Hi Dean , Thanks for the feedback, so are you suggesting I only use 1 NIC for the squid box ? as opposed to 2, 1 coming IN from the Pfsense / internal network and 1 going BACK to the Pfsense.
Regards, Mike Lever Tenacity Films (Pty) Ltd t/a Velocity Films (T) +2711-807-0100 (F) 086-681-7518 http://www.velocityfilms.com CONFIDENTIALITY CAUTION: If you have received this communication in error, please note that it is intended for the addressee only, is privileged and confidential and dissemination or copying prohibited. Please notify us immediately by e-mail and return the original message. Thank you. -----Original Message----- From: Dean Larson [mailto:[EMAIL PROTECTED] Sent: 11 May 2008 01:28 PM To: support@pfsense.com Subject: RE: [pfSense Support] Where do I put squid ? i think it would be cool to route http traffic to the squid box, but put a rule just infront of it to allow your squid box to go out the firewall. for security i would not allow a second nic to go out the squid box onto the internet. i myself set up the browsers manually for the squid box. at another gig i had, we put a file on a server that gave the browser setting: included proxy settings as well as browser bypass for local browsing. it's been a while, so i'd have to do some digging through my old files. : i'm a bit brain dead today ---------------------------------------- > From: [EMAIL PROTECTED] > To: support@pfsense.com > Date: Sun, 11 May 2008 10:25:14 +0200 > Subject: [pfSense Support] Where do I put squid ? > > I've got Pfsense running on one box going out to 5 DSL WAN Ports. I have now > setup a squid box running separately. I would like to run it as a > transparent proxy on my network. How do you suggest I set it up ? > > Do I put another NIC in the squid box, then setup a firewall rule to route > all http traffic to the squid box / gateway and then load balance the squid > box's traffic out ? > > The Pfsense box IP = 10.0.0.3 > Squid IP = 10.0.0.197 > > Regards, > > > Mike Lever > > Tenacity Films (Pty) Ltd t/a > Velocity Films > > (T) +2711-807-0100 > (F) 086-681-7518 > > http://www.velocityfilms.com > > > CONFIDENTIALITY CAUTION: If you have received this communication in error, > please note that it is intended for the addressee only, is privileged and > confidential and dissemination or copying prohibited. Please notify us > immediately by e-mail and return the original message. Thank you. > > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > _________________________________________________________________ With Windows Live for mobile, your contacts travel with you. http://www.windowslive.com/mobile/overview.html?ocid=TXT_TAGLM_WL_Refresh_mo bile_052008 --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
