This is a multipart message in MIME format.
--=_alternative 004F56BD86256EC4_=
Content-Type: text/plain; charset="US-ASCII"
Content-Transfer-Encoding: quoted-printable
Hi all,
Glad to know all the Thurs. meeting with SAGE are continuing. :-)
Sorry about the vague subject line.
Hope someone could enlighten me or give some insight on "any" of these
topics.
First, a little history about my issue:
Research:
I have been trying to get RH 7.3(w/ patches-RHN=3Dup2date) w/
Squid/DG/iptables to work properly.
I have read Doc from these sources:
http://dansguardian.org/=3Fpage=3Ddocumentation
http://dansguardian.org/=3Fpage=3Ddgflow
http://www.nyetwork.org/wiki/DansGuardian
And...other posts/threads and doc as well!
Project:
We are a mid-sized organization trying to set-up a Proxy server to cache &
filter requests from Windows users.
We "would" like to set-up all the aforementioned services on one machine.
Can we use it as a gateway like transparent proxying suggests=3F
Do I need two nics or can I use an alias or lookpback to achieve the
iptables redirects=3F
Can I use a test machine w/ a "DHCP" address & will the FW(iptables) still
work properly=3F
I know it has been done and I have little time now, sigh.
Post-Install & Logs:
The errors I receive are when setting my browser to "direct connection"
are "ERROR Requested URL could not be retrieved" & "Access Denied".
There have been times when Squid/DG & IPtables filtering seem to work, but
would filter "all" sites most of the time.
Most of the time when I enable the FW or IPtables it does not seem to work
correctly, when I disable and use the proxy settings in the browser, it
works.
When I change to direct connection and change my client''s gateway to the
proxy server, I receive the "Denied Errors".
My problem seems to be with the configuration and/or the IPtables aspect
of the install.
Please let me know if my questions are clear enough.
I can provide my conf files and more info as needed.
TIA for any help!
Scott
Scott Pichelman
Systems Administrator
Weir Slurry TM
North America
2701 S Stoughton Rd
Madison WI 53716 USA
T: +001 608 226 5615
F: +001 608 221 5807
M: +001 608 279 0368
E: scott.pichelman@xxxxxxxxxxxxxx
W: http://weirslurry.com
The information contained in this email (including any attachments) is confi=
dential, subject to copyright and for the use of the intended recipient only=
. If you are not the intended recipient please delete this message after not=
ifying the sender. Unauthorised retention, alteration or distribution of thi=
s email is forbidden and may be actionable.
Attachments are opened at your own risk and you are advised to scan incoming=
email for viruses before opening any attached files. We give no guarantee t=
hat any communication is virus-free and accept no responsibility for virus c=
ontamination or other system loss or damage of any kind.
--=_alternative 004F56BD86256EC4_=
Content-Type: text/html; charset="US-ASCII"
Content-Transfer-Encoding: quoted-printable
<br><font size=3D2 face=3D"sans-serif">Hi all,</font>
<br>
<br><font size=3D2 face=3D"sans-serif">Glad to know all the Thurs. meeting
with SAGE are continuing. :-)</font>
<br>
<br><font size=3D2 face=3D"sans-serif">Sorry about the vague subject line.</=
font>
<br><font size=3D2 face=3D"sans-serif">Hope someone could enlighten me or gi=
ve
some insight on "any" of these topics.</font>
<br><font size=3D2 face=3D"sans-serif">First, a little history about my issu=
e:</font>
<br>
<br>
<br><font size=3D2 face=3D"sans-serif">Research:</font>
<br><font size=3D2 face=3D"sans-serif">I have been trying to get RH 7.3(w/
patches-RHN=3Dup2date) w/ Squid/DG/iptables to work properly.</font>
<br><font size=3D2 face=3D"sans-serif">I have read Doc from these sources:</=
font>
<br><font size=3D2 face=3D"sans-serif"> http://da=
nsguardian.org/=3Fpage=3Ddocumentation</font>
<br><font size=3D2 face=3D"sans-serif"> http://da=
nsguardian.org/=3Fpage=3Ddgflow</font>
<br><font size=3D2 face=3D"sans-serif"> http://ww=
w.nyetwork.org/wiki/DansGuardian</font>
<br><font size=3D2 face=3D"sans-serif"> And...oth=
er
posts/threads and doc as well!</font>
<br>
<br><font size=3D2 face=3D"sans-serif">Project: <=
/font>
<br><font size=3D2 face=3D"sans-serif">We are a mid-sized organization tryin=
g
to set-up a Proxy server to cache & filter requests from Windows users.<=
/font>
<br><font size=3D2 face=3D"sans-serif">We "would" like to set-up
all the aforementioned services on one machine.</font>
<br><font size=3D2 face=3D"sans-serif">Can we use it as a gateway like trans=
parent
proxying suggests=3F</font>
<br><font size=3D2 face=3D"sans-serif">Do I need two nics or can I use an al=
ias
or lookpback to achieve the iptables redirects=3F</font>
<br><font size=3D2 face=3D"sans-serif">Can I use a test machine w/ a "D=
HCP"
address & will the FW(iptables) still work properly=3F</font>
<br><font size=3D2 face=3D"sans-serif">I know it has been done and I have li=
ttle
time now, sigh.</font>
<br>
<br><font size=3D2 face=3D"sans-serif">Post-Install & Logs:</font>
<br>
<br><font size=3D2 face=3D"sans-serif">The errors I receive are when setting=
my browser to "direct connection" are "ERROR Requested URL
could not be retrieved" & "Access Denied".</font>
<br><font size=3D2 face=3D"sans-serif">There have been times when Squid/DG
& IPtables filtering seem to work, but would filter "all"
sites most of the time.</font>
<br><font size=3D2 face=3D"sans-serif">Most of the time when I enable the FW=
or IPtables it does not seem to work correctly, when I disable and use
the proxy settings in the browser, it works.</font>
<br><font size=3D2 face=3D"sans-serif">When I change to direct connection an=
d
change my client''s gateway to the proxy server, I receive the "Denied
Errors".</font>
<br><font size=3D2 face=3D"sans-serif">My problem seems to be with the confi=
guration
and/or the IPtables aspect of the install.</font>
<br>
<br><font size=3D2 face=3D"sans-serif">Please let me know if my questions ar=
e
clear enough.</font>
<br><font size=3D2 face=3D"sans-serif">I can provide my conf files and more
info as needed.</font>
<br><font size=3D2 face=3D"sans-serif">TIA for any help!</font>
<br>
<br><font size=3D2 face=3D"sans-serif">Scott</font>
<br>
<br><font size=3D2 face=3D"sans-serif">Scott Pichelman<br>
Systems Administrator<br>
Weir Slurry TM<br>
North America<br>
2701 S Stoughton Rd<br>
Madison WI 53716 USA<br>
<br>
T: +001 608 226 5615<br>
F: +001 608 221 5807<br>
M: +001 608 279 0368 <br>
E: scott.pichelman@xxxxxxxxxxxxxx<br>
W: http://weirslurry.com</font><font face=3D"Helv" size=3D3 color=3D#000000 =
></font><br><font face=3D"Helv" size=3D3 color=3D#000000 ></font><br><font f=
ace=3D"Helv" size=3D3 color=3D#000000 >The information contained in this ema=
il (including any attachments) is confidential, subject to copyright and for=
the use of the intended recipient only. If you are not the intended recipie=
nt please delete this message after notifying the sender. Unauthorised reten=
tion, alteration or distribution of this email is forbidden and may be actio=
nable.</font><br><font face=3D"Helv" size=3D3 color=3D#000000 ></font><br><f=
ont face=3D"Helv" size=3D3 color=3D#000000 >Attachments are opened at your o=
wn risk and you are advised to scan incoming email for viruses before openin=
g any attached files. We give no guarantee that any communication is virus-f=
ree and accept no responsibility for virus contamination or other system los=
s or damage of any kind.</font><br>
--=_alternative 004F56BD86256EC4_=--
|
![[Computer Systems Lab]](http://www.cs.wisc.edu/pics/csl_logo.gif){kind=logo}