Squid + WCCP + Port filtering?
my current setup is a slack based distro with Squid 3.0 running in transparent mode with WCCP. Web filtering and AV scanning works great but we need to go a step further and introduce port filtering into the setup.
I can easily accomplish this with iptable entries but only if i point to the proxy directly; the goal is to do this completely by interception.
So far ive had no luck doing this with iptable entries or with squid ACL's and im wondering if theres something that im missing or just not doing correctly. So far during testing ive just been testing with common IM chat ports such as MSN and Yahoo.
has anyone ever done this or can point me in the right direction?
im currently trying to setup a test lab with squid and 2 NICs with one NIC connected directly to the internet but this is not a route i would like to go.
|