The external LDAP authentication will work with TPROXY in Squid 3.0.STABLE8
?
Thankx,
Niladri Mukherjee
Amos Jeffries
<squid3@xxxxxxxxx
o.nz> To
Niladri Mukherjee
07/08/2008 04:44 <Niladri.M@xxxxxxxxxxx>
AM cc
squid-users@xxxxxxxxxxxxxxx,
Susanta Dhar
<Susanta.D@xxxxxxxxxxx>
Subject
Re: Need help on
Client IP address.
Niladri Mukherjee wrote:
>
> We have set up squid proxy 2.6 on Suse 10.3 with LDAP (Novell eDirectory)
> with SSO which is working fine. It is like
> Client ---> Squid ---> UTM (NAT) --> Internet
> Our UTM (Firewall with Content filter) getting the IP of the Squid only.
We
> want to get the original source (Client) IP at the UTM level. The UTM can
> not decode the X_Forwarded header of squid.
>
> Need suggestion on this.
The only way this is possible is with TPROXY.
However, most FW settings for clients should be configured into squid as
well to prevent unauthorized usage.
Amos
--
Please use Squid 2.7.STABLE3 or 3.0.STABLE8
