On 30/04/11 02:56, J. Webster wrote:
>
> Is it possible to run 2 squids on the same server? I have an existing
> proxy that has ncsa auth via direct connections to the proxy. I would
> also like to route port 80 traffic from a VPN through a transparent
> proxy but without any authentication. Is this possible? I'm guessing
> I would have to block off all connections to this squid through
> iptables and only allow traffic from the VPN. It would also have to
> be a transparent proxy?
yes. yes. wrong. no it does not.
You seem very confused about Squid capabilities...
- *add* a second http_port with "intercept" flag (or "transparent" if
its an old Squid).
- configure iptables to pass the VPN port 80 traffic *to* that new
Squid port.
- configure iptables to prevent direct client connections to that new
port.
- configure squid to not ask for auth from VPN clients.
OR
- configure the VPN clients to use Squid the same way you configure
the non-VPN ones.
- what you do with auth is now optional.
Amos
-- Please be using Current Stable Squid 2.7.STABLE9 or 3.1.12 Beta testers wanted for 3.2.0.7 and 3.1.12.1Received on Fri Apr 29 2011 - 16:09:24 MDT
This archive was generated by hypermail 2.2.0 : Fri Apr 29 2011 - 12:00:05 MDT