Thanks but there is another constraint---- There is only one server running Linux and all the "client PCs" are windows Boxes. Also on top of it we need to prevent the users from "changing" their own IP addresses (which some "denied" users do to get access to internet ). What to do in such a case ? Regards Rajesh K. Bahl On Thu, 2005-11-03 at 11:09 +0100, Emilio Casbas wrote: > Rajesh K. Bahl wrote: > > >Dear All, > > > >I need your guidance in doing the following:- > > > >We have a total of 30 numbers of PCs. About 8 of them require full > >access to internet. Rest 22 needs to be restricted to only one site i.e. > >antivirus site (Mcafee or Symantec) just for updation of virus signature > >file. Also all the 30 clients need to be protected from visiting > >porn/adult sites. > > > >How to accomplish the same using squid running on a Linux (CentOS 4) > >machine ? > > > > > > > > > > You could have two proxys in chain; > squidA --> squidB > see http://www.squid-cache.org/Doc/FAQ/FAQ-4.html#ss4.9 > > in squidA you could make acls for restricted access for all PCs. > an acl for full access to 8 PCs, and other acl for restricted > access to 22 PCs. > see http://www.squid-cache.org/Doc/FAQ/FAQ-10.html > > in squidB you´ll have a squid filter with free or comercial software; > see http://www.squid-cache.org/Doc/FAQ/FAQ-10.html#ss10.12 > > in this manner, you have two dedicated squid for each purpose, > however, there are many configurations for accomplish it. > > Thanks > Emilio C. > -- Regards Rajesh K. Bahl Pace Infosys Pvt. Ltd., SCO 73, First Floor, Sector 20-C, Chandigarh
