the server up and running today, ebox/dansg/squid installed
    eth0 connected to bt router, with ip of 192.168.1.2
    eth1 connected to switch with ip of 192.168.1.3

    firstly, with both IPs set, i cant browse the internet and internal hosts, im guessing it uses one ip for both and that wont work. is there any way i can specify eth0 is only to be used for web requests and eth1 is to be used for internet requests?

    secondly if i forward all traffic from eth1 on port 80 to eth0 on 3128 so it goes via squid, how do i implement dansg? cos it needs an ip/port to listen on, and if i set it to eth1:80 to listen on, wouldn't that then mean that nothing gets redirected, or will it filter then redirect?

    haven't done any conf file edits yet, so if anybody would be willing to help me out id be very grateful. basically we just want any pda on the 192.168.1.x ip range (set via dhcp on ubuntu) to have access to the internet with dansg and squid in between in transparent mode.
    sorry if im going over things more than once, im simple :P

  8. #23
    mitcheln's Avatar
    Join Date
    Dec 2005
    Posts
    54
    Thank Post
    1
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    Quote Originally Posted by MK-2 View Post
    me again

    ok i got the server up and running today, ebox/dansg/squid installed
    eth0 connected to bt router, with ip of 192.168.1.2
    eth1 connected to switch with ip of 192.168.1.3
    P
    Hi there,
    Quick reply:
    I hope I've attached a diagram to this post. Does this match your setup?
    If it doesn't, are you able to create a diagram that does?
    I can't speak for others, obviously, but it helps me to see things.
    Regards, Nic
    Attached Images Attached Images

  9. #24

    MK-2's Avatar
    Join Date
    Oct 2006
    Location
    Nottingham
    Posts
    3,237
    Thank Post
    149
    Thanked 581 Times in 307 Posts
    Blog Entries
    8
    Rep Power
    199
    mitcheln:

    Mine goes:
    Internet > BT Router > eth0 (192.168.1.2) > Ubuntu server > eth1 (192.168.1.3) > switch > wireless AP > PDAs

    so all internal traffic (PDAs, wireless APs) would be hitting eth1, and all internet traffic would hit eth0.
    But when both are plugged in, and I try to get on either an AP or the net, it hangs, unplug eth0 and i can see the router, unplug eth1 and i can see the internet. Obviously I'll need both to work together.

    If anybody is available to hit me up on MSN and give me a hand to go through things I'd love it (Keegan style!). Mainly just with getting both cards working in unison, and getting squid/dansg working together with squid being transparent.

  10. #25

    Join Date
    Jun 2005
    Location
    Preston, Lancashire
    Posts
    634
    Thank Post
    11
    Thanked 6 Times in 6 Posts
    Rep Power
    21
    I am very novice at this myself, but I was under the impression that both cards couldn't be on the same subnet. Perhaps someone can confirm (or otherwise)



    Andy

  11. #26

    MK-2's Avatar
    Join Date
    Oct 2006
    Location
    Nottingham
    Posts
    3,237
    Thank Post
    149
    Thanked 581 Times in 307 Posts
    Blog Entries
    8
    Rep Power
    199
    andy, this is why i need help :P

  12. #27

    RabbieBurns's Avatar
    Join Date
    Apr 2008
    Location
    Sydney
    Posts
    5,521
    Thank Post
    1,333
    Thanked 469 Times in 306 Posts
    Blog Entries
    6
    Rep Power
    199
    do you need to do a
    Code:
    echo 1 > /proc/sys/net/ipv4/ip_forward
    perhaps?

  13. #28

    MK-2's Avatar
    Join Date
    Oct 2006
    Location
    Nottingham
    Posts
    3,237
    Thank Post
    149
    Thanked 581 Times in 307 Posts
    Blog Entries
    8
    Rep Power
    199
    xxxxxxxxx <- theres your comment



    xxxxxx<- theres my head



  14. #29

    RabbieBurns's Avatar
    Join Date
    Apr 2008
    Location
    Sydney
    Posts
    5,521
    Thank Post
    1,333
    Thanked 469 Times in 306 Posts
    Blog Entries
    6
    Rep Power
    199
    How to enable IP Forwarding in Linux | MDLog:/sysadmin

    But i dunno if its relevent here or not ;p

  15. #30

    MK-2's Avatar
    Join Date
    Oct 2006
    Location
    Nottingham
    Posts
    3,237
    Thank Post
    149
    Thanked 581 Times in 307 Posts
    Blog Entries
    8
    Rep Power
    199
    not that it'd matter anyway with EMBC

    This page has been blocked because it has been categorised as Match Making
    The web page you were trying to visit has been blocked by the Internet filtering system.

    You wouldn't believe how many women melt when I tell them about configuring IP forwarding in a Linux environment

SHARE:
+ Post New Thread
Page 2 of 4 FirstFirst 1234 LastLast

Similar Threads

  1. Transparent squid + local IP addresses
    By jonathan.lees in forum *nix
    Replies: 1
    Last Post: 2nd December 2007, 01:20 AM
  2. Squid Transparent
    By Jackd in forum *nix
    Replies: 5
    Last Post: 10th October 2007, 02:12 PM
  3. Reverse proxying SSH...
    By Joedetic in forum Wireless Networks
    Replies: 7
    Last Post: 6th August 2007, 11:56 AM
  4. Squid Transparent Proxy.
    By Jackd in forum Network and Classroom Management
    Replies: 2
    Last Post: 25th July 2007, 06:54 PM
  5. Reverse Proxying with Apache.
    By maniac in forum Web Development
    Replies: 7
    Last Post: 5th April 2007, 11:04 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •