Ok Great. I have a hardware based firewall. What setup in the way of the squid box is best physically take the cable from the firewall and put 2 nics on the squid box and plug 1 nic to the firewall and the other to the backbone switch. Or just use 1 nic on the squid box and put a rule in the firewall to allow only outbound http traffic from the squid box. Right now everyone defaults to the firewall and all http traffic goes out to the internet. We also have VPN and web and ssl traffic coming is from inbound http. Thanks again -----Original Message----- From: Tek Bahadur Limbu [mailto:teklimbu@xxxxxxxxxxxx] Sent: Tuesday, September 18, 2007 4:13 PM To: Antonio Pereira Cc: squid-users@xxxxxxxxxxxxxxx Subject: Re: Squid setup questions Hi Antonio, Antonio Pereira wrote: > Hello, > > I have pretty much redundant question but I would like some opinions > before I venture into this possible solution. > > I have 4 sites on an MPLS network that access the internet via 1 > location, at this 1 location there is already a firewall. What I would > like to do is start blocking web sites and start block web traffic. > > What is the best setup with squid for this type of setup? What documents > should I read for this type of setup? Not sure about MPLS networking. However, in your case, it should be simple. Just run Squid transparently on the gateway (firewall) from where all 4 sites gets access to the internet. Adding SquidGuard or DansGuardian or even custom ACLs will provide you with all the web blocking functionalities. Thanking you... > > Thanks in advance > > > > > > > > -- With best regards and good wishes, Yours sincerely, Tek Bahadur Limbu System Administrator (TAG/TDG Group) Jwl Systems Department Worldlink Communications Pvt. Ltd. Jawalakhel, Nepal http://www.wlink.com.np
