Routing and authenticating all access through squid
Posted
by Knight Samar
on Server Fault
See other posts from Server Fault
or by Knight Samar
Published on 2010-04-01T15:49:03Z
Indexed on
2010/04/01
15:53 UTC
Read the original article
Hit count: 257
Hi,
I want to route all Internet access in my network through a Squid proxy server and authenticate and log all users. I want this to be a client-independent setting so that no one needs to do anything on their browsers or machines.
I have set my network gateway as the proxy server so that all traffic will be sent to it. I have done this using options in DHCP server.
- Now I tried using squid as a transparent proxy, but then it won't authenticate in that mode.
- I tried using iptables to route all traffic to port 3128 but it won't popup the authentication dialog box from SQUID.
I tried telling DHCP to give WPAD to all clients by placing a WPAD file on a webserver containing the following for automatic proxy configuration on clients:
Changes in dhcpd.conf
option wpad code 252 =test;
option wpad "\n\000";
option wpad "http://192.168.1.5/wpad.dat\n";
The WPAD file:
function FindProxyForURL(url,host)
{
return "PROXY squid-server-ip-address:3128 ; DIRECT ";
}
But the browsers (different versions of Firefox and IE) seem to ignore it. :(
What should I do ?
© Server Fault or respective owner