Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
03-25-2006, 12:07 PM
|
#1
|
Member
Registered: Mar 2006
Posts: 177
Rep:
|
Help Installing / Configuring Squid
Hello,
Just wondering if someone would be able to help me get squid running and off the ground. I know it can be done pretty quickly and easily with FreeBSD but I was wondering what other distro's it works well with. Currently i'm trying to install it on Gentoo. Anyhow I have it compiled and installed but after that if someone would be able to help me with a typically config file that would be great. I just want it to be used as a typical caching proxy with LDAP authentication with Active Directory so I can restrict access with a group in AD.
Ohh also I was wondering if there was a way that you can setup the information via webbrowser to view once its up and running.
Thanks in advance,
|
|
|
03-25-2006, 04:25 PM
|
#2
|
Member
Registered: Nov 2004
Location: Townsville, Australia
Distribution: Fedora Core 5, CentOS 4, RHEL 4
Posts: 855
Rep:
|
well i'd suggest you go with Fedora as a distro, very easy to use squid with it and then check out my website listed below for information about running ldap client to authenicate against Active directory and squid with PAM authenication.
or NTLM authenication with squid and joining a linux box to the domain using winbind.
there is a heap of information on my website, just check it out.
|
|
|
03-26-2006, 08:16 AM
|
#3
|
Member
Registered: Mar 2006
Posts: 177
Original Poster
Rep:
|
Thanks, I will see what I can do with thouse how to documents. If I want to authenticate say a users group called httprestricted in active directory from getting onto the internet via Squid would I only have to use OpenLDAP or would I have to use PAM as well?
Also once squid is up and running is there anyway to push the cached information to a web based interface to see the results and statics ?
|
|
|
03-26-2006, 07:26 PM
|
#4
|
Member
Registered: Nov 2004
Location: Townsville, Australia
Distribution: Fedora Core 5, CentOS 4, RHEL 4
Posts: 855
Rep:
|
there are plently of squid report generators and things of that nature, i've never had any need for any of them so i havn't look that much into them, but fedora has one by default ... but i can't remember what it's called, hit google and searhc for 'squid log analyzer' & 'squid report generators'.
As for your first question, i've never restricted only one group from getting on the internet before, but i image if you had an ou=group called, ou=http,dc=example,cd=com and then your had all your other users in ou=group,dc=example,cd=com. then you could point LDAP to the http group and it wouldn't let the otheres acccess the internet.
|
|
|
03-26-2006, 11:04 PM
|
#5
|
Member
Registered: Mar 2006
Posts: 177
Original Poster
Rep:
|
Yeah I think that would work perfect as what I want to do is have a group in AD called httprestricted. So whenever I want to restrict a user from all internet access I can just add them to that group memebership. If I have to creat a second group called httpallow to allow users internet access I'll do that to, not sure if its nessary tho, but I would only have to use OpenLDAP for this right ? I wouldn't have to bother with PAM
|
|
|
03-26-2006, 11:15 PM
|
#6
|
Member
Registered: Nov 2004
Location: Townsville, Australia
Distribution: Fedora Core 5, CentOS 4, RHEL 4
Posts: 855
Rep:
|
thats right, you'd only need ldap, but i've never used ldap before, only pam and ntlm, so you'll have to look up ldap and squid.
|
|
|
03-26-2006, 11:21 PM
|
#7
|
Member
Registered: Mar 2006
Posts: 177
Original Poster
Rep:
|
Thanks for your help, i'll post in here if I run into any bumps in the road.
|
|
|
All times are GMT -5. The time now is 08:37 AM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|