Hi,

I have just configured my squid to authenticate as a proxy server. But now my problem is on my web brower, I set the proxy, it will work. however, even if i disable the proxy setting on my brower, it will also be able to connect to the internet. May i know what can i go so that the traffic only have to go thru the proxy to go to the internet??

i hope u guys can understand me..lol

well it'd look like you have no outbound firewalling. this is totally unrealted to a proxy of course... just ensure outbound traffic to port 80 and 443 is blocked on your firewall and you'll be fine.

u mean on my firewall i must block port 80 and 443??den after that ppl have to onli go thru the proxy to access the internet?

if i block port 80 anbd 443 on my firewall, will me proxy still able to go thru?

if you configure your firewall correctly, allowing it to still get through from that ip only...

Block ports 80, 443, 3128 and 8080 in internal NIC. Blocking 3128 and 8080 for public proxy servers

Hi,

If you block port 80 and 443 for all, and keep it open only for proxy, you will be able to force users to use proxy for surfing, but other applications that use a different port, like IMs and Chats, will still be able to go through.

We use SafeSquid as content filtering proxy and application layer firewall. It gives us total control of our HTTP traffic. What we have done is, allowed port 80, 443 and 21 only to the SafeSquid proxy, allowed 25 and 110 to all for mail, and allowed a few ports to few users for VPN. Rest all ports are blocked. This way, we can also control, who can access IMs and Chats like yahoo, msn, gtalk, etc.

Regards

Hi Bluesurfer,

Do u have a gateway ip in ur network setup on the users' pc's?