On Mon, Feb 18, 2013 at 9:34 AM, The sherminator <steve.kim41@gmail.com> wrote:
you can set up a transparent proxy. you do this by routing all traffic hitting the gateway to the proxy server... this is actually the ideal setup everyone should use. if you're using squid as your proxy, there are tonnes
He just mentioned the proxy has to be on the LAN, not inline.
of tutorials online for this.
.... however, i tend to argue against proxy servers, and instead advice on playing around with DNS servers. despite the caching advantage, proxy servers are largely inefficient and end up giving everyone quirky browsing experience if used by many people. if you want to block facebook or porn, why not play around with you're DNS server, and make those domains point to google.com or an internal web server.
What?
i noticed this issue while in KU. their proxy server is set to block youtube, download sites and porn... however, it randomly ends up blocking just about any site, or a site's css resources (making sites look ugly), and sometimes shows u a KU branded page blocking some site. speeds are also eratic.... and interestingly, a download may take 30 seconds to start, but when it does, u get amazing speeds. all of these indicate congestion, and lack of a clustered setuo for loaf balancing.... anyways, my point is that plain routers are more efficient than proxies, and a custom DNS can meet a proxy's goals. and besides, the restrictions imposed by a proxy can just as
Again, what? A broken proxy setup does not mean all proxies are bad. BR, S