I have a location using a CentOS 5 server that's multihomed running Asterisk and iptables for internal web access. Recently some sales people got busted surfing some explicit content so the owner wants something in there to block this. I had heard of Dans Guardian and am reading about what's involved here but just wanted an opinion on what's the best solution for this. NTLM silent auth would be an asset, but the lan is simple and the owner doesn't need granular control if it would be complicated. What are you guys using with good results?/ Thanks? jlc
Joseph L. Casale wrote:> I have a location using a CentOS 5 server that's multihomed running Asterisk and iptables for internal web access. > > Recently some sales people got busted surfing some explicit content so the owner wants something in there to block this. > > I had heard of Dans Guardian and am reading about what's involved here but just wanted an opinion on what's the best solution for this. NTLM silent auth would be an asset, but the lan is simple and the owner doesn't need granular control if it would be complicated. > > What are you guys using with good results?/ > Thanks? > jlcSquid with some blacklists (i usually use ftp://ftp.univ-tlse1.fr/pub/reseau/cache/squidguard_contrib/blacklists.tar.gz) and ntlm authentication .. that works fine -- - Fabian Arrotin <fabian.arrotin at arrfab.net> "Internet network currently down, TCP/IP packets delivered now by UPS/Fedex ..."
On Fri, Dec 5, 2008 at 1:54 PM, Joseph L. Casale <JCasale at activenetwerx.com> wrote:> I have a location using a CentOS 5 server that's multihomed running Asterisk and iptables for internal web access. > > Recently some sales people got busted surfing some explicit content so the owner wants something in there to block this. > > I had heard of Dans Guardian and am reading about what's involved here but just wanted an opinion on what's the best solution for this. NTLM silent auth would be an asset, but the lan is simple and the owner doesn't need granular control if it would be complicated. > > What are you guys using with good results?/Suggest you consider using OpenDns.com for DNS http://www.opendns.com/
Joseph L. Casale wrote:> I have a location using a CentOS 5 server that's multihomed running Asterisk and iptables for internal web access. > > Recently some sales people got busted surfing some explicit content so the owner wants something in there to block this. > > I had heard of Dans Guardian and am reading about what's involved here but just wanted an opinion on what's the best solution for this. NTLM silent auth would be an asset, but the lan is simple and the owner doesn't need granular control if it would be complicated. > > What are you guys using with good results?/ > Thanks? > jlc > _______________________________________________ > CentOS mailing list > CentOS at centos.org > http://lists.centos.org/mailman/listinfo/centos >Opendns, as Lanny suggested, works as they advertise. Its not very granular though. I've also been using Untangle (untangle.com) and just love it. Its FLOSS with commercial add-ons; but I think the straight FLOSS capabilities are great without the fee-based extras. Its a linux-based router distro. Capable of full NAT routing or as a transparent bridge, you just build up a beige box with 2 NICs and put this baby in between the PCs and the internet. Its got a great UI, and is really flexible. Depending on what you were hoping for/envisioning it could be a great fit. Andy
Dunno if you are already happy with this subject, but I've used DansGuardian for a number of prominent school districts in California with very good success. It's cheap, highly reliable, and a single, reasonably well-equiped P4 can *easily* run as a proxy for hundreds or thousands of students! (CentOS 4, 1 GB RAM, 100 GB HDD, random P4 or Athlon processor) I've always bought the CHEAPEST computer possible at the local "big-box retailer" and never noticed a load average high enough to even measure consistently. EG: over 0.50... DG rox! At first, I had to tweak the filter rules for a few weeks until I had something I was happy with, but recently the defaults have become good enough that I wouldn't bother - just roll it out. Good luck! On Friday 05 December 2008 10:54:02 am Joseph L. Casale wrote:> I have a location using a CentOS 5 server that's multihomed running > Asterisk and iptables for internal web access. > > Recently some sales people got busted surfing some explicit content so the > owner wants something in there to block this. > > I had heard of Dans Guardian and am reading about what's involved here but > just wanted an opinion on what's the best solution for this. NTLM silent > auth would be an asset, but the lan is simple and the owner doesn't need > granular control if it would be complicated. > > What are you guys using with good results?/ > Thanks? > jlc > _______________________________________________ > CentOS mailing list > CentOS at centos.org > http://lists.centos.org/mailman/listinfo/centos > > -- > This message has been scanned for viruses and > dangerous content by MailScanner, and is > believed to be clean.-- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.