[ILUG] dansguardian, squid, smoothwall and transparent proxying
Niall O Broin
niall at linux.ie
Wed Mar 9 09:12:24 GMT 2005
On Wed, 9 Mar 2005 00:12:32 +0000, conor.daly at cod.utvinternet.com
<conor.daly at cod.utvinternet.com> wrote:
> Eeek! Now that the kids are starting to want to go surfing, I'm
> working
> on a dansguardian / squid setup for the HAN. I'm running squid and
> dansguardian on the internal server and smoothwall express on the
> firewall. I have both dans and squid working and dilligently blocking
> but
> I have to manually configure the browsers {which the kids will
> {eventually} manually _unconfigure_}. To avoid this, I tried having
> smoothwall do a transparent proxy thing. I gave it the ip:port of the
> internal dans server and told it it was transparent. Now I get an
> "access
> denied" message from squid for any web access. I suspect it's the
> proxy
> equivalent of a mail loop since it's only when I put the smoothwall
> proxy
> bit in place that this happens.
As you guessed, you do effectively have a loop there. One solution
might be to install Dan's Guardian on the Smoothwall box, which has
squid anyway. However, you might be of the view, as am I, that you want
to treat the Smmothwall as an appliance, and hence don't want to
install any other software on it.
Niall
More information about the ILUG
mailing list