-- [ From: Denis Vella * EMC.Ver #2.5.02 ] --
Put an access list in your router blocking access from your internal network
to all other points with a port of 80.
-------- REPLY, Original message follows --------
> Date: Wednesday, 30-Oct-96 12:07 PM
>
> From: Hisham Khalifa Al Saad \ Internet: (webmaster @
internic .
uob .
bh)
> To: Charles Gagnon \ Internet: (charles @
grafnetix .
com)
> cc: firewalls @
GreatCircle .
COM \ Internet: (firewalls @
greatcircle .
com)
>
> Subject: Re: Access Different PROXY
>
> Hi again,
>
> Thank you for your e-mail.
> I have allready installed Netscape Proxy Server 1.0 on
> WIN/NT and its working perfectly.
> Now, the problem is, that anyone still can use the ISP
> PROXY by configuring it in the browser.
> And i need to make all the access pass thru' MY
> PROXY first then after authentication it goes to the ISP
> PROXY then to the Internet.
>
> Be cause if they can access the ISP PROXY directly from their
> browser, then i won't be able to authenticate them in MY
> PROXY.
> They should access only 'MY PROXY', and not any other PROXY
> from withen the local network.
>
> Got it?
>
> Thank you very much,
>
>
> -----------------------
> Hisham Al Saad webmaster @
admin .
uob .
bh University of Bahrain
> -----------------------
>
>
>
>
>
>
>
>
> Charles Gagnon wrote:
> >
> > On Oct 29, Kun-Yu Li writes:
> > > Subject: Re: Access Different PROXY
> > > Maybe u can inform users of setting proxy to "MY PROXY",
> > > then make "CISCO 2500" allow all connections to port 80,8080,...etc
> > > only from "MY PROXY", not from "LAN".
> > >
> > > The problem is I don't know how to define "2 proxies" in browser,
> > > for example, Netscape. Because there're 2 proxies: MY PROXY & ISP
PROXY.
> > >
> >
> > this guy is right in the way to do the setup. But you don't need to
setup a
> > second Proxy in the browser. It should work Ok by setting up your Proxy.
> >
> > Do what this guy told you and it should:
> >
> > LAN --> MY PROXY --> CICSO 2500 --> ISP
> >
> > Once on the ISP side it doesn't really matters what happens. Wheter your
> > request is fowarded to a proxy server or not is not your problem. If you
> > end-up with this configuration. You should be in business.
> >
> > ciao! and good luck.
> >
> > >
> > > At 12:55 AM 1996/10/29 +0300, you wrote:
> > > >Hi,
> > > >
> > > >I have a LAN connected to the Internet through our ISP, by default
all
> > > >accesses to the Internet should go through the ISP's PROXY.
> > > >
> > > > ----- -----------
> > > > LAN ---> CISCO 2500 --->|
> > > > ----- . ------------ |
> > > > . |
> > > > ----.---- --------- ---------
> > > > MY PROXY ..........> ISP PROXY ---> INTERNET
> > > > -------- ----------- ---------
> > > >
> > > >I have Installed a PROXY server on SUN Solaris on my LAN.
> > > >Now, i need to make all the accesses to the Internet go through this
> > > >PROXY(the SUN) first.
> > > >Also,the DNS on the LAN is running on DEC ALPHA/UNIX 3.2D.
> > > >
> > > >Where should i make the changes to force all connections to the
> > > >Internet from the LAN to go through the local PROXY first and
> > > >get the authorization then go to the ISPs PROXY then to the Internet.
> >
> > --
> > Charles Gagnon | My views are my views and they
> > Systems Engineer | do not represent those of anybody
> > Charles @
Grafnetix .
COM | but me.
> > http://www.Grafnetix.COM/~charles/ |
> >
> > "There are lies, damn lies, and statistics."
> > -- Mark Twain
-------- REPLY, End of original message --------
|
|
