@Odhiambo Washington

"The sherminator" could have a point. Most people run proxies to filter out content like "blacklisted" sites, and not for caching. Its very likely why the given example, KU,

runs a proxy. In fact, many large setups do not cluster proxy services leading to poor surfing experiences for everyone....

anyways.... i second him. If you want to use a proxy to block some sites/content, having a local DNS server with blacklisted domains would be more efficient (no need for

proxy servers equals reduced capital and running costs)

To answer this thread's first question... transparent proxy. google it.

On Tue, Feb 19, 2013 at 10:33 AM, Steve Muchai <smuchai@gmail.com> wrote:

On Tue, Feb 19, 2013 at 8:12 AM, Garr Patronas <garr.patronas@gmail.com> wrote:
> Cisco 2811

The options that come to mind:
1. Create an access-list that denies Internet access to all machines
apart from the proxy. That way nobody can browse unless they use the
proxy.
2. Configure NAT for the proxy's IP address only, same effect as above.
3. Configure WCCP between the router and the proxy (assuming your
proxy has WCCPv2 support). Downside with this is that if the proxy is
down there's a possibility the other machines will be allowed to pass
through, unless you combine this with #1 above.

BR
S
_______________________________________________
skunkworks mailing list
skunkworks@lists.my.co.ke
------------
List info, subscribe/unsubscribe
http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks
------------

Skunkworks Rules
http://my.co.ke/phpbb/viewtopic.php?f=24&t=94
------------
Other services @ http://my.co.ke