> On tor, 2008-05-29 at 12:34 -0700, modulok wrote:
> > I have setup a squid server with dansguardian. I also have a server setup
> > with iptables acting as the default gateway. I have transparent proxy with
> > dansguardian filtering working. When using transparent proxy, the squid
> > server does not process the Ident info. If I manually put in the proxy info
> > and port (squid:8080) Ident gets processed.
On 30.05.08 01:24, Henrik Nordstrom wrote:
> Correct. ident and transparent interception is mutually exclusive. This
> beacuse for ident to work the ident lookup need to come from the source
> IP of the contacted server which is the requested web server, and this
> is not possible without tricks like tproxy.
maybe with tproxy functionality squid sould fake server's IP in direction to
the client :)
> > Below are two lines from dansguardian's access.log. The first one is via
> > default gateway, second via manual proxy. How do I go about having the
> > logfile use the client's IP and username? I am thinking its something in
> > iptables, to force the ident info to pass through gateway to squid server.
>
> I would recomment looking into how to deploy proxy settings to the
> cliets. It solves many problems, and isn't that difficult.
-- Matus UHLAR - fantomas, uhlar@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. Eagles may soar, but weasels don't get sucked into jet engines.Received on Fri May 30 2008 - 07:40:00 MDT
This archive was generated by hypermail 2.2.0 : Tue Aug 05 2008 - 01:05:14 MDT