On Fri, 2004-12-24 at 07:58, Cameron Simpson wrote: > On 11:35 23 Dec 2004, Kanwar Ranbir Sandhu <m3freak@xxxxxxxxxx> wrote: > | I generally don't start OT threads in mailing lists, but this is such a > | high traffic list that it's perhaps the best place to ask this question. > | > | I have a client that wants to restrict access to the Internet to only > | one website for every employee, except two people: these two should not > | be restricted at all. > | > | I was at first considering using iptables, but after doing some > | searching on the net, I discovered that Squid could be used. > | > | Which approach would be better? > > Squid. Much easier to configure and maintain. > Just set up iptables enough so that everyone must use the squid to get out. I second that.. Just set up a rule for redirecting all www traffic to squid and get some sort of authenticating done. Either that or, limit by IP -- Ow Mun Heng Gentoo/Linux on D600 1.4Ghz 98% Microsoft(tm) Free!! Neuromancer 10:49:11 up 1:43, 5 users, 0.30, 0.33, 0.35
