@Odhiambo Washington "The sherminator" could have a point. Most people run proxies to filter out content like "blacklisted" sites, and not for caching. Its very likely why the given example, KU, runs a proxy. In fact, many large setups do not cluster proxy services leading to poor surfing experiences for everyone.... anyways.... i second him. If you want to use a proxy to block some sites/content, having a local DNS server with blacklisted domains would be more efficient (no need for proxy servers equals reduced capital and running costs) To answer this thread's first question... transparent proxy. google it. On Tue, Feb 19, 2013 at 10:33 AM, Steve Muchai <smuchai@gmail.com> wrote:
On Tue, Feb 19, 2013 at 8:12 AM, Garr Patronas <garr.patronas@gmail.com> wrote:
Cisco 2811
The options that come to mind: 1. Create an access-list that denies Internet access to all machines apart from the proxy. That way nobody can browse unless they use the proxy. 2. Configure NAT for the proxy's IP address only, same effect as above. 3. Configure WCCP between the router and the proxy (assuming your proxy has WCCPv2 support). Downside with this is that if the proxy is down there's a possibility the other machines will be allowed to pass through, unless you combine this with #1 above.
BR S _______________________________________________ skunkworks mailing list skunkworks@lists.my.co.ke ------------ List info, subscribe/unsubscribe http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------
Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke