EFW Support

Greetings,

This has probably been discussed in the past but I did spend some time searching to see if it was, I have worked with ISA and I am trying to move to Endian.

ISA had a nice tool that installed on the machine and authenticated the user without a prompt, I can live with Endian prompting the user for a password but I see that if Endian becomes the default gateway and the proxy settings are removed it gives the logged in user unfiltered access to the internet.

I tried to stop http traffic through the firewall to no avail.

I am sure I am missing something really small and stupid :)

Please help.

Manoj

Why dont you use the transparent proxy option? In this case, there are no settings for the internet browsers. All the http traffic is obliged to pass through the proxy.

Thanks for the response.

I have the proxy already set at transparent.

Anything else that I may have setup incorrectly?


Thanks,
Manoj

How is the firewall rule setup to block access?  I created on stopping access on all ports from Green <- -> Red and it blocks access fine.  If you can give us more details on the firewall/proxy settings we might be able to help some more.

I have the same problem.

I have partially solved removing the ip forward from the configuration via console (use putty with a ssh connection) with this command:
echo 0 > /proc/sys/net/ipv4/ip_forward

This is not a final solution because if you restart the server everything backs at the start point.