If you have control of your firewall, and that firewall has iptables (those dd-wrt, tomato, openwrt routers come to mind), you don't need a dual nic box. You can set up an iptables rule for all traffic except certain ones to be redirected to the squid proxy. You should exclude the squid box itself, and can exclude your workstation(s), servers, or whatever else you want.<br clear="all">
<br><br>Shawn T Perry<br>Red Mop Computing Services<br>email: <a href="mailto:shawn@redmop.com" target="_blank">shawn@redmop.com</a><br>office: 720-319-7627<br>cell: 303-881-2623<br>web: <a href="http://www.redmop.com/" target="_blank">http://www.redmop.com</a><br>
facebook: <a href="http://www.facebook.com/pages/Red-Mop-Computing-Services/114352628589778" target="_blank">http://www.facebook.com/pages/Red-Mop-Computing-Services/114352628589778</a><br>linkedin: <a href="http://www.linkedin.com/in/shawnperry" target="_blank">http://www.linkedin.com/in/shawnperry</a><br>
<br><br><div name="sig_d41d8cd98f" style="margin-top: 0pt; margin-right: 0pt; margin-bottom: 0pt; margin-left: 0pt; "></div><div class="gmail_quote">On Wed, Oct 12, 2011 at 10:46 PM, Christopher Cross <span dir="ltr"><<a href="mailto:g1ccross@gmail.com">g1ccross@gmail.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">Transparent proxy using squid and iptables. Set up a dual nic box and<br>
have all web traffic forwarded to the squid server on the box and<br>
everything else can pass through. If this sounds good then I will<br>
forward som notes from the last one I set up.<br>
<font color="#888888"><br>
<br>
Christopher Cross<br>
<a href="mailto:g1ccross@gmail.com">g1ccross@gmail.com</a><br>
<a href="tel:%28310%29536-6392" value="+13105366392">(310)536-6392</a><br>
</font><div><div></div><div class="h5"><br>
<br>
<br>
On Wed, Oct 12, 2011 at 9:41 PM, Grant Johnson <<a href="mailto:grant@amadensor.com">grant@amadensor.com</a>> wrote:<br>
> Configure the router to only allow web traffic from the proxy server. Then<br>
> they have to use it to get out to the internet.<br>
> --<br>
> Sent from my Android phone with K-9 Mail. Please excuse my brevity.<br>
><br>
> Jason Friedman <<a href="mailto:jason@powerpull.net">jason@powerpull.net</a>> wrote:<br>
>><br>
>> I have a couple of children in the house whose web activity I want to<br>
>> monitor. Specifically, I want to know which web sites they visit. I<br>
>> have told them I will do this.<br>
>><br>
>> I run Ubuntu at home and I think I can figure out how to use Squid as a<br>
>> proxy.<br>
>><br>
>> My question is their wireless devices (iPod touch): how can I<br>
>> interpose myself between their device and the CenturyLink wireless DSL<br>
>> modem?<br>
>> ________________________________<br>
>> clue mailing list: <a href="mailto:clue@cluedenver.org">clue@cluedenver.org</a><br>
>> For information, account preferences, or to unsubscribe see:<br>
>> <a href="http://cluedenver.org/mailman/listinfo/clue" target="_blank">http://cluedenver.org/mailman/listinfo/clue</a><br>
>><br>
><br>
</div></div>> _______________________________________________<br>
<div class="im">> clue mailing list: <a href="mailto:clue@cluedenver.org">clue@cluedenver.org</a><br>
> For information, account preferences, or to unsubscribe see:<br>
> <a href="http://cluedenver.org/mailman/listinfo/clue" target="_blank">http://cluedenver.org/mailman/listinfo/clue</a><br>
><br>
</div>_______________________________________________<br>
<div><div></div><div class="h5">clue mailing list: <a href="mailto:clue@cluedenver.org">clue@cluedenver.org</a><br>
For information, account preferences, or to unsubscribe see:<br>
<a href="http://cluedenver.org/mailman/listinfo/clue" target="_blank">http://cluedenver.org/mailman/listinfo/clue</a><br>
</div></div></blockquote></div><br>