Hello,
Do you want the proxy to be available from the out side to ?
What you most likely want is:
You have a firewall with 3 zones, internal, external and dmz (SSN).
You want users who are accessing the web servers located on the DMZ or external
servers (such as google) to go through the proxy server for authentication.
Plus all uses who are outside the company (externally) only be able to access
the web server on the DMZ through a iptable or other firewall rule.
This is simple, when starting squid only have it listen on the internal
interface, exmaple:
http_port <IP of internal interface>
Then create or enable your firewall rules for connections to be forwarded to the
web server from out side.
Michael.
On Tue, 16 Mar 2004 11:18:20 -0800
"Jim Gifford" <maillist@jg555.com> wrote:
> Maybe I used the wrong terminology. I only want the authorized users from
> (LAN) 192.168.0.0 to use the proxy. I want everyone from the Internet to use
> the servers I provide (ftp,www, etc).
>
>
>
>
>
-- Michael Gale Network Administrator Utilitran CorporationReceived on Tue Mar 16 2004 - 13:13:12 MST
This archive was generated by hypermail pre-2.1.9 : Thu Apr 01 2004 - 12:00:02 MST