[ale] The joy of false postives - squidGuard / blacklist-upd
James P. Kinney III
jkinney at localnetsolutions.com
Mon May 3 09:51:33 EDT 2004
On Mon, 2004-05-03 at 09:12, BruceG wrote:
>
> You are supposed to be able to add the script to cron for weekly diffs and
> monthly full updates. I haven't got that far yet. I think I'll let this run
> for a week or so, then consider adding a second nic to the server and making
> it a transparent proxy. That seems like a steep learning curve, so I'll give
> it a little more thought.
It's not as hard as you think! Just make the the squid box the gateway
and run the following iptables command:
iptables -t nat -I PREROUTING -p tcp -i <ethx for internal connection>
--dport 80 -j REDIRECT --to-port <ip address of gateway>:<port that
squid listens on>
This requires no changes on any web browser that uses that gateway
machine, i.e., transparent.
--
James P. Kinney III \Changing the mobile computing world/
CEO & Director of Engineering \ one Linux user /
Local Net Solutions,LLC \ at a time. /
770-493-8244 \.___________________________./
http://www.localnetsolutions.com
GPG ID: 829C6CA7 James P. Kinney III (M.S. Physics)
<jkinney at localnetsolutions.com>
Fingerprint = 3C9E 6366 54FC A3FE BA4D 0659 6190 ADC3 829C 6CA7
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
More information about the Ale
mailing list