Find the answer to your Linux question:
Results 1 to 5 of 5
Hi I am a network administrator for a University and have very little knowledge about linux, The University has Squid proxy servers set up , and his server is different ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Just Joined!
    Join Date
    Sep 2008
    Posts
    2

    Proxy Server as Gateway


    Hi

    I am a network administrator for a University and have very little knowledge about linux,

    The University has Squid proxy servers set up , and his server is different for different departments.

    The problem is we have wireless deployed in the campus and have lots of unmanageable switches so cant have the access-points to access different VLans, So when a user has to access different access-points at different departments, he has to each time change the address of the proxy server in his proxy according to the department, so he has to remember or identify the ip of the proxy server according to the department he is getting the wireless from,


    IS there a work around for this.

    Please suggest a solution.


    VJ

  2. #2
    Linux Guru Lazydog's Avatar
    Join Date
    Jun 2004
    Location
    The Keystone State
    Posts
    2,677
    Add rules ti the firewall to point them to the proxy they need to goto and then only allow that proxy address through the firewall.

    This does 2 things. Allows the user to roam and get the correct proxy and they don't have to remember the proxy settings.

    Regards
    Robert

    Linux
    The adventure of a life time.

    Linux User #296285
    Get Counted

  3. #3
    Just Joined!
    Join Date
    Sep 2008
    Posts
    2
    Could you elaborate on the rules in the firewall, i never came across rules that could divert traffic back from the firewall.

  4. $spacer_open
    $spacer_close
  5. #4
    Linux Engineer jledhead's Avatar
    Join Date
    Oct 2004
    Location
    North Carolina
    Posts
    1,077
    the best way to run squid is transparently
    transparent squid - Google Search
    then no one has to configure anything.

  6. #5
    Linux Guru Lazydog's Avatar
    Join Date
    Jun 2004
    Location
    The Keystone State
    Posts
    2,677
    sure what you do is redirect all traffic for the web ports that are not coming from the proxy to the proxy.

    Code:
    iptables -t nat -A PREROUTING -p tcp -s <subnet> --dport 80 -j DNAT --to-destination <subnet proxy>
    I don't know what you are doing with web traffic that is not coming from the proxy now, but it should be a simple fix.

    This is more or less transparent-proxy as suggested already.

    Regards
    Robert

    Linux
    The adventure of a life time.

    Linux User #296285
    Get Counted

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •