[ILUG] dansguardian, squid, smoothwall and transparent proxying
Paul Jakma
paul at clubi.ie
Fri Mar 11 00:56:24 GMT 2005
On Thu, 10 Mar 2005, Gavin McCullagh wrote:
> If squid is to run on an internal (non-firewall) machine, then the firewall
> must give internet (at least web) access to that IP address. If the child
> is smart enough to set a static ip address or set a web proxy by hand, then
> (s)he's probably also smart enough to unplug your squid machine from the
> network, set a static ip address to that of your squid machine and get web
> access directly.
Run 'arpwatch' on the internet gateway.
If the kid does do the above, at least you can find out about it
(presuming the arpwatch machine is secure, and the kid doesnt figure
out to change the MAC addr on his machine to that of the squid box).
regards,
--
Paul Jakma paul at clubi.ie paul at jakma.org Key ID: 64A2FF6A
Fortune:
If I'd known computer science was going to be like this, I'd never have
given up being a rock 'n' roll star.
-- G. Hirst
More information about the ILUG
mailing list