From owner-freebsd-questions@FreeBSD.ORG Thu Jun 9 11:57:34 2005 Return-Path: X-Original-To: freebsd-questions@FreeBSD.org Delivered-To: freebsd-questions@FreeBSD.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D220116A41C for ; Thu, 9 Jun 2005 11:57:34 +0000 (GMT) (envelope-from bsilver@chrononomicon.com) Received: from trans-warp.net (hyperion.trans-warp.net [216.37.208.37]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5B4BB43D4C for ; Thu, 9 Jun 2005 11:57:33 +0000 (GMT) (envelope-from bsilver@chrononomicon.com) Received: from [127.0.0.1] (unverified [65.193.73.208]) by trans-warp.net (SurgeMail 2.2g3) with ESMTP id 11608769 for multiple; Thu, 09 Jun 2005 07:54:00 -0400 In-Reply-To: References: Mime-Version: 1.0 (Apple Message framework v622) Content-Type: text/plain; charset=US-ASCII; format=flowed Message-Id: <1c069dcff23b6c16fe5a14556776f824@chrononomicon.com> Content-Transfer-Encoding: 7bit From: Bart Silverstrim Date: Thu, 9 Jun 2005 07:57:26 -0400 To: "dk dkrules" X-Mailer: Apple Mail (2.622) X-Server: High Performance Mail Server - http://surgemail.com X-Authenticated-User: bsilver@chrononomicon.com Cc: freebsd-questions@FreeBSD.org Subject: Re: Very Dissapointed X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Jun 2005 11:57:34 -0000 On Jun 9, 2005, at 7:36 AM, dk dkrules wrote: > I am very dissappointed. I have been looking on the net for 3 days now > looking for easy setup guides or How to guides and setting up FreeBSD > 5.x with transparent proxy and firewall and there simply is no easy > way explaining to beginners how to do such a setup. No wonder that > most people still prefer microsoft products. It is much easier to > setup and there is a sh*t load of information to help you do it, But > almost no usefull information on any website about freebsd? I'm sorry. It's very clear that the FreeBSD Lords will now have to nix their plans once again to rule the earth and stomp out any and all competition from the marketplace again until we can fix the whole "it's not point and click to get task X to work the way I want it to" thing again. And they tried so hard this time around too! It's really disheartening to hear how much better Windows is, but it also seems paradoxical...my stress level has fallen substantially since I switched my desktop machine to a Mac and many of our servers to FreeBSD and Linux. Very strange indeed! I don't know about the firewall rules, but all we did was set up Squid with a rule set up to redirect incoming port 80 requests to the port Squid was listening to. Then I enabled IP forwarding, and told all the clients using DHCP to use the FreeBSD (or Linux, depending on the site) server's IP as the gateway IP. Everyone went through Squid from that time on for proxying. We only did it because we needed people filtered, so I told Squid to run SquidGuard. Update the blacklists periodically and we are transparently proxying websites with few, if any, people knowing what was going on. Maybe someone else could help you with links on how to use the firewall rules or which port will provide a GUI for you to use in configuring the rules. Is there something so particular about your setup that a googling for FreeBSD and Squid won't yield sites that can help? A quick google for me came up with http://www.keypoint.com.au/knowledge.html?strid=1124 http://ezine.daemonnews.org/200209/squid.html http://www.freebsddiary.org/squid.php http://tomclegg.net/squid-tproxy Seems like these would be enough to get you started...