Search squid archive

Re: Allow origin IP address to pass through Squid proxy

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Adam Parsons wrote:
Hi, I have a child proxy server that forwards requests to the parent proxy server where the traffic goes through url filtering to block requests to sites not appropriate. The administrator at the child proxy server site, has access to temporary override the blocking while they investigate the site. The problem is that the override is performed at the parent proxy server end, and just removes the blocking from the child proxy server address, so everyone going through the child proxy server gets no filtering traffic while the override is taking place. Is there a way to have the parent proxy server, know the origins ip address, instead of the child proxy server address, and therefore only unblocking traffic for that computer? What are the disadvantaged of allowing for the IP to pass through the child proxy server (seeing as the parent proxy server, will remove it so its not available to the public). Thanks, Adam
The child proxy should be setting the X-Forwarded-For header in all proxied requests. If its not it need to be enabled. Then the parent proxy needs to be configured to check for the header and can see who the real client is.
Thats as much help as I can be on this, but it should point you in the driection of a quick solution. 

Amos
[Index of Archives]     [Linux Audio Users]     [Samba]     [Big List of Linux Books]     [Linux USB]     [Yosemite News]

  Powered by Linux