Routing and authenticating all access through squid

Posted by Knight Samar on Server Fault See other posts from Server Fault or by Knight Samar
Published on 2010-04-01T15:49:03Z Indexed on 2010/04/01 15:53 UTC
Read the original article Hit count: 253

Filed under:

squid

|

proxy

|

gateway

|

internet-access

Hi,

I want to route all Internet access in my network through a Squid proxy server and authenticate and log all users. I want this to be a client-independent setting so that no one needs to do anything on their browsers or machines.

I have set my network gateway as the proxy server so that all traffic will be sent to it. I have done this using options in DHCP server.

Now I tried using squid as a transparent proxy, but then it won't authenticate in that mode.
I tried using iptables to route all traffic to port 3128 but it won't popup the authentication dialog box from SQUID.
I tried telling DHCP to give WPAD to all clients by placing a WPAD file on a webserver containing the following for automatic proxy configuration on clients:

Changes in dhcpd.conf

option wpad code 252 =test;

option wpad "\n\000";

option wpad "http://192.168.1.5/wpad.dat\n";

The WPAD file:

function FindProxyForURL(url,host)

{

return "PROXY squid-server-ip-address:3128 ; DIRECT ";

}

But the browsers (different versions of Firefox and IE) seem to ignore it. :(

What should I do ?

© Server Fault or respective owner

Related posts about squid

Squid external_acl_type Cannot run process

as seen on Server Fault - Search for 'Server Fault'
I want to restrict uploading for group of the users via squid. So I've choosen to use external_acl_type but after reload of the squid it returns error. WARNING: Cannot run '/usr/local/etc/squid/lists/newupload.sh' process. Permissions of newupload.sh and squid are the same. newupload.sh is executive… >>> More
SquidProxy status:Unknow job :Squid

as seen on Super User - Search for 'Super User'
I have an issue in Centos 6.3. I installed Squid from compressed source archives(.tar.gz), I create an /etc/init.d/squid file, that run well because I view with the command ps -aux, that is running: root 2153 0.0 0.0 8920 1536 ? Ss 13:52 0:00 /opt/squid/squid-3.2/sbin/squid squid 2155 0.0 0… >>> More
squid ssl bump sslv3 enforce to allow old sites

as seen on Server Fault - Search for 'Server Fault'
Important: I have this question on stackoverflow but somebody told me this is more relevant place for this question. Thanks I have configured squid(3.4.2) as ssl bumped proxy. I am setting proxy in firefox(29) to use squid for https/http. Now it works for most sites, but some sites which support… >>> More
Accessing Squid Proxy over internet

as seen on Server Fault - Search for 'Server Fault'
Hi, I recently finished installing Squid on a VPS I have in the US and its working fine locally (I verified by setting http_proxy variable and using lynx). I want to access this proxy over the internet (as an anonymizer) so that I can see how some ads show up for US traffic on my website. I have… >>> More
Accessing Squid Proxy over internet

as seen on Server Fault - Search for 'Server Fault'
Hi, I recently finished installing Squid on a VPS I have in the US and its working fine locally (I verified by setting http_proxy variable and using lynx). I want to access this proxy over the internet (as an anonymizer) so that I can see how some ads show up for US traffic on my website. I have… >>> More

Related posts about proxy

DNS lookup failures while accessing my website some proxy error

as seen on Server Fault - Search for 'Server Fault'
Here is a situation until today morning,every thing has been working perfectly fine with me. From past 6 months many of my domains wer accessible as http://site1.myserver.com http://site2.myserver.com http://site3.myserver.com http://site4.myserver.com All these were Reverse Proxy configurations… >>> More
Apache2 mod_proxy to remote Tomcat7 - slow response

as seen on Server Fault - Search for 'Server Fault'
Been stuck with this one for a few days. Will try to provide as much information as possible, but please feel free to ask for extra detail. I have 2 VMs behind a NAT, 192.168.0.100 and 192.168.0.102, both running Ubuntu 11.04 x64. The first one is mapped to the exterior and is our webserver, has… >>> More
How to set a proxy for Webbrowser Control without effecting the SYSTEM/IE proxy

as seen on Stack Overflow - Search for 'Stack Overflow'
How can I set a proxy for a Webbrowser Control without setting a proxy for IE. Basically I want my application to use a certain proxy however obviously I don't want to change user's IE proxy settings. >>> More
Difference between proxy server and reverse proxy server

as seen on Stack Overflow - Search for 'Stack Overflow'
What is the difference between proxy server and reverse proxy server? >>> More
[MAJ] Transformer APACHE 2.0 en Proxy HTTP - Comment utiliser le Module Proxy d'Apache

as seen on ASP-PHP.net - Search for 'ASP-PHP.net'
Modification du script suite ? l'alerte concernant la possibilit? offerte ? n'importe qui d'utiliser le moteur APACHE comme proxy sans aucun contr?le. >>> More