Routing and authenticating all access through squid

Posted by Knight Samar on Server Fault See other posts from Server Fault or by Knight Samar
Published on 2010-04-01T15:49:03Z Indexed on 2010/04/01 15:53 UTC
Read the original article Hit count: 257

Filed under:
|
|
|

Hi,

I want to route all Internet access in my network through a Squid proxy server and authenticate and log all users. I want this to be a client-independent setting so that no one needs to do anything on their browsers or machines.

I have set my network gateway as the proxy server so that all traffic will be sent to it. I have done this using options in DHCP server.

  1. Now I tried using squid as a transparent proxy, but then it won't authenticate in that mode.
  2. I tried using iptables to route all traffic to port 3128 but it won't popup the authentication dialog box from SQUID.
  3. I tried telling DHCP to give WPAD to all clients by placing a WPAD file on a webserver containing the following for automatic proxy configuration on clients:

    Changes in dhcpd.conf

option wpad code 252 =test;

option wpad "\n\000";

option wpad "http://192.168.1.5/wpad.dat\n";

The WPAD file:

function FindProxyForURL(url,host)

{

return "PROXY squid-server-ip-address:3128 ; DIRECT ";

}

But the browsers (different versions of Firefox and IE) seem to ignore it. :(

What should I do ?

© Server Fault or respective owner

Related posts about squid

Related posts about proxy