RE: Linux Proxy Server ?

["Matt Bruce" <matt.bruce () alphawest com au>]

Troy,

It's an excellent solution as a proxy cache, and has the ability to use ACLs
for a degree of security, but I wouldn't implement it if you've been hooked
into the Microsoft sales guff that says that a proxy server is a
firewall/security solution. Nor would I use it in a situation that requires
user authentication (e.g. an environment where some users have WWW access
and others don't). You could add some ipfwadm/ipchains packet filtering
rules for increased security, too.

I think there's a Squid HOWTO available, and there should be a few resources
about the place that tell you how to do a "best practice" install of a Squid
cache, but I don't know where you'd get them from. Let me know when you find
them, and remember that TCO isn't just the cost of software and hardware. :)

HTH,

Matt Bruce     <matt.bruce () alphawest com au>
Security & Internet Engineer
AlphaWest - http://www.alphawest.com.au/
"Illegitimus non carborundum est." :)


> -----Original Message-----
> From: Troy Henley [mailto:tgh () cprslaw com]
> Sent: Monday, 21 February 2000 10:51 pm
>
> I am interested in setting up a proxy server for our
> office network. Because of the low cost of Linux, I was
> interested in using it as a proxy server.  Could anyone
> provide me with concerns and obstacles to look our for
> in this project?  Is Linux a good solution for a proxy server?
>
> Does anyone know of a URL or step-by-step guide to setting up
> Red-Hat or some other distribution of Linux as a proxy server?