Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Well. The way you would want to do that would be to setup your squid proxy server. Then setup the client machines internet browser to use a proxy server. Aim the browsers at your squid server for http and ftp traffice and then leave the rest of the protocols blank, they will then by default go to the gateway, which I assume would be your iptables/ipchains box.
dear amence
i have done this
browser side lan setting is set to the proxy
but the problem is that when users setup the automatic LAN setting not proxy then they can use the browsing due to MASQUEREADE that i made through ipytables
so i want that if users want http request then they should use proxy setting and if they change the browsing setting auto then their "HTTP and FTP"request must be drop
in other words i want
"linux deal http and ftp request through proxy and deal other requests as router or masquerade"
On your router/firewall to the outside world you would want to deny outgoing access for port 80 and 21 to everybody accept for your proxy server. If your router or firewall is a linux machine you can easily use iptables to implement this.
that should force your users to use your proxy. and if you do the same to ftp, your users might encounter problems if they are using IE 5.5 as it tries to do a direct connection when trying to browse ftp sites.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.