Dear thyagu,
I have no idea regarding a single NIC based restriction. I have setup a dual
NIC based connection sharing in Fedora core 3. I have setup proxy server in
this method
INTERNET ----> External NIC [proxy server for www,ftp,pop,smtp+ firewall]
|
|----------->Switch -----------------------> Client Pcs...
In this way I have configured squid with squid-guardian[full restrictions
porn,warez,etc], smtpproxy, ftpproxy,pop3gateway daemon....
[Additional info : http://www.aboutdebian.com This site contains lots of ;
info regarding linux networking]
On 5/5/05, Thyagu rajan <citizenofgnu@xxxxxxxxx> wrote:
Dear members,
Warm greetings, I have an issue right in front of me.
One of my client is having a browsing center.
He was running M$windows 2000 Adv server.
Every thing went all well till March 19 2005.
Suddenly the entire browsing center got paralaysed because of
connectivity due to virus problem.
when i checked with netstat -n it showed too many ports (about say
nearly 60 to 70) ip ports opened. The client had a tough fight with
the ISP(Airtel).
My client is too fixed with m$windows and my suggestions of turning
all the nodes to linux turned down by the client fearing the
adaptablity of their customers.
Finally i gave a filtering solutions
by keeping a linux proxy server , supported by squid proxy in fedora core
3
I am lucky enough in configuring squid.conf and squid is ready to
serve. When i disabled iptables -F firewall the nodes able to browse.
but keeping so , i feel of security issue i want to configure ip
tables for the nodes.
I seek pointers what to do from here on.
I have one ethernet card in my machine eth0
and the other computers in browsing station are windows 98.
Kindly give me some notes what should i do with respect to iptables
to enable the traffic flowing to all the windows 98 system (about 6 of
them in number) from my linux squid proxy machine.
Thanks in advance.
Thyagarajan.S
_______________________________________________
To unsubscribe, email ilugc-request@xxxxxxxxxxxxx with
"unsubscribe <password> <address>"
in the subject or body of the message.
http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
