On 30/04/11 06:03, J. Webster wrote:
>
>>> So, I can do this all with one squid service listening on
>>> different ports?
>>
>> Yes.
>>
>>> Out of interest, I had a post the other day: "proxy external ip
>>> address acl�" You mentioned that adding an extra authentication
>>> would mess with the existing ncsa auth. Can I therefore add a 2nd
>>> authentication method on a different port and have 2
>>> authentication methods running at the same time?
>>
>> Not like that. You can add support for two authentication methods
>> and advertise them when challenging for the browser to choose
>> which credentials it sends you.
>>
>
> If VPN port 80 traffic is forwarded to port 8181 of squid, how can I
> apply a username to the squid logs so I know which user has accessed
> which oages or could I only do it by IP address in a transparent
> proxy setup?
If by "forwarded" you mean NAT. Authentication is not possible. See the
FAQ about why.
http://wiki.squid-cache.org/SquidFaq/InterceptionProxy#Why_can.27t_I_use_authentication_together_with_interception_proxying.3F
>
> Are there any examples for having 2 authentication methods run at
> once? Does this mean the user would have to pick an option when
The *user* does not know anything or need to. Their browser does it.
> connecting to the server? I don;t think that will work for iPads,
> xboxes, DVD players, etc accessing a proxy server as they connect
> automatically without interaction. My current version is 2.6 - will
> this work with that?
Someone was just mailing the other day about that look back in the
archives a bit. In short, it is a up to the connecting software what
they do and whether they auth at all.
Amos
-- Please be using Current Stable Squid 2.7.STABLE9 or 3.1.12 Beta testers wanted for 3.2.0.7 and 3.1.12.1Received on Fri Apr 29 2011 - 18:37:01 MDT
This archive was generated by hypermail 2.2.0 : Sat Apr 30 2011 - 12:00:04 MDT