squid & iptables help

Toggle sidebar Toggle sidebar
N

nightowl

Golden Member
Oct 12, 2000
1,935
0
0
I want to only allow access to certain websites using either squid or iptables. I tried using IP tables to block all outgoing traffic and then allow outbound traffic to the sites I wanted to allow access to. This did not work. I think is is because the traffic is coming back on a different port that I have blocked. Is this correct or do I need to change anything?0 I am not blocking anything inbound yet. I can also use squid if necessary, but how would I block all sites and then allow certain sites in?
 
B

Buddha Bart

Diamond Member
Oct 11, 1999
3,064
0
0
You could theoretically go either way, but what I think you want to do is this:

1.) block all outbound traffic not from the server (aka originating from your lan interface) with a destination port of 80
2.) configure squid to block all except a whitelist you've created.
3.) configure all browsers to use the proxy server

Theoretically they could setup their own proxy server on the outside and go through that instead, if you're that worried you've got a lot more things you have to factor in.
 

cleverhandle

Diamond Member
Dec 17, 2001
3,566
3
81
The typical way to do this is with a content filter like Dan's Guardian that runs along with squid. IPTables is too low-level to filter sites in a reasonable manner. You can however, configure a firewall to redirect outbound port 80 requests through the squid proxy. That way, you don't have to configure anything on the clients - they make apparently normal web requests, which are transparently rerouted through the squid box.
 
You must log in or register to reply here.

TRENDING THREADS

COMPANY
RESOURCES
FOLLOW
Top Bottom
sale-70-410-exam    | Exam-200-125-pdf    | we-sale-70-410-exam    | hot-sale-70-410-exam    | Latest-exam-700-603-Dumps    | Dumps-98-363-exams-date    | Certs-200-125-date    | Dumps-300-075-exams-date    | hot-sale-book-C8010-726-book    | Hot-Sale-200-310-Exam    | Exam-Description-200-310-dumps?    | hot-sale-book-200-125-book    | Latest-Updated-300-209-Exam    | Dumps-210-260-exams-date    | Download-200-125-Exam-PDF    | Exam-Description-300-101-dumps    | Certs-300-101-date    | Hot-Sale-300-075-Exam    | Latest-exam-200-125-Dumps    | Exam-Description-200-125-dumps    | Latest-Updated-300-075-Exam    | hot-sale-book-210-260-book    | Dumps-200-901-exams-date    | Certs-200-901-date    | Latest-exam-1Z0-062-Dumps    | Hot-Sale-1Z0-062-Exam    | Certs-CSSLP-date    | 100%-Pass-70-383-Exams    | Latest-JN0-360-real-exam-questions    | 100%-Pass-4A0-100-Real-Exam-Questions    | Dumps-300-135-exams-date    | Passed-200-105-Tech-Exams    | Latest-Updated-200-310-Exam    | Download-300-070-Exam-PDF    | Hot-Sale-JN0-360-Exam    | 100%-Pass-JN0-360-Exams    | 100%-Pass-JN0-360-Real-Exam-Questions    | Dumps-JN0-360-exams-date    | Exam-Description-1Z0-876-dumps    | Latest-exam-1Z0-876-Dumps    | Dumps-HPE0-Y53-exams-date    | 2017-Latest-HPE0-Y53-Exam    | 100%-Pass-HPE0-Y53-Real-Exam-Questions    | Pass-4A0-100-Exam    | Latest-4A0-100-Questions    | Dumps-98-365-exams-date    | 2017-Latest-98-365-Exam    | 100%-Pass-VCS-254-Exams    | 2017-Latest-VCS-273-Exam    | Dumps-200-355-exams-date    | 2017-Latest-300-320-Exam    | Pass-300-101-Exam    | 100%-Pass-300-115-Exams    |
http://www.portvapes.co.uk/    | http://www.portvapes.co.uk/    |