Re: Fw: Authentication

From: Henrik Nordstrom <hno@dont-contact.us>
Date: Tue, 17 Oct 2000 17:37:48 +0200

I think plug-gw is self-contained.

I am not 100% sure that the distributed version supports transparent
proxying without patches, but then it was about 5 years since I used
this piece of software, and things might well have evolved since then
;-)

--
Henrik Nordstrom
Squid hacker
Awie wrote:
> 
> Henrik,
> 
> It seems that I entering "new stage" of plug gw. I downloaded the
> fwtk2.1.tar, and I saw a directory "plug gw".
> 
> Can I install the plug gw only? Or, I should install all of tools?
> 
> Thx
> 
> Best Regards,
> 
> Awie
> awie@eksadata.com
> PT. EKSADATA INTISOLUSI
> Phone   : (62-361) 261514
> Mobile1 : (62-82) 3610369
> Mobile2 : (62-818) 346241
> ----- Original Message -----
> From: "Awie" <awie@eksadata.com>
> To: "Henrik Nordstrom" <hno@hem.passagen.se>
> Cc: <squid-users@ircache.net>
> Sent: Tuesday, October 17, 2000 10:48 PM
> Subject: Re: Authentication
> 
> > Hi Henrik,
> >
> > Your suggestion is exactly same with John Saunders that I should try to
> use
> > FWTK. I tried to download the utility "plug proxy" or plug-gw. However, I
> > found there are so many files.
> >
> > Which file should I get? Does the patch purpose for Squid or Linux? Squid
> > and Linux is a "new game" for me, FWTK will be my "new toys" too. I wish
> my
> > Squid server would not "game over"
> >
> > Sorry for my stupid question. I hope much that I will be able to solve the
> > problem very soon.
> >
> > Thx
> >
> > Best Regards,
> >
> > Awie
> > awie@eksadata.com
> > PT. EKSADATA INTISOLUSI
> > Phone   : (62-361) 261514
> > Mobile1 : (62-82) 3610369
> > Mobile2 : (62-818) 346241
> > ----- Original Message -----
> > From: "Henrik Nordstrom" <hno@hem.passagen.se>
> > To: "Awie" <awie@eksadata.com>
> > Cc: <squid-users@ircache.net>
> > Sent: Tuesday, October 17, 2000 5:56 PM
> > Subject: Re: Authentication
> >
> >
> > > Awie wrote:
> > >
> > > > John Saunders told me that most of WEB (the require authentication)
> need
> > > > same IP. I must forward the SSL packet to Squid as well as HTTP. His
> > > > suggestion is very logical. However, when I tried to do it by adding
> the
> > > > command into my Cisco IOS. My browser goes "freeze" until it reach the
> > > > timeout and displaying error message.
> > >
> > > This is true for quite many services where authentication is performed
> > > using cookies.
> > >
> > > What most people recommend it to use masquerading/source NAT to have the
> > > client address rewritten to that of the proxy.
> > >
> > > Theoretically it should also be possible to use a TCP proxy capable of
> > > running as a transparent proxy. I think there is patches to plug-gw from
> > > TIS FWTK for this...
> > >
> > > > Again.....if I run non-transparent mode (I put same proxy address and
> > port
> > > > in my browser for all protocols; HTTP, FTP, SSL, etc), it runs very
> > well. I
> > > > assume that in my non-transparent proxy, all requests (FTP, HTTP, SSL)
> > is
> > > > forwarded to Squid. Am I right?
> > >
> > > Your browser does what you tell it... so yes.
> > >
> > > > I posted this problem to Squid's user mailing list and send mail to
> > several
> > > > people that seems expert (including you). Unfortunately, so far I
> still
> > get
> > > > no solution. Because I cannot "isolate" the source of problem, yet.
> > >
> > > You quite likely have isolated the source already.
> > >
> > > /Henrik
> >
--
To unsubscribe, see http://www.squid-cache.org/mailing-lists.html
Received on Tue Oct 17 2000 - 22:38:19 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:55:46 MST