|
Title: Squid Proxy Related Configuration Post by: nishith on Sunday 26 August 2012, 09:40:51 pm Hello,
I am using SQUID Proxy with "iptables" NAT firewall rules since 5 years & very happy to have a nice,customizable configuration. Now, I want to implement "Endian Community Firewall" in between "Squid Proxy Firewall & Gateway" segment. The requirement is as given below expectations from EFW. * Squid like ACL management & configuration in GUI mode. End User should be able to make own rules as per the need. * NAT from WAN to LAN segment * Squid like "content filtering" in GUI mode. * Bandwidth control for individual IP Address or User wise. * "User Name & Password" Authentication to access internet. * Internet access report in GUI mode. (Like SARG , Squid Analysis Report Generator) Regards, Nishith N.Vyas Title: Re: Squid Proxy Related Configuration Post by: dda on Thursday 30 August 2012, 04:22:43 am Endian has all but two of these things (that I have been able to figure out that is). The reporting on the community edition is almost non-existent in terms of users and I know of no way to control bandwith per user. I dont know if anyone else here know how. AD authentication is relatively straight forward.
Title: Re: Squid Proxy Related Configuration Post by: nishith on Wednesday 05 September 2012, 12:29:52 am Hello,
I have configured "endian" in my network environment & want to implement below stuff on endian. 1) Overall blocking of porn and bad website 2) Block all kinds of torrents & 3) 1st RULE to block all bad website + facebook + orkut 4) 2nd RULE to only block all bad website but "facebook & orkut" should be accessible. Is it possible ? Can i use "squidguard/dansguardian" with "endian"? If yes, then it would be great if someone can provide proper documentation of the same. Right Now, I am able to create single rule to block all porn & "facebook" type websites. Only first rule is working for a particular IP or IP Set. But, 2nd rule don't work... What is the reason behind that? Nishith N.Vyas Title: Re: Squid Proxy Related Configuration Post by: nishith on Saturday 08 September 2012, 01:33:01 pm Hello EFW Community,
I am glad to announce that "endian firewall" started working properly as per my expectations. Below is the list of configured features,which is rarely available in other open source community firewalls & if available, then it is difficult to configure. Endian has provided me a nice GUI environment to configure everything. It can be configured without using any official documentation. 1) Squid with Dansguardian 2) Strong Access Control List 3) IPS (Snort) 4 ) Allow SSH & other services to specific IP's address from outside. 5) Strong MIME type content filetring like MP#,MP4 & TORRENTs.... 6) QoS is still needs to be improved. 7) Only "Single Site" accessible for a range of IP or for a single client IP. But, Still there should be "read only" user facility available, so that un experienced user can at least monitor everything. Thanks Endian..... |