[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: [K12OSN] Locking Down Firefox

On Thu, 2006-10-05 at 08:32 -1000, R. Scott Belford wrote:
> James P. Kinney III wrote:
> > 
> > The PREROUTING target doesn't exist in the default table filter. Sorry,
> > it needs to be:
> > 
> > iptables -t nat -A PREROUTING .....
> > 
> > Must specify the correct table to use (the one where the chain
> > PREROUTING is would be best :)
> Thanks, James.  I think I have two lingering questions.
> Squidguard is on Port 3128 and dansguardian is on 8080.  I have found 
> that when I manually set the browsers to 3128, squidguard does not come 
> in to play.  Can I just set the firewall rules to 8080?

Yes. Dansguardian comes first in the chain of events. It seems backwards
to me as I would like the URL blocks first so I don't spend time
downloading anything that is going to thrown out anyway.

Look at this page:

What you are doing is implementing a transparent proxy. 

> Where do I put these additional rules so that they are loaded on each 
> reboot?
> With Aloha
> --scott
> _______________________________________________
> K12OSN mailing list
> K12OSN redhat com
> https://www.redhat.com/mailman/listinfo/k12osn
> For more info see <http://www.k12os.org>
James P. Kinney III          
CEO & Director of Engineering 
Local Net Solutions,LLC        

GPG ID: 829C6CA7 James P. Kinney III (M.S. Physics)
<jkinney localnetsolutions com>
Fingerprint = 3C9E 6366 54FC A3FE BA4D 0659 6190 ADC3 829C 6CA7

Attachment: signature.asc
Description: This is a digitally signed message part

[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]