RE: [squid-users] Laptops/Mobile Phones using Squid on the road

From: Dave Burkholder <dave_at_thinkwelldesigns.com>
Date: Mon, 31 Aug 2009 11:04:47 -0400

Here is a link to my Squid config. http://www.thinkwelldesigns.com/backups/squid.zip

The ACL rules I use are in the section below:

# INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS

The only way I have been able to make this work reliably is to add more ACL rules such as:

acl elmerlaptop src ##.##.##.##
http_access allow elmerlaptop

But as I mentioned before, the public IP of the laptop changes.

-----Original Message-----
From: Amos Jeffries [mailto:squid3_at_treenet.co.nz]
Sent: Wednesday, August 26, 2009 7:41 PM
To: Dave Burkholder
Subject: RE: [squid-users] Laptops/Mobile Phones using Squid on the road

On Wed, 26 Aug 2009 15:27:32 -0400, "Dave Burkholder"
<dave_at_thinkwelldesigns.com> wrote:
> Authentication was created for exactly this purpose.
>
> With explicitly set proxy settings in the browsers, there is no reason
> why you can't allow them to login to the proxy when they are on the
> road. Or even at HQ.
>
> Note that by entering the proxy settings in the browsers you are no
> longer using "transparent mode".
>
> Assuming by "transparent" you actually mean "NAT intercepting" you
> should of course have Squid listening on one port for the intercepted
> requests (authentication not possible) and another for the configured
> browsers (authentication possible).
>
> Amos

Sorry if you get this twice, my mail app died...

I think the DG rules and access may have to be adjusted to let external
people who are logged in through.

If not that I think I'm going to have to see your acl and http_access lines
config to see if there is any obvious reason for the denial.

Amos
Received on Mon Aug 31 2009 - 15:05:28 MDT

This archive was generated by hypermail 2.2.0 : Mon Aug 31 2009 - 12:00:03 MDT