Re: [squid-users] Squid Tunnel

From: Arianto C Nugroho <ari@dont-contact.us>
Date: Tue, 23 Jan 2007 16:22:25 +0700

Quoting Andrei Antonelli <andrei@hcrp.fmrp.usp.br>:

>
> Hi ,
>
> I 'm having some problems with users that bypass proxy with Webs
> tunnel ! Today i m blocking each site that i know, i would like to
> know with someone knows some way to block tunnel without be by
> each site that has this features !
> I try through iptables but also i cant !
> Someone can help me ?
>
  i don't think you can ..
  what i did was :
  1. only allow CONNECT method for several port (by default squid does
   this)
  2. use delay_pool to slow any connection that are using CONNECT so
   slow that it will discourage any one who want to tunnel trough it :p
Received on Tue Jan 23 2007 - 02:31:45 MST

This archive was generated by hypermail pre-2.1.9 : Thu Feb 01 2007 - 12:00:01 MST