Date: Fri, 6 Jul 2007 18:26:36 +0200 From: Zbigniew Szalbot <zbigniew@szalbot.homedns.org> To: Daniel Bye <dan@slightlystrange.org> Cc: freebsd-questions@freebsd.org Subject: Re: parental control with squid and dansguardian Message-ID: <24bb2a0d0d4ebbfb6c86b9cc566e8145@szalbot.homedns.org> In-Reply-To: <468E6BE2.3010203@slightlystrange.org> References: <468E6BE2.3010203@slightlystrange.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi Daniel,
On Fri, 06 Jul 2007 17:20:50 +0100, Daniel Bye <dan@slightlystrange.org>
wrote:
> You can use pf's redirection to catch all outbound traffic destined for
> port 80:
>
> rdr on $int_if inet proto tcp from $internal_net to !<me> port www ->
> $proxy_host port $proxy_port
>
> Define the macros appropriately in /etc/pf.conf and you're away.
>
> <me> is a pf table that contains all the firewall machine's addresses:
>
> table <me> persist { self }
>
> Any packets originating from your internal network, bound for port 80 on
> any host other than the firewall (you may need to fine tune this,
> depending on your needs), are redirected to the designated host/port. No
> need to set up per-client proxies as the firewall handles it
> transparently.
Great! Thank you so much! Now this should really speed me up nd it is
perfect solution as no client configuration is needed and no escaping
possible! Thanks again!
I really appreciate such a helpful community as is here! Hard to find these
days. Thank you!
--
Zbigniew Szalbot
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?24bb2a0d0d4ebbfb6c86b9cc566e8145>