squid bypassing

mushtaq · Post by **mushtaq** » Thu Feb 22, 2007 7:47 pm

Asalamualikum,

i am using transparent proxy but one of my client is using external proxy addresses in his browser to bypass my proxy server which is also the gateway as required i get the following line in response

1171684374.733 524 192.168.0.44 TCP_MISS/200 1264 GET http://www.acclaimimages.com/acclaim_style.
css - DIRECT/67.15.4.226 text/css

67.15.4.226 this is the address he is using but as much as i know if i block this he has a list of online proxy addresses how to block this please advise. I want strict no access to the external world from my clients.

Best regds
mushtaq

ranatanveer · Post by **ranatanveer** » Fri Feb 23, 2007 10:50 am

he is not bypassing
this is access.log entry

ranatanveer · Post by **ranatanveer** » Fri Feb 23, 2007 10:52 am

and if you wish to stop bypassing,
use iptables default drop policy and open up particular ports

Post by **LinuxFreaK** » Fri Feb 23, 2007 11:02 am

Dear mushtaq,
Salam,

I believe you can restrict users to stick only with your proxy by using iptables.

# iptables -t nat -A PREROUTING -p tcp --dport 3128 -j DNAT --to 192.168.0.1:8080
# iptables -t nat -A PREROUTING -s 192.168.0.1/24 -p tcp --dport 8080 -j DNAT --to 192.168.0.1:8080
# iptables -t nat -A PREROUTING -s 192.168.0.1/24 -p tcp --dport 80 -j DNAT --to 192.168.0.1:8080

Best Regards.

linuxpakistan.net

squid bypassing

squid bypassing

Re: