PDA

View Full Version : [ubuntu] Squid - cache_peer and http_port or arp



Pimpn8ezy
April 26th, 2012, 11:14 AM
Good Day,

I am running squid 2.7 on our local school internal proxy (Ubuntu) that is behind a larger network proxy (which I don't have control over).

We have started allowing students to access our wireless network as the proliferation of smart phones, tablets and laptops has been steadily increasing.

The problem is Andorid does not play nice with proxies that require authentication. I had an idea of a way around this that would still tie things to the individual logins. The solution I have been looking at is to either bind the http_port or MAC address (through arp) to a specific cache peer. Here is what I was thinking:

Either:
http_port 123 name=student1_port
cache_peer 10.x.x.x parent 3128 no-query login=user:my_pass name=student1_peer
cache_peer_access student1_peer allow student1_port

Or:
cache_peer 10.x.x.x parent 3128 no-query login=user:my_pass name=student1_peer
acl student1_mac arp 01:01:01:01:01:01
cache_peer_access student1_peer allow student1_mac

I was hoping that one of these solutions would allow me to point at the local proxy and avoid having to provide details for the upstream proxy which requires authentication (basic auth - which I continue to rail against). However, no such luck just yet.

I am still relatively new to squid, and searches along with trial and error have also been unsuccessful.

Any suggestions would be greatly appreciated.

Cheers.

elico
April 27th, 2012, 05:47 AM
will try to help later but as for now try to also post on the squid users mailing list.
it's the best spot with all squid experts.

Pimpn8ezy
May 1st, 2012, 12:47 AM
I appreciate any assistance. I have posted to the squid mailing list. If I do manage to find a workable solution I will be sure to post it here.

Cheers