| FOAK: Proxy servers [message #787099] |
Mon, 17 July 2006 18:37 |
|
Need to restrict Internet access on a small network between certain hours
for all machines (ie, no access between 10.00-13.00 14.00-17.30) to a small
set of predetrmined sites, and open at other times... one machine set up to
be allowed permanent access to whole net.
Now, Im figuring that the best way to do this is with a configuration of
SQUID on a linux box. But I could be wrong, and Ive never configured a
SQUID proxy before.
Is there an easier way to do this, or is it a case of Squid or nothing?...
and no, i dont have access to the router. I do however have access to the
firewall...
|
|
|
| Re: Proxy servers [message #787104 ] |
Mon, 17 July 2006 18:44 |
|
"Spike" <mrichards [at] NOCANNEDPIGfreezone.co.uk> wrote in message
news:4i1smsF1p21nU1 [at] individual.net...
> Need to restrict Internet access on a small network between certain hours
> for all machines (ie, no access between 10.00-13.00 14.00-17.30) to a
> small set of predetrmined sites, and open at other times... one machine
> set up to be allowed permanent access to whole net.
>
> Now, Im figuring that the best way to do this is with a configuration of
> SQUID on a linux box. But I could be wrong, and Ive never configured a
> SQUID proxy before.
>
> Is there an easier way to do this, or is it a case of Squid or nothing?...
> and no, i dont have access to the router. I do however have access to the
> firewall...
You might take a look at Sun's proxy server. They have a Linux version,
available for download on their website.
http://www.sun.com/software/products/web_proxy/home_web_prox y.xml
|
|
|
| Re: FOAK: Proxy servers [message #787223 ] |
Mon, 17 July 2006 22:11 |
|
Spike wrote:
> Need to restrict Internet access on a small network between certain
> hours for all machines (ie, no access between 10.00-13.00
> 14.00-17.30) to a small set of predetrmined sites, and open at other
> times... one machine set up to be allowed permanent access to whole
> net.
>
> Now, Im figuring that the best way to do this is with a configuration
> of SQUID on a linux box. But I could be wrong, and Ive never
> configured a SQUID proxy before.
>
> Is there an easier way to do this, or is it a case of Squid or
> nothing?... and no, i dont have access to the router. I do however
> have access to the firewall...
I set up squid on a linux box for a small home network, mainly to time
limit the kids use of msn messenger. Once you figure out the slightly
strange config file (that does allow the scenario you describe) it's
really quite simple.
HTH
--
/Simon
|
|
|
| Re: FOAK: Proxy servers [message #789137 ] |
Sat, 22 July 2006 23:18 |
|
Spike? He'z just ziz guy, you know?
> Need to restrict Internet access on a small network between certain
> hours for all machines (ie, no access between 10.00-13.00
> 14.00-17.30) to a small set of predetrmined sites, and open at other
> times... one machine set up to be allowed permanent access to whole
> net.
>
> Now, Im figuring that the best way to do this is with a configuration
> of SQUID on a linux box. But I could be wrong, and Ive never
> configured a SQUID proxy before.
>
> Is there an easier way to do this, or is it a case of Squid or
> nothing?... and no, i dont have access to the router. I do however
> have access to the firewall...
Draytek Vigor 2800 ADSL2+ router/firewall/VPN.
Looking at the config pages it looks like it'll do what you want.
You can set up schedules (which can be applied to quite a few filters),
and filter on URL (white or black list), web features, and enter
"excepting subnets" which'd be the one machine with all access.
There's also a web content filter which you can schedule, but thats a
paid for thing.
P2P and IM app blocking can also be scheduled, and you can set up your
own custom filters based on source or dest IP, with whatever port(s)
and protocols you want (can't see an obvious way to schedule those
though)
--
frag
Suzuki VStrom 1000 K2, Honda Africa Twin, Volvo S80 2.4 170
BOTAFOT#6, DS#5, exKoTBOTAFOTL, DFV#3, BOD#7MKA&E#1 (Oak Leaf Cluster)
UKRMHRC#11 UK-R-M FAQ : http://www.ukrm.net/faq/index.html
|
|
|
